Hi. Flawfinder scans through C/C++ source code, identifying lines ("hits") with potential security flaws. By default it reports hits sorted by severity, with the riskiest lines first. I suggest dev-util/flawfinder.
Created attachment 13603 [details] flawfinder-1.22.ebuild
added to portage