This is an old revision of the document!

Gradual Security Typing in Dart

This page will describe artifacts associated to SecDart which is an extension to the Dart programming language with gradual security typing.

Installation instructions

We will provide three ways to interact with the SecDart's security analysis (currently just the first one is available!):

Using the online SecDart Pad at https://pleiad.cl/secdart/
The SecDart Analyzer CLI
The SecDart Plugin for Analysis Server.

SecDart Pad: Functionality

The following screenshot shows how the SecDart Pad looks like

The SecDart Analyzer CLI

Instructions will be placed here soon.

Integration with the Analysis Server

We developed a plugin for the Dart Analysis Server. The implementation is not stable yet, but we are working on that. The following screenshot shows a (custom) security error reported by the security analysis in the “Dart Analysis” windows of WebStorm

SecDart : Language features

SecDart covers a subset of the language and add security labels to language constructors

Dart SubSet

Details about the subset of Dart covers for SecDart will be placed here soon

Security labels

SecDart uses annotations to specify security labels. We can specify security labels for the following entities:

parameters of functions
```
int min(@high int a,@high int b)
```
variable definition
function declarations