This is an old revision of the document!
Gradual Security Typing in Dart
This page will describe artifacts associated to SecDart which is an extension to the Dart programming language with gradual security typing.
Installation instructions
We will provide three ways to interact with the SecDart's security analysis (currently just the first one is available!):
- Using the online SecDart Pad at https://pleiad.cl/secdart/
- The SecDart Analyzer CLI
- The SecDart Plugin for Analysis Server.
SecDart Pad: Functionality
The following screenshot shows how the SecDart Pad looks like
The SecDart Analyzer CLI
Instructions will be placed here soon.
Integration with the Analysis Server
We developed a plugin for the Dart Analysis Server. The implementation is not stable yet, but we are working on that. The following screenshot shows a (custom) security error reported by the security analysis in the “Dart Analysis” windows of WebStorm
SecDart : Language features
SecDart covers a subset of the language and add security labels to language constructors
Dart SubSet
Details about the subset of Dart covers for SecDart will be placed here soon
Security labels
SecDart uses annotations to specify security labels. We can specify security labels for the following entities:
- parameters of functions
int min(@high int a,@high int b)
- variable definition
- function declarations