R language
Note: The legacy Mend SAST Application was deprecated on April 1st, 2025. For assistance with migrating to the Mend AppSec Platform, please contact your customer success manager or the success team at success@mend.io.
This article covers R support and vulnerability detection for Mend SAST.
Mend SAST-supported R file types
File Type |
.R |
Mend SAST-supported R frameworks
Framework |
|---|
N/A |
Mend SAST-supported R vulnerability types
The R vulnerability types detected by SAST are provided below, organized by CWE ID within each of their identified severities.
R high-severity vulnerability types
CWE | Vulnerability Type |
CWE-22 | Path/Directory Traversal |
CWE-73 | File Manipulation |
CWE-78 | Command Injection |
CWE-89 | SQL Injection |
CWE-94 | Code Injection |
R medium-severity vulnerability types
CWE | Vulnerability Type |
CWE-611 | XML External Entity (XXE) Injection |
CWE-676 | Miscellaneous Dangerous Functions |
CWE-798 | Hardcoded Password/Credentials |