请注意，没有自动安全扫描程序能够检测代码库中的所有漏洞.保护代码的***方法是学习如何编写安全的软件，并进行认真的代码审查.

Please be aware that NO automated security scanner will be able to detect all vulnerabilities in the code base. The best way to protect your code is to learn about how to write secure software, and do diligent code reviews.

注意，我并不是说不要使用扫描仪.我说的只是将扫描仪用作第二道防线.不要依靠它来弥补不良的编码习惯...

Note, I'm not saying NOT to use a scanner. I'm saying use a scanner as a second line of defense only. Don't rely on it to make up for poor coding practices...