Risk code positioning method and device, server and storage medium

The embodiment of the invention discloses a risk code positioning method and device, a server and a storage medium, the risk code positioning method can comprise the steps that a vulnerability report is acquired, the vulnerability report comprises related information about risk codes, and the related information of the risk codes comprises identification information of a risk code library to which the risk codes belong; and/or identification information of a risk function to which the risk code belongs; in a code file of a code library indicated by code configuration information, target codes matched with the related information are positioned, and the code configuration information comprises identification information of a third-party code library for product reuse. By implementing the method, quick positioning of the risk codes in the code file of the product can be realized. 本申请实施例公开了一种风险代码的定位方法、装置、服务器及存储介质，该风险代码的定位方法可以包括：获取漏洞报告，漏洞报告中包括关于风险代码的相关信息，风险代码的相关信息包括风险代码所属的风险代码库的标识信息，和/或风险代码所属的风险函数的标识信息；在代码配置信息所指示