FIO01-A. Access files through file descriptors rather than file names
FIO02-A. Canonicalize file names originating from untrusted sources
FIO31-C. Detect and handle file operation errors
FIO32-C. Do not assume file names generated with tmpnam() remain unique