-
**Affects PMD Version:**
6.20.0
**Rule:**
New rule.
**Description**
SonarSource has an existing rule for Java that verifies argument types and their count for formatted string specifiers les…
-
For the following class, SpotBugs reports `IC_SUPERCLASS_USES_SUBCLASS_DURING_INITIALIZATION`:
```java
package ghIssues;
public interface Issue1234 {
public static final Issue1234 REF_TO_INNE…
-
Warning gets raised where no `throws` clause is present:
```java
private static final LoadingCache, DataFormat> DATA_FORMATS = CacheBuilder.newBuilder()
.build(new CacheLoader() {
…
-
From https://bestpractices.coreinfrastructure.org/en/projects/5719#analysis
At least one static code analysis tool (beyond compiler warnings and "safe" language modes) MUST be applied to any propos…
-
I'm writing a SpotBugs plugin, starting from the maven archetype as [suggested in the documentation](https://spotbugs.readthedocs.io/en/stable/implement-plugin.html).
I wrote a detector and some te…
-
This looks interesting!!! I only have a small one that I use to verify signatures: https://github.com/kinow/dork-scripts/blob/master/gpg/asf-sigs/asf-sigs.sh
But if you create a better one, I'd be …
kinow updated
6 years ago
-
### Expected Behavior
3rd party code quality plugins can implement `TaskReportContainer`.
### Current Behavior
3rd party code quality plugins cannot implement `TaskReportContainer` as it's part o…
3flex updated
8 months ago
-
As a coab code maintainer, in order to detect potentially vulnerable coding practices, I would like static code analysis to include security patterns such as find-sec-bugs
http://find-sec-bugs.gith…
-
# Issue description
When using the SpecClassFileSelector for selecting Spock tests for an Ant build using JDK 11, the following exception is thrown:
```
Caused by: java.lang.UnsupportedOperationE…
-
The following code gives an `OBL_UNSATISFIED_OBLIGATION` warning:
```java
import java.sql.Connection;
import java.sql.PreparedStatement;
import java.sql.ResultSet;
import java.sql.SQLException;…