version 1.1.0

2026-03-20 08:14:44 +01:00 · 2014-01-26 11:51:55 -05:00
parent 034dd03d2d
commit 8c53925bd7
1007 changed files with 55095 additions and 53038 deletions
--- a/dependency-check-core/findbugs.html
+++ b/dependency-check-core/findbugs.html
@@ -1,13 +1,13 @@
 <!DOCTYPE html>
 <!--
- | Generated by Apache Maven Doxia at 2014-01-16
+ | Generated by Apache Maven Doxia at 2014-01-26
 | Rendered using Apache Maven Fluido Skin 1.3.0
 -->
 <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
  <head>
    <meta charset="UTF-8" />
    <meta name="viewport" content="width=device-width, initial-scale=1.0" />
-    <meta name="Date-Revision-yyyymmdd" content="20140116" />
+    <meta name="Date-Revision-yyyymmdd" content="20140126" />
    <meta http-equiv="Content-Language" content="en" />
    <title>dependency-check-core - FindBugs Bug Detector Report</title>
    <link rel="stylesheet" href="./css/apache-maven-fluido-1.3.0.min.css" />
@@ -54,7 +54,7 @@
                
                    
                              <li class="">
-                    <a href="../../../../../../../../../../../../c:/Users/jeremy/Documents/NetBeansProjects/DependencyCheck/target/site/1.0.8/#" title="">
+                    <a href="../../../../../../../../../../../../c:/Users/jeremy/Documents/NetBeansProjects/DependencyCheck/target/site/1.1.0/#" title="">
        </a>
        </li>
      <li class="divider ">/</li>
@@ -67,8 +67,8 @@
        
                
                    
-                  <li id="publishDate" class="pull-right">Last Published: 2014-01-16</li> <li class="divider pull-right">|</li>
-              <li id="projectVersion" class="pull-right">Version: 1.0.8</li>
+                  <li id="publishDate" class="pull-right">Last Published: 2014-01-26</li> <li class="divider pull-right">|</li>
+              <li id="projectVersion" class="pull-right">Version: 1.1.0</li>
            
                            </ul>
      </div>
@@ -88,7 +88,7 @@
          <i class="icon-chevron-right"></i>
        Project Information</a>
                  </li>
-                                                                                                                                                                                                                                                                                                      
+                                                                                                                                                                                                                                                                                                                        
      <li>
    
                          <a href="project-reports.html" title="Project Reports">
@@ -184,6 +184,13 @@
    
            <a href="#"><i class="none"></i>FindBugs Report</a>
          </li>
+                      
+      <li>
+    
+                          <a href="javancss.html" title="JavaNCSS Report">
+          <i class="none"></i>
+        JavaNCSS Report</a>
+            </li>
              </ul>
        </li>
            </ul>
@@ -230,8 +237,8 @@
 <th>Errors</th>
 <th>Missing Classes</th></tr>
 <tr class="b">
-<td>199</td>
-<td>9</td>
+<td>196</td>
+<td>10</td>
 <td>0</td>
 <td>0</td></tr></table></div>
 <div class="section">
@@ -244,10 +251,10 @@
 <td><a href="#org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer">org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer</a></td>
 <td>2</td></tr>
 <tr class="a">
-<td><a href="#org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer">org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer</a></td>
-<td>1</td></tr>
+<td><a href="#org.owasp.dependencycheck.analyzer.JarAnalyzer">org.owasp.dependencycheck.analyzer.JarAnalyzer</a></td>
+<td>2</td></tr>
 <tr class="b">
-<td><a href="#org.owasp.dependencycheck.concurrency.DirectorySpinLock">org.owasp.dependencycheck.concurrency.DirectorySpinLock</a></td>
+<td><a href="#org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer">org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer</a></td>
 <td>1</td></tr>
 <tr class="a">
 <td><a href="#org.owasp.dependencycheck.data.nvdcve.CveDB">org.owasp.dependencycheck.data.nvdcve.CveDB</a></td>
@@ -274,103 +281,109 @@
 <td>Possible null pointer dereference of currentVersion in org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer.removeSpuriousCPE(Dependency)</td>
 <td>CORRECTNESS</td>
 <td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#NP_NULL_ON_SOME_PATH">NP_NULL_ON_SOME_PATH</a></td>
-<td><a href="./xref/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.html#166">166</a></td>
+<td><a href="./xref/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.html#163">163</a></td>
 <td>Medium</td></tr>
 <tr class="a">
 <td>Possible null pointer dereference of nextVersion on branch that might be infeasible in org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer.removeSpuriousCPE(Dependency)</td>
 <td>STYLE</td>
 <td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#NP_NULL_ON_SOME_PATH_MIGHT_BE_INFEASIBLE">NP_NULL_ON_SOME_PATH_MIGHT_BE_INFEASIBLE</a></td>
-<td><a href="./xref/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.html#166">166</a></td>
+<td><a href="./xref/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.html#163">163</a></td>
+<td>Medium</td></tr></table></div><a name="org.owasp.dependencycheck.analyzer.JarAnalyzer"></a>
+<div class="section">
+<h3>org.owasp.dependencycheck.analyzer.JarAnalyzer<a name="org.owasp.dependencycheck.analyzer.JarAnalyzer"></a></h3>
+<table border="0" class="table table-striped">
+<tr class="b">
+<th>Bug</th>
+<th>Category</th>
+<th>Details</th>
+<th>Line</th>
+<th>Priority</th></tr>
+<tr class="a">
+<td>Possible null pointer dereference of input in org.owasp.dependencycheck.analyzer.JarAnalyzer.extractPom(String, JarFile, Dependency) on exception path</td>
+<td>CORRECTNESS</td>
+<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#NP_NULL_ON_SOME_PATH_EXCEPTION">NP_NULL_ON_SOME_PATH_EXCEPTION</a></td>
+<td><a href="./xref/org/owasp/dependencycheck/analyzer/JarAnalyzer.html#396">396</a></td>
+<td>Medium</td></tr>
+<tr class="b">
+<td>org.owasp.dependencycheck.analyzer.JarAnalyzer.extractPom(String, JarFile, Dependency) may fail to close stream</td>
+<td>BAD_PRACTICE</td>
+<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#OS_OPEN_STREAM">OS_OPEN_STREAM</a></td>
+<td><a href="./xref/org/owasp/dependencycheck/analyzer/JarAnalyzer.html#384">384</a></td>
 <td>Medium</td></tr></table></div><a name="org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer"></a>
 <div class="section">
 <h3>org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer<a name="org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer"></a></h3>
 <table border="0" class="table table-striped">
-<tr class="b">
+<tr class="a">
 <th>Bug</th>
 <th>Category</th>
 <th>Details</th>
 <th>Line</th>
 <th>Priority</th></tr>
-<tr class="a">
+<tr class="b">
 <td>Dead store to extractComments in org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer.analyze(Dependency, Engine)</td>
 <td>STYLE</td>
 <td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#DLS_DEAD_LOCAL_STORE">DLS_DEAD_LOCAL_STORE</a></td>
-<td><a href="./xref/org/owasp/dependencycheck/analyzer/JavaScriptAnalyzer.html#99">99</a></td>
-<td>Medium</td></tr></table></div><a name="org.owasp.dependencycheck.concurrency.DirectorySpinLock"></a>
-<div class="section">
-<h3>org.owasp.dependencycheck.concurrency.DirectorySpinLock<a name="org.owasp.dependencycheck.concurrency.DirectorySpinLock"></a></h3>
-<table border="0" class="table table-striped">
-<tr class="b">
-<th>Bug</th>
-<th>Category</th>
-<th>Details</th>
-<th>Line</th>
-<th>Priority</th></tr>
-<tr class="a">
-<td>exceptional return value of java.io.File.delete() ignored in org.owasp.dependencycheck.concurrency.DirectorySpinLock.close()</td>
-<td>BAD_PRACTICE</td>
-<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#RV_RETURN_VALUE_IGNORED_BAD_PRACTICE">RV_RETURN_VALUE_IGNORED_BAD_PRACTICE</a></td>
-<td><a href="./xref/org/owasp/dependencycheck/concurrency/DirectorySpinLock.html#247">247</a></td>
+<td><a href="./xref/org/owasp/dependencycheck/analyzer/JavaScriptAnalyzer.html#95">95</a></td>
 <td>Medium</td></tr></table></div><a name="org.owasp.dependencycheck.data.nvdcve.CveDB"></a>
 <div class="section">
 <h3>org.owasp.dependencycheck.data.nvdcve.CveDB<a name="org.owasp.dependencycheck.data.nvdcve.CveDB"></a></h3>
 <table border="0" class="table table-striped">
-<tr class="b">
+<tr class="a">
 <th>Bug</th>
 <th>Category</th>
 <th>Details</th>
 <th>Line</th>
 <th>Priority</th></tr>
-<tr class="a">
+<tr class="b">
 <td>org.owasp.dependencycheck.data.nvdcve.CveDB.getVendorProductList() may fail to close PreparedStatement</td>
 <td>BAD_PRACTICE</td>
 <td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#ODR_OPEN_DATABASE_RESOURCE">ODR_OPEN_DATABASE_RESOURCE</a></td>
-<td><a href="./xref/org/owasp/dependencycheck/data/nvdcve/CveDB.html#298">298</a></td>
+<td><a href="./xref/org/owasp/dependencycheck/data/nvdcve/CveDB.html#297">297</a></td>
 <td>Medium</td></tr></table></div><a name="org.owasp.dependencycheck.data.update.task.CallableDownloadTask"></a>
 <div class="section">
 <h3>org.owasp.dependencycheck.data.update.task.CallableDownloadTask<a name="org.owasp.dependencycheck.data.update.task.CallableDownloadTask"></a></h3>
 <table border="0" class="table table-striped">
-<tr class="b">
+<tr class="a">
 <th>Bug</th>
 <th>Category</th>
 <th>Details</th>
 <th>Line</th>
 <th>Priority</th></tr>
-<tr class="a">
+<tr class="b">
 <td>new org.owasp.dependencycheck.data.update.task.CallableDownloadTask(NvdCveInfo, ExecutorService, CveDB) might ignore java.io.IOException</td>
 <td>BAD_PRACTICE</td>
 <td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#DE_MIGHT_IGNORE">DE_MIGHT_IGNORE</a></td>
-<td><a href="./xref/org/owasp/dependencycheck/data/update/task/CallableDownloadTask.html#60">60</a></td>
+<td><a href="./xref/org/owasp/dependencycheck/data/update/task/CallableDownloadTask.html#58">58</a></td>
 <td>Medium</td></tr></table></div><a name="org.owasp.dependencycheck.utils.Downloader"></a>
 <div class="section">
 <h3>org.owasp.dependencycheck.utils.Downloader<a name="org.owasp.dependencycheck.utils.Downloader"></a></h3>
 <table border="0" class="table table-striped">
-<tr class="b">
+<tr class="a">
 <th>Bug</th>
 <th>Category</th>
 <th>Details</th>
 <th>Line</th>
 <th>Priority</th></tr>
-<tr class="a">
+<tr class="b">
 <td>Redundant nullcheck of conn which is known to be null in org.owasp.dependencycheck.utils.Downloader.getConnection(URL)</td>
 <td>STYLE</td>
 <td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#RCN_REDUNDANT_NULLCHECK_OF_NULL_VALUE">RCN_REDUNDANT_NULLCHECK_OF_NULL_VALUE</a></td>
-<td><a href="./xref/org/owasp/dependencycheck/utils/Downloader.html#216">216</a></td>
+<td><a href="./xref/org/owasp/dependencycheck/utils/Downloader.html#211">211</a></td>
 <td>Medium</td></tr></table></div><a name="org.owasp.dependencycheck.utils.LogUtils"></a>
 <div class="section">
 <h3>org.owasp.dependencycheck.utils.LogUtils<a name="org.owasp.dependencycheck.utils.LogUtils"></a></h3>
 <table border="0" class="table table-striped">
-<tr class="b">
+<tr class="a">
 <th>Bug</th>
 <th>Category</th>
 <th>Details</th>
 <th>Line</th>
 <th>Priority</th></tr>
-<tr class="a">
+<tr class="b">
 <td>Changes to logger could be lost in org.owasp.dependencycheck.utils.LogUtils.prepareLogger(InputStream, String)</td>
 <td>EXPERIMENTAL</td>
 <td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#LG_LOST_LOGGER_DUE_TO_WEAK_REFERENCE">LG_LOST_LOGGER_DUE_TO_WEAK_REFERENCE</a></td>
-<td><a href="./xref/org/owasp/dependencycheck/utils/LogUtils.html#59">59</a></td>
+<td><a href="./xref/org/owasp/dependencycheck/utils/LogUtils.html#58">58</a></td>
 <td>High</td></tr></table></div>
                  </div>
            </div>