Fork me on GitHub
Built by Maven

FindBugs Bug Detector Report

The following document contains the results of FindBugs Report

FindBugs Version is 2.0.1

Threshold is medium

Effort is min

Summary

Classes Bugs Errors Missing Classes
173 8 0 0

Files

Class Bugs
org.owasp.dependencycheck.analyzer.ArchiveAnalyzer 1
org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer 2
org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer 1
org.owasp.dependencycheck.concurrency.DirectorySpinLock 1
org.owasp.dependencycheck.data.update.DatabaseUpdater 1
org.owasp.dependencycheck.utils.Downloader 1

org.owasp.dependencycheck.analyzer.ArchiveAnalyzer

Bug Category Details Line Priority
exceptional return value of java.io.File.mkdirs() ignored in org.owasp.dependencycheck.analyzer.ArchiveAnalyzer.initialize() BAD_PRACTICE RV_RETURN_VALUE_IGNORED_BAD_PRACTICE 148 Medium

org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer

Bug Category Details Line Priority
Possible null pointer dereference of currentVersion on branch that might be infeasible in org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer.removeSpuriousCPE(Dependency) STYLE NP_NULL_ON_SOME_PATH_MIGHT_BE_INFEASIBLE 162 Medium
Possible null pointer dereference of nextVersion on branch that might be infeasible in org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer.removeSpuriousCPE(Dependency) STYLE NP_NULL_ON_SOME_PATH_MIGHT_BE_INFEASIBLE 162 Medium

org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer

Bug Category Details Line Priority
Dead store to extractComments in org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer.analyze(Dependency, Engine) STYLE DLS_DEAD_LOCAL_STORE 99 Medium

org.owasp.dependencycheck.concurrency.DirectorySpinLock

Bug Category Details Line Priority
exceptional return value of java.io.File.delete() ignored in org.owasp.dependencycheck.concurrency.DirectorySpinLock.close() BAD_PRACTICE RV_RETURN_VALUE_IGNORED_BAD_PRACTICE 247 Medium

org.owasp.dependencycheck.data.update.DatabaseUpdater

Bug Category Details Line Priority
Null passed for nonnull parameter of new java.net.URL(String) in org.owasp.dependencycheck.data.update.DatabaseUpdater.retrieveCurrentTimestampsFromWeb() CORRECTNESS NP_NULL_PARAM_DEREF 550 Medium

org.owasp.dependencycheck.utils.Downloader

Bug Category Details Line Priority
Redundant nullcheck of conn which is known to be null in org.owasp.dependencycheck.utils.Downloader.getConnection(URL) STYLE RCN_REDUNDANT_NULLCHECK_OF_NULL_VALUE 198 Medium