github-mirrors/DependencyCheck
1
0
Fork 0
mirror of https://github.com/ysoftdevs/DependencyCheck.git synced 2026-01-15 00:03:43 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
9fb3ffbd33d5be4a2c12e3583b65e8ea874e8388
DependencyCheck/dependency-check-core/findbugs.html
Jeremy Long ab20a44a32 version 1.2.6 of the site documentation
2014-11-16 12:25:43 -05:00

419 lines
17 KiB
HTML
Raw Blame History

<!DOCTYPE html>
<!--
| Generated by Apache Maven Doxia at 2014-11-16
| Rendered using Apache Maven Fluido Skin 1.3.1
-->
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta charset="UTF-8" />
<meta name="viewport" content="width=device-width, initial-scale=1.0" />
<meta name="Date-Revision-yyyymmdd" content="20141116" />
<meta http-equiv="Content-Language" content="en" />
<title>dependency-check-core - FindBugs Bug Detector Report</title>
<link rel="stylesheet" href="./css/apache-maven-fluido-1.3.1.min.css" />
<link rel="stylesheet" href="./css/site.css" />
<link rel="stylesheet" href="./css/print.css" media="print" />
<script type="text/javascript" src="./js/apache-maven-fluido-1.3.1.min.js"></script>
<style type="text/css">#bannerLeft { margin-top:50px !important }</style>
</head>
<body class="topBarDisabled">
<a href="http://github.com/jeremylong/DependencyCheck">
<img style="position: absolute; top: 0; right: 0; border: 0; z-index: 10000;"
src="https://s3.amazonaws.com/github/ribbons/forkme_right_gray_6d6d6d.png"
alt="Fork me on GitHub">
</a>
<div class="container-fluid">
<div id="banner">
<div class="pull-left">
<div id="bannerLeft">
<h2>dependency-check-core</h2>
</div>
</div>
<div class="pull-right"> </div>
<div class="clear"><hr/></div>
</div>
<div id="breadcrumbs">
<ul class="breadcrumb">
<li class="">
<a href="../../../../../../../../../../../../c:/Users/jeremy/Documents/NetBeansProjects/DependencyCheck/target/site/1.2.6/#" title="">
</a>
<span class="divider">/</span>
</li>
<li class="">
<a href="../index.html" title="dependency-check">
dependency-check</a>
<span class="divider">/</span>
</li>
<li class="active ">FindBugs Bug Detector Report</li>
<li id="publishDate" class="pull-right"><span class="divider">|</span> Last Published: 2014-11-16</li>
<li id="projectVersion" class="pull-right">
Version: 1.2.6
</li>
</ul>
</div>
<div class="row-fluid">
<div id="leftColumn" class="span3">
<div class="well sidebar-nav">
<ul class="nav nav-list">
<li class="nav-header">Project Documentation</li>
<li>
<a href="project-info.html" title="Project Information">
<i class="icon-chevron-right"></i>
Project Information</a>
</li>
<li>
<a href="project-reports.html" title="Project Reports">
<i class="icon-chevron-down"></i>
Project Reports</a>
<ul class="nav nav-list">
<li>
<a href="apidocs/index.html" title="JavaDocs">
<i class="none"></i>
JavaDocs</a>
</li>
<li>
<a href="dependency-updates-report.html" title="Dependency Updates Report">
<i class="none"></i>
Dependency Updates Report</a>
</li>
<li>
<a href="plugin-updates-report.html" title="Plugin Updates Report">
<i class="none"></i>
Plugin Updates Report</a>
</li>
<li>
<a href="xref-test/index.html" title="Test Source Xref">
<i class="none"></i>
Test Source Xref</a>
</li>
<li>
<a href="xref/index.html" title="Source Xref">
<i class="none"></i>
Source Xref</a>
</li>
<li>
<a href="cobertura/index.html" title="Cobertura Test Coverage">
<i class="none"></i>
Cobertura Test Coverage</a>
</li>
<li>
<a href="surefire-report.html" title="Surefire Report">
<i class="none"></i>
Surefire Report</a>
</li>
<li>
<a href="failsafe-report.html" title="Failsafe Report">
<i class="none"></i>
Failsafe Report</a>
</li>
<li>
<a href="taglist.html" title="Tag List">
<i class="none"></i>
Tag List</a>
</li>
<li>
<a href="checkstyle.html" title="Checkstyle">
<i class="none"></i>
Checkstyle</a>
</li>
<li>
<a href="pmd.html" title="PMD">
<i class="none"></i>
PMD</a>
</li>
<li>
<a href="cpd.html" title="CPD">
<i class="none"></i>
CPD</a>
</li>
<li class="active">
<a href="#"><i class="none"></i>FindBugs Report</a>
</li>
<li>
<a href="javancss.html" title="JavaNCSS Report">
<i class="none"></i>
JavaNCSS Report</a>
</li>
</ul>
</li>
</ul>
<hr />
<div id="poweredBy">
<script type="text/javascript" src="https://apis.google.com/js/plusone.js"></script>
<div class="g-plusone" data-href="https://github.com/jeremylong/DependencyCheck.git/dependency-check-core" data-size="tall" ></div>
<div class="clear"></div>
<div class="clear"></div>
<div id="twitter">
<a href="https://twitter.com/ctxt" class="twitter-follow-button" data-show-count="true" data-align="left" data-size="medium" data-show-screen-name="true" data-lang="en">Follow ctxt</a>
<script type="text/javascript">!function(d,s,id){var js,fjs=d.getElementsByTagName(s)[0];if(!d.getElementById(id)){js=d.createElement(s);js.id=id;js.src="//platform.twitter.com/widgets.js";fjs.parentNode.insertBefore(js,fjs);}}(document,"script","twitter-wjs");</script>
</div>
<div class="clear"></div>
<div class="clear"></div>
<a href="http://maven.apache.org/" title="Maven" class="builtBy">
<img class="builtBy" alt="built with maven" src="http://jeremylong.github.io/DependencyCheck/images/logos/maven-feather.png" />
</a>
<a href="http://www.jetbrains.com/idea/" title="IntelliJ" class="builtBy">
<img class="builtBy" alt="developed using" src="http://jeremylong.github.io/DependencyCheck/images/logos/logo_intellij_idea.png" width="170px" />
</a>
<a href="http://www.cloudbees.com/" title="Cloudbees" class="builtBy">
<img class="builtBy" alt="built on cloudbees" src="http://jeremylong.github.io/DependencyCheck/images/logos/Button-Built-on-CB-1.png" />
</a>
</div>
</div>
</div>
<div id="bodyColumn" class="span9" >
<div class="section">
<h2>FindBugs Bug Detector Report<a name="FindBugs_Bug_Detector_Report"></a></h2>
<p>The following document contains the results of <a class="externalLink" href="http://findbugs.sourceforge.net">FindBugs Report</a></p>
<p>FindBugs Version is <i>2.0.2</i></p>
<p>Threshold is <i>medium</i></p>
<p>Effort is <i>min</i></p></div>
<div class="section">
<h2>Summary<a name="Summary"></a></h2>
<table border="0" class="table table-striped">
<tr class="a">
<th>Classes</th>
<th>Bugs</th>
<th>Errors</th>
<th>Missing Classes</th></tr>
<tr class="b">
<td>200</td>
<td>11</td>
<td>0</td>
<td>0</td></tr></table></div>
<div class="section">
<h2>Files<a name="Files"></a></h2>
<table border="0" class="table table-striped">
<tr class="a">
<th>Class</th>
<th>Bugs</th></tr>
<tr class="b">
<td><a href="#org.owasp.dependencycheck.Engine">org.owasp.dependencycheck.Engine</a></td>
<td>3</td></tr>
<tr class="a">
<td><a href="#org.owasp.dependencycheck.analyzer.ArchiveAnalyzer">org.owasp.dependencycheck.analyzer.ArchiveAnalyzer</a></td>
<td>1</td></tr>
<tr class="b">
<td><a href="#org.owasp.dependencycheck.analyzer.AssemblyAnalyzer">org.owasp.dependencycheck.analyzer.AssemblyAnalyzer</a></td>
<td>1</td></tr>
<tr class="a">
<td><a href="#org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer">org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer</a></td>
<td>2</td></tr>
<tr class="b">
<td><a href="#org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer">org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer</a></td>
<td>1</td></tr>
<tr class="a">
<td><a href="#org.owasp.dependencycheck.data.update.task.DownloadTask">org.owasp.dependencycheck.data.update.task.DownloadTask</a></td>
<td>2</td></tr></table></div><a name="org.owasp.dependencycheck.Engine"></a>
<div class="section">
<h3>org.owasp.dependencycheck.Engine<a name="org.owasp.dependencycheck.Engine"></a></h3>
<table border="0" class="table table-striped">
<tr class="b">
<th>Bug</th>
<th>Category</th>
<th>Details</th>
<th>Line</th>
<th>Priority</th></tr>
<tr class="a">
<td>org.owasp.dependencycheck.Engine is Serializable; consider declaring a serialVersionUID</td>
<td>BAD_PRACTICE</td>
<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#SE_NO_SERIALVERSIONID">SE_NO_SERIALVERSIONID</a></td>
<td><a href="./xref/org/owasp/dependencycheck/Engine.html#77">77-533</a></td>
<td>Medium</td></tr>
<tr class="b">
<td>The field org.owasp.dependencycheck.Engine.analyzers is transient but isn't set by deserialization</td>
<td>BAD_PRACTICE</td>
<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#SE_TRANSIENT_FIELD_NOT_RESTORED">SE_TRANSIENT_FIELD_NOT_RESTORED</a></td>
<td><a href="./xref/org/owasp/dependencycheck/Engine.html#">Not available</a></td>
<td>Medium</td></tr>
<tr class="a">
<td>The field org.owasp.dependencycheck.Engine.fileTypeAnalyzers is transient but isn't set by deserialization</td>
<td>BAD_PRACTICE</td>
<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#SE_TRANSIENT_FIELD_NOT_RESTORED">SE_TRANSIENT_FIELD_NOT_RESTORED</a></td>
<td><a href="./xref/org/owasp/dependencycheck/Engine.html#">Not available</a></td>
<td>Medium</td></tr></table></div><a name="org.owasp.dependencycheck.analyzer.ArchiveAnalyzer"></a>
<div class="section">
<h3>org.owasp.dependencycheck.analyzer.ArchiveAnalyzer<a name="org.owasp.dependencycheck.analyzer.ArchiveAnalyzer"></a></h3>
<table border="0" class="table table-striped">
<tr class="b">
<th>Bug</th>
<th>Category</th>
<th>Details</th>
<th>Line</th>
<th>Priority</th></tr>
<tr class="a">
<td>Redundant nullcheck of org.owasp.dependencycheck.analyzer.ArchiveAnalyzer.tempFileLocation, which is known to be non-null in org.owasp.dependencycheck.analyzer.ArchiveAnalyzer.close()</td>
<td>STYLE</td>
<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE">RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE</a></td>
<td><a href="./xref/org/owasp/dependencycheck/analyzer/ArchiveAnalyzer.html#189">189</a></td>
<td>Medium</td></tr></table></div><a name="org.owasp.dependencycheck.analyzer.AssemblyAnalyzer"></a>
<div class="section">
<h3>org.owasp.dependencycheck.analyzer.AssemblyAnalyzer<a name="org.owasp.dependencycheck.analyzer.AssemblyAnalyzer"></a></h3>
<table border="0" class="table table-striped">
<tr class="b">
<th>Bug</th>
<th>Category</th>
<th>Details</th>
<th>Line</th>
<th>Priority</th></tr>
<tr class="a">
<td>org.owasp.dependencycheck.analyzer.AssemblyAnalyzer.initializeFileTypeAnalyzer() discards result of readLine after checking if it is nonnull</td>
<td>STYLE</td>
<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#RV_DONT_JUST_NULL_CHECK_READLINE">RV_DONT_JUST_NULL_CHECK_READLINE</a></td>
<td><a href="./xref/org/owasp/dependencycheck/analyzer/AssemblyAnalyzer.html#239">239</a></td>
<td>Medium</td></tr></table></div><a name="org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer"></a>
<div class="section">
<h3>org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer<a name="org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer"></a></h3>
<table border="0" class="table table-striped">
<tr class="b">
<th>Bug</th>
<th>Category</th>
<th>Details</th>
<th>Line</th>
<th>Priority</th></tr>
<tr class="a">
<td>Possible null pointer dereference of currentVersion on branch that might be infeasible in org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer.removeSpuriousCPE(Dependency)</td>
<td>STYLE</td>
<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#NP_NULL_ON_SOME_PATH_MIGHT_BE_INFEASIBLE">NP_NULL_ON_SOME_PATH_MIGHT_BE_INFEASIBLE</a></td>
<td><a href="./xref/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.html#179">179</a></td>
<td>Medium</td></tr>
<tr class="b">
<td>Possible null pointer dereference of nextVersion on branch that might be infeasible in org.owasp.dependencycheck.analyzer.FalsePositiveAnalyzer.removeSpuriousCPE(Dependency)</td>
<td>STYLE</td>
<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#NP_NULL_ON_SOME_PATH_MIGHT_BE_INFEASIBLE">NP_NULL_ON_SOME_PATH_MIGHT_BE_INFEASIBLE</a></td>
<td><a href="./xref/org/owasp/dependencycheck/analyzer/FalsePositiveAnalyzer.html#179">179</a></td>
<td>Medium</td></tr></table></div><a name="org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer"></a>
<div class="section">
<h3>org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer<a name="org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer"></a></h3>
<table border="0" class="table table-striped">
<tr class="a">
<th>Bug</th>
<th>Category</th>
<th>Details</th>
<th>Line</th>
<th>Priority</th></tr>
<tr class="b">
<td>Found reliance on default encoding in org.owasp.dependencycheck.analyzer.JavaScriptAnalyzer.analyzeFileType(Dependency, Engine): new java.io.FileReader(File)</td>
<td>I18N</td>
<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#DM_DEFAULT_ENCODING">DM_DEFAULT_ENCODING</a></td>
<td><a href="./xref/org/owasp/dependencycheck/analyzer/JavaScriptAnalyzer.html#115">115</a></td>
<td>High</td></tr></table></div><a name="org.owasp.dependencycheck.data.update.task.DownloadTask"></a>
<div class="section">
<h3>org.owasp.dependencycheck.data.update.task.DownloadTask<a name="org.owasp.dependencycheck.data.update.task.DownloadTask"></a></h3>
<table border="0" class="table table-striped">
<tr class="a">
<th>Bug</th>
<th>Category</th>
<th>Details</th>
<th>Line</th>
<th>Priority</th></tr>
<tr class="b">
<td>org.owasp.dependencycheck.data.update.task.DownloadTask.extractGzip(File) may fail to clean up java.io.OutputStream on checked exception</td>
<td>EXPERIMENTAL</td>
<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#OBL_UNSATISFIED_OBLIGATION_EXCEPTION_EDGE">OBL_UNSATISFIED_OBLIGATION_EXCEPTION_EDGE</a></td>
<td><a href="./xref/org/owasp/dependencycheck/data/update/task/DownloadTask.html#279">279</a></td>
<td>Medium</td></tr>
<tr class="a">
<td>exceptional return value of java.io.File.delete() ignored in org.owasp.dependencycheck.data.update.task.DownloadTask.extractGzip(File)</td>
<td>BAD_PRACTICE</td>
<td><a class="externalLink" href="http://findbugs.sourceforge.net/bugDescriptions.html#RV_RETURN_VALUE_IGNORED_BAD_PRACTICE">RV_RETURN_VALUE_IGNORED_BAD_PRACTICE</a></td>
<td><a href="./xref/org/owasp/dependencycheck/data/update/task/DownloadTask.html#266">266</a></td>
<td>Medium</td></tr></table></div>
</div>
</div>
</div>
<hr/>
<footer>
<div class="container-fluid">
<div class="row-fluid">
<p >Copyright &copy; 2012&#x2013;2014
<a href="http://www.owasp.org">OWASP</a>.
All rights reserved.
</p>
</div>
</div>
</footer>
</body>
</html>
Reference in New Issue View Git Blame Copy Permalink