目錄表
FindBug / SpotBugs
Introduction
Articles
Fix bugs
Bad Practice
Dodgy code
Performance
EXPERIMENTAL
STYLE
CORRECTNESS
MALICIOUS_CODE
Security
findbug
,
spotbugs
FindBug / SpotBugs
Introduction
能夠幫你找到code內不好的'味道'與隱藏的bug,下面的內容是我邊修邊記錄的內容。友藏內心的獨白: 真的找的到bug!
(*代表我認為最容易犯的錯!)
Articles
Plugin - Find Security Bugs
Fix bugs
Bad Practice
NM_METHOD_NAMING_CONVENTION
NM_CLASS_NAMING_CONVENTION
Dodgy code
DMI_HARDCODED_ABSOLUTE_FILENAME
ICAST_IDIV_CAST_TO_DOUBLE
Performance
BX_BOXING_IMMEDIATELY_UNBOXED
BX_BOXING_IMMEDIATELY_UNBOXED_TO_PERFORM_COERCION
DM_NEXTINT_VIA_NEXTDOUBLE
DM_NUMBER_CTOR
DM_STRING_CTOR
DM_STRING_VOID_CTOR
SBSC_USE_STRINGBUFFER_CONCATENATION
WMI_WRONG_MAP_ITERATOR
*
EXPERIMENTAL
OBL_UNSATISFIED_OBLIGATION
*
STYLE
DLS_DEAD_LOCAL_STORE
RCN_REDUNDANT_NULLCHECK_OF_NULL_VALUE
CORRECTNESS
NP_NULL_ON_SOME_PATH
BIT_IOR_OF_SIGNED_BYTE
*
MALICIOUS_CODE
EI_EXPOSE_REP
*
EI_EXPOSE_REP2
*
Security
XXE_DOCUMENT - XML parsing vulnerable to XXE (DocumentBuilder)
SSL_CONTEXT - SSLContext needs to be compatible with TLS 1.2
View the discussion thread.