SpotBugs Bug Detector Report
The following document contains the results of SpotBugs
SpotBugs Version is 4.9.8
Threshold is medium
Effort is max
Summary
| Classes | Bugs | Errors | Missing Classes |
|---|---|---|---|
| 40 | 150 | 0 | 0 |
Files
com.googlecode.htmlcompressor.CmdLineCompressor
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Method com.googlecode.htmlcompressor.CmdLineCompressor.createXmlCompressor() declares RuntimeException in throws clause | STYLE | DRE_DECLARED_RUNTIME_EXCEPTION | 518-522 | Medium |
| Unconstrained method com.googlecode.htmlcompressor.CmdLineCompressor.createHtmlCompressor() converts checked exception to unchecked | STYLE | EXS_EXCEPTION_SOFTENING_NO_CONSTRAINTS | 446 | High |
| Unconstrained method com.googlecode.htmlcompressor.CmdLineCompressor.process() converts checked exception to unchecked | STYLE | EXS_EXCEPTION_SOFTENING_NO_CONSTRAINTS | 348 | High |
| Method com.googlecode.htmlcompressor.CmdLineCompressor.createHtmlCompressor() throws alternative exception from catch block without history | CORRECTNESS | LEST_LOST_EXCEPTION_STACK_TRACE | 446 | Medium |
| Method com.googlecode.htmlcompressor.CmdLineCompressor.buildInputOutputMap() uses integer based for loops to iterate over a List | STYLE | LII_LIST_INDEXED_ITERATING | 557 | Medium |
| Method com.googlecode.htmlcompressor.CmdLineCompressor.createHtmlCompressor() makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 485 | High |
| Method com.googlecode.htmlcompressor.CmdLineCompressor.createHtmlCompressor() makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 497 | High |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 245 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 246 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 247 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 248 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 254 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 255 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 256 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 257 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 258 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 259 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 260 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 261 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 262 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 263 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 264 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 267 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 268 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 269 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 270 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 271 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 272 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 273 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 274 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 275 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 276 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 278 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 280 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 281 | Medium |
| Method new com.googlecode.htmlcompressor.CmdLineCompressor(String[]) needlessly boxes a boolean constant | PERFORMANCE | NAB_NEEDLESS_BOOLEAN_CONSTANT_CONVERSION | 285 | Medium |
| Possible null pointer dereference in com.googlecode.htmlcompressor.CmdLineCompressor.buildInputOutputMap() due to return value of called method | STYLE | NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE | 565 | Medium |
| Possible null pointer dereference in com.googlecode.htmlcompressor.CmdLineCompressor.buildInputOutputMap() due to return value of called method | STYLE | NP_NULL_ON_SOME_PATH_FROM_RETURN_VALUE | 581 | Medium |
| Method com.googlecode.htmlcompressor.CmdLineCompressor.buildInputOutputMap() appears to call the same method on the same object redundantly | PERFORMANCE | PRMC_POSSIBLY_REDUNDANT_METHOD_CALLS | 569 | Medium |
| Method com.googlecode.htmlcompressor.CmdLineCompressor.buildInputOutputMap() appears to call the same method on the same object redundantly | PERFORMANCE | PRMC_POSSIBLY_REDUNDANT_METHOD_CALLS | 604 | Medium |
| Method com.googlecode.htmlcompressor.CmdLineCompressor.createHtmlCompressor() does not presize the allocation of a collection | PERFORMANCE | PSC_PRESIZE_COLLECTIONS | 493 | Medium |
| To make log readable, log format ({}) should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 315 | Medium |
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 316 | Medium |
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 395 | Medium |
| To make log readable, log format ({}) should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 397 | Medium |
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 398 | Medium |
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 438 | Medium |
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 445 | Medium |
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 723 | Medium |
| This web server request could be used by an attacker to expose internal services and filesystem. | SECURITY | URLCONNECTION_SSRF_FD | 643 | Medium |
com.googlecode.htmlcompressor.analyzer.HtmlAnalyzer
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Method com.googlecode.htmlcompressor.analyzer.HtmlAnalyzer.analyze(String) makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 229 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 70 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 76 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 84 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 92 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 100 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 108 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 116 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 124 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 132 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 140 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 148 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 156 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 164 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 172 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 180 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 188 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 196 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 204 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 212 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 221 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 225 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 235 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 238 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 248 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 251 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 320 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 321 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 324 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 333 | High |
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 226 | Medium |
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 239 | Medium |
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 252 | Medium |
| To make log readable, log format (\n) should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 319 | Medium |
| To make log readable, log format (\n) should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 323 | Medium |
| To make log readable, log format (\n) should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 334 | Medium |
com.googlecode.htmlcompressor.compressor.ClosureJavaScriptCompressor
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| com.googlecode.htmlcompressor.compressor.ClosureJavaScriptCompressor.getCompilerOptions() may expose internal representation by returning ClosureJavaScriptCompressor.compilerOptions | MALICIOUS_CODE | EI_EXPOSE_REP | 215 | Medium |
| com.googlecode.htmlcompressor.compressor.ClosureJavaScriptCompressor.getExterns() may expose internal representation by returning ClosureJavaScriptCompressor.externs | MALICIOUS_CODE | EI_EXPOSE_REP | 262 | Medium |
| com.googlecode.htmlcompressor.compressor.ClosureJavaScriptCompressor.setCompilerOptions(CompilerOptions) may expose internal representation by storing an externally mutable object into ClosureJavaScriptCompressor.compilerOptions | MALICIOUS_CODE | EI_EXPOSE_REP2 | 229 | Medium |
| com.googlecode.htmlcompressor.compressor.ClosureJavaScriptCompressor.setExterns(List) may expose internal representation by storing an externally mutable object into ClosureJavaScriptCompressor.externs | MALICIOUS_CODE | EI_EXPOSE_REP2 | 286 | Medium |
| Method com.googlecode.htmlcompressor.compressor.ClosureJavaScriptCompressor.compress(String) calls equals on an enum instance | CORRECTNESS | ENMI_EQUALS_ON_ENUM | 107 | Medium |
| Method com.googlecode.htmlcompressor.compressor.ClosureJavaScriptCompressor.compress(String) appears to call the same method on the same object redundantly | PERFORMANCE | PRMC_POSSIBLY_REDUNDANT_METHOD_CALLS | 128 | Medium |
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 113 | Medium |
| Method com.googlecode.htmlcompressor.compressor.ClosureJavaScriptCompressor.compress(String) uses simple loop to copy contents of one collection to another | STYLE | UAA_USE_ADD_ALL | 119 | Medium |
com.googlecode.htmlcompressor.compressor.HtmlCompressor
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| com.googlecode.htmlcompressor.compressor.HtmlCompressor.getPreservePatterns() may expose internal representation by returning HtmlCompressor.preservePatterns | MALICIOUS_CODE | EI_EXPOSE_REP | 1875 | Medium |
| com.googlecode.htmlcompressor.compressor.HtmlCompressor.getStatistics() may expose internal representation by returning HtmlCompressor.statistics | MALICIOUS_CODE | EI_EXPOSE_REP | 2295 | Medium |
| com.googlecode.htmlcompressor.compressor.HtmlCompressor.setPreservePatterns(List) may expose internal representation by storing an externally mutable object into HtmlCompressor.preservePatterns | MALICIOUS_CODE | EI_EXPOSE_REP2 | 1893 | Medium |
| Method com.googlecode.htmlcompressor.compressor.HtmlCompressor.removeSurroundingSpaces(String) makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 904 | High |
| Method com.googlecode.htmlcompressor.compressor.HtmlCompressor.removeSurroundingSpaces(String) makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 906 | High |
| Method com.googlecode.htmlcompressor.compressor.HtmlCompressor.removeSurroundingSpaces(String) makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 908 | High |
| Method com.googlecode.htmlcompressor.compressor.HtmlCompressor.<static initializer for HtmlCompressor>() passes constant String of length 1 to character overridden method | PERFORMANCE | UCPM_USE_CHARACTER_PARAMETERIZED_METHOD | 366 | Medium |
| Method com.googlecode.htmlcompressor.compressor.HtmlCompressor.<static initializer for HtmlCompressor>() passes constant String of length 1 to character overridden method | PERFORMANCE | UCPM_USE_CHARACTER_PARAMETERIZED_METHOD | 371 | Medium |
| Method com.googlecode.htmlcompressor.compressor.HtmlCompressor.removeSurroundingSpaces(String) passes constant String of length 1 to character overridden method | PERFORMANCE | UCPM_USE_CHARACTER_PARAMETERIZED_METHOD | 912 | Medium |
| Method com.googlecode.htmlcompressor.compressor.HtmlCompressor.removeSpacesInsideTags(String) stores return result in local before immediately returning it | STYLE | USBR_UNNECESSARY_STORE_BEFORE_RETURN | 982 | Medium |
com.googlecode.htmlcompressor.compressor.HtmlCompressorStatistics
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| com.googlecode.htmlcompressor.compressor.HtmlCompressorStatistics.getCompressedMetrics() may expose internal representation by returning HtmlCompressorStatistics.compressedMetrics | MALICIOUS_CODE | EI_EXPOSE_REP | 66 | Medium |
| com.googlecode.htmlcompressor.compressor.HtmlCompressorStatistics.getOriginalMetrics() may expose internal representation by returning HtmlCompressorStatistics.originalMetrics | MALICIOUS_CODE | EI_EXPOSE_REP | 45 | Medium |
| com.googlecode.htmlcompressor.compressor.HtmlCompressorStatistics.setCompressedMetrics(HtmlMetrics) may expose internal representation by storing an externally mutable object into HtmlCompressorStatistics.compressedMetrics | MALICIOUS_CODE | EI_EXPOSE_REP2 | 76 | Medium |
| com.googlecode.htmlcompressor.compressor.HtmlCompressorStatistics.setOriginalMetrics(HtmlMetrics) may expose internal representation by storing an externally mutable object into HtmlCompressorStatistics.originalMetrics | MALICIOUS_CODE | EI_EXPOSE_REP2 | 55 | Medium |
com.googlecode.htmlcompressor.compressor.HtmlCompressorTest
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 461 | Medium |
com.googlecode.htmlcompressor.compressor.XmlCompressor
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Method com.googlecode.htmlcompressor.compressor.XmlCompressor.preserveBlocks(String, List) stores return result in local before immediately returning it | STYLE | USBR_UNNECESSARY_STORE_BEFORE_RETURN | 124 | Medium |
| Method com.googlecode.htmlcompressor.compressor.XmlCompressor.processXml(String) stores return result in local before immediately returning it | STYLE | USBR_UNNECESSARY_STORE_BEFORE_RETURN | 169 | Medium |
| Method com.googlecode.htmlcompressor.compressor.XmlCompressor.removeSpacesInsideTags(String) stores return result in local before immediately returning it | STYLE | USBR_UNNECESSARY_STORE_BEFORE_RETURN | 189 | Medium |
| Method com.googlecode.htmlcompressor.compressor.XmlCompressor.returnBlocks(String, List) stores return result in local before immediately returning it | STYLE | USBR_UNNECESSARY_STORE_BEFORE_RETURN | 148 | Medium |
com.googlecode.htmlcompressor.compressor.XmlCompressorTest
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 128 | Medium |
com.googlecode.htmlcompressor.compressor.YuiCssCompressor
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 51 | Medium |
com.googlecode.htmlcompressor.compressor.YuiJavaScriptCompressor
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 67 | Medium |
com.googlecode.htmlcompressor.taglib.CssCompressorTag
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 74 | Medium |
com.googlecode.htmlcompressor.taglib.HtmlCompressorTag
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Method com.googlecode.htmlcompressor.taglib.HtmlCompressorTag.doEndTag() makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 161 | High |
| Method com.googlecode.htmlcompressor.taglib.HtmlCompressorTag.doEndTag() makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 163 | High |
| Method com.googlecode.htmlcompressor.taglib.HtmlCompressorTag.doEndTag() makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 165 | High |
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 178 | Medium |
com.googlecode.htmlcompressor.taglib.JavaScriptCompressorTag
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Method com.googlecode.htmlcompressor.taglib.JavaScriptCompressorTag.doEndTag() makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 84 | High |
| Method com.googlecode.htmlcompressor.taglib.JavaScriptCompressorTag.doEndTag() makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 87 | High |
| Method com.googlecode.htmlcompressor.taglib.JavaScriptCompressorTag.doEndTag() makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 90 | High |
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 119 | Medium |
com.googlecode.htmlcompressor.taglib.XmlCompressorTag
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| To make log readable, log format () should contain non-sign character. | BAD_PRACTICE | SLF4J_SIGN_ONLY_FORMAT | 68 | Medium |
com.googlecode.htmlcompressor.velocity.CssCompressorDirective
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Constrained method com.googlecode.htmlcompressor.velocity.CssCompressorDirective.render(InternalContextAdapter, Writer, Node) converts checked exception to unchecked instead of another allowable checked exception | STYLE | EXS_EXCEPTION_SOFTENING_HAS_CHECKED | 90 | Medium |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 89 | High |
com.googlecode.htmlcompressor.velocity.HtmlCompressorDirective
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Constrained method com.googlecode.htmlcompressor.velocity.HtmlCompressorDirective.render(InternalContextAdapter, Writer, Node) converts checked exception to unchecked instead of another allowable checked exception | STYLE | EXS_EXCEPTION_SOFTENING_HAS_CHECKED | 125 | Medium |
| Method com.googlecode.htmlcompressor.velocity.HtmlCompressorDirective.init(RuntimeServices, InternalContextAdapter, Node) makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 93 | High |
| Method com.googlecode.htmlcompressor.velocity.HtmlCompressorDirective.init(RuntimeServices, InternalContextAdapter, Node) makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 98 | High |
| Method com.googlecode.htmlcompressor.velocity.HtmlCompressorDirective.init(RuntimeServices, InternalContextAdapter, Node) makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 100 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 124 | High |
com.googlecode.htmlcompressor.velocity.JavaScriptCompressorDirective
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Constrained method com.googlecode.htmlcompressor.velocity.JavaScriptCompressorDirective.render(InternalContextAdapter, Writer, Node) converts checked exception to unchecked instead of another allowable checked exception | STYLE | EXS_EXCEPTION_SOFTENING_HAS_CHECKED | 137 | Medium |
| Method com.googlecode.htmlcompressor.velocity.JavaScriptCompressorDirective.render(InternalContextAdapter, Writer, Node) makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 107 | High |
| Method com.googlecode.htmlcompressor.velocity.JavaScriptCompressorDirective.render(InternalContextAdapter, Writer, Node) makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 110 | High |
| Method com.googlecode.htmlcompressor.velocity.JavaScriptCompressorDirective.render(InternalContextAdapter, Writer, Node) makes literal string comparisons passing the literal as an argument | STYLE | LSC_LITERAL_STRING_COMPARISON | 113 | High |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 136 | High |
com.googlecode.htmlcompressor.velocity.XmlCompressorDirective
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Constrained method com.googlecode.htmlcompressor.velocity.XmlCompressorDirective.render(InternalContextAdapter, Writer, Node) converts checked exception to unchecked instead of another allowable checked exception | STYLE | EXS_EXCEPTION_SOFTENING_HAS_CHECKED | 78 | Medium |
| Format should be constant. Use placeholder to reduce the needless cost of parameter construction. see http://www.slf4j.org/faq.html#logging_performance | CORRECTNESS | SLF4J_FORMAT_SHOULD_BE_CONST | 77 | High |
jargs.gnu.CmdLineParser
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| jargs.gnu.CmdLineParser.getRemainingArgs() may expose internal representation by returning CmdLineParser.remainingArgs | MALICIOUS_CODE | EI_EXPOSE_REP | 760 | Medium |
| Method jargs.gnu.CmdLineParser.addValue(CmdLineParser$Option, Object) manually casts the right hand side of an assignment more specifically than needed | CORRECTNESS | OC_OVERZEALOUS_CASTING | 883 | Medium |
| Method jargs.gnu.CmdLineParser.getOptionValue(CmdLineParser$Option, Object) manually casts the right hand side of an assignment more specifically than needed | CORRECTNESS | OC_OVERZEALOUS_CASTING | 718 | Medium |
| Method jargs.gnu.CmdLineParser.parse(String[], Locale) does not presize the allocation of a collection | PERFORMANCE | PSC_PRESIZE_COLLECTIONS | 864 | Medium |
jargs.gnu.CmdLineParser$Option
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class jargs.gnu.CmdLineParser$Option at new jargs.gnu.CmdLineParser$Option(char, String, boolean) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 269 | Medium |
| Exception thrown in class jargs.gnu.CmdLineParser$Option at new jargs.gnu.CmdLineParser$Option(String, String, boolean) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 284 | Medium |
| Exception thrown in class jargs.gnu.CmdLineParser$Option at new jargs.gnu.CmdLineParser$Option(String, boolean) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 255 | Medium |
jargs.gnu.CmdLineParser$Option$DoubleOption
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Method jargs.gnu.CmdLineParser$Option$DoubleOption.parseValue(String, Locale) throws alternative exception from catch block without history | CORRECTNESS | LEST_LOST_EXCEPTION_STACK_TRACE | 506 | Medium |
jargs.gnu.CmdLineParser$Option$IntegerOption
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Method jargs.gnu.CmdLineParser$Option$IntegerOption.parseValue(String, Locale) throws alternative exception from catch block without history | CORRECTNESS | LEST_LOST_EXCEPTION_STACK_TRACE | 424 | Medium |
jargs.gnu.CmdLineParser$Option$LongOption
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Method jargs.gnu.CmdLineParser$Option$LongOption.parseValue(String, Locale) throws alternative exception from catch block without history | CORRECTNESS | LEST_LOST_EXCEPTION_STACK_TRACE | 464 | Medium |