Explore
76-100 of 159
JUnit 4: Incorrect method signature for annotation
The annotations on this method require it to have a void return type and not be private.
- error
- java
- kotlin
- testing
- framework specific
- JUnit 4
- quality
JUnit 4: Incorrect method signature for annotation (Class)
The annotations on this method require it to have a void return type, not be private, and be static.
- error
- java
- kotlin
- testing
- framework specific
- JUnit 4
- quality
JUnit 4: Incorrect method signature for annotation (Class - arguments)
The annotations on this method require it to have no arguments.
- error
- java
- testing
- framework specific
- JUnit 4
- quality
JUnit 4: @Test annotation missing
Method with assertions is missing @Test annotation
- error
- java
- testing
- framework specific
- JUnit 4
- quality
JUnit 5: Incorrect method signature for annotation (All)
The annotations on this method require it to have a void return type, not be private, and be static.
- error
- java
- kotlin
- testing
- framework specific
- JUnit 5
- quality
JUnit 5: Incorrect method signature for annotation (Each)
The annotations on this method require it to have a void return type, not be private, and not be static.
- error
- java
- kotlin
- testing
- framework specific
- JUnit 5
- quality
JUnit 5: MethodSourceProvider should be static
Methods that return a Stream of Arguments should be as static
- error
- java
- kotlin
- testing
- framework specific
- JUnit 5
- quality
JUnit 5: @Nested annotation missing
Inner classes that contain test information should be marked with the @Nested annotation
- error
- java
- testing
- framework specific
- JUnit 5
- quality
JUnit 5: @Test annotation missing
Method with assertions is missing @Test annotation
- error
- java
- testing
- framework specific
- JUnit 5
- quality
Manifest best practices: Disable Backups
Enabling backups could lead to undesired manipulation
- error
- xml
- security
- framework specific
- mobile
- Android
Manifest best practices: disable cleartext traffic
When android:usesCleartextTraffic="true" is set the application will allow clear text traffic which could lead to data leakage
- error
- xml
- security
- framework specific
- mobile
- Android
Manifest best practices: explicit exported components
When android:exported is set to true any application will be able to call this component.
- error
- xml
- security
- framework specific
- mobile
- Android
Missing annotation in controller class
This class is missing a @Controller or @RestController annotation
- error
- java
- Spring
- framework specific
- web
- Spring Web
- quality
Missing annotation in update query
Queries performing write operations should have the @Modifying annotation.
- error
- java
- Spring
- framework specific
- Spring Data
- quality
MongoDB: _id NoSQL Injection
Do not use string concatenation in where filters
- error
- java
- security
- NoSQL
- framework specific
- MongoDB
- injection
- OWASP Top 10
Not releasing AmazonDynamoDbClient
Call the shutdown() method to release the AmazonDynamoDbClient
- error
- java
- framework specific
- AWS
- quality
Not releasing DynamoDbClient
Call the close() method to release the DynamoDbClient
- error
- java
- framework specific
- AWS
- quality
Random Number Generation: Do not manually define seeds for SecureRandom class
Do not use your own defined seeds
- error
- java
- security
Regex Injection
Use Pattern#quote to include untrusted input in regexes.
- error
- java
- security
- SEI CERT
- Java basic
- injection
- OWASP Top 10
RestTemplateBuilder#requestFactory(ClientHttpRequestFactory) is deprecated
RestTemplateBuilder#requestFactory(ClientHttpRequestFactory) is deprecated
- error
- java
- Spring Boot
- Spring
Secure Random: Do not use initializer with custom seed
Do not use your own defined seeds
- error
- java
- security
Secure Transport: use RequiresSecure to enforce HTTPS
Serve requests over HTTPS instead of unencrypted HTTP
- error
- java
- Spring
- security
- framework specific
- web
- Spring Security
- OWASP Top 10
Security Misconfiguration: Content sniffing protection
Prevent MIME sniffing by disabling contentTypeOptions
- error
- java
- Spring
- security
- framework specific
- web
- Spring Security
- OWASP Top 10
Security Misconfiguration: Disabled Security Settings: CookieCsrfTokenRepository#withHttpOnlyFalse
Make sure to set HttpOnly to true to protect against CSRF or remove it
- error
- java
- Spring
- security
- framework specific
- web
- Spring Security
- CSRF
- OWASP Top 10
Security Misconfiguration: Disable Security Features - HSTS
Enforce HSTS protection against vulnerabilities over HTTP
- error
- java
- Spring
- security
- framework specific
- web
- Spring Security
- OWASP Top 10