Explore

Filters (0) Clear filters
Languages
Level
Tags

1-25 of 159

Android WebView best practices: Disable Content Access

Enabling content access in the webview could lead to misuse

  • error
  • java
  • security
  • framework specific
  • Android
  • mobile
  • Android security set
Android WebView best practices: Disable Content Access (setter)

Enabling content access in the webview could lead to misuse

  • error
  • java
  • security
  • framework specific
  • Android
  • mobile
  • Android security set
Android WebView best practices: Insecure mixed content mode

Insecure content may be allowed to be loaded by a secure origin

  • error
  • java
  • security
  • framework specific
  • Android
  • mobile
  • Android security set
Android WebView best practices: Set mixed content mode

WebView setting with security implications

  • error
  • java
  • security
  • framework specific
  • Android
  • mobile
  • Android security set
assertThatThrownBy won't use description if the code doesn't throw

assertThatThrownBy won't use description if the code doesn't throw

  • error
  • java
  • AssertJ
  • framework specific
  • quality
Avoid hardcoded secrets

Secrets should not be stored in code

  • error
  • java
  • security
  • framework specific
  • AWS
Avoid hardcoded secrets when using password encoders

Using passwordencoders in combination with hardcoded secrets is security sensitive

  • error
  • java
  • Spring
  • security
  • framework specific
  • Spring Security
Avoid hardcoded secrets when using the Encryptors class

Using the Encryptors class in combination with hardcoded secrets is security sensitive

  • error
  • java
  • Spring
  • security
  • framework specific
  • Spring Security
Code Injection: ExifInterface can lead to DoS or RCE

This text will be shown as a tooltip when code violates this recipe

  • error
  • java
  • security
  • framework specific
  • mobile
  • Android
Code Injection: Prevent use of DexClassLoader

Do not use the DexClassLoader to dynamically load code

  • error
  • java
  • security
  • framework specific
  • mobile
  • Android
Command Injection: Untrusted data in ProcessBuilder command

This call to ProcessBuilder#command contains untrusted input. Consider sanitizing the untrusted input.

  • error
  • java
  • security
  • Java basic
  • injection
Command Injection: Untrusted data in ProcessBuilder command - Add

This call to ProcessBuilder#command contains untrusted input. Consider sanitizing the untrusted input.

  • error
  • java
  • security
  • Java basic
  • injection
Convert DateTimeFormatter withZoneUTC to java.time equivalent

Convert DateTimeFormatter withZoneUTC to java.time equivalent

  • error
  • java
  • framework specific
  • java.time
  • Joda-Time
  • quality
Convert parseDateTime to java.time version

Convert parseDateTime to java.time version

  • error
  • java
  • framework specific
  • java.time
  • Joda-Time
  • quality
Convert parseLocalDateTime to java.time version

Convert parseLocalDateTime to java.time version

  • error
  • java
  • framework specific
  • java.time
  • Joda-Time
  • quality
Convert parseLocalDate to java.time version

Convert parseLocalDate to java.time version

  • error
  • java
  • framework specific
  • java.time
  • Joda-Time
  • quality
Convert parseLocalTime to java.time version

Convert parseLocalTime to java.time version

  • error
  • java
  • framework specific
  • java.time
  • Joda-Time
  • quality
Convert parseMillis to java.time version

Convert parseMillis to java.time version

  • error
  • java
  • framework specific
  • java.time
  • Joda-Time
  • quality
Convert parseMutableDateTime to java.time

Convert parseMutableDateTime to java.time

  • error
  • java
  • framework specific
  • java.time
  • Joda-Time
  • quality
Convert print(Long) to format()

Convert print(Long) to format()

  • error
  • java
  • framework specific
  • java.time
  • Joda-Time
  • quality
Convert printTo(appendable, long) to format(TemporalAccessor, Appendable)

Convert printTo to formatTo

  • error
  • java
  • framework specific
  • java.time
  • Joda-Time
  • quality
Convert print() to format()

Convert print() to format()

  • error
  • java
  • framework specific
  • java.time
  • Joda-Time
  • quality
Convert printTo() to formatTo()

Convert printTo() to formatTo()

  • error
  • java
  • framework specific
  • java.time
  • Joda-Time
  • quality
Crypto: Cipher: Insecure Asymmetric Cryptographic Algorithm

This cryptographic algorithm is not recommended

  • error
  • java
  • security
  • basic protection set
Crypto: KeyAgreement: Insecure Cryptographic Algorithm

This cryptographic algorithm is insecure

  • error
  • java
  • security
  • basic protection set