The following document contains the results of FindBugs Report
FindBugs Version is 1.3.9
Threshold is
Effort is min
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.apache.commons.discovery.ant.ServiceDiscoveryTask.getServiceInfo() may expose internal representation by returning ServiceDiscoveryTask.drivers | MALICIOUS_CODE | EI_EXPOSE_REP | 64 | Medium |
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.apache.commons.discovery.jdk.JDK11Hooks$1.getNext() invokes java.net.URL.equals(Object), which blocks to do domain name resolution | PERFORMANCE | DMI_BLOCKING_METHODS_ON_URL | 125 | High |
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.apache.commons.discovery.jdk.JDK12Hooks$2.getNext() invokes java.net.URL.equals(Object), which blocks to do domain name resolution | PERFORMANCE | DMI_BLOCKING_METHODS_ON_URL | 212 | High |
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.apache.commons.discovery.log.SimpleLog.logLevel should be package protected | MALICIOUS_CODE | MS_PKGPROTECT | 92 | Medium |
| org.apache.commons.discovery.log.SimpleLog.dateFormatter isn't final but should be | MALICIOUS_CODE | MS_SHOULD_BE_FINAL | 89 | High |
| org.apache.commons.discovery.log.SimpleLog.showDateTime isn't final but should be | MALICIOUS_CODE | MS_SHOULD_BE_FINAL | 86 | Medium |
| org.apache.commons.discovery.log.SimpleLog.showLogName isn't final but should be | MALICIOUS_CODE | MS_SHOULD_BE_FINAL | 77 | Medium |
| org.apache.commons.discovery.log.SimpleLog.showShortName isn't final but should be | MALICIOUS_CODE | MS_SHOULD_BE_FINAL | 83 | Medium |
| Call to method of static java.text.DateFormat in org.apache.commons.discovery.log.SimpleLog.log(int, Object, Throwable) | MT_CORRECTNESS | STCAL_INVOKE_ON_STATIC_DATE_FORMAT_INSTANCE | 205 | Medium |
| Found static field of type java.text.DateFormat in org.apache.commons.discovery.log.SimpleLog.dateFormatter | MT_CORRECTNESS | STCAL_STATIC_SIMPLE_DATE_FORMAT_INSTANCE | Not available | Medium |
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.apache.commons.discovery.resource.classes.DiscoverClasses$1.history is or uses a map or set of URLs, which can be a performance hog | PERFORMANCE | DMI_COLLECTION_OF_URLS | Not available | High |
| org.apache.commons.discovery.resource.classes.DiscoverClasses$1.getNextClass() is or uses a map or set of URLs, which can be a performance hog | PERFORMANCE | DMI_COLLECTION_OF_URLS | 127 | High |
| Exception is caught when Exception is not thrown in org.apache.commons.discovery.resource.classes.DiscoverClasses$1.getNextClass() | STYLE | REC_CATCH_EXCEPTION | 121 | Medium |
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| new org.apache.commons.discovery.tools.SPInterface(Class, String, Class[], Object[]) may expose internal representation by storing an externally mutable object into SPInterface.paramClasses | MALICIOUS_CODE | EI_EXPOSE_REP2 | 192 | Medium |
| new org.apache.commons.discovery.tools.SPInterface(Class, String, Class[], Object[]) may expose internal representation by storing an externally mutable object into SPInterface.params | MALICIOUS_CODE | EI_EXPOSE_REP2 | 193 | Medium |