SpotBugs Bug Detector Report
The following document contains the results of SpotBugs
SpotBugs Version is 4.9.4
Threshold is medium
Effort is max
Summary
| Classes | Bugs | Errors | Missing Classes |
|---|---|---|---|
| 12 | 9 | 0 | 0 |
Files
| Class | Bugs |
|---|---|
| org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandler | 3 |
| org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandlerConfiguration | 6 |
org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandler
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| Exception thrown in class org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandler at new org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandler(ElasticsearchAuditEventHandlerConfiguration, EventTopicsMetaData, Client) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. | BAD_PRACTICE | CT_CONSTRUCTOR_THROW | 133 | Medium |
| Boxing/unboxing to parse a primitive org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandler.queryEvents(Context, String, QueryRequest, QueryResourceHandler) | PERFORMANCE | DM_BOXED_PRIMITIVE_FOR_PARSING | 200 | High |
| Found reliance on default encoding in org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandler.buildBasicAuthHeaderValue(): String.getBytes() | I18N | DM_DEFAULT_ENCODING | 427 | High |
org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandlerConfiguration
| Bug | Category | Details | Line | Priority |
|---|---|---|---|---|
| org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandlerConfiguration.getBuffering() may expose internal representation by returning ElasticsearchAuditEventHandlerConfiguration.buffering | MALICIOUS_CODE | EI_EXPOSE_REP | 102 | Medium |
| org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandlerConfiguration.getConnection() may expose internal representation by returning ElasticsearchAuditEventHandlerConfiguration.connection | MALICIOUS_CODE | EI_EXPOSE_REP | 66 | Medium |
| org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandlerConfiguration.getIndexMapping() may expose internal representation by returning ElasticsearchAuditEventHandlerConfiguration.indexMapping | MALICIOUS_CODE | EI_EXPOSE_REP | 84 | Medium |
| org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandlerConfiguration.setBuffering(ElasticsearchAuditEventHandlerConfiguration$EventBufferingConfiguration) may expose internal representation by storing an externally mutable object into ElasticsearchAuditEventHandlerConfiguration.buffering | MALICIOUS_CODE | EI_EXPOSE_REP2 | 111 | Medium |
| org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandlerConfiguration.setConnection(ElasticsearchAuditEventHandlerConfiguration$ConnectionConfiguration) may expose internal representation by storing an externally mutable object into ElasticsearchAuditEventHandlerConfiguration.connection | MALICIOUS_CODE | EI_EXPOSE_REP2 | 75 | Medium |
| org.forgerock.audit.handlers.elasticsearch.ElasticsearchAuditEventHandlerConfiguration.setIndexMapping(ElasticsearchAuditEventHandlerConfiguration$IndexMappingConfiguration) may expose internal representation by storing an externally mutable object into ElasticsearchAuditEventHandlerConfiguration.indexMapping | MALICIOUS_CODE | EI_EXPOSE_REP2 | 93 | Medium |