SpotBugs Bug Detector Report
The following document contains the results of SpotBugs
SpotBugs Version is 4.9.4
Threshold is medium
Effort is max
Summary
| Classes |
Bugs |
Errors |
Missing Classes |
| 16 |
6 |
0 |
0 |
org.forgerock.audit.handlers.jms.JmsAuditEventHandlerConfiguration
| Bug |
Category |
Details |
Line |
Priority |
| org.forgerock.audit.handlers.jms.JmsAuditEventHandlerConfiguration.getBatch() may expose internal representation by returning JmsAuditEventHandlerConfiguration.batch |
MALICIOUS_CODE |
EI_EXPOSE_REP |
113 |
Medium |
| org.forgerock.audit.handlers.jms.JmsAuditEventHandlerConfiguration.getJndi() may expose internal representation by returning JmsAuditEventHandlerConfiguration.jndi |
MALICIOUS_CODE |
EI_EXPOSE_REP |
130 |
Medium |
| org.forgerock.audit.handlers.jms.JmsAuditEventHandlerConfiguration.setBatch(BatchPublisherConfiguration) may expose internal representation by storing an externally mutable object into JmsAuditEventHandlerConfiguration.batch |
MALICIOUS_CODE |
EI_EXPOSE_REP2 |
122 |
Medium |
| org.forgerock.audit.handlers.jms.JmsAuditEventHandlerConfiguration.setJndi(JmsAuditEventHandlerConfiguration$JndiConfiguration) may expose internal representation by storing an externally mutable object into JmsAuditEventHandlerConfiguration.jndi |
MALICIOUS_CODE |
EI_EXPOSE_REP2 |
138 |
Medium |
org.forgerock.audit.handlers.jms.JmsResourceManager
| Bug |
Category |
Details |
Line |
Priority |
| Exception thrown in class org.forgerock.audit.handlers.jms.JmsResourceManager at new org.forgerock.audit.handlers.jms.JmsResourceManager(JmsAuditEventHandlerConfiguration, JmsContextManager) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. |
BAD_PRACTICE |
CT_CONSTRUCTOR_THROW |
80 |
Medium |
org.forgerock.audit.handlers.jms.JndiJmsContextManager
| Bug |
Category |
Details |
Line |
Priority |
| Exception thrown in class org.forgerock.audit.handlers.jms.JndiJmsContextManager at new org.forgerock.audit.handlers.jms.JndiJmsContextManager(JmsAuditEventHandlerConfiguration$JndiConfiguration) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks. |
BAD_PRACTICE |
CT_CONSTRUCTOR_THROW |
57 |
Medium |
