SpotBugs Bug Detector Report
The following document contains the results of SpotBugs
SpotBugs Version is 4.9.4
Threshold is medium
Effort is max
Summary
| Classes |
Bugs |
Errors |
Missing Classes |
| 44 |
21 |
0 |
0 |
org.forgerock.selfservice.stages.email.VerifyEmailAccountConfig
| Bug |
Category |
Details |
Line |
Priority |
| org.forgerock.selfservice.stages.email.VerifyEmailAccountConfig.getEmailServiceParameters() may expose internal representation by returning VerifyEmailAccountConfig.emailServiceParameters |
MALICIOUS_CODE |
EI_EXPOSE_REP |
76 |
Medium |
| org.forgerock.selfservice.stages.email.VerifyEmailAccountConfig.getMessageTranslations() may expose internal representation by returning VerifyEmailAccountConfig.messageTranslations |
MALICIOUS_CODE |
EI_EXPOSE_REP |
122 |
Medium |
| org.forgerock.selfservice.stages.email.VerifyEmailAccountConfig.getSubjectTranslations() may expose internal representation by returning VerifyEmailAccountConfig.subjectTranslations |
MALICIOUS_CODE |
EI_EXPOSE_REP |
100 |
Medium |
| org.forgerock.selfservice.stages.email.VerifyEmailAccountConfig.setEmailServiceParameters(Map) may expose internal representation by storing an externally mutable object into VerifyEmailAccountConfig.emailServiceParameters |
MALICIOUS_CODE |
EI_EXPOSE_REP2 |
89 |
Medium |
| org.forgerock.selfservice.stages.email.VerifyEmailAccountConfig.setMessageTranslations(Map) may expose internal representation by storing an externally mutable object into VerifyEmailAccountConfig.messageTranslations |
MALICIOUS_CODE |
EI_EXPOSE_REP2 |
134 |
Medium |
| org.forgerock.selfservice.stages.email.VerifyEmailAccountConfig.setSubjectTranslations(Map) may expose internal representation by storing an externally mutable object into VerifyEmailAccountConfig.subjectTranslations |
MALICIOUS_CODE |
EI_EXPOSE_REP2 |
112 |
Medium |
org.forgerock.selfservice.stages.kba.KbaConfig
| Bug |
Category |
Details |
Line |
Priority |
| org.forgerock.selfservice.stages.kba.KbaConfig.getQuestions() may expose internal representation by returning KbaConfig.questions |
MALICIOUS_CODE |
EI_EXPOSE_REP |
60 |
Medium |
| org.forgerock.selfservice.stages.kba.KbaConfig.setQuestions(Map) may expose internal representation by storing an externally mutable object into KbaConfig.questions |
MALICIOUS_CODE |
EI_EXPOSE_REP2 |
72 |
Medium |
org.forgerock.selfservice.stages.kba.SecurityAnswerDefinitionStage
| Bug |
Category |
Details |
Line |
Priority |
| Null passed for non-null parameter of convertToCollections(Map) in org.forgerock.selfservice.stages.kba.SecurityAnswerDefinitionStage.gatherInitialRequirements(ProcessContext, SecurityAnswerDefinitionConfig) |
CORRECTNESS |
NP_NULL_PARAM_DEREF |
69 |
Medium |
org.forgerock.selfservice.stages.terms.TermsAndConditionsConfig
| Bug |
Category |
Details |
Line |
Priority |
| org.forgerock.selfservice.stages.terms.TermsAndConditionsConfig.getTermsTranslations() may expose internal representation by returning TermsAndConditionsConfig.termsTranslations |
MALICIOUS_CODE |
EI_EXPOSE_REP |
45 |
Medium |
| org.forgerock.selfservice.stages.terms.TermsAndConditionsConfig.setTermsTranslations(Map) may expose internal representation by storing an externally mutable object into TermsAndConditionsConfig.termsTranslations |
MALICIOUS_CODE |
EI_EXPOSE_REP2 |
57 |
Medium |
org.forgerock.selfservice.stages.tokenhandlers.JwtTokenHandlerConfig
| Bug |
Category |
Details |
Line |
Priority |
| Found reliance on default encoding in org.forgerock.selfservice.stages.tokenhandlers.JwtTokenHandlerConfig.getSharedKey(): String.getBytes() |
I18N |
DM_DEFAULT_ENCODING |
69 |
High |
org.forgerock.selfservice.stages.user.EmailUsernameConfig
| Bug |
Category |
Details |
Line |
Priority |
| org.forgerock.selfservice.stages.user.EmailUsernameConfig.getEmailServiceParameters() may expose internal representation by returning EmailUsernameConfig.emailServiceParameters |
MALICIOUS_CODE |
EI_EXPOSE_REP |
73 |
Medium |
| org.forgerock.selfservice.stages.user.EmailUsernameConfig.getMessageTranslations() may expose internal representation by returning EmailUsernameConfig.messageTranslations |
MALICIOUS_CODE |
EI_EXPOSE_REP |
119 |
Medium |
| org.forgerock.selfservice.stages.user.EmailUsernameConfig.getSubjectTranslations() may expose internal representation by returning EmailUsernameConfig.subjectTranslations |
MALICIOUS_CODE |
EI_EXPOSE_REP |
97 |
Medium |
| org.forgerock.selfservice.stages.user.EmailUsernameConfig.setEmailServiceParameters(Map) may expose internal representation by storing an externally mutable object into EmailUsernameConfig.emailServiceParameters |
MALICIOUS_CODE |
EI_EXPOSE_REP2 |
86 |
Medium |
| org.forgerock.selfservice.stages.user.EmailUsernameConfig.setMessageTranslations(Map) may expose internal representation by storing an externally mutable object into EmailUsernameConfig.messageTranslations |
MALICIOUS_CODE |
EI_EXPOSE_REP2 |
131 |
Medium |
| org.forgerock.selfservice.stages.user.EmailUsernameConfig.setSubjectTranslations(Map) may expose internal representation by storing an externally mutable object into EmailUsernameConfig.subjectTranslations |
MALICIOUS_CODE |
EI_EXPOSE_REP2 |
109 |
Medium |
org.forgerock.selfservice.stages.user.UserQueryConfig
| Bug |
Category |
Details |
Line |
Priority |
| org.forgerock.selfservice.stages.user.UserQueryConfig.getValidQueryFields() may expose internal representation by returning UserQueryConfig.validQueryFields |
MALICIOUS_CODE |
EI_EXPOSE_REP |
48 |
Medium |
| org.forgerock.selfservice.stages.user.UserQueryConfig.setValidQueryFields(Set) may expose internal representation by storing an externally mutable object into UserQueryConfig.validQueryFields |
MALICIOUS_CODE |
EI_EXPOSE_REP2 |
60 |
Medium |
org.forgerock.selfservice.stages.utils.LocaleUtils
| Bug |
Category |
Details |
Line |
Priority |
| org.forgerock.selfservice.stages.utils.LocaleUtils.getTranslationFromLocaleMap(PreferredLocales, Map) makes inefficient use of keySet iterator instead of entrySet iterator |
PERFORMANCE |
WMI_WRONG_MAP_ITERATOR |
63 |
Medium |
