knox-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From kris...@apache.org
Subject [1/2] knox git commit: KNOX-1441 - Enable spotbugs for static build checking
Date Tue, 25 Sep 2018 00:07:11 GMT
Repository: knox
Updated Branches:
  refs/heads/master 16e1b6243 -> 5bf7bc5d0


http://git-wip-us.apache.org/repos/asf/knox/blob/5bf7bc5d/src/spotbugs-filter.xml
----------------------------------------------------------------------
diff --git a/src/spotbugs-filter.xml b/src/spotbugs-filter.xml
new file mode 100644
index 0000000..c779bac
--- /dev/null
+++ b/src/spotbugs-filter.xml
@@ -0,0 +1,69 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!--
+Licensed to the Apache Software Foundation (ASF) under one or more
+contributor license agreements.  See the NOTICE file distributed with
+this work for additional information regarding copyright ownership.
+The ASF licenses this file to you under the Apache License, Version 2.0
+(the "License"); you may not use this file except in compliance with
+the License.  You may obtain a copy of the License at
+
+http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+-->
+<FindBugsFilter
+  xmlns="https://github.com/spotbugs/filter/3.0.0"
+  xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+  xsi:schemaLocation="https://github.com/spotbugs/filter/3.0.0 https://raw.githubusercontent.com/spotbugs/spotbugs/3.1.0/spotbugs/etc/findbugsfilter.xsd">
+
+  <Match>
+    <Class name="org.apache.knox.gateway.i18n.messages.loggers.sout.SoutMessageLoggerFactory"
/>
+    <Bug pattern="ST_WRITE_TO_STATIC_FROM_INSTANCE_METHOD" />
+  </Match>
+
+  <Match>
+    <Class name="org.apache.knox.gateway.i18n.messages.loggers.test.TestMessageLoggerFactory"
/>
+    <Bug pattern="ST_WRITE_TO_STATIC_FROM_INSTANCE_METHOD" />
+  </Match>
+
+  <Match>
+    <Class name="org.apache.knox.gateway.security.ldap.SimpleLdapDirectoryServer" />
+    <Bug pattern="PATH_TRAVERSAL_IN" />
+  </Match>
+
+  <Match>
+    <Class name="org.apache.knox.gateway.services.security.impl.X509CertificateUtil" />
+    <Method name="writeCertificateToJKS" />
+    <Bug pattern="HARD_CODE_PASSWORD" />
+  </Match>
+
+  <Match>
+    <Class name="org.apache.knox.gateway.GatewayForwardingServlet" />
+    <Bug pattern="REQUESTDISPATCHER_FILE_DISCLOSURE" />
+  </Match>
+
+  <Match>
+    <Class name="org.apache.knox.gateway.provider.federation.jwt.filter.SSOCookieFederationFilter"
/>
+    <Bug pattern="UNVALIDATED_REDIRECT" />
+  </Match>
+
+  <Match>
+    <Class name="org.apache.knox.gateway.filter.RedirectToUrlFilter" />
+    <Bug pattern="UNVALIDATED_REDIRECT" />
+  </Match>
+
+  <Match>
+    <Class name="org.apache.knox.gateway.service.knoxsso.WebSSOResource" />
+    <Bug pattern="UNVALIDATED_REDIRECT" />
+  </Match>
+
+  <Match>
+    <Class name="~org.apache.hadoop.gateway..*" />
+    <Bug pattern="NM_SAME_SIMPLE_NAME_AS_SUPERCLASS" />
+  </Match>
+
+</FindBugsFilter>


Mime
View raw message