Detect bugs from Java code using FindBugs


Scariest: ranked between 1 & 4. Scary



Download 0,64 Mb.
bet3/6
Sana05.06.2022
Hajmi0,64 Mb.
#638201
1   2   3   4   5   6
Bog'liq
asd 1

Scariest: ranked between 1 & 4.

  • Scary: ranked between 5 & 9.

  • Troubling: ranked between 10 & 14.

  • Of concern: ranked between 15 & 20.

    While the bug rank describes severity, the confidence factor reflects the likelihood of these bugs to be flagged as real ones. The confidence was originally called priority, but it was renamed in the new version.
    Of course, some defects can be open to interpretation, and they can even exist without causing any harm to the desired behavior of a software. That's why, in a real-world situation, we need to properly configure static analysis tools by choosing a limited set of defects to activate in a specific project.

    FindBugs plugin makes it easy to customize the bugs analysis strategy, by offering various ways to filter warning and limit the strictness of the results. You can check the configuration interface by going to Window -> Preferences -> Java -> FindBugs:

    You can freely uncheck unwanted categories, raise the minimum rank to report, specify the minimum confidence to report, and customize markers for bugs ranks – Warning, Info, or Error.
    FindBugs divide defects in many categories:

    • Correctness – gathers general bugs, e.g. infinite loops, inappropriate use of equals(), etc

    • Bad practice, e.g. exceptions handling, opened streams, Strings comparison, etc

    • Performance, e.g. idle objects

    • Multithreaded correctness – gathers synchronization inconsistencies and various problems in a multi-threaded environment

    • Internationalization – gathers problems related to encoding and application's internationalization

    • Malicious code vulnerability – gathers vulnerabilities in code, e.g. code snippets that can be exploited by potential attackers

    • Security – gathers security holes related to specific protocols or SQL injections


    • Download 0,64 Mb.

      Do'stlaringiz bilan baham:
  • 1   2   3   4   5   6




    Ma'lumotlar bazasi mualliflik huquqi bilan himoyalangan ©hozir.org 2024
    ma'muriyatiga murojaat qiling

    kiriting | ro'yxatdan o'tish
        Bosh sahifa
    юртда тантана
    Боғда битган
    Бугун юртда
    Эшитганлар жилманглар
    Эшитмадим деманглар
    битган бодомлар
    Yangiariq tumani
    qitish marakazi
    Raqamli texnologiyalar
    ilishida muhokamadan
    tasdiqqa tavsiya
    tavsiya etilgan
    iqtisodiyot kafedrasi
    steiermarkischen landesregierung
    asarlaringizni yuboring
    o'zingizning asarlaringizni
    Iltimos faqat
    faqat o'zingizning
    steierm rkischen
    landesregierung fachabteilung
    rkischen landesregierung
    hamshira loyihasi
    loyihasi mavsum
    faolyatining oqibatlari
    asosiy adabiyotlar
    fakulteti ahborot
    ahborot havfsizligi
    havfsizligi kafedrasi
    fanidan bo’yicha
    fakulteti iqtisodiyot
    boshqaruv fakulteti
    chiqarishda boshqaruv
    ishlab chiqarishda
    iqtisodiyot fakultet
    multiservis tarmoqlari
    fanidan asosiy
    Uzbek fanidan
    mavzulari potok
    asosidagi multiservis
    'aliyyil a'ziym
    billahil 'aliyyil
    illaa billahil
    quvvata illaa
    falah' deganida
    Kompyuter savodxonligi
    bo’yicha mustaqil
    'alal falah'
    Hayya 'alal
    'alas soloh
    Hayya 'alas
    mavsum boyicha


    yuklab olish