|[eclipselink-users] Eclipselink 2.0.1 inject code detected by FindBugs|
Hi. I'm using sonar with findbugs to check the sanity of the code. Findbugs encounter these errors in the code injected by eclipselink: Performance - Method invokes inefficient Number constructor; use static valueOf instead Bad practice - Comparison of String parameter using == or != Malicious code vulnerability - May expose internal representation by returning reference to mutable object Malicious code vulnerability - May expose internal representation by incorporating reference to mutable object Bad practice - Transient field that isn't set by deserialization. Performance - Method invokes inefficient Boolean constructor; use Boolean.valueOf(...) instead can this be corrected for the next release? thanks for the time.
Back to the top