Skip to main content
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
[eclipselink-users] Eclipselink 2.0.1 inject code detected by FindBugs 
Hi.

I'm using sonar with findbugs to check the sanity of the code. Findbugs 
encounter these errors in the code injected by eclipselink:

Performance - Method invokes inefficient Number constructor; use static 
valueOf instead

Bad practice - Comparison of String parameter using == or !=

Malicious code vulnerability - May expose internal representation by returning 
reference to mutable object 

Malicious code vulnerability - May expose internal representation by 
incorporating reference to mutable object

Bad practice - Transient field that isn't set by deserialization. 

Performance - Method invokes inefficient Boolean constructor; use 
Boolean.valueOf(...) instead

can this be corrected for the next release?

thanks for the time.

Back to the top