Package com.h3xstream.findsecbugs
-
Class Summary Class Description BCELUtil DangerousPermissionCombination ExternalConfigurationControlDetector Detects External Control of System or Configuration Setting weakness using setCatalog method of java.sql.ConnectionFindSecBugsGlobalConfig This class contains some flag that can be used to create global configuration.HttpResponseSplittingDetector Detects HTTP Response splitting weaknessImproperHandlingUnicodeDetector ModificationAfterValidationDetector NormalizationAfterValidationDetector PermissiveCORSDetector PredictableRandomDetector RedosAnnotationDetector Detect REDOS in validation annotation.ReDosDetector This detector does minimal effort to find potential REDOS.RegexRedosAnalyzer StrutsValidatorFormDetector WeakFilenameUtilsMethodDetector Few methods from org.apache.commons.io.FilenameUtils have a common weakness of not filtering properly null byte.