Package edu.umd.cs.findbugs.detect

Class FindSqlInjection

java.lang.Object

edu.umd.cs.findbugs.detect.FindSqlInjection

All Implemented Interfaces:

Detector, Priorities

public class FindSqlInjection
extends java.lang.Object
implements Detector

Find potential SQL injection vulnerabilities.

Author:

David Hovemeyer, Bill Pugh, Matt Hargett

Field Summary

Fields inherited from interface edu.umd.cs.findbugs.Priorities

EXP_PRIORITY, HIGH_PRIORITY, IGNORE_PRIORITY, LOW_PRIORITY, NORMAL_PRIORITY

Constructor Summary

Constructors

Constructor	Description
FindSqlInjection(BugReporter bugReporter)

Method Summary

Modifier and Type	Method	Description
static boolean	isCloseQuote(java.lang.String s)
static boolean	isOpenQuote(java.lang.String s)
void	report()	This method is called after all classes to be visited.
void	visitClassContext(ClassContext classContext)	Visit the ClassContext for a class which should be analyzed for instances of bug patterns.

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail

FindSqlInjection

public FindSqlInjection(BugReporter bugReporter)

Method Detail

visitClassContext

public void visitClassContext(ClassContext classContext)

Description copied from interface: Detector

Visit the ClassContext for a class which should be analyzed for instances of bug patterns.

Specified by:

visitClassContext in interface Detector

Parameters:

classContext - the ClassContext

isOpenQuote

public static boolean isOpenQuote(java.lang.String s)

isCloseQuote

public static boolean isCloseQuote(java.lang.String s)

report

public void report()

Description copied from interface: Detector

This method is called after all classes to be visited. It should be used by any detectors which accumulate information over all visited classes to generate results.

Specified by:

report in interface Detector