| Modifier and Type | Class and Description |
|---|---|
class |
AbstractStatisticalApexRule |
| Modifier and Type | Class and Description |
|---|---|
class |
AbstractApexUnitTestRule
Do special checks for apex unit test classes and methods
|
class |
ApexUnitTestClassShouldHaveAsserts
Apex unit tests should have System.assert methods in them
|
class |
ApexUnitTestShouldNotUseSeeAllDataTrue
It's a very bad practice to use @isTest(seeAllData=true) in Apex unit tests,
because it opens up the existing database data for unexpected modification by tests.
|
| Modifier and Type | Class and Description |
|---|---|
class |
AbstractNcssCountRule
Abstract superclass for NCSS counting methods.
|
class |
AvoidDeeplyNestedIfStmtsRule |
class |
ExcessiveClassLengthRule
This rule detects when a class exceeds a certain threshold.
|
class |
ExcessiveLengthRule |
class |
ExcessiveNodeCountRule
This is a common super class for things which shouldn't have excessive nodes
underneath.
|
class |
ExcessiveParameterListRule
This rule detects an abnormally long parameter list.
|
class |
ExcessivePublicCountRule |
class |
NcssConstructorCountRule
Non-commented source statement counter for constructors.
|
class |
NcssMethodCountRule
Non-commented source statement counter for methods.
|
class |
NcssTypeCountRule
Non-commented source statement counter for type declarations.
|
class |
StdCyclomaticComplexityRule
Implements the standard cyclomatic complexity rule
|
class |
TooManyFieldsRule |
| Modifier and Type | Class and Description |
|---|---|
class |
AvoidDmlStatementsInLoopsRule |
class |
AvoidSoqlInLoopsRule |
| Modifier and Type | Class and Description |
|---|---|
class |
ApexBadCryptoRule
Finds encryption schemes using hardcoded IV, hardcoded key
|
class |
ApexCRUDViolationRule
Finding missed CRUD checks for SOQL and DML operations.
|
class |
ApexCSRFRule
Constructor and init method might contain DML, which constitutes a CSRF
vulnerability
|
class |
ApexDangerousMethodsRule
Flags dangerous method calls, e.g.
|
class |
ApexInsecureEndpointRule
Insecure HTTP endpoints passed to (req.setEndpoint)
req.setHeader('Authorization') should use named credentials
|
class |
ApexOpenRedirectRule
Looking for potential Open redirect via PageReference variable input
|
class |
ApexSharingViolationsRule
Finds Apex class that do not define sharing
|
class |
ApexSOQLInjectionRule
Detects if variables in Database.query(variable) is escaped with
String.escapeSingleQuotes
|
class |
ApexSuggestUsingNamedCredRule
Flags usage of http request.setHeader('Authorization',..) and suggests using
named credentials which helps store credentials for the callout in a safe
place.
|
class |
ApexXSSFromEscapeFalseRule
Finds all .addError method calls that are not HTML escaped on purpose
|
class |
ApexXSSFromURLParamRule
Detects potential XSS when controller extracts a variable from URL query and
uses it without escaping first
|
| Modifier and Type | Class and Description |
|---|---|
class |
AvoidGlobalModifierRule |
class |
AvoidLogicInTriggerRule |
class |
ClassNamingConventionsRule |
class |
MethodNamingConventionsRule |
class |
MethodWithSameNameAsEnclosingClassRule |
class |
VariableNamingConventionsRule |
Copyright © 2002-2017 PMD. All Rights Reserved.