Class HardCodedPasswordCheck
java.lang.Object
org.sonar.java.ast.visitors.SubscriptionVisitor
org.sonar.plugins.java.api.IssuableSubscriptionVisitor
org.sonar.java.checks.AbstractHardCodedCredentialChecker
org.sonar.java.checks.HardCodedPasswordCheck
- All Implemented Interfaces:
JavaCheck, JavaFileScanner
-
Field Summary
FieldsFields inherited from class AbstractHardCodedCredentialChecker
EQUALS_MATCHER, STRING_TO_CHAR_ARRAYModifier and TypeFieldDescriptionprotected static final MethodMatchersprotected static final MethodMatchersFields inherited from class SubscriptionVisitor
context -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionprotected Stringprotected voidprotected booleanisCredentialContainingPattern(ExpressionTree expression) Determine if the actual hardcoded credential from the expression, contains one of the credentials pattern.protected voidvoidMethods inherited from class AbstractHardCodedCredentialChecker
handleAssignment, handleEqualsMethod, handleVariable, isCallOnStringLiteral, isCredentialLikeName, isCredentialVariable, isPotentialCredential, isPotentialCredential, isSettingCredentialModifier and TypeMethodDescriptionprotected voidprotected voidhandleEqualsMethod(MethodInvocationTree mit, MemberSelectExpressionTree methodSelect) protected voidhandleVariable(VariableTree tree) protected booleanisCredentialLikeName(String name) isCredentialVariable(ExpressionTree variable) protected booleanisPotentialCredential(String literal) protected booleanisPotentialCredential(ExpressionTree expression) Methods inherited from class IssuableSubscriptionVisitor
addIssue, addIssueOnFile, leaveFile, reportIssue, reportIssue, reportIssue, reportIssue, scanFile, scanTree, setContextMethods inherited from class SubscriptionVisitor
leaveNode, visitToken, visitTriviaMethods inherited from class Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, waitMethods inherited from interface JavaFileScanner
scanWithoutParsing
-
Field Details
-
passwordWords
-
-
Constructor Details
-
HardCodedPasswordCheck
public HardCodedPasswordCheck()
-
-
Method Details
-
getCredentialWords
- Specified by:
getCredentialWordsin classAbstractHardCodedCredentialChecker
-
nodesToVisit
- Specified by:
nodesToVisitin classSubscriptionVisitor
-
visitNode
- Overrides:
visitNodein classSubscriptionVisitor
-
handleStringLiteral
- Overrides:
handleStringLiteralin classAbstractHardCodedCredentialChecker
-
report
- Specified by:
reportin classAbstractHardCodedCredentialChecker
-
isCredentialContainingPattern
Description copied from class:AbstractHardCodedCredentialCheckerDetermine if the actual hardcoded credential from the expression, contains one of the credentials pattern. This is typically used to ignore constant declaration.- Specified by:
isCredentialContainingPatternin classAbstractHardCodedCredentialChecker
-