Skip to main content
assistive.skiplink.to.breadcrumbs
assistive.skiplink.to.header.menu
assistive.skiplink.to.action.menu
assistive.skiplink.to.quick.search

Page History

Versions Compared

Old Version 85

changes.mady.by.user Dhruv Mohindra

Saved on Aug 12, 2009

compared with

New Version Current

changes.mady.by.user David Svoboda

Saved on Aug 07, 2025

Key

This line was added.
This line was removed.
Formatting was changed.

Rules

Content by Label

showLabels	false
max	99
spaces	com.atlassian.confluence.content.render.xhtml.model.resource.identifiers.SpaceResourceIdentifier@3bbaf8c
showSpace	false
sort	title
cql	label = "msc" and label = "rule" and label != "void" and space = currentSpace()
labels	+msc,-void, +rule

Risk Assessment Summary

Rule	Severity	Likelihood	Detectable	Repairable

Recommendations

MSC00-J. Eliminate class initialization cycles

MSC01-J. Avoid memory leaks

MSC02-J. Avoid cyclic dependencies between packages

MSC03-J. Prefer using URIs to URLs

MSC04-J. Prefer using Iterators over Enumerations

MSC05-J. Carefully design interfaces before releasing them

MSC06-J. Avoid mixing generic and non-generic code if possible

MSC07-J. Library methods should validate their parameters

MSC12-J. Limit the lifetime of sensitive data

MSC08-J. Finish every set of statements associated with a case label with a break statement

Rules

MSC30-J. Generate truly random numbers

MSC31-J. Never hardcode sensitive information

MSC32-J. Prevent OS Command Injection

MSC33-J. Prevent against SQL Injection

MSC36-J. Understand how escape characters are interpreted when String literals are compiled

MSC34-J. Prevent XML Injection

MSC35-J. Prevent XPath Injection

MSC37-J. Make sensitive classes noncloneable

MSC38-J. Do not modify the underlying collection when an iteration is in progress

Risk Assessment Summary

Recommendations

Recommendation	Severity	Likelihood	Remediation Cost	Priority	Level
MSC00-J	Medium	low Likely	unlikely No	medium No	P2 P6	L3 L2
MSC01-J	Low	Unlikely low	unlikely Yes	high Yes	P1 P3	L3
MSC02-J	High	Probable low	unlikely No	medium No	P2 P6	L3 L2
MSC03-J	High	medium Probable	probable No	medium No	P8 P6	L2
MSC04-J	Low	high Unlikely	probable No	low No	P18 P1	L1 L3
MSC05-J	medium Low	probable Probable	medium No	P18	L1
MSC06-J	TODO	TODO	TODO	TODO	TODO
No	P2	MSC07-J	medium	unlikely	medium	P4	L3 MSC08
MSC06-J	low Low	unlikely Probable	medium	P2	L3	No	No	MSC011-J	medium	unlikely	high	P2	L3

Rules

Rule	Severity	Likelihood	Remediation Cost	Priority	Level
MSC30MSC07-J	medium Low	unlikely Unlikely	medium	P4	L3	Yes	No	MSC35-J	medium	unlikely	high	P2	L3

...

EXC31-J. Handle checked exceptions that can be thrown within a finally block The CERT Sun Microsystems Secure Coding Standard for Java MSC00-J. Eliminate class initialization cycles Image Added Image Added Image Added