Skip to main content
assistive.skiplink.to.breadcrumbs
assistive.skiplink.to.header.menu
assistive.skiplink.to.action.menu
assistive.skiplink.to.quick.search

04. Expressions (EXP)

Created by Dhruv Mohindra, last modified by Pennie Walters on Nov 18, 2009

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Guidelines

EXP00-J. Use the same type for the second and third operands in conditional expressions

EXP01-J. Ensure a null pointer is not dereferenced

EXP00-J. Do not ignore values returned by methods

EXP01-J. Do not compare String objects using equality or relational operators

EXP04-J. Be wary of invisible implicit casts when using compound assignment operators

EXP11-J. Be careful of autoboxing when removing elements from a Collection

EXP07-J. Be aware of the short-circuit behavior of the conditional AND and OR operators

EXP07-J. Do not diminish the benefits of constants by assuming their values in expressions

EXP05-J. Be aware of integer promotions in binary operators

EXP06-J. Use parentheses for precedence of operation

EXP08-J. Understand the evaluation of expressions containing non short-circuit operators

EXP09-J. Do not depend on operator precedence while using expressions containing side-effects

EXP10-J. Avoid side effects in assertions

EXP03-J. Do not use the equal and not equal operators to compare boxed primitives

EXP02-J. Do not use the equals method to compare the contents of arrays

Risk Assessment Summary

Recommendations

Recommendation	Severity	Likelihood	Remediation Cost	Priority	Level
EXP00- J	low	unlikely	medium	P2	L3
EXP01- J	low	likely	high	P3	L3
EXP02- J	medium	probable	medium	P8	L2
EXP03- J	low	probable	medium	P4	L3
EXP04- J	low	unlikely	medium	P2	L3
EXP05- J	low	probable	low	P6	L2
EXP06- J	low	unlikely	medium	P2	L3
EXP07- J	low	unlikely	medium	P2	L3
EXP08- J	low	probable	medium	P4	L3
EXP09- J	low	probable	medium	P4	L3
EXP10- J	low	probable	medium	P4	L3

Rules

Rule	Severity	Likelihood	Remediation Cost	Priority	Level
EXP30- J	low	unlikely	medium	P2	L3
EXP31- J	low	unlikely	low	P3	L3
EXP32- J	low	likely	medium	P6	L2
EXP33- J	low	likely	low	P9	L2

DCL04-J. Qualify mathematical constants with the static and final modifiers The CERT Sun Microsystems Secure Coding Standard for Java EXP00-J. Use the same type for the second and third operands in conditional expressions

No labels