Page tree
Skip to end of metadata
Go to start of metadata

Summary: This pages lists the changes made to the CAST AIP Assessment Model between successive releases. This pages uses the Assessment Model comparison feature which is available in the CAST Management Studio.

AIP 8.1.0 - 8.2.0

This section lists the results of a comparison between a CAST AIP 8.1.0 (no Service Pack) Assessment Model and the CAST AIP 8.2.0 Assessment Model. You can download the original compare.csv file (which you should open in Microsoft Excel) if you prefer.

MetricTypeNameTopicCAST 8.1.0 Assessment ModelChangeCAST 8.2.0 Assessment Model
592quality-ruleAvoid Classes using "new" to allocate Instances but not defining a copy ConstructorDocumentation englishname = Avoid Classes using "new" to allocate Instances but not defining a copy Construc...Updatedname = Ensure you provide a user-defined copy constructor or disable copy when a class ...
592quality-ruleAvoid Classes using "new" to allocate Instances but not defining a copy ConstructorDocumentation englishrationale = A copy constructor is highly recommended to avoid surprises when an object is in...Updatedrationale = If an object manages the allocation and deallocation of an object on the heap (t...
592quality-ruleAvoid Classes using "new" to allocate Instances but not defining a copy ConstructorDocumentation englishremediation = ... the class.Updatedremediation = ... the class, or make the class non-copyable.
1554quality-ruleStored Procedure naming convention - prefix control (PL/SQL Oracle)Technologies[Forms, PL/SQL]UpdatedRemoved: [Forms]
1556quality-ruleFunction naming convention - prefix control (PL/SQL Oracle)Technologies[Forms, PL/SQL]UpdatedRemoved: [Forms]
1558quality-rulePackage naming convention - prefix controlTechnologies[Forms, PL/SQL]UpdatedRemoved: [Forms]
1560quality-rulePackage Function naming convention - prefix controlTechnologies[Forms, PL/SQL]UpdatedRemoved: [Forms]
1562quality-rulePackage Stored Procedure naming convention - prefix controlTechnologies[Forms, PL/SQL]UpdatedRemoved: [Forms]
1564quality-ruleCursor naming convention - prefix controlTechnologies[Forms, PL/SQL]UpdatedRemoved: [Forms]
1566quality-ruleTrigger naming convention - prefix control (PL/SQL Oracle)Technologies[Forms, PL/SQL]UpdatedRemoved: [Forms]
4064quality-ruleAvoid Functions and Procedures using an Insert, Update, Delete, Create Table or Select without including error managementDocumentation englishname = Avoid Functions and Procedures using an Insert, Update, Delete, Create Table or ...Updatedname = Avoid Procedures using an Insert, Update, Delete, Create Table or Select without...
4064quality-ruleAvoid Functions and Procedures using an Insert, Update, Delete, Create Table or Select without including error managementDocumentation englishoutput = ...rocedures or functions using an Insert, Update, Delete, Select or Create Table w...Updatedoutput = ...rocedures using an Insert, Update, Delete, Select or Create Table without includ...
4064quality-ruleAvoid Functions and Procedures using an Insert, Update, Delete, Create Table or Select without including error managementDocumentation englishremediation = ...rocedures or functions using an Insert, Update, Delete, Select or Create TableUpdatedremediation = ...rocedures using an Insert, Update, Delete, Select or Create Table
4576quality-ruleProvide accessors to Private FieldsDocumentation englishdescription = ... fields. Accessors are identified using the following java bean naming conventi...Updateddescription = ... fields. Accessors are identified using the following java bean naming conven...
4576quality-ruleProvide accessors to Private FieldsDocumentation englishrationale = ...be accessed through accessors.Updatedrationale = ...be accessed through accessors. The only exception is injected fields of classe...
7254quality-ruleDeclare as static all Methods not using Instance FieldsDocumentation englishname = ...eclare as static all Methods not using Instance FieldsUpdatedname = ...eclare as Static all methods not using instance members
7262quality-ruleAvoid Namespaces with High Efferent Coupling (CE)OperationlocalSiteCountTotal = DIT_MANY_CLASSUpdatedlocalSiteCountTotal = DIT_DOTNET_NAMESPACE
7264quality-ruleAvoid namespaces with High Afferent Coupling (CA)OperationlocalSiteCountTotal = DIT_MANY_CLASSUpdatedlocalSiteCountTotal = DIT_DOTNET_NAMESPACE
7270quality-ruleDeclare as static all Methods not using Instance FieldsDocumentation englishname = ...eclare as static all Methods not using Instance FieldsUpdatedname = ...eclare as Static all methods not using instance members
7688quality-ruleNever truncate data in MOVE statementsDocumentation englishtotal = Number of Cobol ProgramsRemovedMissing
7690quality-ruleAvoid unchecked return code (SQLCODE) after EXEC SQL queryDocumentation englishassociatedValueName = Associated ValueUpdatedassociatedValueName = Number of unchecked return codes
7690quality-ruleAvoid unchecked return code (SQLCODE) after EXEC SQL queryDocumentation englishdescription = ...ches for Cobol programs that access relational databases but do not check the SQ...Updateddescription = ...ches for COBOL programs that access relational databases without checking the SQ...
7690quality-ruleAvoid unchecked return code (SQLCODE) after EXEC SQL queryDocumentation englishoutput = This report lists all Cobol programs containing SQL queries which are not direct...Updatedoutput = Associated to each COBOL Program with violations, the Quality Rule provides: -...
7690quality-ruleAvoid unchecked return code (SQLCODE) after EXEC SQL queryDocumentation englishrationale = ...function. Ideally, the SQL query and its associated return code check must be l...Updatedrationale = ...function. Furthermore, the SQL query and its associated return code check should...
7690quality-ruleAvoid unchecked return code (SQLCODE) after EXEC SQL queryDocumentation englishremediationSample = ...XEC SQL SELECT ACT_NO, EENDDATE INTO :ACT-NO, :EENDDATE FROM MP_PROJ_ACT ...UpdatedremediationSample = ...XEC SQL SELECT ACT_NO, EENDDATE INTO :ACT-NO, :EENDDATE FROM MP_PROJ_AC...
7690quality-ruleAvoid unchecked return code (SQLCODE) after EXEC SQL queryDocumentation englishsample = ...XEC SQL SELECT ACT_NO, EENDDATE INTO :ACT-NO, :EENDDATE FROM MP_PROJ_ACT ...Updatedsample = ...XEC SQL SELECT ACT_NO, EENDDATE INTO :ACT-NO, :EENDDATE FROM MP_PROJ_AC...
7740quality-ruleAvoid cross-site scripting DOM vulnerabilities ( CWE-79 )Documentation englishdescription = ...s (XSS). The list of user input methods can be customized as well as the output...Updateddescription = ...s (XSS). The list of user input methods can be customized as well as the outp...
7740quality-ruleAvoid cross-site scripting DOM vulnerabilities ( CWE-79 )Documentation englishoutput = ...bility : It provides the following information: - The full name of the method ...Updatedoutput = ...bility : It provides the following information: - The full name of the method t...
7742quality-ruleAvoid SQL injection vulnerabilities ( CWE-89 )Documentation englishdescription = ...ization. The list of user input methods, SQL execution method and as well as th...Updateddescription = ...ization. The list of user input methods, SQL execution method and as well as t...
7746quality-ruleAvoid LDAP injection vulnerabilities ( CWE-90 )Documentation englishdescription = ...tocol ). The list of user input methods can be customized as well as the targe...Updateddescription = ...tocol ). The list of user input methods can be customized as well as the target...
7748quality-ruleAvoid OS command injection vulnerabilities ( CWE-78 )Documentation englishdescription = ... flaws. The list of user input methods can be customized as well as the target...Updateddescription = ... flaws. The list of user input methods can be customized as well as the targe...
7750quality-ruleAvoid XPath injection vulnerabilities ( CWE-91 )Documentation englishdescription = ... flaws. The list of user input methods can be customized as well as the target...Updateddescription = ... flaws. The list of user input methods can be customized as well as the targe...
7752quality-ruleAvoid file path manipulation vulnerabilities ( CWE-73 )Documentation englishdescription = ... flaws. The list of user input methods can be customized as well as the target...Updateddescription = ... flaws. The list of user input methods can be customized as well as the targe...
7854quality-ruleDatabase table naming convention - prefix controlParameter #1: Prefixvalues(SAP SQL) = [ZT]Updatedvalues(SAP SQL) = [YT]
7854quality-ruleDatabase table naming convention - prefix controlParameter #2name = Prefix, type = text-list, description = Table naming conventionRemovedMissing
7904quality-ruleAvoid SQL queries on XXL tables that no index can supportParameter #1: thresholdvalues(Cobol) = No default valuesUpdatedvalues(Cobol) = [100000]
7964quality-ruleAvoid directly instantiating a Class used as a Spring beanDocumentation englishassociatedValueName = ...tantiated Spring bean nameUpdatedassociatedValueName = ...tantiated managed bean name
7964quality-ruleAvoid directly instantiating a Class used as a Spring beanDocumentation englishdescription = Reports Spring bean and Java methods that call a constructor of the class used t...Updateddescription = Reports managed bean and Java methods that call a constructor of the class used ...
7964quality-ruleAvoid directly instantiating a Class used as a Spring beanDocumentation englishname = ...used as a Spring beanUpdatedname = ...used as a managed bean
7964quality-ruleAvoid directly instantiating a Class used as a Spring beanDocumentation englishoutput = ...plement a Spring bean and the Spring bean name It provides the following inform...Updatedoutput = ...plement a managed bean and the managed bean name It provides the following info...
7964quality-ruleAvoid directly instantiating a Class used as a Spring beanDocumentation englishrationale = ...antiate a Spring bean, this bean benefits from different Spring key features: ...Updatedrationale = ...antiate a managed bean, this bean benefits from different key features of the un...
7964quality-ruleAvoid directly instantiating a Class used as a Spring beanDocumentation englishremediation = Use only Spring beans and when you need different instances of the same class, u...Updatedremediation = Use only managed beans and when you need different instances of the same class, ...
7964quality-ruleAvoid directly instantiating a Class used as a Spring beanDocumentation englishremediationSample = <bean id="myBean" class="sample.MyBean"> <property name="url"> <valu...UpdatedremediationSample = In the case of Spring <bean id="myBean" class="sample.MyBean"> <property n...
7964quality-ruleAvoid directly instantiating a Class used as a Spring beanDocumentation englishsample = <bean id="myBean" class="sample.MyBean"> <property name="url"> <value>htt...Updatedsample = In the case of Spring <bean id="myBean" class="sample.MyBean"> <property nam...
7964quality-ruleAvoid directly instantiating a Class used as a Spring beanDocumentation englishtotal = ...ference a Spring bean java interfaceUpdatedtotal = ...ference a managed bean java interface
7964quality-ruleAvoid directly instantiating a Class used as a Spring beanOperationlocalSiteDiagnose = DIA_JEE_directSpringBeanUpdatedlocalSiteDiagnose = DIA_JEE_directManagedBean
7964quality-ruleAvoid directly instantiating a Class used as a Spring beanOperationlocalSiteCountTotal = DIAG_JEE_SPRINGBEAN_TOTALUpdatedlocalSiteCountTotal = DIAG_JEE_MANAGEDBEAN_TOTAL
8044quality-ruleAvoid Log forging vulnerabilities ( CWE-117 )Documentation englishdescription = ...tion method can be customized. In Java, the Set methods of the Form Beans are au...Updateddescription = ...tion method can be customized.
8096quality-ruleAvoid testing floating point numbers for equalityDocumentation englishdescription = ...uality or non equal operation on floats: - float x == float y - float x != float...Updateddescription = ...uality or inequality operations on floating point variables: - float x == (...) ...
8096quality-ruleAvoid testing floating point numbers for equalityDocumentation englishrationale = ... a simple equality test fails.Updatedrationale = ... a simple equality test fails. A comparison between a floating point number and ...
8120quality-ruleAvoid using CALL FUNCTION without error handling BETAQuality Contribution to 'Programming Practices - Error and Exception Handling' (61014)Missing contributionAddedcritical = true, weight = 9
8122quality-ruleAvoid using CALL METHOD without error handling BETAQuality Contribution to 'Programming Practices - Error and Exception Handling' (61014)Missing contributionAddedcritical = true, weight = 9
8126quality-ruleAvoid using empty SELECT ... ENDSELECT loop BETAQuality Contribution to 'Efficiency - SQL and Data Handling Performance' (61019)Missing contributionAddedcritical = true, weight = 9
8128quality-ruleAvoid using UPDATE and DELETE without WHERE condition BETAQuality Contribution to 'Efficiency - SQL and Data Handling Performance' (61019)Missing contributionAddedcritical = true, weight = 9
8130quality-ruleAvoid using database hints BETAQuality Contribution to 'Efficiency - SQL and Data Handling Performance' (61019)Missing contributionAddedcritical = true, weight = 9
8132quality-ruleAvoid using CHECK, EXIT,or RETURN in SELECT ... ENDSELECT loops BETAQuality Contribution to 'Efficiency - SQL and Data Handling Performance' (61019)Missing contributionAddedcritical = true, weight = 9
8116quality-ruleAvoid calling system function (CALL 'cfunc') BETAQuality Contribution to 'Secure Coding - API Abuse' (66063)Missing contributionAddedcritical = true, weight = 9
8118quality-ruleAvoid using the RFC_ABAP_INSTALL_AND_RUN function BETAQuality Contribution to 'Secure Coding - API Abuse' (66063)Missing contributionAddedcritical = true, weight = 9
8136quality-ruleUse indexes to access the table elements instead of SubscriptQuality Contribution to 'Efficiency - Expensive Calls in Loops' (66068)Missing contributionAddedcritical = false, weight = 3
8124quality-ruleDo not use function module DB_EXISTS_INDEX (HANA) BETAQuality Contribution to 'Programming Practices - Unexpected Behavior' (66069)Missing contributionAddedcritical = true, weight = 9
8134quality-ruleAvoid unsorted data after SELECT queries BETAQuality Contribution to 'Programming Practices - Unexpected Behavior' (66069)Missing contributionAddedcritical = true, weight = 9
8138quality-ruleBeans with normal scope must be proxyable to avoid runtime errorsQuality Contribution to 'Programming Practices - Unexpected Behavior' (66069)Missing contributionAddedcritical = true, weight = 7
8116quality-ruleAvoid calling system function (CALL 'cfunc') BETADefinitionMissingAddedactive = false, detached = false
8118quality-ruleAvoid using the RFC_ABAP_INSTALL_AND_RUN function BETADefinitionMissingAddedactive = false, detached = false
8120quality-ruleAvoid using CALL FUNCTION without error handling BETADefinitionMissingAddedactive = false, detached = false
8122quality-ruleAvoid using CALL METHOD without error handling BETADefinitionMissingAddedactive = false, detached = false
8124quality-ruleDo not use function module DB_EXISTS_INDEX (HANA) BETADefinitionMissingAddedactive = false, detached = false
8126quality-ruleAvoid using empty SELECT ... ENDSELECT loop BETADefinitionMissingAddedactive = false, detached = false
8128quality-ruleAvoid using UPDATE and DELETE without WHERE condition BETADefinitionMissingAddedactive = false, detached = false
8130quality-ruleAvoid using database hints BETADefinitionMissingAddedactive = false, detached = false
8132quality-ruleAvoid using CHECK, EXIT,or RETURN in SELECT ... ENDSELECT loops BETADefinitionMissingAddedactive = false, detached = false
8134quality-ruleAvoid unsorted data after SELECT queries BETADefinitionMissingAddedactive = false, detached = false
8136quality-ruleUse indexes to access the table elements instead of SubscriptDefinitionMissingAddedactive = false, detached = false
8138quality-ruleBeans with normal scope must be proxyable to avoid runtime errorsDefinitionMissingAddedactive = true, detached = false

AIP 8.2.0 - 8.2.1

MetricTypeNameTopicCAST 8.2.0 Assessment ModelChangeCAST 8.2.1 Assessment Model
7270quality-ruleDeclare as Static all methods not using instance membersDiagnosisscopeID = 0, propertyID = 0UpdatedscopeID = 610, propertyID = 140693
7270quality-ruleDeclare as Static all methods not using instance membersOperationlocalSiteDiagnose = DIAG_SCOPE_NETEMEM009UpdatedlocalSiteDiagnose = null
7270quality-ruleDeclare as Static all methods not using instance membersOperationlocalSiteCountTotal = DIT_MANY_METHODUpdatedlocalSiteCountTotal = null
7964quality-ruleAvoid directly instantiating a Class used as a managed beanDocumentation englishremediationSample = ... Spring <bean id="myBean" class="sample.MyBean"> <property name="url"> ...UpdatedremediationSample = ... Spring <bean id="myBean" class="sample.MyBean"> <property name="url"> ...
7964quality-ruleAvoid directly instantiating a Class used as a managed beanDocumentation englishsample = ... Spring <bean id="myBean" class="sample.MyBean"> <property name="url"> ...Updatedsample = ... Spring <bean id="myBean" class="sample.MyBean"> <property name="url"> ...
8070quality-ruleDo not alter a control variable in the body of a 'for' statementDocumentation englishdescription = ...a control variable is altered.Updateddescription = ...a control variable is altered. We consider a variable as altered when we assign ...

AIP 8.2.1 - 8.2.2

MetricTypeNameTopicCAST 8.2.1 Assessment ModelChangeCAST 8.2.2 Assessment Model
4578quality-ruleGood use of Interfaces with collections as Method return typesDiagnosisscopeID = 0, propertyID = 0UpdatedscopeID = 550, propertyID = 140694
4578quality-ruleGood use of Interfaces with collections as Method return typesDiagnosisdiagnosisValueType = objectUpdateddiagnosisValueType = integer
4578quality-ruleGood use of Interfaces with collections as Method return typesOperationlocalSiteDiagnose = DIAG_SCOPE_JAVABEST015UpdatedlocalSiteDiagnose = null
4578quality-ruleGood use of Interfaces with collections as Method return typesOperationlocalSiteCountTotal = DIAG_JAVA_ANA_METH_LAMB_TOTALUpdatedlocalSiteCountTotal = null
7670quality-ruleAvoid accessing SAP standard Tables in modification from custom codeDocumentation englishdescription = ...amespace Custom components are identified as follows: - Their name starts with ...Updateddescription = ...amespace Note: Following tables are considered as custom tables and accessing t...
8102quality-ruleAvoid hardcoded network resource namesDocumentation englishdescription = ...d: - URLs - Paths - IP addresses Note: This quality rule implements the rule AS...Updateddescription = ...d: - URLs (of the form file:///c:/Tmp/Folder/ or http://host.com/folder) - Paths...
8136quality-ruleUse indexes to access the table elements instead of SubscriptActivationactive = false, detached = falseUpdatedactive = true
8136quality-ruleUse indexes to access the table elements instead of SubscriptTechnologies[Cobol]UpdatedRemoved: [Cobol], Added: [JEE]
8136quality-ruleUse indexes to access the table elements instead of SubscriptThresholds[98.0, 99.0, 99.5, 99.99]Updated[50.0, 90.0, 95.0, 99.0]
8136quality-ruleUse indexes to access the table elements instead of SubscriptParameter #1: thresholdvalues(Cobol) = [100]Updatedvalues(Cobol) = No default values
8136quality-ruleUse indexes to access the table elements instead of SubscriptParameter #1: thresholdvalues(JEE) = No default valuesUpdatedvalues(JEE) = [100]
8136quality-ruleUse indexes to access the table elements instead of SubscriptDocumentation englishdescription = This rule lists Cobol Programs that access internal tables with a subscript rath...Updateddescription = This quality rules checks all the CDI Beans, that is all the classes and produce...
8136quality-ruleUse indexes to access the table elements instead of SubscriptDocumentation englishname = Use indexes to access the table elements instead of SubscriptUpdatedname = Beans with normal scope must be proxyable to avoid runtime errors
8136quality-ruleUse indexes to access the table elements instead of SubscriptDocumentation englishoutput = This rule lists all Cobol Programs that define internal tables without any index...Updatedoutput = This quality rule reports all the CDI beans which cannot be proxied. It handles...
8136quality-ruleUse indexes to access the table elements instead of SubscriptDocumentation englishrationale = Using indexes to address a table is more efficient than using subscripts since t...Updatedrationale = For a CDI Bean with a normal scope, the CDI contained will provide a proxy of th...
8136quality-ruleUse indexes to access the table elements instead of SubscriptDocumentation englishreference = IBM Cobol - Best Practices and RecommendationsUpdatedreference = https://docs.jboss.org/weld/reference/latest/en-US/html/injection.html#_client_p...
8136quality-ruleUse indexes to access the table elements instead of SubscriptDocumentation englishremediation = Prefer to use index rather than subscript. Add an INDEXED clause in table defini...Updatedremediation = Make sure that the injected class fulfills the constraints of a proxy class, cha...
8136quality-ruleUse indexes to access the table elements instead of SubscriptDocumentation englishremediationSample = 01 DIRECT-TAX-RATE. 02 TAX-RATE PIC 99 OCCURS 5 TIMES INDEXED BY TX-INDEX. ......UpdatedremediationSample = public class Producer{ @Produces @Dependent @Named("stringProvider") pu...
8136quality-ruleUse indexes to access the table elements instead of SubscriptDocumentation englishsample = 01 DIRECT-TAX-RATE. 02 TAX-RATE PIC 99 OCCURS 5 TIMES. 01 TX-INDEX PIC X(10)....Updatedsample = public class Producer{ @Produces @SessionScoped @Named("stringProvider") ...
8136quality-ruleUse indexes to access the table elements instead of SubscriptDocumentation englishtotal = This quality rules checks all the CDI Beans, that is all the classes and produce...Updatedtotal = Number of violations
8136quality-ruleUse indexes to access the table elements instead of SubscriptDiagnosisscopeID = 100, propertyID = 140650UpdatedscopeID = 528, propertyID = 140666
8136quality-ruleUse indexes to access the table elements instead of SubscriptOperationlocalSiteCountViolations = count-distinctUpdatedlocalSiteCountViolations = count
8136quality-ruleUse indexes to access the table elements instead of SubscriptQuality Contribution to 'Efficiency - Expensive Calls in Loops' (66068)critical = false, weight = 3RemovedMissing contribution
8136quality-ruleBeans with normal scope must be proxyable to avoid runtime errorsQuality Contribution to 'Programming Practices - Unexpected Behavior' (66069)Missing contributionAddedcritical = true, weight = 7
8138quality-ruleBeans with normal scope must be proxyable to avoid runtime errorsDefinitionactive = true, detached = falseRemovedMissing
8138quality-ruleBeans with normal scope must be proxyable to avoid runtime errorsQuality Contribution to 'Programming Practices - Unexpected Behavior' (66069)critical = true, weight = 7RemovedMissing contribution

AIP 8.2.2 - 8.2.3

No difference.

AIP 8.2.3 - 8.2.4

This section lists the results of a comparison between a CAST AIP 8.2.3 Assessment Model and the CAST AIP 8.2.4 Assessment Model. You can download the original compare_823_824.xlsx file (which you should open in Microsoft Excel) if you prefer.

MetricTypeNameTopicCAST 8.2.3 Assessment ModelChangeCAST 8.2.4 Assessment Model
7854quality-ruleDatabase table naming convention - prefix controlParameter #1: Prefixvalues(SAP SQL) = [YT]Updatedvalues(SAP SQL) = [ZT, /, YT]
7854quality-ruleDatabase table naming convention - prefix controlOperationlocalSiteCountTotal = DIT_MANY_TABLESUpdatedlocalSiteCountTotal = DIT_MANY_TABLESRESOLVED
7964quality-ruleAvoid directly instantiating a Class used as a managed beanDocumentation englishoutput = ...a methods that call a constructor of the class used to implement a managed bean ...Updatedoutput = ...a methods and jsp files that call a constructor of the class used to implement a...
7964quality-ruleAvoid directly instantiating a Class used as a managed beanDocumentation englishtotal = ...f methods that reference a managed bean java interfaceUpdatedtotal = ...f methods or jsp files that reference a managed bean java interface

AIP 8.2.4 - 8.2.5

MetricTypeNameTopicCAST 8.2.4 Assessment ModelChangeCAST 8.2.5 Assessment Model
7424quality-ruleAvoid using SQL queries inside a loopDocumentation englishsample = PreparedStatement updateSales; String updateString = "update COFFEES " + ...Updatedsample = Oracle: for x in ( select * from t1 ) loop for y in ( select * from t2 where t...
7424quality-ruleAvoid using SQL queries inside a loopDocumentation englishMissingAddedremediationSample = Oracle: update table_name set co1 = (select z.SOMETHING_ELSE fro...

AIP 8.2.5 - 8.2.6

MetricTypeNameTopicCAST 8.2.5 Assessment ModelChangeCAST 8.2.6 Assessment Model
2232quality-rulePages should use error handling pageDocumentation englishreference = Java Enterprise Best Practices ISBN 13: 9780596003845 page 252 http://www.objec...Updatedreference = http://blog.java-hoster.com/2010/java-course/how-to-manage-error-pages-in-java-w...
8082quality-ruleAvoid Tables without Primary KeyDiagnosisscopeID = 400, propertyID = 140202UpdatedscopeID = 0, propertyID = 0
8082quality-ruleAvoid Tables without Primary KeyOperationlocalSiteDiagnose = DIA_NOPOS_GENERIC_NUMUpdatedlocalSiteDiagnose = DIA_MANY_TABNOTINPKEY
8082quality-ruleAvoid Tables without Primary KeyOperationlocalSiteCountTotal = nullUpdatedlocalSiteCountTotal = DIT_MANY_TABLES
10201sizing-measureBackfired Function PointsParameter #1: BackFired FP ratiovalues(Microsoft T-SQL) = No default valuesUpdatedvalues(Microsoft T-SQL) = [60.0]
10201sizing-measureBackfired Function PointsParameter #1: BackFired FP ratiovalues(Sybase T-SQL) = No default valuesUpdatedvalues(Sybase T-SQL) = [60.0]

AIP 8.2.6 - 8.2.7

No difference.

AIP 8.2.7 - 8.2.8

MetricTypeNameTopicCAST 8.2.7 Assessment ModelChangeCAST 8.2.8 Assessment Model
7250quality-ruleAvoid String initialization with String object (created using the 'new' keyword)DiagnosisscopeID = 0, propertyID = 0UpdatedscopeID = 540, propertyID = 140796
7250quality-ruleAvoid String initialization with String object (created using the 'new' keyword)DiagnosisdiagnosisValueType = no-valueUpdateddiagnosisValueType = integer
7250quality-ruleAvoid String initialization with String object (created using the 'new' keyword)OperationlocalSiteDiagnose = DIAG_SCOPE_JAVAEMEM007UpdatedlocalSiteDiagnose = null
7250quality-ruleAvoid String initialization with String object (created using the 'new' keyword)OperationlocalSiteCountTotal = DIAG_JAVA_NA_ARTIFACT_TOTALUpdatedlocalSiteCountTotal = null
7510quality-ruleUse only Hibernate API to access to the databaseDiagnosisscopeID = 0, propertyID = 0UpdatedscopeID = 554, propertyID = 140792
7510quality-ruleUse only Hibernate API to access to the databaseOperationlocalSiteDiagnose = DIAG_SCOPE_JEEAHML002UpdatedlocalSiteDiagnose = null
7510quality-ruleUse only Hibernate API to access to the databaseOperationlocalSiteCountTotal = DIAG_JEE_ANA_API_TOTALUpdatedlocalSiteCountTotal = null
7548quality-ruleNever use incompatible statements with the CICS environmentDocumentation englishdescription = ...- DISPLAY - FD and SD - SELECT <file> ASSIGN TO - OPEN, CLOSE, READ, WRITE, REWR...Updateddescription = ...- DISPLAY UPON CONSOLE - DISPLAY UPON SYSPUNCH - FD and SD - SELECT <file> ASS...

AIP 8.2.8 - 8.2.9

MetricTypeNameTopicCAST 8.2.8 Assessment ModelChangeCAST 8.2.9 Assessment Model
4602quality-ruleAvoid using Fields (non static final) from other ClassesDocumentation englishdescription = ...concepts, Fields should not be accessed from outside the Class without going thr...Updateddescription = ...concepts, fields should not be accessed from outside the class without going thr...
4602quality-ruleAvoid using Fields (non static final) from other ClassesDocumentation englishMissingAddedrationale = On of the fundamental concept of this rule is encapsulation: Hiding the internal...
7210quality-ruleAvoid instantiations inside loopsDocumentation englishdescription = ...instantiation occurs in a call to one of the following methods: . java.util.C...Updateddescription = ...instantiated object is one of the arguments of a call to one of the following me...
7366quality-ruleFile descriptor block must be defined with 0 recordDocumentation englishdescription = ...al to 0. Note: VSAM files (identified by the INDEXED clause), sort files (SD), ...Updateddescription = ...al to 0. Note: VSAM files (identified by the INDEXED clause) and sort files (S...

AIP 8.2.9 - 8.2.10

MetricTypeNameTopicCAST 8.2.9 Assessment ModelChangeCAST 8.2.10 Assessment Model
3616quality-ruleData Access must be based on Stored Procedure CallsDocumentation englishrationale = ...also limit the parsing phase of the SQL order. This generally result in better p...Updatedrationale = ...also limits the parsing phase of the SQL order. This generally results in better...
4602quality-ruleAvoid using Fields (non static final) from other ClassesDocumentation englishdescription = ...concepts, fields should not be accessed from outside the class without going thr...Updateddescription = ...concepts, Fields should not be accessed from outside the Class without going thr...
4612quality-ruleAvoid using native Methods (JNI)Documentation englishdescription = ... that you consider to be safe.Updateddescription = ... that you consider to be safe. See : CWE-111: Direct Use of Unsafe JNI
4612quality-ruleAvoid using native Methods (JNI)Documentation englishreference = ...Java_Native_Interface#PitfallsUpdatedreference = ...Java_Native_Interface#Pitfalls https://cwe.mitre.org/data/definitions/111.html
7784quality-ruleAvoid Artifacts with lines longer than X charactersDocumentation englishdescription = ...er and can be changed at will.Updateddescription = ...er and can be changed at will. For JAVA artifacts with annotation declared insid...
2232quality-rulePages should use error handling pageQuality Contribution to 'Programming Practices - Error and Exception Handling' (61014)critical = true, weight = 7Updatedcritical = false, weight = 5

AIP 8.2.10 - 8.2.11

No difference.

AIP 8.2.11 - 8.2.12

MetricTypeNameTopicCAST 8.2.11 Assessment ModelChangeCAST 8.2.12 Assessment Model
2232quality-rulePages should use error handling pageDiagnosisscopeID = 0, propertyID = 0UpdatedscopeID = 555, propertyID = 140268
2232quality-rulePages should use error handling pageOperationlocalSiteDiagnose = DIAG_SCOPE_JSPBEST002UpdatedlocalSiteDiagnose = null
2232quality-rulePages should use error handling pageOperationlocalSiteCountTotal = DIAG_JSP_PAGE_DESC_TOTALUpdatedlocalSiteCountTotal = null
4602quality-ruleAvoid using Fields (non static final) from other ClassesDocumentation englishdescription = ...rs should be relatively rare."Updateddescription = ...rs should be relatively rare.". Fields of an INNER class are considered as inter...
7210quality-ruleAvoid instantiations inside loopsDocumentation englishdescription = ...lace . and any method with the same name in their respective derived classes ...Updateddescription = ...lace . java.util.stream.Stream.map . and any method with the same name in ...
7442quality-ruleAvoid to use this within Constructor in multi-thread environmentDiagnosisscopeID = 0, propertyID = 0UpdatedscopeID = 545, propertyID = 5008
7442quality-ruleAvoid to use this within Constructor in multi-thread environmentOperationlocalSiteDiagnose = DIAG_SCOPE_JAVASCTS003UpdatedlocalSiteDiagnose = null
7442quality-ruleAvoid to use this within Constructor in multi-thread environmentOperationlocalSiteCountTotal = DIAG_JAVA_CONS_TOTALUpdatedlocalSiteCountTotal = null
7446quality-ruleAvoid double checked lockingDiagnosisscopeID = 0, propertyID = 0UpdatedscopeID = 557, propertyID = 140861
7446quality-ruleAvoid double checked lockingOperationlocalSiteDiagnose = DIAG_SCOPE_JAVASCTS001UpdatedlocalSiteDiagnose = null
7446quality-ruleAvoid double checked lockingOperationlocalSiteCountTotal = DIAG_JAVA_ANA_SYNCH_TOTALUpdatedlocalSiteCountTotal = DSS_DIAG_SCOPE_GENERIC_NUM

AIP 8.2.12 - 8.2.13

No difference.

AIP 8.2.13 - 8.2.14

No difference.

AIP 8.2.14 - 8.2.15

No difference.

  • No labels