Summary: This pages lists the changes made to the CAST AIP Assessment Model between successive releases. This pages uses the Assessment Model comparison feature which is available in the CAST Management Studio.
AIP 8.1.0 - 8.2.0
This section lists the results of a comparison between a CAST AIP 8.1.0 (no Service Pack) Assessment Model and the CAST AIP 8.2.0 Assessment Model. You can download the original compare.csv file (which you should open in Microsoft Excel) if you prefer.
| Metric | Type | Name | Topic | CAST 8.1.0 Assessment Model | Change | CAST 8.2.0 Assessment Model |
| 592 | quality-rule | Avoid Classes using "new" to allocate Instances but not defining a copy Constructor | Documentation english | name = Avoid Classes using "new" to allocate Instances but not defining a copy Construc... | Updated | name = Ensure you provide a user-defined copy constructor or disable copy when a class ... |
| 592 | quality-rule | Avoid Classes using "new" to allocate Instances but not defining a copy Constructor | Documentation english | rationale = A copy constructor is highly recommended to avoid surprises when an object is in... | Updated | rationale = If an object manages the allocation and deallocation of an object on the heap (t... |
| 592 | quality-rule | Avoid Classes using "new" to allocate Instances but not defining a copy Constructor | Documentation english | remediation = ... the class. | Updated | remediation = ... the class, or make the class non-copyable. |
| 1554 | quality-rule | Stored Procedure naming convention - prefix control (PL/SQL Oracle) | Technologies | [Forms, PL/SQL] | Updated | Removed: [Forms] |
| 1556 | quality-rule | Function naming convention - prefix control (PL/SQL Oracle) | Technologies | [Forms, PL/SQL] | Updated | Removed: [Forms] |
| 1558 | quality-rule | Package naming convention - prefix control | Technologies | [Forms, PL/SQL] | Updated | Removed: [Forms] |
| 1560 | quality-rule | Package Function naming convention - prefix control | Technologies | [Forms, PL/SQL] | Updated | Removed: [Forms] |
| 1562 | quality-rule | Package Stored Procedure naming convention - prefix control | Technologies | [Forms, PL/SQL] | Updated | Removed: [Forms] |
| 1564 | quality-rule | Cursor naming convention - prefix control | Technologies | [Forms, PL/SQL] | Updated | Removed: [Forms] |
| 1566 | quality-rule | Trigger naming convention - prefix control (PL/SQL Oracle) | Technologies | [Forms, PL/SQL] | Updated | Removed: [Forms] |
| 4064 | quality-rule | Avoid Functions and Procedures using an Insert, Update, Delete, Create Table or Select without including error management | Documentation english | name = Avoid Functions and Procedures using an Insert, Update, Delete, Create Table or ... | Updated | name = Avoid Procedures using an Insert, Update, Delete, Create Table or Select without... |
| 4064 | quality-rule | Avoid Functions and Procedures using an Insert, Update, Delete, Create Table or Select without including error management | Documentation english | output = ...rocedures or functions using an Insert, Update, Delete, Select or Create Table w... | Updated | output = ...rocedures using an Insert, Update, Delete, Select or Create Table without includ... |
| 4064 | quality-rule | Avoid Functions and Procedures using an Insert, Update, Delete, Create Table or Select without including error management | Documentation english | remediation = ...rocedures or functions using an Insert, Update, Delete, Select or Create Table | Updated | remediation = ...rocedures using an Insert, Update, Delete, Select or Create Table |
| 4576 | quality-rule | Provide accessors to Private Fields | Documentation english | description = ... fields. Accessors are identified using the following java bean naming conventi... | Updated | description = ... fields. Accessors are identified using the following java bean naming conven... |
| 4576 | quality-rule | Provide accessors to Private Fields | Documentation english | rationale = ...be accessed through accessors. | Updated | rationale = ...be accessed through accessors. The only exception is injected fields of classe... |
| 7254 | quality-rule | Declare as static all Methods not using Instance Fields | Documentation english | name = ...eclare as static all Methods not using Instance Fields | Updated | name = ...eclare as Static all methods not using instance members |
| 7262 | quality-rule | Avoid Namespaces with High Efferent Coupling (CE) | Operation | localSiteCountTotal = DIT_MANY_CLASS | Updated | localSiteCountTotal = DIT_DOTNET_NAMESPACE |
| 7264 | quality-rule | Avoid namespaces with High Afferent Coupling (CA) | Operation | localSiteCountTotal = DIT_MANY_CLASS | Updated | localSiteCountTotal = DIT_DOTNET_NAMESPACE |
| 7270 | quality-rule | Declare as static all Methods not using Instance Fields | Documentation english | name = ...eclare as static all Methods not using Instance Fields | Updated | name = ...eclare as Static all methods not using instance members |
| 7688 | quality-rule | Never truncate data in MOVE statements | Documentation english | total = Number of Cobol Programs | Removed | Missing |
| 7690 | quality-rule | Avoid unchecked return code (SQLCODE) after EXEC SQL query | Documentation english | associatedValueName = Associated Value | Updated | associatedValueName = Number of unchecked return codes |
| 7690 | quality-rule | Avoid unchecked return code (SQLCODE) after EXEC SQL query | Documentation english | description = ...ches for Cobol programs that access relational databases but do not check the SQ... | Updated | description = ...ches for COBOL programs that access relational databases without checking the SQ... |
| 7690 | quality-rule | Avoid unchecked return code (SQLCODE) after EXEC SQL query | Documentation english | output = This report lists all Cobol programs containing SQL queries which are not direct... | Updated | output = Associated to each COBOL Program with violations, the Quality Rule provides: -... |
| 7690 | quality-rule | Avoid unchecked return code (SQLCODE) after EXEC SQL query | Documentation english | rationale = ...function. Ideally, the SQL query and its associated return code check must be l... | Updated | rationale = ...function. Furthermore, the SQL query and its associated return code check should... |
| 7690 | quality-rule | Avoid unchecked return code (SQLCODE) after EXEC SQL query | Documentation english | remediationSample = ...XEC SQL SELECT ACT_NO, EENDDATE INTO :ACT-NO, :EENDDATE FROM MP_PROJ_ACT ... | Updated | remediationSample = ...XEC SQL SELECT ACT_NO, EENDDATE INTO :ACT-NO, :EENDDATE FROM MP_PROJ_AC... |
| 7690 | quality-rule | Avoid unchecked return code (SQLCODE) after EXEC SQL query | Documentation english | sample = ...XEC SQL SELECT ACT_NO, EENDDATE INTO :ACT-NO, :EENDDATE FROM MP_PROJ_ACT ... | Updated | sample = ...XEC SQL SELECT ACT_NO, EENDDATE INTO :ACT-NO, :EENDDATE FROM MP_PROJ_AC... |
| 7740 | quality-rule | Avoid cross-site scripting DOM vulnerabilities ( CWE-79 ) | Documentation english | description = ...s (XSS). The list of user input methods can be customized as well as the output... | Updated | description = ...s (XSS). The list of user input methods can be customized as well as the outp... |
| 7740 | quality-rule | Avoid cross-site scripting DOM vulnerabilities ( CWE-79 ) | Documentation english | output = ...bility : It provides the following information: - The full name of the method ... | Updated | output = ...bility : It provides the following information: - The full name of the method t... |
| 7742 | quality-rule | Avoid SQL injection vulnerabilities ( CWE-89 ) | Documentation english | description = ...ization. The list of user input methods, SQL execution method and as well as th... | Updated | description = ...ization. The list of user input methods, SQL execution method and as well as t... |
| 7746 | quality-rule | Avoid LDAP injection vulnerabilities ( CWE-90 ) | Documentation english | description = ...tocol ). The list of user input methods can be customized as well as the targe... | Updated | description = ...tocol ). The list of user input methods can be customized as well as the target... |
| 7748 | quality-rule | Avoid OS command injection vulnerabilities ( CWE-78 ) | Documentation english | description = ... flaws. The list of user input methods can be customized as well as the target... | Updated | description = ... flaws. The list of user input methods can be customized as well as the targe... |
| 7750 | quality-rule | Avoid XPath injection vulnerabilities ( CWE-91 ) | Documentation english | description = ... flaws. The list of user input methods can be customized as well as the target... | Updated | description = ... flaws. The list of user input methods can be customized as well as the targe... |
| 7752 | quality-rule | Avoid file path manipulation vulnerabilities ( CWE-73 ) | Documentation english | description = ... flaws. The list of user input methods can be customized as well as the target... | Updated | description = ... flaws. The list of user input methods can be customized as well as the targe... |
| 7854 | quality-rule | Database table naming convention - prefix control | Parameter #1: Prefix | values(SAP SQL) = [ZT] | Updated | values(SAP SQL) = [YT] |
| 7854 | quality-rule | Database table naming convention - prefix control | Parameter #2 | name = Prefix, type = text-list, description = Table naming convention | Removed | Missing |
| 7904 | quality-rule | Avoid SQL queries on XXL tables that no index can support | Parameter #1: threshold | values(Cobol) = No default values | Updated | values(Cobol) = [100000] |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a Spring bean | Documentation english | associatedValueName = ...tantiated Spring bean name | Updated | associatedValueName = ...tantiated managed bean name |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a Spring bean | Documentation english | description = Reports Spring bean and Java methods that call a constructor of the class used t... | Updated | description = Reports managed bean and Java methods that call a constructor of the class used ... |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a Spring bean | Documentation english | name = ...used as a Spring bean | Updated | name = ...used as a managed bean |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a Spring bean | Documentation english | output = ...plement a Spring bean and the Spring bean name It provides the following inform... | Updated | output = ...plement a managed bean and the managed bean name It provides the following info... |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a Spring bean | Documentation english | rationale = ...antiate a Spring bean, this bean benefits from different Spring key features: ... | Updated | rationale = ...antiate a managed bean, this bean benefits from different key features of the un... |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a Spring bean | Documentation english | remediation = Use only Spring beans and when you need different instances of the same class, u... | Updated | remediation = Use only managed beans and when you need different instances of the same class, ... |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a Spring bean | Documentation english | remediationSample = <bean id="myBean" class="sample.MyBean"> <property name="url"> <valu... | Updated | remediationSample = In the case of Spring <bean id="myBean" class="sample.MyBean"> <property n... |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a Spring bean | Documentation english | sample = <bean id="myBean" class="sample.MyBean"> <property name="url"> <value>htt... | Updated | sample = In the case of Spring <bean id="myBean" class="sample.MyBean"> <property nam... |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a Spring bean | Documentation english | total = ...ference a Spring bean java interface | Updated | total = ...ference a managed bean java interface |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a Spring bean | Operation | localSiteDiagnose = DIA_JEE_directSpringBean | Updated | localSiteDiagnose = DIA_JEE_directManagedBean |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a Spring bean | Operation | localSiteCountTotal = DIAG_JEE_SPRINGBEAN_TOTAL | Updated | localSiteCountTotal = DIAG_JEE_MANAGEDBEAN_TOTAL |
| 8044 | quality-rule | Avoid Log forging vulnerabilities ( CWE-117 ) | Documentation english | description = ...tion method can be customized. In Java, the Set methods of the Form Beans are au... | Updated | description = ...tion method can be customized. |
| 8096 | quality-rule | Avoid testing floating point numbers for equality | Documentation english | description = ...uality or non equal operation on floats: - float x == float y - float x != float... | Updated | description = ...uality or inequality operations on floating point variables: - float x == (...) ... |
| 8096 | quality-rule | Avoid testing floating point numbers for equality | Documentation english | rationale = ... a simple equality test fails. | Updated | rationale = ... a simple equality test fails. A comparison between a floating point number and ... |
| 8120 | quality-rule | Avoid using CALL FUNCTION without error handling BETA | Quality Contribution to 'Programming Practices - Error and Exception Handling' (61014) | Missing contribution | Added | critical = true, weight = 9 |
| 8122 | quality-rule | Avoid using CALL METHOD without error handling BETA | Quality Contribution to 'Programming Practices - Error and Exception Handling' (61014) | Missing contribution | Added | critical = true, weight = 9 |
| 8126 | quality-rule | Avoid using empty SELECT ... ENDSELECT loop BETA | Quality Contribution to 'Efficiency - SQL and Data Handling Performance' (61019) | Missing contribution | Added | critical = true, weight = 9 |
| 8128 | quality-rule | Avoid using UPDATE and DELETE without WHERE condition BETA | Quality Contribution to 'Efficiency - SQL and Data Handling Performance' (61019) | Missing contribution | Added | critical = true, weight = 9 |
| 8130 | quality-rule | Avoid using database hints BETA | Quality Contribution to 'Efficiency - SQL and Data Handling Performance' (61019) | Missing contribution | Added | critical = true, weight = 9 |
| 8132 | quality-rule | Avoid using CHECK, EXIT,or RETURN in SELECT ... ENDSELECT loops BETA | Quality Contribution to 'Efficiency - SQL and Data Handling Performance' (61019) | Missing contribution | Added | critical = true, weight = 9 |
| 8116 | quality-rule | Avoid calling system function (CALL 'cfunc') BETA | Quality Contribution to 'Secure Coding - API Abuse' (66063) | Missing contribution | Added | critical = true, weight = 9 |
| 8118 | quality-rule | Avoid using the RFC_ABAP_INSTALL_AND_RUN function BETA | Quality Contribution to 'Secure Coding - API Abuse' (66063) | Missing contribution | Added | critical = true, weight = 9 |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Quality Contribution to 'Efficiency - Expensive Calls in Loops' (66068) | Missing contribution | Added | critical = false, weight = 3 |
| 8124 | quality-rule | Do not use function module DB_EXISTS_INDEX (HANA) BETA | Quality Contribution to 'Programming Practices - Unexpected Behavior' (66069) | Missing contribution | Added | critical = true, weight = 9 |
| 8134 | quality-rule | Avoid unsorted data after SELECT queries BETA | Quality Contribution to 'Programming Practices - Unexpected Behavior' (66069) | Missing contribution | Added | critical = true, weight = 9 |
| 8138 | quality-rule | Beans with normal scope must be proxyable to avoid runtime errors | Quality Contribution to 'Programming Practices - Unexpected Behavior' (66069) | Missing contribution | Added | critical = true, weight = 7 |
| 8116 | quality-rule | Avoid calling system function (CALL 'cfunc') BETA | Definition | Missing | Added | active = false, detached = false |
| 8118 | quality-rule | Avoid using the RFC_ABAP_INSTALL_AND_RUN function BETA | Definition | Missing | Added | active = false, detached = false |
| 8120 | quality-rule | Avoid using CALL FUNCTION without error handling BETA | Definition | Missing | Added | active = false, detached = false |
| 8122 | quality-rule | Avoid using CALL METHOD without error handling BETA | Definition | Missing | Added | active = false, detached = false |
| 8124 | quality-rule | Do not use function module DB_EXISTS_INDEX (HANA) BETA | Definition | Missing | Added | active = false, detached = false |
| 8126 | quality-rule | Avoid using empty SELECT ... ENDSELECT loop BETA | Definition | Missing | Added | active = false, detached = false |
| 8128 | quality-rule | Avoid using UPDATE and DELETE without WHERE condition BETA | Definition | Missing | Added | active = false, detached = false |
| 8130 | quality-rule | Avoid using database hints BETA | Definition | Missing | Added | active = false, detached = false |
| 8132 | quality-rule | Avoid using CHECK, EXIT,or RETURN in SELECT ... ENDSELECT loops BETA | Definition | Missing | Added | active = false, detached = false |
| 8134 | quality-rule | Avoid unsorted data after SELECT queries BETA | Definition | Missing | Added | active = false, detached = false |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Definition | Missing | Added | active = false, detached = false |
| 8138 | quality-rule | Beans with normal scope must be proxyable to avoid runtime errors | Definition | Missing | Added | active = true, detached = false |
AIP 8.2.0 - 8.2.1
This section lists the results of a comparison between a CAST AIP 8.2.0 (no Service Pack) Assessment Model and the CAST AIP 8.2.1 Assessment Model. You can download the original compare_820_821.xlsx file (which you should open in Microsoft Excel) if you prefer.
| Metric | Type | Name | Topic | CAST 8.2.0 Assessment Model | Change | CAST 8.2.1 Assessment Model |
| 7270 | quality-rule | Declare as Static all methods not using instance members | Diagnosis | scopeID = 0, propertyID = 0 | Updated | scopeID = 610, propertyID = 140693 |
| 7270 | quality-rule | Declare as Static all methods not using instance members | Operation | localSiteDiagnose = DIAG_SCOPE_NETEMEM009 | Updated | localSiteDiagnose = null |
| 7270 | quality-rule | Declare as Static all methods not using instance members | Operation | localSiteCountTotal = DIT_MANY_METHOD | Updated | localSiteCountTotal = null |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a managed bean | Documentation english | remediationSample = ... Spring <bean id="myBean" class="sample.MyBean"> <property name="url"> ... | Updated | remediationSample = ... Spring <bean id="myBean" class="sample.MyBean"> <property name="url"> ... |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a managed bean | Documentation english | sample = ... Spring <bean id="myBean" class="sample.MyBean"> <property name="url"> ... | Updated | sample = ... Spring <bean id="myBean" class="sample.MyBean"> <property name="url"> ... |
| 8070 | quality-rule | Do not alter a control variable in the body of a 'for' statement | Documentation english | description = ...a control variable is altered. | Updated | description = ...a control variable is altered. We consider a variable as altered when we assign ... |
AIP 8.2.1 - 8.2.2
This section lists the results of a comparison between a CAST AIP 8.2.1 Assessment Model and the CAST AIP 8.2.2 Assessment Model. You can download the original compare_821_822.xlsx file (which you should open in Microsoft Excel) if you prefer.
| Metric | Type | Name | Topic | CAST 8.2.1 Assessment Model | Change | CAST 8.2.2 Assessment Model |
| 4578 | quality-rule | Good use of Interfaces with collections as Method return types | Diagnosis | scopeID = 0, propertyID = 0 | Updated | scopeID = 550, propertyID = 140694 |
| 4578 | quality-rule | Good use of Interfaces with collections as Method return types | Diagnosis | diagnosisValueType = object | Updated | diagnosisValueType = integer |
| 4578 | quality-rule | Good use of Interfaces with collections as Method return types | Operation | localSiteDiagnose = DIAG_SCOPE_JAVABEST015 | Updated | localSiteDiagnose = null |
| 4578 | quality-rule | Good use of Interfaces with collections as Method return types | Operation | localSiteCountTotal = DIAG_JAVA_ANA_METH_LAMB_TOTAL | Updated | localSiteCountTotal = null |
| 7670 | quality-rule | Avoid accessing SAP standard Tables in modification from custom code | Documentation english | description = ...amespace Custom components are identified as follows: - Their name starts with ... | Updated | description = ...amespace Note: Following tables are considered as custom tables and accessing t... |
| 8102 | quality-rule | Avoid hardcoded network resource names | Documentation english | description = ...d: - URLs - Paths - IP addresses Note: This quality rule implements the rule AS... | Updated | description = ...d: - URLs (of the form file:///c:/Tmp/Folder/ or http://host.com/folder) - Paths... |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Activation | active = false, detached = false | Updated | active = true |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Technologies | [Cobol] | Updated | Removed: [Cobol], Added: [JEE] |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Thresholds | [98.0, 99.0, 99.5, 99.99] | Updated | [50.0, 90.0, 95.0, 99.0] |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Parameter #1: threshold | values(Cobol) = [100] | Updated | values(Cobol) = No default values |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Parameter #1: threshold | values(JEE) = No default values | Updated | values(JEE) = [100] |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Documentation english | description = This rule lists Cobol Programs that access internal tables with a subscript rath... | Updated | description = This quality rules checks all the CDI Beans, that is all the classes and produce... |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Documentation english | name = Use indexes to access the table elements instead of Subscript | Updated | name = Beans with normal scope must be proxyable to avoid runtime errors |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Documentation english | output = This rule lists all Cobol Programs that define internal tables without any index... | Updated | output = This quality rule reports all the CDI beans which cannot be proxied. It handles... |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Documentation english | rationale = Using indexes to address a table is more efficient than using subscripts since t... | Updated | rationale = For a CDI Bean with a normal scope, the CDI contained will provide a proxy of th... |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Documentation english | reference = IBM Cobol - Best Practices and Recommendations | Updated | reference = https://docs.jboss.org/weld/reference/latest/en-US/html/injection.html#_client_p... |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Documentation english | remediation = Prefer to use index rather than subscript. Add an INDEXED clause in table defini... | Updated | remediation = Make sure that the injected class fulfills the constraints of a proxy class, cha... |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Documentation english | remediationSample = 01 DIRECT-TAX-RATE. 02 TAX-RATE PIC 99 OCCURS 5 TIMES INDEXED BY TX-INDEX. ...... | Updated | remediationSample = public class Producer{ @Produces @Dependent @Named("stringProvider") pu... |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Documentation english | sample = 01 DIRECT-TAX-RATE. 02 TAX-RATE PIC 99 OCCURS 5 TIMES. 01 TX-INDEX PIC X(10).... | Updated | sample = public class Producer{ @Produces @SessionScoped @Named("stringProvider") ... |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Documentation english | total = This quality rules checks all the CDI Beans, that is all the classes and produce... | Updated | total = Number of violations |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Diagnosis | scopeID = 100, propertyID = 140650 | Updated | scopeID = 528, propertyID = 140666 |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Operation | localSiteCountViolations = count-distinct | Updated | localSiteCountViolations = count |
| 8136 | quality-rule | Use indexes to access the table elements instead of Subscript | Quality Contribution to 'Efficiency - Expensive Calls in Loops' (66068) | critical = false, weight = 3 | Removed | Missing contribution |
| 8136 | quality-rule | Beans with normal scope must be proxyable to avoid runtime errors | Quality Contribution to 'Programming Practices - Unexpected Behavior' (66069) | Missing contribution | Added | critical = true, weight = 7 |
| 8138 | quality-rule | Beans with normal scope must be proxyable to avoid runtime errors | Definition | active = true, detached = false | Removed | Missing |
| 8138 | quality-rule | Beans with normal scope must be proxyable to avoid runtime errors | Quality Contribution to 'Programming Practices - Unexpected Behavior' (66069) | critical = true, weight = 7 | Removed | Missing contribution |
AIP 8.2.2 - 8.2.3
No difference.
AIP 8.2.3 - 8.2.4
This section lists the results of a comparison between a CAST AIP 8.2.3 Assessment Model and the CAST AIP 8.2.4 Assessment Model. You can download the original compare_823_824.xlsx file (which you should open in Microsoft Excel) if you prefer.
| Metric | Type | Name | Topic | CAST 8.2.3 Assessment Model | Change | CAST 8.2.4 Assessment Model |
| 7854 | quality-rule | Database table naming convention - prefix control | Parameter #1: Prefix | values(SAP SQL) = [YT] | Updated | values(SAP SQL) = [ZT, /, YT] |
| 7854 | quality-rule | Database table naming convention - prefix control | Operation | localSiteCountTotal = DIT_MANY_TABLES | Updated | localSiteCountTotal = DIT_MANY_TABLESRESOLVED |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a managed bean | Documentation english | output = ...a methods that call a constructor of the class used to implement a managed bean ... | Updated | output = ...a methods and jsp files that call a constructor of the class used to implement a... |
| 7964 | quality-rule | Avoid directly instantiating a Class used as a managed bean | Documentation english | total = ...f methods that reference a managed bean java interface | Updated | total = ...f methods or jsp files that reference a managed bean java interface |
AIP 8.2.4 - 8.2.5
This section lists the results of a comparison between a CAST AIP 8.2.4 Assessment Model and the CAST AIP 8.2.5 Assessment Model. You can download the original compare_824_825.xlsx file (which you should open in Microsoft Excel) if you prefer.
| Metric | Type | Name | Topic | CAST 8.2.4 Assessment Model | Change | CAST 8.2.5 Assessment Model |
| 7424 | quality-rule | Avoid using SQL queries inside a loop | Documentation english | sample = PreparedStatement updateSales; String updateString = "update COFFEES " + ... | Updated | sample = Oracle: for x in ( select * from t1 ) loop for y in ( select * from t2 where t... |
| 7424 | quality-rule | Avoid using SQL queries inside a loop | Documentation english | Missing | Added | remediationSample = Oracle: update table_name set co1 = (select z.SOMETHING_ELSE fro... |
AIP 8.2.5 - 8.2.6
This section lists the results of a comparison between a CAST AIP 8.2.5 Assessment Model and the CAST AIP 8.2.6 Assessment Model. You can download the original compare_825_826.xlsx file (which you should open in Microsoft Excel) if you prefer.
| Metric | Type | Name | Topic | CAST 8.2.5 Assessment Model | Change | CAST 8.2.6 Assessment Model |
| 2232 | quality-rule | Pages should use error handling page | Documentation english | reference = Java Enterprise Best Practices ISBN 13: 9780596003845 page 252 http://www.objec... | Updated | reference = http://blog.java-hoster.com/2010/java-course/how-to-manage-error-pages-in-java-w... |
| 8082 | quality-rule | Avoid Tables without Primary Key | Diagnosis | scopeID = 400, propertyID = 140202 | Updated | scopeID = 0, propertyID = 0 |
| 8082 | quality-rule | Avoid Tables without Primary Key | Operation | localSiteDiagnose = DIA_NOPOS_GENERIC_NUM | Updated | localSiteDiagnose = DIA_MANY_TABNOTINPKEY |
| 8082 | quality-rule | Avoid Tables without Primary Key | Operation | localSiteCountTotal = null | Updated | localSiteCountTotal = DIT_MANY_TABLES |
| 10201 | sizing-measure | Backfired Function Points | Parameter #1: BackFired FP ratio | values(Microsoft T-SQL) = No default values | Updated | values(Microsoft T-SQL) = [60.0] |
| 10201 | sizing-measure | Backfired Function Points | Parameter #1: BackFired FP ratio | values(Sybase T-SQL) = No default values | Updated | values(Sybase T-SQL) = [60.0] |
AIP 8.2.6 - 8.2.7
No difference.
AIP 8.2.7 - 8.2.8
This section lists the results of a comparison between a CAST AIP 8.2.7 Assessment Model and the CAST AIP 8.2.8 Assessment Model. You can download the original compare_827_828.xlsx file (which you should open in Microsoft Excel) if you prefer.
| Metric | Type | Name | Topic | CAST 8.2.7 Assessment Model | Change | CAST 8.2.8 Assessment Model |
| 7250 | quality-rule | Avoid String initialization with String object (created using the 'new' keyword) | Diagnosis | scopeID = 0, propertyID = 0 | Updated | scopeID = 540, propertyID = 140796 |
| 7250 | quality-rule | Avoid String initialization with String object (created using the 'new' keyword) | Diagnosis | diagnosisValueType = no-value | Updated | diagnosisValueType = integer |
| 7250 | quality-rule | Avoid String initialization with String object (created using the 'new' keyword) | Operation | localSiteDiagnose = DIAG_SCOPE_JAVAEMEM007 | Updated | localSiteDiagnose = null |
| 7250 | quality-rule | Avoid String initialization with String object (created using the 'new' keyword) | Operation | localSiteCountTotal = DIAG_JAVA_NA_ARTIFACT_TOTAL | Updated | localSiteCountTotal = null |
| 7510 | quality-rule | Use only Hibernate API to access to the database | Diagnosis | scopeID = 0, propertyID = 0 | Updated | scopeID = 554, propertyID = 140792 |
| 7510 | quality-rule | Use only Hibernate API to access to the database | Operation | localSiteDiagnose = DIAG_SCOPE_JEEAHML002 | Updated | localSiteDiagnose = null |
| 7510 | quality-rule | Use only Hibernate API to access to the database | Operation | localSiteCountTotal = DIAG_JEE_ANA_API_TOTAL | Updated | localSiteCountTotal = null |
| 7548 | quality-rule | Never use incompatible statements with the CICS environment | Documentation english | description = ...- DISPLAY - FD and SD - SELECT <file> ASSIGN TO - OPEN, CLOSE, READ, WRITE, REWR... | Updated | description = ...- DISPLAY UPON CONSOLE - DISPLAY UPON SYSPUNCH - FD and SD - SELECT <file> ASS... |
AIP 8.2.8 - 8.2.9
This section lists the results of a comparison between a CAST AIP 8.2.8 Assessment Model and the CAST AIP 8.2.9 Assessment Model. You can download the original compare_828_829.xlsx file (which you should open in Microsoft Excel) if you prefer.
| Metric | Type | Name | Topic | CAST 8.2.8 Assessment Model | Change | CAST 8.2.9 Assessment Model |
| 4602 | quality-rule | Avoid using Fields (non static final) from other Classes | Documentation english | description = ...concepts, Fields should not be accessed from outside the Class without going thr... | Updated | description = ...concepts, fields should not be accessed from outside the class without going thr... |
| 4602 | quality-rule | Avoid using Fields (non static final) from other Classes | Documentation english | Missing | Added | rationale = On of the fundamental concept of this rule is encapsulation: Hiding the internal... |
| 7210 | quality-rule | Avoid instantiations inside loops | Documentation english | description = ...instantiation occurs in a call to one of the following methods: . java.util.C... | Updated | description = ...instantiated object is one of the arguments of a call to one of the following me... |
| 7366 | quality-rule | File descriptor block must be defined with 0 record | Documentation english | description = ...al to 0. Note: VSAM files (identified by the INDEXED clause), sort files (SD), ... | Updated | description = ...al to 0. Note: VSAM files (identified by the INDEXED clause) and sort files (S... |
AIP 8.2.9 - 8.2.10
This section lists the results of a comparison between a CAST AIP 8.2.9 Assessment Model and the CAST AIP 8.2.10 Assessment Model. You can download the original compare_829_8210.xlsx file (which you should open in Microsoft Excel) if you prefer.
| Metric | Type | Name | Topic | CAST 8.2.9 Assessment Model | Change | CAST 8.2.10 Assessment Model |
| 3616 | quality-rule | Data Access must be based on Stored Procedure Calls | Documentation english | rationale = ...also limit the parsing phase of the SQL order. This generally result in better p... | Updated | rationale = ...also limits the parsing phase of the SQL order. This generally results in better... |
| 4602 | quality-rule | Avoid using Fields (non static final) from other Classes | Documentation english | description = ...concepts, fields should not be accessed from outside the class without going thr... | Updated | description = ...concepts, Fields should not be accessed from outside the Class without going thr... |
| 4612 | quality-rule | Avoid using native Methods (JNI) | Documentation english | description = ... that you consider to be safe. | Updated | description = ... that you consider to be safe. See : CWE-111: Direct Use of Unsafe JNI |
| 4612 | quality-rule | Avoid using native Methods (JNI) | Documentation english | reference = ...Java_Native_Interface#Pitfalls | Updated | reference = ...Java_Native_Interface#Pitfalls https://cwe.mitre.org/data/definitions/111.html |
| 7784 | quality-rule | Avoid Artifacts with lines longer than X characters | Documentation english | description = ...er and can be changed at will. | Updated | description = ...er and can be changed at will. For JAVA artifacts with annotation declared insid... |
| 2232 | quality-rule | Pages should use error handling page | Quality Contribution to 'Programming Practices - Error and Exception Handling' (61014) | critical = true, weight = 7 | Updated | critical = false, weight = 5 |
AIP 8.2.10 - 8.2.11
No difference.
AIP 8.2.11 - 8.2.12
This section lists the results of a comparison between a CAST AIP 8.2.11 Assessment Model and the CAST AIP 8.2.12 Assessment Model. You can download the original compare_8211_8212.xlsx file (which you should open in Microsoft Excel) if you prefer.
| Metric | Type | Name | Topic | CAST 8.2.11 Assessment Model | Change | CAST 8.2.12 Assessment Model |
| 2232 | quality-rule | Pages should use error handling page | Diagnosis | scopeID = 0, propertyID = 0 | Updated | scopeID = 555, propertyID = 140268 |
| 2232 | quality-rule | Pages should use error handling page | Operation | localSiteDiagnose = DIAG_SCOPE_JSPBEST002 | Updated | localSiteDiagnose = null |
| 2232 | quality-rule | Pages should use error handling page | Operation | localSiteCountTotal = DIAG_JSP_PAGE_DESC_TOTAL | Updated | localSiteCountTotal = null |
| 4602 | quality-rule | Avoid using Fields (non static final) from other Classes | Documentation english | description = ...rs should be relatively rare." | Updated | description = ...rs should be relatively rare.". Fields of an INNER class are considered as inter... |
| 7210 | quality-rule | Avoid instantiations inside loops | Documentation english | description = ...lace . and any method with the same name in their respective derived classes ... | Updated | description = ...lace . java.util.stream.Stream.map . and any method with the same name in ... |
| 7442 | quality-rule | Avoid to use this within Constructor in multi-thread environment | Diagnosis | scopeID = 0, propertyID = 0 | Updated | scopeID = 545, propertyID = 5008 |
| 7442 | quality-rule | Avoid to use this within Constructor in multi-thread environment | Operation | localSiteDiagnose = DIAG_SCOPE_JAVASCTS003 | Updated | localSiteDiagnose = null |
| 7442 | quality-rule | Avoid to use this within Constructor in multi-thread environment | Operation | localSiteCountTotal = DIAG_JAVA_CONS_TOTAL | Updated | localSiteCountTotal = null |
| 7446 | quality-rule | Avoid double checked locking | Diagnosis | scopeID = 0, propertyID = 0 | Updated | scopeID = 557, propertyID = 140861 |
| 7446 | quality-rule | Avoid double checked locking | Operation | localSiteDiagnose = DIAG_SCOPE_JAVASCTS001 | Updated | localSiteDiagnose = null |
| 7446 | quality-rule | Avoid double checked locking | Operation | localSiteCountTotal = DIAG_JAVA_ANA_SYNCH_TOTAL | Updated | localSiteCountTotal = DSS_DIAG_SCOPE_GENERIC_NUM |
AIP 8.2.12 - 8.2.13
No difference.
AIP 8.2.13 - 8.2.14
No difference.
AIP 8.2.14 - 8.2.15
No difference.