Created by James Hurrell, last modified on Jul 21, 2020
2.0.21
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 27481 | Missing Angular Resource services |
| 27128 | HTML5 Get HTTPRequest Object Deleted in current run |
2.0.20
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 26452 | Service objects should be created when url contains a filename extension (.html, .jsp...) on parameters side of the url. |
2.0.19
Note
HTML5 and JavaScript 2.0.19 is now in LTS (Long Term Support).
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 25371 | JavaScript: Too many wrong links between JavaScript objects. |
| 25503 | HTML analysis warning: HTML5-005 Internal issue in parsing one statement. |
Other Updates
| Details |
|---|
| Javascript diags must be computed on html, jsp.. files. |
| Many missing violations for "Avoid using forEach()" diag. |
| Javascript libraries or tests must be skipped. |
2.0.18-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 24781 | HTML5 missing resource service object when src attribute with iframe tag is used. |
| 24807 | Missing links between HTML5 POST service operation to Struts Operation. |
| 24586 | HTML analysis: missing resource service object due to which link is not created to struts operation. |
| 24732 | HTML analysis warning: HTML5-005 Internal issue in parsing one statement. |
| 25060 | Missing link between jsp page and js function. |
Link Improvements
| Callee Type | Caller Type | Details |
|---|
| Javascript functions | All | Enhancements on links found through "module.exports" (HTMLVJS-680, HTMLVJS-689, HTMLVJS-689). |
| All | All | When the directory "dist" is mentioned as include in a file, it is redirected to "src" directory. (HTMLVJS-679). |
Other Updates
| Details |
|---|
| feedback.js file must not be skipped as a library and PaxHeader folder must be skipped |
| Analysis was stuck on some full parsings (infinite loop). |
| HTML files containing ""https://glassfish.dev.java.net" should be skipped because libraries. |
| XHTML files must be managed as jsp files to avoid duplicated LOC. |
| folders "tests" and files "*.test.js" must be filtered. |
| Filter on prototype.js must be removed and other filters must be added (files containing "http://webfx.eae.net" or "http://prototype.conio.net"). |
| Do not create resource services with "about:blank" as url. |
| Remove "<%= ... %>" from resource services urls. |
| src\assets\Ignite UI\js\extensions\igniteui-angular.js (and others) should be filtered in filter.json. |
| HTML5 extension is deleting too many links at application level (caller or callee with ObjTyp 1000007: UA files). |
2.0.17-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 21278 | LoC is displayed as 0 for JSP files when analyzed though AIP console and no java files are present |
| 23238 | Extension HTML5/Javascript draws an access read link to the parent file whenever encountering key word window in a JS method |
| 23463 | Missing Html5 Post HttpRequest Service which in turn results in missing links to Struts Operation. |
| 23860 | Inconsistencies between "Avoid undocumented Classes" and "Avoid Classes with a very low comment/code ratio" |
| 23430 | Missing links between two HTML JS function |
| 23412 | HTML analysis crash: Extension com.castsoftware.html5 has encountered an issue |
| 23662 | Missing links between two HTML JS function |
| 23898 | Analysis is failing with error "Fatal Python error: Cannot recover from stack overflow" |
Other Updates
| Details |
|---|
& inside <script> in jsp |
| Service call through WLResourceRequest |
| Resolution enhancements |
| URL used in JSP files will be found in properties files |
| Update links positions which are on whole object to the first character. |
| Bug in request(type, url) form of superagent framework |
| Many web service objects created pointing to same line of code source |
| .NET web support removed and managed by .NET Web services |
| Do no create resource services when url points to a html and .jsp file. |
| HTMLVJS introduces a new techno, but does not configure it for APO (and CED) : COST_CONFIG_DATA must be initialized in a .pck |
| Support of data binding between ASPX files and .NET methods (VB and C#) |
| An http resource should not appear with an existing ASPX file as url |
New Support
| Summary | Details |
|---|
| Support of scss files | Support of scss files |
2.0.16-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 22648 | HTML warning: ANGULARJS-005 Internal issue parsing child statement |
| 22769 | HTML5-004 Internal issue creating Request |
| 22996 | HTML5-005 Internal issue in parsing one statement |
Other Updates
| Details |
|---|
| Linux support |
| Missing 1 character for bookmark on CallPart |
| Missing callLink between operation and handler function |
| Support of "data-*" in razor. |
| Razor support enhancement |
| Missing webservices (url evaluation enhancement) |
| Support of assignments with brackets on the left side |
Rules
| Rule Id | New Rule | Details |
|---|
| 7388 | FALSE | False violations with diag "Avoid artifacts having recursive calls" |
| 1020084 | FALSE | False violations with diag "Avoid unreferenced Functions (Javascript/HTML5)" |
2.0.15-funcrel
Note
As a direct consequence of a fix (HTMLVJS-620) implemented to improve LOC values for .jsx files, the global LOC value could increase for some JavaScript applications and all ReactJS applications.
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 22188 | 0 LOC count for .jsx files |
Other Updates
| Details |
|---|
| Identifier Internal fullname is wrong when identifier name starts with "this.something." |
Rules
| Rule Id | New Rule | Details |
|---|
| 1020454 | FALSE | Avoid using React dangerouslySetInnerHTML violation raised for commented code. |
| 7156 | TRUE | Implementation of "Avoid Too Many Copy Pasted Artifacts" |
2.0.14-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 17858 | Incorrect description for rule "Avoid unreferenced Functions (Javascript/HTML5)" |
| 21433 | False positive Avoid hardcoded passwords (Javascript) |
| 21596 | HTML5 Warning - HTML5-005 Internal issue in parsing one statement |
| 21853 | com.castsoftware.html5 has encountered an issue : RuntimeError: maximum recursion depth exceeded and analysis stuck at js file |
| 19770 | Computing metrics on main.css does not end |
| 21804 | Wrong HTML5 function objects created that point to variables |
Other Updates
| Details |
|---|
| Additional libraries excluded from analysis by default. The following libraries are now excluded from analysis by default using filters.json. Upgrading to this release of the extension and running a new analysis with unchanged source code will impact your results (less lines of code, less objects and potentially less violations if the violations were on found in these libraries): adapt-strap api-check atomic-core blowfish chart css3pie enquire es6-shim feedback hbs jasmine jqgrid jquery.inputmask jquery-mobile jsonform lazysizes livepipe mobiscroll ngFlowchart pickadate prism rgraph swagger tealeaf timeline tv4 velocity yui |
| Some bugs in string evaluations concerning callers positions stack |
| Support of recursivity for item access in object value for evaluation |
| Exception in resolution |
Rules
| Rule Id | New Rule | Details |
|---|
| 1020058 | FALSE | Updated the rule Documentation for "Avoid using eval() (Javascript)" |
| Summary |
|---|
| HTMLVJS-597 - Improve big file analysis |
2.0.13-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 20702 | Issue in the log file: AttributeError: 'HtmlContent' object has no attribute 'parent |
Other Updates
| Details |
|---|
| Update rules documentation |
| Cannot compute metrics on ... for file mespeak.full.js |
| Issue in the log file: TypeError: argument of type 'NoneType' is not iterable |
| All files starting with the name "Vue.js v" (such as Vue.js v2.6.11) are excluded from the analysis. |
2.0.12-funcrel
Other Updates
| Details |
|---|
| Update rules documentation |
Better resolution of html tags under <script> tags |
| Evaluations of ObjectValue (technical) |
2.0.11-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 17834 | HTML5 technology not defined for the "Reuse by call distribution" |
| 19771 | HTML5 analysis getting stuck during analysis for some JS files |
| 19773 | Javascript fragments are not analyzed in html |
| 20039 | LOC count decrease due to a crash in HTML5 analyser |
Other Updates
| Details |
|---|
| Support of dynamic function names ex: async ARTICLE_EDIT {} where ARTICLE_EDIT is a variable with value "editArticle" |
| Improved HTML parsing |
| Rule "Avoid blocking page loading with synchronous Javascript import" gives no violations on dashboard for jsp files. |
| Support evaluation string interpolation methods: Array.join([separator]) and String.concat() |
| Wrong link and missing link from jsp to javascript functions |
Rules
| Rule Id | New Rule | Details |
|---|
| 1020102 | FALSE | Update the rule description "Always use JSON.parse & JSON.stringify with try/catch block (Javascript)" |
| 1020004 | FALSE | Update the rule description "Avoid using querySelectorAll" |
| 1020050 | FALSE | Update the rule description "Avoid white-listing the "dirname" attribute in user generated content" |
| 1020040 | FALSE | Update the rule description "Avoid using delete with no object properties" |
New Support
| Summary | Details |
|---|
| Support of falcor library | Support of falcor library |
| Support of AWS Amplify library for REST API calls | Support of AWS Amplify library for REST API calls |
| Support of .vue, .yaml files | Support of .vue, .yaml files |
2.0.10-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 19221 | Missing resource service objects from JSP files should be generated by HTML5 analyzer which leading missing link between JSP to JAVA |
| 18721 | False detection of CAST-AIP rule "Avoid using Javascript Function constructor" |
| 18441 | Missing HTML5 POST/GET Resource due to struts-nested tag |
Other Updates
| Details |
|---|
| Add resolution from call to a class |
| Files located in local_modules directory are no longer analyzed (NodeJS libraries). |
| HTML5-001 Internal issue analyzing jsp file: category.jsp could not be parsed. |
| Expecting links from jsp to spring mvc operations |
| Calls of functions unlinked |
| HTML5 throws warnings like "Problem when converting user defined extensions" |
| Resolution of incorrect parsing with expressions inside parentheses. Many new links may be resolved New functions can appear. Some previously incorrect links will be removed for code where prefix of function calls are between parentheses (see example below). Before correction, there was a call link to a split function if such a function existed in code because the parenthesised expression was not seen, example: (string_expression).split() Some evaluations have been improved due to better resolution of this type of code (see example below). Before correction, "hcall()" was not replaced with "{}": url = fcall() + "part1" + hcall() + "part2"; |
Rules
| Rule Id | New Rule | Details |
|---|
| 1020000 | FALSE | Avoid Artifacts with High Cyclomatic Complexity (HTML5/Javascript) has wrong associatedValueResultType in metric tree |
2.0.9-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 16211 | Call from jsp thanks to jstl c:url call |
Other Updates
| Details |
|---|
| Problem with evaluation, some urls were wrongly evaluated. |
| Problem with parsing: a function is not analyzed |
| Problem with parsing when 2 functions are defined, separated by a "," instead of a ";" |
| Incorrect evaluation of URL: support of parentheses expressions. |
| Problem with bookmark end positions for AnyExpression |
| Exception in javascript resolution |
| Module exports are not detected, resolution was not correct when "module.exports" was before the function it points to. |
Rules
| Rule Id | New Rule | Details |
|---|
| 102008 | FALSE | False Violation for HTML5 Object and incorrect total checks for the QR "102008: Avoid Artifacts with lines longer than X characters". |
2.0.8-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 17770 | BFP not calculated for HTML5 technology |
Other Updates
| Details |
|---|
| Better warnings in log file |
| Problem of parsing with async methods |
| BackFired Function Point ratio is now computed |
| Libraries dogox and dijiit excluded |
Rules
| Rule Id | New Rule | Details |
|---|
| 1020058 | FALSE | Title of the rule changed to Avoid using eval() (Javascript) |
New Support
| Summary | Details |
|---|
| Support of .yml files | Support of .yml files |
2.0.7-funcrel
Other Updates
| Details |
|---|
| Non-resolved query parameters in HTML5 Post XMLHttpRequest service |
| Better url management when simple quotes were present instead of double quotes in xml attributes. |
| Get proper url when method is specified within a "struts-tags" taglib |
| Do better management with unclosed tags in html files |
Rules
| Rule Id | New Rule | Details |
|---|
| 1020104 | TRUE | Avoid hardcoded passwords (Javascript) |
2.0.6-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 16727 | HTML5 analysis running improved performance |
| 17218 | "Plugin has encountered a problem" warning for HTML during "Run extensions at app level" step |
Other Updates
| Details |
|---|
| Evaluation issue on SIM |
| Do not create resource services corresponding to empty urls |
| Non-filtered resolution of JavaScript function calls with multiple files |
| Missing web service from <jsp:forward ...> |
| Missing url from "form" element in .jsp files |
| Missing links from jsp to struts |
2.0.5-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 16850 | New HTML5/JavaScript extension is inserting meaningless information into the object fullname |
Other Updates
| Details |
|---|
| Sanitize url extraction from "form" element in .jsp files |
| Remove useless URL calls |
| Resources are no longer created when url is on a file which exists in the analysis (ex: jsp files, html files, and ico files). |
| New Object Fullnames |
2.0.4-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 16703 | Wrong bookmark for an Http service. |
| 16698 | Link to Request service does not come from the right object. |
Other Updates
| Details |
|---|
| Correction on call links to request services. Sometimes, caller was not the right object. |
| Correction on objects/links positions in html and jsp files |
2.0.3-funcrel
Note
testing
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 16457 | Minor correction on HTTP Request Service which were not found in jsp files. |
| 16703 | Correction on cyclomatic complexity and length of longest line. Before correction, these metrics were wrong because, for a function including a function, the complexity and length of longer lines of the sub function were added to those of the main function. Therefore results may be impacted after upgrading to this extension release and performing a post upgrade consistency snapshot on unchanged source code. |
| 16698 | Minor correction on entry-point definition. |
Other Updates
| Details |
|---|
| Minor correction on misleading "file skipped" messages in log file when analyzing typescript files (extension *.ts) |
New Support
| Summary | Details |
|---|
| Support of file extensions manually added in CAST Management Studio | Any files delivered with these custom extensions will be analyzed as .html, .jsp or .js file depending on the detection made by the analyzer. |
| JSPX files automatically analyzed | *.jspx will now automatically be taken into account during the analysis. These files will be analyzed as .jsp files. Therefore, after an upgrade to 2.0.3 and the generation of a post–upgrade snapshot on unchanged source code, results may be impacted if your delivery contains these file types. |
2.0.2-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 15988 | Reference pattern (eFile to Bean) is not working in CAST AIP 8.3.6 |
New Support
| Summary | Details |
|---|
| JSF (.jsf and .jsff) files automatically analyzed | These files will be analyzed as .jsp files. Therefore, after an upgrade to 2.0.2 and the generation of a post–upgrade snapshot on unchanged source code, results may be impacted if your delivery contains these file types. |
| Jade files automatically analyzed | Updates has been made to support the IBM EAD4J Jade framework |
2.0.1-funcrel
New Support
| Summary | Details |
|---|
| Infragistics, MicrosoftAjax, raphael, morris, wysihtml5, chosen libraries automatically skipped | The following libraries are now skipped : infragistics, MicrosoftAjax, raphael, morris, wysihtml5, chosen |
| config libraries from node.js are properly taken into account for string evaluation | When json files are present in a config directory with data initializations, these files are used for string evaluation when the 'config' library is referred to through "require" statement. |
2.0.0-funcrel
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 15806 | HTML5-001 internal issue analyzing jsp files |
| 15703 | Perm fix: Missing links between javascript components |
| 15611 | Missing HTML5 get HTTPRequest Service |
| 15469 | Extension com.castsoftware.html5 has encountered an issue because of checksum saving |
| 15340 | Missing link from HTML5 JSP Content to HTLM5 post HttpsRequest service |
| 15286 | HTML5-005 Internal issue in parsing one statement |
| 15131 | HTML5 analyzer should create an object (HTML5 POST request service) |
| 15130 | Missing links between HTML5 JSP Content to Spring MVC Operation |
| 14887 | Perm fix: Cyclomatic complexity of HTML files is incorrect |
| 15105 | HTML5 analyzer should create an object (HTML5 POST request service) |
| 14751 | REACTJS-001 Internal issue |
| 14391 | HTML Files are not getting analyzed |
| 14311 | False positive is coming for rule "Avoid unreferenced Functions" (1020084) |
| 15510 | False positive is coming for rule "Avoid unreferenced Functions" (1020084) |
Rules
| Rule Id | New Rule | Details |
|---|
| 1020084 | FALSE | False positive is coming for rule "Avoid unreferenced Functions" |
New Support
| Summary | Details |
|---|
| Support export function parser | The analyzer will now recognize the "(param)" in "require('f1')(param)" as a function call. |
| Support node-fetch annotations to call webservice | Support node-fetch annotations to call webservice |
| Support requireJS framework for global resolution | The following code is now supported: define(['dep1', 'dep2'], function (dep1, dep2) { //Define the module value by returning a value. return function () {}; }); |
| Support require() for any expression | The analyzer will now correctly identify the node.js file and all "require()" are supported. |
| Support of index.js files which are referenced by default through require statements | The analyzer will recognize that this refers to an index.js file in the "db" folder, if db.js does not exist: var db = require('../db'); |
2.0.0-beta4
Other Updates
| Details |
|---|
| Log enhancement (adding the information about why a specific file is skipped). |
Rules
New Support
| Summary | Details |
|---|
| Support of jsp:plugin annotation | Handled in .jsp files in order to have links to applets introducing two new objects HTML5 Applet class reference and J2EE HTML5 Applet |
2.0.0-beta3
Other Updates
| Details |
|---|
| Cleaning and refactoring of HTML5 resolution. |
2.0.0-beta2
Other Updates
| Details |
|---|
| Cleaning and refactoring of HTML5 resolution. |
2.0.0-beta1
Resolved Issues
| Customer Ticket Id | Details |
|---|
| 14007 | async javascript functions are not analyzed |
| 14233 | HTML Files are not getting analyzed |
New Support
