Code Correctness: Call to System.gc() Abstract Explicit requests for garbage collection are a bellwether indicating likely performance problems....

J2EE Bad Practices: Sockets Abstract Socket-based communication in web applications is prone to error. Description The J2EE standard...

J2EE Bad Practices: getConnection() Abstract The J2EE standard forbids the direct management of connections. Description The J2EE standard...

Object Model Violation: Just One of equals() and hashCode() Defined Abstract This class overrides only one of equals() and hashCode(). ...

Often Misused: Authentication Abstract Attackers can spoof DNS entries. Do not rely on DNS names for security. Description Many DNS...

Often Misused: Exception Handling Abstract The _alloca() function can throw a stack overflow exception, potentially causing the program to crash....

Often Misused: File System Abstract Passing an inadequately-sized output buffer to a path manipulation function can result in a buffer overflow....

Often Misused: Privilege Management Abstract Failure to adhere to the principle of least privilege amplifies the risk posed by other...

Often Misused: String Management Abstract Functions that convert between Multibyte and Unicode strings encourage buffer overflows. ...

Poor Style: Explicit call to finalize() Abstract The finalize() method should only be called by the JVM after the object has been garbage...