SpotBugs Bug Detector Report
The following document contains the results of SpotBugs
SpotBugs Version is 4.3.0
Threshold is medium
Effort is default
Summary
| Classes |
Bugs |
Errors |
Missing Classes |
| 18 |
4 |
0 |
0 |
org.eclipse.jgit.gpg.bc.internal.BouncyCastleGpgKeyLocator
| Bug |
Category |
Details |
Line |
Priority |
| new org.eclipse.jgit.gpg.bc.internal.BouncyCastleGpgKeyLocator(String, BouncyCastleGpgKeyPassphrasePrompt) may expose internal representation by storing an externally mutable object into BouncyCastleGpgKeyLocator.passphrasePrompt |
MALICIOUS_CODE |
EI_EXPOSE_REP2 |
170 |
Medium |
| Redundant nullcheck of secretKey, which is known to be non-null in org.eclipse.jgit.gpg.bc.internal.BouncyCastleGpgKeyLocator.findSecretKeyForKeyBoxPublicKey(PGPPublicKey, Path) |
STYLE |
RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE |
518 |
Medium |
org.eclipse.jgit.gpg.bc.internal.BouncyCastleGpgSignatureVerifier
| Bug |
Category |
Details |
Line |
Priority |
| Redundant nullcheck of keyId, which is known to be non-null in org.eclipse.jgit.gpg.bc.internal.BouncyCastleGpgSignatureVerifier.verify(byte[], byte[]) |
STYLE |
RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE |
176 |
Medium |
org.eclipse.jgit.gpg.bc.internal.BouncyCastleGpgSigner
| Bug |
Category |
Details |
Line |
Priority |
| Redundant nullcheck of gpgKey, which is known to be non-null in org.eclipse.jgit.gpg.bc.internal.BouncyCastleGpgSigner.canLocateSigningKey(String, PersonIdent, CredentialsProvider, GpgConfig) |
STYLE |
RCN_REDUNDANT_NULLCHECK_OF_NONNULL_VALUE |
99 |
Medium |
