hiifong/pmd
1
0
Fork 0
forked from phoedos/pmd
Code Pull Requests Activity
28,283 Commits 16 Branches 123 Tags 510 MiB
Commit Graph

28283 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Andreas Dangel
a4cac6b74f Update @chonton as a contributor 2024-08-29 12:46:30 +02:00
Andreas Dangel
93db59bea5 Apply suggestions from code review 2024-08-29 12:41:02 +02:00
Charles Honton
8a39917fa2 added unit test 2024-08-22 13:54:17 -07:00
Charles Honton
3dd47a3b94 update AvoidSynchronizedAtMethodLevel message to mention ReentrantLock 
see https://openjdk.org/jeps/8337395
 2024-08-22 08:20:06 -07:00
Juan Martín Sotuyo Dodero
07f96e79ad Merge pull request #5171 from pmd/dependabot/maven/net.bytebuddy-byte-buddy-agent-1.14.19 
Bump net.bytebuddy:byte-buddy-agent from 1.14.12 to 1.14.19
 2024-08-19 01:47:04 -03:00
dependabot[bot]
42468d769a Bump net.bytebuddy:byte-buddy-agent from 1.14.12 to 1.14.19 
Bumps [net.bytebuddy:byte-buddy-agent](https://github.com/raphw/byte-buddy) from 1.14.12 to 1.14.19.
- [Release notes](https://github.com/raphw/byte-buddy/releases)
- [Changelog](https://github.com/raphw/byte-buddy/blob/master/release-notes.md)
- [Commits](https://github.com/raphw/byte-buddy/compare/byte-buddy-1.14.12...byte-buddy-1.14.19)

---
updated-dependencies:
- dependency-name: net.bytebuddy:byte-buddy-agent
  dependency-type: direct:development
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-19 03:50:15 +00:00
dependabot[bot]
2192256b5a Bump jekyll and github-pages (#5165) 
Bumps the all-gems group with 1 update in the /docs directory: [jekyll](https://github.com/jekyll/jekyll).


Updates `jekyll` from 3.9.5 to 3.10.0
- [Release notes](https://github.com/jekyll/jekyll/releases)
- [Changelog](https://github.com/jekyll/jekyll/blob/master/History.markdown)
- [Commits](https://github.com/jekyll/jekyll/compare/v3.9.5...v3.10.0)

Updates `github-pages` from 231 to 232
- [Release notes](https://github.com/github/pages-gem/releases)
- [Commits](https://github.com/github/pages-gem/compare/v231...v232)

---
updated-dependencies:
- dependency-name: jekyll
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-gems
- dependency-name: github-pages
  dependency-type: direct:production
  update-type: version-update:semver-major
  dependency-group: all-gems
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-13 12:54:41 +02:00
dependabot[bot]
623de394ec Bump org.apache.maven.plugins:maven-site-plugin from 4.0.0-M13 to 4.0.0-M16 (#5149) 
Bumps [org.apache.maven.plugins:maven-site-plugin](https://github.com/apache/maven-site-plugin) from 4.0.0-M13 to 4.0.0-M16.
- [Commits](https://github.com/apache/maven-site-plugin/compare/maven-site-plugin-4.0.0-M13...maven-site-plugin-4.0.0-M16)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-site-plugin
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-08-13 12:53:15 +02:00
Juan Martín Sotuyo Dodero
aa64ec3894 Merge pull request #5164 from pmd/dependabot/maven/org.apache.maven.plugins-maven-dependency-plugin-3.7.1 
Bump org.apache.maven.plugins:maven-dependency-plugin from 3.6.1 to 3.7.1
 2024-08-12 10:28:54 -03:00
dependabot[bot]
cc5fc196c5 Bump org.apache.maven.plugins:maven-dependency-plugin 
Bumps [org.apache.maven.plugins:maven-dependency-plugin](https://github.com/apache/maven-dependency-plugin) from 3.6.1 to 3.7.1.
- [Release notes](https://github.com/apache/maven-dependency-plugin/releases)
- [Commits](https://github.com/apache/maven-dependency-plugin/compare/maven-dependency-plugin-3.6.1...maven-dependency-plugin-3.7.1)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-dependency-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-12 03:37:24 +00:00
Juan Martín Sotuyo Dodero
3b105ca70b Merge pull request #5161 from pmd/dependabot/bundler/all-gems-d2126d6a76 
Bump danger from 9.4.3 to 9.5.0 in the all-gems group across 1 directory
 2024-08-05 06:21:42 -03:00
Juan Martín Sotuyo Dodero
913c44b3e4 Merge pull request #5160 from pmd/dependabot/maven/org.pcollections-pcollections-4.0.2 
Bump org.pcollections:pcollections from 3.2.0 to 4.0.2
 2024-08-05 06:20:41 -03:00
dependabot[bot]
c5de5d67a0 Bump danger from 9.4.3 to 9.5.0 in the all-gems group across 1 directory 
Bumps the all-gems group with 1 update in the / directory: [danger](https://github.com/danger/danger).


Updates `danger` from 9.4.3 to 9.5.0
- [Release notes](https://github.com/danger/danger/releases)
- [Changelog](https://github.com/danger/danger/blob/master/CHANGELOG.md)
- [Commits](https://github.com/danger/danger/commits)

---
updated-dependencies:
- dependency-name: danger
  dependency-type: direct:production
  update-type: version-update:semver-minor
  dependency-group: all-gems
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-05 03:57:58 +00:00
dependabot[bot]
49cfe186ae Bump org.pcollections:pcollections from 3.2.0 to 4.0.2 
Bumps [org.pcollections:pcollections](https://github.com/hrldcpr/pcollections) from 3.2.0 to 4.0.2.
- [Changelog](https://github.com/hrldcpr/pcollections/blob/master/CHANGELOG.md)
- [Commits](https://github.com/hrldcpr/pcollections/compare/v3.2.0...v4.0.2)

---
updated-dependencies:
- dependency-name: org.pcollections:pcollections
  dependency-type: direct:production
  update-type: version-update:semver-major
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-08-05 03:18:42 +00:00
Juan Martín Sotuyo Dodero
10add3f0f7 Merge pull request #5148 from pmd/dependabot/maven/org.apache.commons-commons-text-1.12.0 
Bump org.apache.commons:commons-text from 1.11.0 to 1.12.0
 2024-07-29 09:08:18 -03:00
dependabot[bot]
65b6d5e796 Bump org.apache.commons:commons-text from 1.11.0 to 1.12.0 
Bumps org.apache.commons:commons-text from 1.11.0 to 1.12.0.

---
updated-dependencies:
- dependency-name: org.apache.commons:commons-text
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
 2024-07-29 03:54:56 +00:00
Juan Martín Sotuyo Dodero
9ea10ecbe3 Merge pull request #5146 from adangel/issue-5139-apex-operationwithhighcostinloop 
[apex] Fix parsing of triggers with declarations
 2024-07-27 16:25:03 -03:00
Andreas Dangel
3735fd145b [apex] Fix parsing of triggers with declarations 
Only the grandchildren of a trigger block were ending up in the tree,
but the direct children of triggerBlock were missing, e.g.
ForLoopStatement. This caused OperationWithHighCostInLoop to not
find the loop anymore in triggers.

This will probably fix other false negatives in triggers in
other rules as well.

Fixes #5139
 2024-07-27 20:17:25 +02:00
dependabot[bot]
d2fbe14afa Bump org.codehaus.mojo:versions-maven-plugin from 2.16.2 to 2.17.1 (#5144) 
Bumps [org.codehaus.mojo:versions-maven-plugin](https://github.com/mojohaus/versions) from 2.16.2 to 2.17.1.
- [Release notes](https://github.com/mojohaus/versions/releases)
- [Changelog](https://github.com/mojohaus/versions/blob/master/ReleaseNotes.md)
- [Commits](https://github.com/mojohaus/versions/compare/2.16.2...2.17.1)

---
updated-dependencies:
- dependency-name: org.codehaus.mojo:versions-maven-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-26 18:06:14 +02:00
dependabot[bot]
b7d9eaaa97 Bump org.apache.maven.plugins:maven-compiler-plugin from 3.12.1 to 3.13.0 (#5142) 
Bumps [org.apache.maven.plugins:maven-compiler-plugin](https://github.com/apache/maven-compiler-plugin) from 3.12.1 to 3.13.0.
- [Release notes](https://github.com/apache/maven-compiler-plugin/releases)
- [Commits](https://github.com/apache/maven-compiler-plugin/compare/maven-compiler-plugin-3.12.1...maven-compiler-plugin-3.13.0)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-compiler-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-26 17:46:08 +02:00
dependabot[bot]
dacc8b114b Bump org.apache.maven.plugins:maven-checkstyle-plugin from 3.3.1 to 3.4.0 (#5141) 
Bumps [org.apache.maven.plugins:maven-checkstyle-plugin](https://github.com/apache/maven-checkstyle-plugin) from 3.3.1 to 3.4.0.
- [Commits](https://github.com/apache/maven-checkstyle-plugin/compare/maven-checkstyle-plugin-3.3.1...maven-checkstyle-plugin-3.4.0)

---
updated-dependencies:
- dependency-name: org.apache.maven.plugins:maven-checkstyle-plugin
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
 2024-07-26 17:36:58 +02:00
Juan Martín Sotuyo Dodero
98e20a0feb Merge pull request #5135 from adangel/issue-5132-plsql-tomkytesdespair 
[plsql] Fix TomKytesDespair for more complex exception handlers
 2024-07-26 08:11:15 -03:00
Juan Martín Sotuyo Dodero
590ae705c3 Merge pull request #5100 from adangel/enable-dependabot 
Enable Dependabot
 2024-07-26 08:10:15 -03:00
Juan Martín Sotuyo Dodero
cb7f923c66 Merge pull request #5136 from adangel/deprecate-parser-impl 
Deprecate generated parser implementations
 2024-07-26 08:09:34 -03:00
Andreas Dangel
f1f376d248 Deprecate generated parser implementations 2024-07-26 12:02:31 +02:00
Andreas Dangel
44d25c41e1 [plsql] Fix TomKytesDespair for more complex exception handlers 
Fixes #5132
 2024-07-26 12:01:21 +02:00
Andreas Dangel
210e3e59ae Enable dependabot 
- dependabot runs weekly
- github-action and bundler are creating
  a single PR for updating
- also integrate automatic release notes
  generation
 2024-07-26 11:48:20 +02:00
Andreas Dangel
39750cf158 Use PMD 7.4.0 for checks 2024-07-26 11:08:05 +02:00
Andreas Dangel
ee800d326f [release] Prepare next development version [skip ci] 2024-07-26 10:11:46 +02:00
Andreas Dangel
db5fa2dbce [release] prepare release pmd_releases/7.4.0 pmd_releases/7.4.0 2024-07-26 09:03:38 +02:00
Andreas Dangel
5992a2d53f Prepare pmd release 7.4.0 2024-07-26 08:43:05 +02:00
Juan Martín Sotuyo Dodero
727279977d Merge pull request #5134 from adangel/issue-5133-plsql-parse-error 
[plsql] Fix ScalarDataTypeName and CollectionTypeName parsing
 2024-07-25 14:36:16 -03:00
Juan Martín Sotuyo Dodero
3ffb3ec210 Merge pull request #5137 from adangel/issue-5106-AccessorClassGeneration 
[java] AccessorClassGeneration - handle default ctors
 2024-07-25 12:49:27 -03:00
Andreas Dangel
c194d3ed0d Add @rbri as a contributor 2024-07-25 13:06:14 +02:00
Andreas Dangel
41393d4637 [java] AccessorClassGeneration - handle default ctors 
Fixes #5106
 2024-07-25 13:05:47 +02:00
Andreas Dangel
6a242f019d [plsql] Fix CollectionTypeName parsing 2024-07-25 11:42:22 +02:00
Andreas Dangel
87b0c4f851 [plsql] Fix ScalarDataTypeName parsing 
Fixes #5133
 2024-07-25 11:17:49 +02:00
Andreas Dangel
5d39923c2f [core] Don't log warning about skipLexicalErrors twice (#5102) 
Merge pull request #5102 from adangel:issue-5091-skipLexicalErrors
 2024-07-25 10:28:22 +02:00
Andreas Dangel
a3f9d4af59 [java] Simplify UnusedPrivateMethodRule 
Co-authored-by: Clément Fournier <clement.fournier76@gmail.com>
 2024-07-25 09:57:20 +02:00
Andreas Dangel
1464cbca38 [java] Fix UnusedPrivateMethod for @lombok.Builder.ObtainVia (#5111) 
Merge pull request #5111 from kdebski85:issue-5110-lombok-obtain-via
 2024-07-23 20:11:23 +02:00
Andreas Dangel
597f3f37dc [doc] Update release notes (#5110, #5111) 2024-07-23 20:09:50 +02:00
Andreas Dangel
e8bfc0d01c [java] UnusedPrivateMethodRule - fixups from PR review 2024-07-23 20:05:11 +02:00
Andreas Dangel
607684c6cb Update gems 
Fixes https://github.com/pmd/pmd/security/dependabot/58
Fixes https://github.com/pmd/pmd/security/dependabot/59
Fixes CVE-2024-39908
Fixes https://github.com/advisories/GHSA-4xqq-m2hx-25v8
 2024-07-23 19:36:53 +02:00
Krzysztof Debski
57e8954556 [java] Simplify processing of MethodSource annotation 2024-07-22 17:33:45 +02:00
Krzysztof Debski
121cdba3a4 [java] Make 'ASTAnnotation#flatValue' method static 2024-07-22 13:27:04 +02:00
Krzysztof Debski
9006dd1a89 [java] Generalize annotation handling in UnusedPrivateMethodRule 2024-07-22 13:22:24 +02:00
Juan Martín Sotuyo Dodero
b8a5793c26 Merge pull request #5127 from adangel/issue-2367-js-rename-inaccuratenumericliteral 
[javascript] Rename rule InaccurateNumericLiteral
 2024-07-19 12:16:51 -03:00
Andreas Dangel
bb08255aab [plsql] Fixed issue with missing optional table alias in MERGE usage (#5121) 
Merge pull request #5121 from duursma:merge-fix
 2024-07-19 16:23:36 +02:00
Andreas Dangel
f689822d19 [doc] Update release notes (#5121) 
Refs #5086
 2024-07-19 16:22:30 +02:00
Andreas Dangel
5fce65dbe1 [javascript] Rename rule InaccurateNumericLiteral 
Fixes #2367
 2024-07-19 15:54:28 +02:00