rspec/rules/S2695/kotlin/rule.adoc

include::../description.adoc[]


== Noncompliant Code Example

----
val ps: PreparedStatement = con.prepareStatement("SELECT fname, lname FROM employees where hireDate > ? and salary < ?")
ps.setDate(0, date) // Noncompliant
ps.setDouble(3, salary) // Noncompliant

val rs: ResultSet = ps.executeQuery()
while (rs.next()) {
    val fname: String = rs.getString(0) // Noncompliant
    // ...
}
----


== Compliant Solution

----
val ps: PreparedStatement = con.prepareStatement("SELECT fname, lname FROM employees where hireDate > ? and salary < ?")
ps.setDate(1, date)
ps.setDouble(2, salary)

val rs: ResultSet = ps.executeQuery()
while (rs.next()) {
  val fname: String = rs.getString(1)
  // ...
}
----
Update rule S2695: "PreparedStatement" and "ResultSet" method s should be called with valid indices (#329) Add Kotlin support 2021-09-16 18:12:24 +03:00			`include::../description.adoc[]`


			`== Noncompliant Code Example`

			`----`
			`val ps: PreparedStatement = con.prepareStatement("SELECT fname, lname FROM employees where hireDate > ? and salary < ?")`
			`ps.setDate(0, date) // Noncompliant`
			`ps.setDouble(3, salary) // Noncompliant`

			`val rs: ResultSet = ps.executeQuery()`
			`while (rs.next()) {`
			`val fname: String = rs.getString(0) // Noncompliant`
			`// ...`
			`}`
			`----`


			`== Compliant Solution`

			`----`
			`val ps: PreparedStatement = con.prepareStatement("SELECT fname, lname FROM employees where hireDate > ? and salary < ?")`
			`ps.setDate(1, date)`
			`ps.setDouble(2, salary)`

			`val rs: ResultSet = ps.executeQuery()`
			`while (rs.next()) {`
			`val fname: String = rs.getString(1)`
			`// ...`
			`}`
			`----`