10 lines
588 B
Plaintext
10 lines
588 B
Plaintext
=== is duplicated by: S1240
|
|
|
|
=== on 27 Jan 2015, 20:51:42 Freddy Mallet wrote:
|
|
My comment on RSPEC-2385 is also relevant here, I would limit the scope of this rule to some known and widely used mutable objects. Moreover I would not activate this rule by default and would use the tag 'security'. Looks like we could link this rule to:
|
|
|
|
* \http://cwe.mitre.org/data/definitions/375.html
|
|
* \http://cwe.mitre.org/data/definitions/374.html
|
|
* \https://www.securecoding.cert.org/confluence/display/java/OBJ05-J.+Defensively+copy+private+mutable+class+members+before+returning+their+references
|
|
|