Affects PMD Version: 6.30.0-SNAPSHOT

Rule: JUnitAssertionsShouldIncludeMessage

Description:

From pmd/pmd#2871 (comment)

Code Sample demonstrating the issue:

https://chunk.io/pmd/fc7db65b2c6a46eca4c9a0c3012482e2/diff/spring-framewo

How can i run findsecbugs rules in spotbugs?

Am i right?

./spotbugs -textui -pluginList /Users/xxx/Downloads/findsecbugs-plugin-1.11.0-SNAPSHOT.jar -home . -low -output ./aaa -progress -train ./bbb -sourcepath ~/Downloads/codez/test/My-Blog/ -debug -noClassOk -progress -auxclasspath ~/Downloads/codez/test/My-Blog/target/ -choosePlugins edu.umd.cs.findbugs.plugins.core

Description

BeanUtils is a library that is doing automatic mapping to Java object.
It can cause arm when the attack controls part of the list of properties being sets. BeanUtils does not blacklist properties like class, classloader or other objects that are likely to load arbitrary classes and possibly run code.

Code

import org.apache.commons.beanutils.BeanUtils;

public

Problem

Sometimes code elements have no package and getPackage return nulls. This introduces null checks and surprises for new developers. INRIA/spoon@84c84e1 as seen here, package can be null.

Solution

A null object[0],[1] could improve code quality. A comparable implementation is [NoSourcePosition](https://github.com/INRI

Environment data

VS Code version: 1.34.0
Extension version (available under the Extensions sidebar): 2019.4.12954
OS and version: Ubuntu 19.04
Python version (& distribution if applicable, e.g. Anaconda): 3.6
Type of virtual environment used: virtualenv

Problem

The type hints in the stub file for the current module aren't used for autocompletion.

I have a foo.pyi file as

Backreferences referencing a (named) capture group declared after the reference always expand to an empty string. They are in fact forwardreferences.

/^\1(.)$/.test('aa'); // doesn't match
/^\k<name>(?<name>.)$/.test('a'); // matches only a single character

Related: #615