Bill Pugh of the University of Maryland has released
FindBugs
1.3.5, an automated open source tool for finding potential
bugs in Java code. New bug detectors in this release include:
- calls to methods that always throw UnsupportedOperationException
- repeated conditional tests (e.g., if (x < 0 || x < 0) ...)
- Fairly complete implementation of JSR-305 custom type qualifier analysis (no support for custom validators yet). (TQ_MAYBE_SOURCE_VALUE_REACHES_NEVER_SINK TQ_EXPLICIT_UNKNOWN_SOURCE_VALUE_REACHES_ALWAYS_SINK TQ_EXPLICIT_UNKNOWN_SOURCE_VALUE_REACHES_NEVER_SINK)
- Unsatisfied obligations such forgetting to close a file
- Warning when a parameter is marked as nullable, but is always dereferenced.
- Separate warning for dereference the result of readLine