Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add a couple of extra sniffs to Extra #1261

Merged
merged 1 commit into from
Dec 15, 2017

Conversation

jrfnl
Copy link
Member

@jrfnl jrfnl commented Dec 14, 2017

A couple of sniffs which were previously in VIP are also useful for Extra. The messages in these sniffs have - where appropriate - been downgraded to warnings.

This commit adds these sniffs to the Extra ruleset.

Note: There are three more candidates for this:

  • DB.DirectDatabaseQuery
  • DB.SlowDBQuery
  • Security.ValidatedSanitizedInput

I've not included the first two (yet) as those may need some more discussion first.
The third one is not included as it throws a lot of noise messages and has quite some open issues surrounding it, which should be addressed first IMO.

A couple of sniffs which were previously in VIP are also useful for `Extra`. The messages in these sniffs have - where appropriate - been downgraded to warnings.

This commit adds these sniffs to the `Extra` ruleset.

Note: There are three more candidates for this:
* `DB.DirectDatabaseQuery`
* `DB.SlowDBQuery`
* `Security.ValidatedSanitizedInput`

I've not included the first two (yet) as those may need some more discussion first.
The third one is not included as it throws a lot of noise messages and has quite some open issues surrounding it, which should be addressed first IMO.
@jrfnl jrfnl added this to the 1.0.0 milestone Dec 14, 2017
@GaryJones
Copy link
Member

It's funny, as when I was reviewing the renaming PR, I started to ask the question as to whether that meant that Extra would benefit now some of them are less VIP-specific, but I checked the code again and saw that they didn't.

@jrfnl
Copy link
Member Author

jrfnl commented Dec 15, 2017

@GaryJones grin Some things are better pulled step-by-step, also to avoid conflicts. I prepared these PRs all in one go and am pulling them one after another. One more after this one.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants