Skip to content
Qodana

chore(security): updates for security vulnerabilities (#10740) #30

Sign in to view logs

chore(security): updates for security vulnerabilities (#10740)

chore(security): updates for security vulnerabilities (#10740) #30

Triggered via push June 18, 2024 16:50
@darnautdarnaut
pushed bcb40d3
master
Status Success
Total duration 11m 13s
Artifacts 1

qodana-scan.yml

on: push
qodana
11m 0s
qodana
Fit to window
Zoom out
Zoom in

Annotations

3 errors, 15 warnings, and 3 notices
Usage of API marked for removal: metadata-service/plugin/src/test/sample-test-plugins/src/main/java/com/datahub/plugins/test/TestAuthenticator.java#L22
'java.security.AccessControlException' is deprecated and marked for removal
Usage of API marked for removal: metadata-service/plugin/src/test/sample-test-plugins/src/main/java/com/datahub/plugins/test/TestAuthenticator.java#L88
'java.security.AccessControlException' is deprecated and marked for removal
Usage of API marked for removal: metadata-service/plugin/src/test/sample-test-plugins/src/main/java/com/datahub/plugins/test/TestAuthenticator.java#L108
'java.security.AccessControlException' is deprecated and marked for removal
qodana
Node.js 16 actions are deprecated. Please update the following actions to use Node.js 20: JetBrains/qodana-action@v2022.3.4, github/codeql-action/upload-sarif@v2. For more information see: https://github.blog/changelog/2023-09-22-github-actions-transitioning-from-node-16-to-node-20/.
qodana
Unexpected input(s) 'cache-default-branch-only', valid inputs are ['sarif_file', 'checkout_path', 'ref', 'sha', 'token', 'matrix', 'category', 'wait-for-processing']
qodana
CodeQL Action v2 will be deprecated on December 5th, 2024. Please update all occurrences of the CodeQL Action in your workflow files to v3. For more information, see https://github.blog/changelog/2024-01-12-code-scanning-deprecation-of-codeql-action-v2/
Wrapper type may be primitive: datahub-graphql-core/src/main/java/com/linkedin/datahub/graphql/resolvers/mutate/util/LabelUtils.java#L239
Type may be primitive
Wrapper type may be primitive: datahub-graphql-core/src/main/java/com/linkedin/datahub/graphql/resolvers/mutate/util/LabelUtils.java#L264
Type may be primitive
Wrapper type may be primitive: metadata-io/src/main/java/com/linkedin/metadata/entity/EntityServiceImpl.java#L2141
Type may be primitive
Wrapper type may be primitive: metadata-io/src/main/java/com/linkedin/metadata/entity/EntityServiceImpl.java#L2163
Type may be primitive
Wrapper type may be primitive: metadata-service/restli-client/src/main/java/com/linkedin/entity/client/RestliEntityClient.java#L169
Type may be primitive
String comparison using '==', instead of 'equals()': metadata-integration/java/spark-lineage-beta/src/main/java/io/openlineage/spark/agent/util/RemovePathPatternUtils.java#L98
String values are compared using `!=`, not 'equals()'
String comparison using '==', instead of 'equals()': metadata-integration/java/spark-lineage-beta/src/main/java/io/openlineage/spark/agent/util/RemovePathPatternUtils.java#L75
String values are compared using `!=`, not 'equals()'
String comparison using '==', instead of 'equals()': metadata-integration/java/spark-lineage-beta/src/main/java/io/openlineage/spark/agent/util/RemovePathPatternUtils.java#L51
String values are compared using `!=`, not 'equals()'
Loop statement that does not loop: datahub-upgrade/src/main/java/com/linkedin/datahub/upgrade/restorebackup/backupreader/EbeanAspectBackupIterator.java#L27
`while` statement does not loop
Statement with empty body: metadata-service/schema-registry-api/generated/src/main/java/io/swagger/api/V1Api.java#L75
`if` statement has empty body
qodana
Unexpected input(s) 'cache-default-branch-only', valid inputs are ['sarif_file', 'checkout_path', 'ref', 'sha', 'token', 'matrix', 'category', 'wait-for-processing']
Deprecation notice: v1, v2, and v3 of the artifact actions
The following artifacts were uploaded using a version of actions/upload-artifact that is scheduled for deprecation: "qodana-report". Please update your workflow to use v4 of the artifact actions. Learn more: https://github.blog/changelog/2024-04-16-deprecation-notice-v3-of-the-artifact-actions/
Constant values: datahub-graphql-core/src/main/java/com/linkedin/datahub/graphql/resolvers/ResolverUtils.java#L181
Value `skipKeywordSuffix` is always 'false'
Constant values: metadata-service/openapi-servlet/src/main/java/io/datahubproject/openapi/v2/controller/TimelineController.java#L83
Value `startVersionStamp` is always 'null'
Constant values: metadata-service/openapi-servlet/src/main/java/io/datahubproject/openapi/v2/controller/TimelineController.java#L83
Value `endVersionStamp` is always 'null'

Artifacts

Produced during runtime
Name Size
qodana-report Expired
56.5 MB