CWE IDs Detected by CodeSonar in Kotlin Code

JavaScript is not currently enabled, but is required for full CodeSonar manual search and browse functionality.

If you are viewing this file in your hub's Web GUI, enable JavaScript in your browser: you will also need it for GUI functionality.

If you opened this file directly from disk, your browser may be directly suppressing JavaScript functionality: certain browsers perform this suppression on local files (but not files delivered by web servers) for security reasons.

If you access the manual through the hub's Web GUI, the functionality will not be suppressed because the hub is a web server.
Alternatively, your browser may allow you to explicitly disable the security setting that suppresses functionality. See the CodeSonar FAQ for more information.

CodeSonar^® 9.0p0 Hot Tips

CONFIDENTIAL

CodeSecure Inc

CWE IDs Detected by CodeSonar in Kotlin Code

This table contains close and broad CWE mappings for CodeSonar Kotlin warning classes, organized by CWE ID.

CWE mappings organized by CodeSonar Kotlin warning class: close mapping, broad mapping.
Mappings between CWE IDs and CodeSonar warning classes, all languages: close mapping, broad mapping.
CWE mapping information for CodeSonar in CSV format: CWE-mapping-broad.csv (broad mapping); CWE-mapping.csv (close mapping).

This version of CodeSonar (9.0p0) uses CWE 4.16, published November 19, 2024.

Close Mapping
Broad Mapping

Close Mapping

CWE	Entity Type	Kotlin Warning Classes
CWE:172 Encoding Error	Weakness	Implicit Default Locale (detekt)
CWE:230 Improper Handling of Missing Values	Weakness	Map Get With Not Null Assertion Operator (detekt)
CWE:252 Unchecked Return Value	Weakness	Ignored Return Value (detekt)
CWE:390 Detection of Error Condition Without Action	Weakness	Empty Catch Block (detekt) Suspend Fun Swallowed Cancellation (detekt) Swallowed Exception (detekt)
CWE:391 Unchecked Error Condition	Weakness	Ignored Return Value (detekt)
CWE:394 Unexpected Status Code or Return Value	Weakness	Ignored Return Value (detekt)
CWE:396 Declaration of Catch for Generic Exception	Weakness	Too Generic Exception Caught (detekt)
CWE:404 Improper Resource Shutdown or Release	Weakness	Explicit Garbage Collection Call (detekt)
CWE:457 Use of Uninitialized Variable	Weakness	Lateinit Usage (detekt)
CWE:476 NULL Pointer Dereference	Weakness	Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)
CWE:477 Use of Obsolete Function	Weakness	Deprecation (detekt)
CWE:480 Use of Incorrect Operator	Weakness	Useless Postfix Expression (detekt)
CWE:489 Active Debug Code	Weakness	Not Implemented Declaration (detekt)
CWE:546 Suspicious Comment	Weakness	Forbidden Comment (detekt)
CWE:561 Dead Code	Weakness	Invalid Range (detekt) Unreachable Catch Block (detekt) Unreachable Code (detekt)
CWE:570 Expression is Always False	Weakness	Equals Always Returns True or False (detekt) Unnecessary Not Null Check (detekt) Unnecessary Not Null Operator (detekt) Unnecessary Safe Call (detekt)
CWE:571 Expression is Always True	Weakness	Equals Always Returns True or False (detekt) Unnecessary Not Null Check (detekt) Unnecessary Not Null Operator (detekt) Unnecessary Safe Call (detekt)
CWE:573 Improper Following of Specification by Caller	Weakness	Iterator Not Throwing No Such Element Exception (detekt)
CWE:581 Object Model Violation: Just One of Equals and Hashcode Defined	Weakness	Equals With Hash Code Exist (detekt)
CWE:584 Return Inside Finally Block	Weakness	Return From Finally (detekt)
CWE:595 Comparison of Object References Instead of Object Contents	Weakness	Avoid Referential Equality (detekt)
CWE:615 Inclusion of Sensitive Information in Source Code Comments	Weakness	KDoc References Non Public Property (detekt)
CWE:662 Improper Synchronization	Weakness	Sleep Instead of Delay (detekt) Suspend Fun With Coroutine Scope Receiver (detekt) Suspend Fun With Flow Return Type (detekt)
CWE:664 Improper Control of a Resource Through its Lifetime	Weakness	Global Coroutine Usage (detekt) Object Extends Throwable (detekt)
CWE:686 Function Call With Incorrect Argument Type	Weakness	Nullable to String Call (detekt)
CWE:694 Use of Multiple Resources with Duplicate Identifier	Weakness	No Name Shadowing (detekt)
CWE:703 Improper Check or Handling of Exceptional Conditions	Weakness	Throws Count (detekt)
CWE:704 Incorrect Type Conversion or Cast	Weakness	Cast Nullable to Non Nullable Type (detekt) Cast to Nullable Type (detekt) Dont Downcast Collection Types (detekt) Unsafe Cast (detekt)
CWE:705 Incorrect Control Flow Scoping	Weakness	Exception Raised in Unexpected Location (detekt) Throwing Exception From Finally (detekt) Throwing Exception in Main (detekt)
CWE:754 Improper Check for Unusual or Exceptional Conditions	Weakness	Instance of Check for Exception (detekt)
CWE:755 Improper Handling of Exceptional Conditions	Weakness	Exception Raised in Unexpected Location (detekt) Throwing Exception From Finally (detekt) Throwing Exception in Main (detekt) Throwing New Instance of Same Exception (detekt) Too Generic Exception Thrown (detekt)
CWE:758 Reliance on Undefined, Unspecified, or Implementation-Defined Behavior	Weakness	Dont Downcast Collection Types (detekt)
CWE:779 Logging of Excessive Data	Weakness	Print Stack Trace (detekt)
CWE:835 Loop with Unreachable Exit Condition ('Infinite Loop')	Weakness	Iterator Not Throwing No Such Element Exception (detekt)
CWE:909 Missing Initialization of Resource	Weakness	Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt)
CWE:913 Improper Control of Dynamically-Managed Code Resources	Weakness	Serial Version UIDIn Serializable Class (detekt)
CWE:1025 Comparison Using Wrong Factors	Weakness	Equals Null Call (detekt)
CWE:1041 Use of Redundant Code	Weakness	Copy-Paste Error
CWE:1059 Insufficient Technical Documentation	Weakness	Undocumented Public Class (detekt) Undocumented Public Function (detekt) Undocumented Public Property (detekt)
CWE:1064 Invokable Control Element with Signature Containing an Excessive Number of Parameters	Weakness	Long Parameter List (detekt)
CWE:1069 Empty Exception Block	Weakness	Empty Catch Block (detekt)
CWE:1071 Empty Code Block	Weakness	Empty Class Block (detekt) Empty Default Constructor (detekt) Empty Do While Block (detekt) Empty Else Block (detekt) Empty Finally Block (detekt) Empty Function Block (detekt) Empty If Block (detekt) Empty Init Block (detekt) Empty Kt File (detekt) Empty Secondary Constructor (detekt) Empty Try Block (detekt) Empty When Block (detekt) Empty While Block (detekt) Empty for Block (detekt)
CWE:1076 Insufficient Adherence to Expected Conventions	Weakness	Can Be Non Nullable (detekt) Data Class Contains Functions (detekt) Data Class Should Be Immutable (detekt) Deprecation (detekt) Destructuring Declaration With Too Many Entries (detekt) Double Mutability for Collection (detekt) Else Case Instead of Exhaustive When (detekt) Exit Outside Main (detekt) Explicit Garbage Collection Call (detekt) Forbidden Suppress (detekt) Forbidden Void (detekt) Function Only Returning Constant (detekt) Global Coroutine Usage (detekt) Has Platform Type (detekt) Implicit Unit Return Type (detekt) Inject Dispatcher (detekt) Instance of Check for Exception (detekt) Invalid Range (detekt) Iterator Has Next Calls Next Method (detekt) Labeled Expression (detekt) Lateinit Usage (detekt) May Be Const (detekt) Missing Package Declaration (detekt) Nested Classes Visibility (detekt) No Name Shadowing (detekt) Property Used Before Declaration (detekt) Protected Member in Final Class (detekt) Redundant Higher Order Map Usage (detekt) Rethrow Caught Exception (detekt) Return Count (detekt) Serial Version UIDIn Serializable Class (detekt) Throwing Exceptions Without Message or Cause (detekt) Unnecessary Abstract Class (detekt) Until Instead of Range to (detekt) Use Any or None Instead of Find (detekt) Use Data Class (detekt) Use Empty Counterpart (detekt) Use If Empty or If Blank (detekt) Use Is Null or Empty (detekt) Use Let (detekt) Use Sum of Instead of Flat Map Size (detekt) Utility Class With Public Constructor (detekt) Var Could Be Val (detekt) Wildcard Import (detekt) Wrong Equals Type Parameter (detekt)
CWE:1078 Inappropriate Source Code Style or Formatting	Weakness	Absent or Wrong File License (detekt) Also Could Be Apply (detekt) Braces on If Statements (detekt) Braces on When Statements (detekt) Cascading Call Wrapping (detekt) Class Ordering (detekt) Collapsible If Statements (detekt) Explicit Collection Element Access Method (detekt) Explicit It Lambda Parameter (detekt) Expression Body Syntax (detekt) Forbidden Annotation (detekt) Magic Number (detekt) Mandatory Braces Loops (detekt) Max Line Length (detekt) Modifier Order (detekt) Multiline Lambda It Parameter (detekt) Nullable Boolean Check (detekt) Object Literal to Lambda (detekt) Optional Abstract Keyword (detekt) Optional Unit (detekt) Prefer to Over Pair Syntax (detekt) Redundant Explicit Type (detekt) Redundant Visibility Modifier Rule (detekt) Safe Cast (detekt) String Should Be Raw String (detekt) Trim Multiline Raw String (detekt) Underscores in Numeric Literals (detekt) Unnecessary Apply (detekt) Unnecessary Backticks (detekt) Unnecessary Braces Around Trailing Lambda (detekt) Unnecessary Inner Class (detekt) Unnecessary Let (detekt) Unnecessary Parentheses (detekt) Use Array Literals in Annotations (detekt) Use Check Not Null (detekt) Use Check or Error (detekt) Use If Instead of When (detekt) Use Require (detekt) Use Require Not Null (detekt) Use or Empty (detekt)
CWE:1099 Inconsistent Naming Conventions for Identifiers	Weakness	Boolean Property Naming (detekt) Class Naming (detekt) Constructor Parameter Naming (detekt) Double Negative Lambda (detekt) Enum Naming (detekt) Forbidden Class Name (detekt) Function Max Length (detekt) Function Min Length (detekt) Function Naming (detekt) Function Parameter Naming (detekt) Invalid Package Declaration (detekt) Lambda Parameter Naming (detekt) Matching Declaration Name (detekt) Member Name Equals Class Name (detekt) Non Boolean Property Prefixed With Is (detekt) Object Property Naming (detekt) Package Naming (detekt) Top Level Property Naming (detekt) Variable Max Length (detekt) Variable Min Length (detekt) Variable Naming (detekt)
CWE:1106 Insufficient Use of Symbolic Constants	Weakness	String Literal Duplication (detekt)
CWE:1113 Inappropriate Comment Style	Weakness	Comment Over Private Function (detekt) Comment Over Private Property (detekt) Deprecated Block Tag (detekt) End of Sentence Format (detekt)
CWE:1114 Inappropriate Whitespace Style	Weakness	Equals on Signature Line (detekt) Max Chained Calls on Same Line (detekt) Multiline Raw String Indentation (detekt) New Line at End of File (detekt) No Tabs (detekt) Spacing Between Package and Imports (detekt) Trailing Whitespace (detekt)
CWE:1116 Inaccurate Comments	Weakness	Outdated Documentation (detekt)
CWE:1119 Excessive Use of Unconditional Branching	Weakness	Unconditional Jump Statement in Loop (detekt)
CWE:1120 Excessive Code Complexity	Weakness	Cognitive Complex Method (detekt) Complex Condition (detekt) Complex Interface (detekt) Destructuring Declaration With Too Many Entries (detekt) Labeled Expression (detekt) Large Class (detekt) Long Method (detekt) Loop With Too Many Jump Statements (detekt) Method Overloading (detekt) Named Arguments (detekt) Nested Scope Functions (detekt) Replace Safe Call Chain With Run (detekt) Return Count (detekt) Throws Count (detekt) Too Many Functions (detekt)
CWE:1121 Excessive McCabe Cyclomatic Complexity	Weakness	Cyclomatic Complex Method (detekt)
CWE:1124 Excessively Deep Nesting	Weakness	Collapsible If Statements (detekt) Nested Block Depth (detekt)
CWE:1127 Compilation with Insufficient Warnings or Errors	Weakness	Forbidden Suppress (detekt)
CWE:1164 Irrelevant Code	Weakness	Nested Classes Visibility (detekt) Optional Abstract Keyword (detekt) Redundant Explicit Type (detekt) Redundant Higher Order Map Usage (detekt) Redundant Suspend Modifier (detekt) Redundant Visibility Modifier Rule (detekt) Rethrow Caught Exception (detekt) Unconditional Jump Statement in Loop (detekt) Unnecessary Annotation Use Site Target (detekt) Unnecessary Filter (detekt) Unnecessary Inheritance (detekt) Unnecessary Not Null Check (detekt) Unnecessary Not Null Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Safe Call (detekt) Unused Imports (detekt) Unused Parameter (detekt) Unused Private Class (detekt) Unused Private Member (detekt) Unused Private Property (detekt) Unused Unary Operator (detekt) Useless Call on Not Null (detekt) Useless Postfix Expression (detekt)
CWE:1176 Inefficient CPU Computation	Weakness	Could Be Sequence (detekt) For Each on Range (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)
CWE:1177 Use of Prohibited Code	Weakness	Forbidden Import (detekt) Forbidden Method Call (detekt)
CWE:1235 Incorrect Use of Autoboxing and Unboxing for Performance Critical Operations	Weakness	Array Primitive (detekt)

Broad Mapping

CWE

Entity Type

Kotlin Warning Classes

CWE:19 Data Processing Errors

Category

hierarchy ancestor	Ignored Return Value (detekt) Map Get With Not Null Assertion Operator (detekt)

CWE:74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

Weakness

hierarchy ancestor	No Name Shadowing (detekt)

CWE:99 Improper Control of Resource Identifiers ('Resource Injection')

Weakness

hierarchy ancestor	No Name Shadowing (detekt)

CWE:133 String Errors

Category

hierarchy ancestor	Useless Postfix Expression (detekt)

CWE:137 Data Neutralization Issues

Category

hierarchy ancestor	No Name Shadowing (detekt)

CWE:172 Encoding Error

Weakness

closely mapped	Implicit Default Locale (detekt)

CWE:199 Information Management Errors

Category

hierarchy ancestor	KDoc References Non Public Property (detekt)

CWE:200 Exposure of Sensitive Information to an Unauthorized Actor

Weakness

hierarchy ancestor	KDoc References Non Public Property (detekt)

CWE:221 Information Loss or Omission

Weakness

hierarchy ancestor	Too Generic Exception Caught (detekt)

CWE:227 7PK - API Abuse

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:228 Improper Handling of Syntactically Invalid Structure

Weakness

hierarchy ancestor	Ignored Return Value (detekt) Map Get With Not Null Assertion Operator (detekt)

CWE:229 Improper Handling of Values

Weakness

hierarchy ancestor	Ignored Return Value (detekt) Map Get With Not Null Assertion Operator (detekt)

CWE:230 Improper Handling of Missing Values

Weakness

closely mapped	Map Get With Not Null Assertion Operator (detekt)
also related	Ignored Return Value (detekt)

CWE:231 Improper Handling of Extra Values

Weakness

also related	Ignored Return Value (detekt)

CWE:232 Improper Handling of Undefined Values

Weakness

also related	Ignored Return Value (detekt)

CWE:237 Improper Handling of Structural Elements

Weakness

hierarchy ancestor	Ignored Return Value (detekt)

CWE:238 Improper Handling of Incomplete Structural Elements

Weakness

also related	Ignored Return Value (detekt)

CWE:239 Failure to Handle Incomplete Element

Weakness

also related	Ignored Return Value (detekt)

CWE:252 Unchecked Return Value

Weakness

closely mapped	Ignored Return Value (detekt)

CWE:254 7PK - Security Features

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:265 Privilege Issues

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:269 Improper Privilege Management

Weakness

hierarchy ancestor	Ignored Return Value (detekt)

CWE:274 Improper Handling of Insufficient Privileges

Weakness

also related	Ignored Return Value (detekt)

CWE:275 Permission Issues

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:280 Improper Handling of Insufficient Permissions or Privileges

Weakness

also related	Ignored Return Value (detekt)

CWE:284 Improper Access Control

Weakness

hierarchy ancestor	Ignored Return Value (detekt)

CWE:388 7PK - Errors

Category

hierarchy ancestor	Ignored Return Value (detekt) Too Generic Exception Caught (detekt)

CWE:389 Error Conditions, Return Values, Status Codes

Category

hierarchy ancestor	Empty Catch Block (detekt) Ignored Return Value (detekt) Implicit Unit Return Type (detekt) Return From Finally (detekt) Suspend Fun Swallowed Cancellation (detekt) Swallowed Exception (detekt) Too Generic Exception Caught (detekt)

CWE:390 Detection of Error Condition Without Action

Weakness

closely mapped	Empty Catch Block (detekt) Suspend Fun Swallowed Cancellation (detekt) Swallowed Exception (detekt)

CWE:391 Unchecked Error Condition

Weakness

closely mapped	Ignored Return Value (detekt)

CWE:392 Missing Report of Error Condition

Weakness

also related	Ignored Return Value (detekt)

CWE:394 Unexpected Status Code or Return Value

Weakness

closely mapped	Ignored Return Value (detekt)
also related	Implicit Unit Return Type (detekt)

CWE:396 Declaration of Catch for Generic Exception

Weakness

closely mapped	Too Generic Exception Caught (detekt)

CWE:398 7PK - Code Quality

Category

hierarchy ancestor	Deprecation (detekt) Explicit Garbage Collection Call (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Lateinit Usage (detekt) Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:399 Resource Management Errors

Category

hierarchy ancestor	Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt) Lateinit Usage (detekt) No Name Shadowing (detekt)

CWE:400 Uncontrolled Resource Consumption

Weakness

hierarchy ancestor	Array Primitive (detekt) Could Be Sequence (detekt) For Each on Range (detekt) Print Stack Trace (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)

CWE:404 Improper Resource Shutdown or Release

Weakness

closely mapped	Explicit Garbage Collection Call (detekt)

CWE:405 Asymmetric Resource Consumption (Amplification)

Weakness

hierarchy ancestor	Could Be Sequence (detekt) For Each on Range (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)

CWE:438 Behavioral Problems

Category

hierarchy ancestor	Avoid Referential Equality (detekt) Equals Null Call (detekt) Iterator Not Throwing No Such Element Exception (detekt) Useless Postfix Expression (detekt)

CWE:457 Use of Uninitialized Variable

Weakness

closely mapped	Lateinit Usage (detekt)

CWE:465 Pointer Issues

Category

hierarchy ancestor	Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:474 Use of Function with Inconsistent Implementations

Weakness

hierarchy ancestor	Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:476 NULL Pointer Dereference

Weakness

closely mapped	Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:477 Use of Obsolete Function

Weakness

closely mapped	Deprecation (detekt)
also related	Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:480 Use of Incorrect Operator

Weakness

closely mapped	Useless Postfix Expression (detekt)

CWE:485 7PK - Encapsulation

Category

hierarchy ancestor	Not Implemented Declaration (detekt)

CWE:489 Active Debug Code

Weakness

closely mapped	Not Implemented Declaration (detekt)

CWE:538 Insertion of Sensitive Information into Externally-Accessible File or Directory

Weakness

hierarchy ancestor	KDoc References Non Public Property (detekt)

CWE:540 Inclusion of Sensitive Information in Source Code

Weakness

hierarchy ancestor	KDoc References Non Public Property (detekt)

CWE:546 Suspicious Comment

Weakness

closely mapped	Forbidden Comment (detekt)

CWE:557 Concurrency Issues

Category

also related	Sleep Instead of Delay (detekt)

CWE:561 Dead Code

Weakness

closely mapped	Invalid Range (detekt) Unreachable Catch Block (detekt) Unreachable Code (detekt)

CWE:569 Expression Issues

Category

hierarchy ancestor	Equals Always Returns True or False (detekt) Unnecessary Not Null Check (detekt) Unnecessary Not Null Operator (detekt) Unnecessary Safe Call (detekt) Useless Postfix Expression (detekt)

CWE:570 Expression is Always False

Weakness

closely mapped	Equals Always Returns True or False (detekt) Unnecessary Not Null Check (detekt) Unnecessary Not Null Operator (detekt) Unnecessary Safe Call (detekt)

CWE:571 Expression is Always True

Weakness

closely mapped	Equals Always Returns True or False (detekt) Unnecessary Not Null Check (detekt) Unnecessary Not Null Operator (detekt) Unnecessary Safe Call (detekt)

CWE:573 Improper Following of Specification by Caller

Weakness

closely mapped	Iterator Not Throwing No Such Element Exception (detekt)
hierarchy ancestor	Copy-Paste Error Equals With Hash Code Exist (detekt) No Name Shadowing (detekt) Nullable to String Call (detekt)

CWE:581 Object Model Violation: Just One of Equals and Hashcode Defined

Weakness

closely mapped	Equals With Hash Code Exist (detekt)

CWE:584 Return Inside Finally Block

Weakness

closely mapped	Return From Finally (detekt)

CWE:589 Call to Non-ubiquitous API

Weakness

also related	Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:595 Comparison of Object References Instead of Object Contents

Weakness

closely mapped	Avoid Referential Equality (detekt)

CWE:615 Inclusion of Sensitive Information in Source Code Comments

Weakness

closely mapped	KDoc References Non Public Property (detekt)

CWE:628 Function Call with Incorrectly Specified Arguments

Weakness

hierarchy ancestor	Copy-Paste Error Nullable to String Call (detekt)

CWE:629 Weaknesses in OWASP Top Ten (2007)

View

hierarchy ancestor	KDoc References Non Public Property (detekt)

CWE:635 Weaknesses Originally Used by NVD from 2008 to 2016

View

hierarchy ancestor	Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt) KDoc References Non Public Property (detekt) Lateinit Usage (detekt) No Name Shadowing (detekt)

CWE:658 Weaknesses in Software Written in C

View

hierarchy ancestor	Cast Nullable to Non Nullable Type (detekt) Cast to Nullable Type (detekt) Copy-Paste Error Dont Downcast Collection Types (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Lateinit Usage (detekt) Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt) Unsafe Cast (detekt) Useless Postfix Expression (detekt)

CWE:659 Weaknesses in Software Written in C++

View

hierarchy ancestor	Cast Nullable to Non Nullable Type (detekt) Cast to Nullable Type (detekt) Dont Downcast Collection Types (detekt) Lateinit Usage (detekt) Null Check on Mutable Property (detekt) Too Generic Exception Caught (detekt) Unsafe Call on Nullable Type (detekt) Unsafe Cast (detekt) Useless Postfix Expression (detekt)

CWE:660 Weaknesses in Software Written in Java

View

hierarchy ancestor	Array Primitive (detekt) Avoid Referential Equality (detekt) Equals With Hash Code Exist (detekt) Null Check on Mutable Property (detekt) Too Generic Exception Caught (detekt) Unsafe Call on Nullable Type (detekt)

CWE:661 Weaknesses in Software Written in PHP

View

hierarchy ancestor	Avoid Referential Equality (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Lateinit Usage (detekt)

CWE:662 Improper Synchronization

Weakness

closely mapped	Sleep Instead of Delay (detekt) Suspend Fun With Coroutine Scope Receiver (detekt) Suspend Fun With Flow Return Type (detekt)

CWE:664 Improper Control of a Resource Through its Lifetime

Weakness

closely mapped

hierarchy ancestor

CWE:665 Improper Initialization

Weakness

hierarchy ancestor	Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt) Lateinit Usage (detekt)

CWE:668 Exposure of Resource to Wrong Sphere

Weakness

hierarchy ancestor	KDoc References Non Public Property (detekt)

CWE:670 Always-Incorrect Control Flow Implementation

Weakness

hierarchy ancestor	Useless Postfix Expression (detekt)

CWE:677 Weakness Base Elements

View

hierarchy ancestor

CWE:683 Function Call With Incorrect Order of Arguments

Weakness

also related	Copy-Paste Error

CWE:684 Incorrect Provision of Specified Functionality

Weakness

hierarchy ancestor	Ignored Return Value (detekt)

CWE:685 Function Call With Incorrect Number of Arguments

Weakness

also related	Copy-Paste Error

CWE:686 Function Call With Incorrect Argument Type

Weakness

closely mapped	Nullable to String Call (detekt)

CWE:688 Function Call With Incorrect Variable or Reference as Argument

Weakness

also related	Copy-Paste Error

CWE:691 Insufficient Control Flow Management

Weakness

hierarchy ancestor

CWE:694 Use of Multiple Resources with Duplicate Identifier

Weakness

closely mapped	No Name Shadowing (detekt)

CWE:697 Incorrect Comparison

Weakness

hierarchy ancestor	Avoid Referential Equality (detekt) Equals Null Call (detekt) Equals With Hash Code Exist (detekt)

CWE:699 Software Development

View

hierarchy ancestor

CWE:700 Seven Pernicious Kingdoms

View

hierarchy ancestor	Deprecation (detekt) Explicit Garbage Collection Call (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Ignored Return Value (detekt) Lateinit Usage (detekt) No Name Shadowing (detekt) Not Implemented Declaration (detekt) Null Check on Mutable Property (detekt) Too Generic Exception Caught (detekt) Unsafe Call on Nullable Type (detekt)

CWE:701 Weaknesses Introduced During Design

View

hierarchy ancestor

CWE:702 Weaknesses Introduced During Implementation

View

hierarchy ancestor

CWE:703 Improper Check or Handling of Exceptional Conditions

Weakness

closely mapped

Throws Count (detekt)

hierarchy ancestor

CWE:704 Incorrect Type Conversion or Cast

Weakness

closely mapped	Cast Nullable to Non Nullable Type (detekt) Cast to Nullable Type (detekt) Dont Downcast Collection Types (detekt) Unsafe Cast (detekt)

CWE:705 Incorrect Control Flow Scoping

Weakness

closely mapped	Exception Raised in Unexpected Location (detekt) Throwing Exception From Finally (detekt) Throwing Exception in Main (detekt)
hierarchy ancestor	Return From Finally (detekt) Too Generic Exception Caught (detekt)

CWE:707 Improper Neutralization

Weakness

hierarchy ancestor	Ignored Return Value (detekt) Implicit Default Locale (detekt) Map Get With Not Null Assertion Operator (detekt) No Name Shadowing (detekt)

CWE:710 Improper Adherence to Coding Standards

Weakness

hierarchy ancestor

CWE:711 Weaknesses in OWASP Top Ten (2004)

View

hierarchy ancestor

CWE:717 OWASP Top Ten 2007 Category A6 - Information Leakage and Improper Error Handling

Category

hierarchy ancestor	KDoc References Non Public Property (detekt)

CWE:723 OWASP Top Ten 2004 Category A2 - Broken Access Control

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:727 OWASP Top Ten 2004 Category A6 - Injection Flaws

Category

hierarchy ancestor	No Name Shadowing (detekt)

CWE:728 OWASP Top Ten 2004 Category A7 - Improper Error Handling

Category

hierarchy ancestor	Empty Catch Block (detekt) Ignored Return Value (detekt) Implicit Unit Return Type (detekt) Map Get With Not Null Assertion Operator (detekt) Return From Finally (detekt) Suspend Fun Swallowed Cancellation (detekt) Swallowed Exception (detekt) Too Generic Exception Caught (detekt)

CWE:730 OWASP Top Ten 2004 Category A9 - Denial of Service

Category

hierarchy ancestor	Array Primitive (detekt) Could Be Sequence (detekt) Explicit Garbage Collection Call (detekt) For Each on Range (detekt) Null Check on Mutable Property (detekt) Print Stack Trace (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt) Unsafe Call on Nullable Type (detekt)

CWE:731 OWASP Top Ten 2004 Category A10 - Insecure Configuration Management

Category

hierarchy ancestor	Ignored Return Value (detekt) KDoc References Non Public Property (detekt) Not Implemented Declaration (detekt)

CWE:734 Weaknesses Addressed by the CERT C Secure Coding Standard (2008)

View

hierarchy ancestor

CWE:735 CERT C Secure Coding Standard (2008) Chapter 2 - Preprocessor (PRE)

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:736 CERT C Secure Coding Standard (2008) Chapter 3 - Declarations and Initialization (DCL)

Category

hierarchy ancestor	Copy-Paste Error Nullable to String Call (detekt)

CWE:737 CERT C Secure Coding Standard (2008) Chapter 4 - Expressions (EXP)

Category

hierarchy ancestor	Cast Nullable to Non Nullable Type (detekt) Cast to Nullable Type (detekt) Copy-Paste Error Dont Downcast Collection Types (detekt) Null Check on Mutable Property (detekt) Nullable to String Call (detekt) Unsafe Call on Nullable Type (detekt) Unsafe Cast (detekt)

CWE:739 CERT C Secure Coding Standard (2008) Chapter 6 - Floating Point (FLP)

Category

hierarchy ancestor	Nullable to String Call (detekt)

CWE:740 CERT C Secure Coding Standard (2008) Chapter 7 - Arrays (ARR)

Category

hierarchy ancestor	Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt) Lateinit Usage (detekt)

CWE:741 CERT C Secure Coding Standard (2008) Chapter 8 - Characters and Strings (STR)

Category

hierarchy ancestor	Cast Nullable to Non Nullable Type (detekt) Cast to Nullable Type (detekt) Dont Downcast Collection Types (detekt) Nullable to String Call (detekt) Unsafe Cast (detekt)

CWE:742 CERT C Secure Coding Standard (2008) Chapter 9 - Memory Management (MEM)

Category

hierarchy ancestor	Copy-Paste Error Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt) Ignored Return Value (detekt) Implicit Unit Return Type (detekt) Instance of Check for Exception (detekt) Lateinit Usage (detekt) Null Check on Mutable Property (detekt) Nullable to String Call (detekt) Unsafe Call on Nullable Type (detekt)

CWE:743 CERT C Secure Coding Standard (2008) Chapter 10 - Input Output (FIO)

Category

hierarchy ancestor	Explicit Garbage Collection Call (detekt) Ignored Return Value (detekt) Nullable to String Call (detekt)

CWE:744 CERT C Secure Coding Standard (2008) Chapter 11 - Environment (ENV)

Category

hierarchy ancestor	Exception Raised in Unexpected Location (detekt) Return From Finally (detekt) Throwing Exception From Finally (detekt) Throwing Exception in Main (detekt) Too Generic Exception Caught (detekt)

CWE:745 CERT C Secure Coding Standard (2008) Chapter 12 - Signals (SIG)

Category

hierarchy ancestor	Sleep Instead of Delay (detekt) Suspend Fun With Coroutine Scope Receiver (detekt) Suspend Fun With Flow Return Type (detekt)

CWE:746 CERT C Secure Coding Standard (2008) Chapter 13 - Error Handling (ERR)

Category

hierarchy ancestor	Exception Raised in Unexpected Location (detekt) Ignored Return Value (detekt) Return From Finally (detekt) Throwing Exception From Finally (detekt) Throwing Exception in Main (detekt) Too Generic Exception Caught (detekt)

CWE:747 CERT C Secure Coding Standard (2008) Chapter 14 - Miscellaneous (MSC)

Category

hierarchy ancestor

CWE:748 CERT C Secure Coding Standard (2008) Appendix - POSIX (POS)

Category

hierarchy ancestor	Nullable to String Call (detekt)

CWE:750 Weaknesses in the 2009 CWE/SANS Top 25 Most Dangerous Programming Errors

View

hierarchy ancestor	Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt) Explicit Garbage Collection Call (detekt) Lateinit Usage (detekt)

CWE:752 2009 Top 25 - Risky Resource Management

Category

hierarchy ancestor	Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt) Explicit Garbage Collection Call (detekt) Lateinit Usage (detekt)

CWE:754 Improper Check for Unusual or Exceptional Conditions

Weakness

closely mapped	Instance of Check for Exception (detekt)
also related	Null Check on Mutable Property (detekt)
hierarchy ancestor	Ignored Return Value (detekt) Implicit Unit Return Type (detekt) Unsafe Call on Nullable Type (detekt)

CWE:755 Improper Handling of Exceptional Conditions

Weakness

closely mapped	Exception Raised in Unexpected Location (detekt) Throwing Exception From Finally (detekt) Throwing Exception in Main (detekt) Throwing New Instance of Same Exception (detekt) Too Generic Exception Thrown (detekt)
hierarchy ancestor	Empty Catch Block (detekt) Ignored Return Value (detekt) Suspend Fun Swallowed Cancellation (detekt) Swallowed Exception (detekt) Too Generic Exception Caught (detekt)

CWE:758 Reliance on Undefined, Unspecified, or Implementation-Defined Behavior

Weakness

closely mapped	Dont Downcast Collection Types (detekt)
hierarchy ancestor	Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:779 Logging of Excessive Data

Weakness

closely mapped	Print Stack Trace (detekt)

CWE:800 Weaknesses in the 2010 CWE/SANS Top 25 Most Dangerous Programming Errors

View

hierarchy ancestor	Ignored Return Value (detekt) Implicit Unit Return Type (detekt) Instance of Check for Exception (detekt) Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:802 2010 Top 25 - Risky Resource Management

Category

hierarchy ancestor	Ignored Return Value (detekt) Implicit Unit Return Type (detekt) Instance of Check for Exception (detekt) Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:808 2010 Top 25 - Weaknesses On the Cusp

Category

hierarchy ancestor	Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:809 Weaknesses in OWASP Top Ten (2010)

View

hierarchy ancestor	KDoc References Non Public Property (detekt) No Name Shadowing (detekt)

CWE:813 OWASP Top Ten 2010 Category A4 - Insecure Direct Object References

Category

hierarchy ancestor	No Name Shadowing (detekt)

CWE:815 OWASP Top Ten 2010 Category A6 - Security Misconfiguration

Category

hierarchy ancestor	KDoc References Non Public Property (detekt)

CWE:834 Excessive Iteration

Weakness

hierarchy ancestor	Iterator Not Throwing No Such Element Exception (detekt)

CWE:835 Loop with Unreachable Exit Condition ('Infinite Loop')

Weakness

closely mapped	Iterator Not Throwing No Such Element Exception (detekt)

CWE:844 Weaknesses Addressed by The CERT Oracle Secure Coding Standard for Java (2011)

View

hierarchy ancestor

CWE:846 The CERT Oracle Secure Coding Standard for Java (2011) Chapter 3 - Declarations and Initialization (DCL)

Category

hierarchy ancestor	Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt) Lateinit Usage (detekt)

CWE:847 The CERT Oracle Secure Coding Standard for Java (2011) Chapter 4 - Expressions (EXP)

Category

hierarchy ancestor	Avoid Referential Equality (detekt) Ignored Return Value (detekt)

CWE:850 The CERT Oracle Secure Coding Standard for Java (2011) Chapter 7 - Methods (MET)

Category

hierarchy ancestor	Copy-Paste Error Equals With Hash Code Exist (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Iterator Not Throwing No Such Element Exception (detekt) No Name Shadowing (detekt) Nullable to String Call (detekt)

CWE:851 The CERT Oracle Secure Coding Standard for Java (2011) Chapter 8 - Exceptional Behavior (ERR)

Category

hierarchy ancestor

CWE:852 The CERT Oracle Secure Coding Standard for Java (2011) Chapter 9 - Visibility and Atomicity (VNA)

Category

hierarchy ancestor	Sleep Instead of Delay (detekt) Suspend Fun With Coroutine Scope Receiver (detekt) Suspend Fun With Flow Return Type (detekt)

CWE:854 The CERT Oracle Secure Coding Standard for Java (2011) Chapter 11 - Thread APIs (THI)

Category

hierarchy ancestor	Exception Raised in Unexpected Location (detekt) Return From Finally (detekt) Throwing Exception From Finally (detekt) Throwing Exception in Main (detekt) Too Generic Exception Caught (detekt)

CWE:855 The CERT Oracle Secure Coding Standard for Java (2011) Chapter 12 - Thread Pools (TPS)

Category

hierarchy ancestor	Could Be Sequence (detekt) For Each on Range (detekt) Ignored Return Value (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)

CWE:857 The CERT Oracle Secure Coding Standard for Java (2011) Chapter 14 - Input Output (FIO)

Category

hierarchy ancestor	Could Be Sequence (detekt) Explicit Garbage Collection Call (detekt) For Each on Range (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)

CWE:858 The CERT Oracle Secure Coding Standard for Java (2011) Chapter 15 - Serialization (SER)

Category

hierarchy ancestor	Array Primitive (detekt) Could Be Sequence (detekt) For Each on Range (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Print Stack Trace (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)

CWE:861 The CERT Oracle Secure Coding Standard for Java (2011) Chapter 18 - Miscellaneous (MSC)

Category

hierarchy ancestor	Array Primitive (detekt) Could Be Sequence (detekt) For Each on Range (detekt) Print Stack Trace (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)

CWE:867 2011 Top 25 - Weaknesses On the Cusp

Category

hierarchy ancestor	Ignored Return Value (detekt) Implicit Unit Return Type (detekt) Instance of Check for Exception (detekt) Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:868 Weaknesses Addressed by the SEI CERT C++ Coding Standard (2016 Version)

View

hierarchy ancestor

CWE:871 CERT C++ Secure Coding Section 03 - Expressions (EXP)

Category

hierarchy ancestor	Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt) Useless Postfix Expression (detekt)

CWE:873 CERT C++ Secure Coding Section 05 - Floating Point Arithmetic (FLP)

Category

hierarchy ancestor	Nullable to String Call (detekt)

CWE:874 CERT C++ Secure Coding Section 06 - Arrays and the STL (ARR)

Category

hierarchy ancestor	Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt) Lateinit Usage (detekt)

CWE:875 CERT C++ Secure Coding Section 07 - Characters and Strings (STR)

Category

hierarchy ancestor	Cast Nullable to Non Nullable Type (detekt) Cast to Nullable Type (detekt) Dont Downcast Collection Types (detekt) Nullable to String Call (detekt) Unsafe Cast (detekt)

CWE:876 CERT C++ Secure Coding Section 08 - Memory Management (MEM)

Category

hierarchy ancestor

CWE:877 CERT C++ Secure Coding Section 09 - Input Output (FIO)

Category

hierarchy ancestor	Explicit Garbage Collection Call (detekt) Ignored Return Value (detekt)

CWE:878 CERT C++ Secure Coding Section 10 - Environment (ENV)

Category

hierarchy ancestor	Exception Raised in Unexpected Location (detekt) Return From Finally (detekt) Throwing Exception From Finally (detekt) Throwing Exception in Main (detekt) Too Generic Exception Caught (detekt)

CWE:879 CERT C++ Secure Coding Section 11 - Signals (SIG)

Category

hierarchy ancestor	Sleep Instead of Delay (detekt) Suspend Fun With Coroutine Scope Receiver (detekt) Suspend Fun With Flow Return Type (detekt)

CWE:880 CERT C++ Secure Coding Section 12 - Exceptions and Error Handling (ERR)

Category

hierarchy ancestor

CWE:882 CERT C++ Secure Coding Section 14 - Concurrency (CON)

Category

hierarchy ancestor	Explicit Garbage Collection Call (detekt)

CWE:883 CERT C++ Secure Coding Section 49 - Miscellaneous (MSC)

Category

hierarchy ancestor

CWE:884 CWE Cross-section

View

hierarchy ancestor

CWE:885 SFP Primary Cluster: Risky Values

Category

hierarchy ancestor

CWE:886 SFP Primary Cluster: Unused entities

Category

hierarchy ancestor	Invalid Range (detekt) Unreachable Catch Block (detekt) Unreachable Code (detekt)

CWE:887 SFP Primary Cluster: API

Category

hierarchy ancestor	Copy-Paste Error Deprecation (detekt) Dont Downcast Collection Types (detekt) Equals With Hash Code Exist (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Ignored Return Value (detekt) Iterator Not Throwing No Such Element Exception (detekt) No Name Shadowing (detekt) Nullable to String Call (detekt)

CWE:888 Software Fault Pattern (SFP) Clusters

View

hierarchy ancestor

CWE:889 SFP Primary Cluster: Exception Management

Category

hierarchy ancestor

CWE:890 SFP Primary Cluster: Memory Access

Category

hierarchy ancestor	Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:892 SFP Primary Cluster: Resource Management

Category

hierarchy ancestor

CWE:894 SFP Primary Cluster: Synchronization

Category

hierarchy ancestor	Sleep Instead of Delay (detekt) Suspend Fun With Coroutine Scope Receiver (detekt) Suspend Fun With Flow Return Type (detekt)

CWE:895 SFP Primary Cluster: Information Leak

Category

hierarchy ancestor	Forbidden Comment (detekt) KDoc References Non Public Property (detekt)

CWE:896 SFP Primary Cluster: Tainted Input

Category

hierarchy ancestor	Ignored Return Value (detekt) Implicit Default Locale (detekt) Map Get With Not Null Assertion Operator (detekt) No Name Shadowing (detekt)

CWE:897 SFP Primary Cluster: Entry Points

Category

hierarchy ancestor	Not Implemented Declaration (detekt)

CWE:899 SFP Primary Cluster: Access Control

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:900 Weaknesses in the 2011 CWE/SANS Top 25 Most Dangerous Software Errors

View

hierarchy ancestor	Ignored Return Value (detekt) Implicit Unit Return Type (detekt) Instance of Check for Exception (detekt) Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:901 SFP Primary Cluster: Privilege

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:906 SFP Primary Cluster: UI

Category

hierarchy ancestor	Too Generic Exception Caught (detekt)

CWE:907 SFP Primary Cluster: Other

Category

hierarchy ancestor

CWE:908 Use of Uninitialized Resource

Weakness

hierarchy ancestor	Lateinit Usage (detekt)

CWE:909 Missing Initialization of Resource

Weakness

closely mapped	Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt)

CWE:913 Improper Control of Dynamically-Managed Code Resources

Weakness

closely mapped	Serial Version UIDIn Serializable Class (detekt)

CWE:919 Weaknesses in Mobile Applications

View

hierarchy ancestor	KDoc References Non Public Property (detekt)

CWE:928 Weaknesses in OWASP Top Ten (2013)

View

hierarchy ancestor	No Name Shadowing (detekt)

CWE:929 OWASP Top Ten 2013 Category A1 - Injection

Category

hierarchy ancestor	No Name Shadowing (detekt)

CWE:932 OWASP Top Ten 2013 Category A4 - Insecure Direct Object References

Category

hierarchy ancestor	No Name Shadowing (detekt)

CWE:944 SFP Secondary Cluster: Access Management

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:960 SFP Secondary Cluster: Ambiguous Exception Type

Category

hierarchy ancestor	Too Generic Exception Caught (detekt)

CWE:961 SFP Secondary Cluster: Incorrect Exception Behavior

Category

hierarchy ancestor

CWE:962 SFP Secondary Cluster: Unchecked Status Condition

Category

hierarchy ancestor

CWE:963 SFP Secondary Cluster: Exposed Data

Category

hierarchy ancestor	Forbidden Comment (detekt) KDoc References Non Public Property (detekt)

CWE:971 SFP Secondary Cluster: Faulty Pointer Use

Category

hierarchy ancestor	Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:977 SFP Secondary Cluster: Design

Category

hierarchy ancestor

CWE:978 SFP Secondary Cluster: Implementation

Category

hierarchy ancestor

CWE:982 SFP Secondary Cluster: Failure to Release Resource

Category

hierarchy ancestor	Explicit Garbage Collection Call (detekt)

CWE:984 SFP Secondary Cluster: Life Cycle

Category

hierarchy ancestor

CWE:985 SFP Secondary Cluster: Unrestricted Consumption

Category

hierarchy ancestor	Array Primitive (detekt) Could Be Sequence (detekt) For Each on Range (detekt) Print Stack Trace (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)

CWE:986 SFP Secondary Cluster: Missing Lock

Category

hierarchy ancestor	Sleep Instead of Delay (detekt) Suspend Fun With Coroutine Scope Receiver (detekt) Suspend Fun With Flow Return Type (detekt)

CWE:990 SFP Secondary Cluster: Tainted Input to Command

Category

hierarchy ancestor	Ignored Return Value (detekt) Implicit Default Locale (detekt) Map Get With Not Null Assertion Operator (detekt) No Name Shadowing (detekt)

CWE:992 SFP Secondary Cluster: Faulty Input Transformation

Category

hierarchy ancestor	Implicit Default Locale (detekt)

CWE:993 SFP Secondary Cluster: Incorrect Input Handling

Category

hierarchy ancestor	Ignored Return Value (detekt) Map Get With Not Null Assertion Operator (detekt)

CWE:997 SFP Secondary Cluster: Information Loss

Category

hierarchy ancestor	Too Generic Exception Caught (detekt)

CWE:998 SFP Secondary Cluster: Glitch in Computation

Category

hierarchy ancestor

CWE:1000 Research Concepts

View

hierarchy ancestor

CWE:1001 SFP Secondary Cluster: Use of an Improper API

Category

hierarchy ancestor	Copy-Paste Error Deprecation (detekt) Dont Downcast Collection Types (detekt) Equals With Hash Code Exist (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Ignored Return Value (detekt) Iterator Not Throwing No Such Element Exception (detekt) No Name Shadowing (detekt) Nullable to String Call (detekt)

CWE:1002 SFP Secondary Cluster: Unexpected Entry Points

Category

hierarchy ancestor	Not Implemented Declaration (detekt)

CWE:1003 Weaknesses for Simplified Mapping of Published Vulnerabilities

View

hierarchy ancestor

CWE:1005 7PK - Input Validation and Representation

Category

hierarchy ancestor	No Name Shadowing (detekt)

CWE:1006 Bad Coding Practices

Category

hierarchy ancestor

CWE:1008 Architectural Concepts

View

hierarchy ancestor

CWE:1009 Audit

Category

hierarchy ancestor	Print Stack Trace (detekt)

CWE:1011 Authorize Actors

Category

hierarchy ancestor	Ignored Return Value (detekt) KDoc References Non Public Property (detekt)

CWE:1012 Cross Cutting

Category

hierarchy ancestor

CWE:1019 Validate Inputs

Category

hierarchy ancestor	No Name Shadowing (detekt)

CWE:1020 Verify Message Integrity

Category

hierarchy ancestor

CWE:1025 Comparison Using Wrong Factors

Weakness

closely mapped	Equals Null Call (detekt)
hierarchy ancestor	Avoid Referential Equality (detekt)

CWE:1026 Weaknesses in OWASP Top Ten (2017)

View

hierarchy ancestor	Ignored Return Value (detekt) Too Generic Exception Caught (detekt)

CWE:1031 OWASP Top Ten 2017 Category A5 - Broken Access Control

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:1032 OWASP Top Ten 2017 Category A6 - Security Misconfiguration

Category

hierarchy ancestor	Ignored Return Value (detekt) Too Generic Exception Caught (detekt)

CWE:1040 Quality Weaknesses with Indirect Security Impacts

View

hierarchy ancestor

CWE:1041 Use of Redundant Code

Weakness

closely mapped	Copy-Paste Error

CWE:1059 Insufficient Technical Documentation

Weakness

closely mapped	Undocumented Public Class (detekt) Undocumented Public Function (detekt) Undocumented Public Property (detekt)

CWE:1064 Invokable Control Element with Signature Containing an Excessive Number of Parameters

Weakness

closely mapped	Long Parameter List (detekt)

CWE:1069 Empty Exception Block

Weakness

closely mapped	Empty Catch Block (detekt)

CWE:1071 Empty Code Block

Weakness

closely mapped

hierarchy ancestor

Empty Catch Block (detekt)

CWE:1076 Insufficient Adherence to Expected Conventions

Weakness

closely mapped

hierarchy ancestor

CWE:1078 Inappropriate Source Code Style or Formatting

Weakness

closely mapped

hierarchy ancestor

CWE:1081 Entries with Maintenance Notes

View

hierarchy ancestor

CWE:1099 Inconsistent Naming Conventions for Identifiers

Weakness

closely mapped

CWE:1106 Insufficient Use of Symbolic Constants

Weakness

closely mapped	String Literal Duplication (detekt)

CWE:1113 Inappropriate Comment Style

Weakness

closely mapped	Comment Over Private Function (detekt) Comment Over Private Property (detekt) Deprecated Block Tag (detekt) End of Sentence Format (detekt)

CWE:1114 Inappropriate Whitespace Style

Weakness

closely mapped	Equals on Signature Line (detekt) Max Chained Calls on Same Line (detekt) Multiline Raw String Indentation (detekt) New Line at End of File (detekt) No Tabs (detekt) Spacing Between Package and Imports (detekt) Trailing Whitespace (detekt)
also related	Unused Unary Operator (detekt)

CWE:1116 Inaccurate Comments

Weakness

closely mapped	Outdated Documentation (detekt)

CWE:1119 Excessive Use of Unconditional Branching

Weakness

closely mapped	Unconditional Jump Statement in Loop (detekt)

CWE:1120 Excessive Code Complexity

Weakness

closely mapped

hierarchy ancestor

CWE:1121 Excessive McCabe Cyclomatic Complexity

Weakness

closely mapped	Cyclomatic Complex Method (detekt)

CWE:1124 Excessively Deep Nesting

Weakness

closely mapped	Collapsible If Statements (detekt) Nested Block Depth (detekt)

CWE:1127 Compilation with Insufficient Warnings or Errors

Weakness

closely mapped	Forbidden Suppress (detekt)

CWE:1128 CISQ Quality Measures (2016)

View

hierarchy ancestor

CWE:1129 CISQ Quality Measures (2016) - Reliability

Category

hierarchy ancestor	Cast Nullable to Non Nullable Type (detekt) Cast to Nullable Type (detekt) Dont Downcast Collection Types (detekt) Empty Catch Block (detekt) Ignored Return Value (detekt) Too Generic Exception Caught (detekt) Unsafe Cast (detekt)

CWE:1130 CISQ Quality Measures (2016) - Maintainability

Category

hierarchy ancestor	Copy-Paste Error Cyclomatic Complex Method (detekt) Invalid Range (detekt) Long Parameter List (detekt) Unreachable Catch Block (detekt) Unreachable Code (detekt)

CWE:1131 CISQ Quality Measures (2016) - Security

Category

hierarchy ancestor	Ignored Return Value (detekt) Iterator Not Throwing No Such Element Exception (detekt) No Name Shadowing (detekt) Too Generic Exception Caught (detekt)

CWE:1133 Weaknesses Addressed by the SEI CERT Oracle Coding Standard for Java

View

hierarchy ancestor

CWE:1135 SEI CERT Oracle Secure Coding Standard for Java - Guidelines 01. Declarations and Initialization (DCL)

Category

hierarchy ancestor	Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt) Lateinit Usage (detekt)

CWE:1136 SEI CERT Oracle Secure Coding Standard for Java - Guidelines 02. Expressions (EXP)

Category

hierarchy ancestor	Avoid Referential Equality (detekt) Ignored Return Value (detekt) Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:1140 SEI CERT Oracle Secure Coding Standard for Java - Guidelines 06. Methods (MET)

Category

hierarchy ancestor	Avoid Referential Equality (detekt) Copy-Paste Error Equals Null Call (detekt) Equals With Hash Code Exist (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Iterator Not Throwing No Such Element Exception (detekt) No Name Shadowing (detekt) Nullable to String Call (detekt)

CWE:1141 SEI CERT Oracle Secure Coding Standard for Java - Guidelines 07. Exceptional Behavior (ERR)

Category

hierarchy ancestor

CWE:1142 SEI CERT Oracle Secure Coding Standard for Java - Guidelines 08. Visibility and Atomicity (VNA)

Category

hierarchy ancestor	Sleep Instead of Delay (detekt) Suspend Fun With Coroutine Scope Receiver (detekt) Suspend Fun With Flow Return Type (detekt)

CWE:1145 SEI CERT Oracle Secure Coding Standard for Java - Guidelines 11. Thread Pools (TPS)

Category

hierarchy ancestor	Could Be Sequence (detekt) For Each on Range (detekt) Ignored Return Value (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)

CWE:1147 SEI CERT Oracle Secure Coding Standard for Java - Guidelines 13. Input Output (FIO)

Category

hierarchy ancestor

CWE:1148 SEI CERT Oracle Secure Coding Standard for Java - Guidelines 14. Serialization (SER)

Category

hierarchy ancestor	Array Primitive (detekt) Could Be Sequence (detekt) For Each on Range (detekt) Print Stack Trace (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)

CWE:1152 SEI CERT Oracle Secure Coding Standard for Java - Guidelines 49. Miscellaneous (MSC)

Category

hierarchy ancestor	Array Primitive (detekt) Could Be Sequence (detekt) For Each on Range (detekt) Print Stack Trace (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)

CWE:1154 Weaknesses Addressed by the SEI CERT C Coding Standard

View

hierarchy ancestor

CWE:1157 SEI CERT C Coding Standard - Guidelines 03. Expressions (EXP)

Category

hierarchy ancestor	Cast Nullable to Non Nullable Type (detekt) Cast to Nullable Type (detekt) Copy-Paste Error Dont Downcast Collection Types (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Lateinit Usage (detekt) Null Check on Mutable Property (detekt) Nullable to String Call (detekt) Unsafe Call on Nullable Type (detekt) Unsafe Cast (detekt) Useless Postfix Expression (detekt)

CWE:1158 SEI CERT C Coding Standard - Guidelines 04. Integers (INT)

Category

hierarchy ancestor	Cast Nullable to Non Nullable Type (detekt) Cast to Nullable Type (detekt) Dont Downcast Collection Types (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Unsafe Cast (detekt)

CWE:1159 SEI CERT C Coding Standard - Guidelines 05. Floating Point (FLP)

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:1160 SEI CERT C Coding Standard - Guidelines 06. Arrays (ARR)

Category

hierarchy ancestor	Dont Downcast Collection Types (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:1161 SEI CERT C Coding Standard - Guidelines 07. Characters and Strings (STR)

Category

hierarchy ancestor	Cast Nullable to Non Nullable Type (detekt) Cast to Nullable Type (detekt) Dont Downcast Collection Types (detekt) Unsafe Cast (detekt)

CWE:1162 SEI CERT C Coding Standard - Guidelines 08. Memory Management (MEM)

Category

hierarchy ancestor	Dont Downcast Collection Types (detekt) Explicit Garbage Collection Call (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:1163 SEI CERT C Coding Standard - Guidelines 09. Input Output (FIO)

Category

hierarchy ancestor

CWE:1164 Irrelevant Code

Weakness

closely mapped

hierarchy ancestor

CWE:1165 SEI CERT C Coding Standard - Guidelines 10. Environment (ENV)

Category

hierarchy ancestor	Exception Raised in Unexpected Location (detekt) Return From Finally (detekt) Throwing Exception From Finally (detekt) Throwing Exception in Main (detekt) Too Generic Exception Caught (detekt)

CWE:1166 SEI CERT C Coding Standard - Guidelines 11. Signals (SIG)

Category

hierarchy ancestor	Sleep Instead of Delay (detekt) Suspend Fun With Coroutine Scope Receiver (detekt) Suspend Fun With Flow Return Type (detekt)

CWE:1167 SEI CERT C Coding Standard - Guidelines 12. Error Handling (ERR)

Category

hierarchy ancestor	Dont Downcast Collection Types (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Ignored Return Value (detekt)

CWE:1170 SEI CERT C Coding Standard - Guidelines 48. Miscellaneous (MSC)

Category

hierarchy ancestor	Dont Downcast Collection Types (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:1171 SEI CERT C Coding Standard - Guidelines 50. POSIX (POS)

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:1176 Inefficient CPU Computation

Weakness

closely mapped	Could Be Sequence (detekt) For Each on Range (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)

CWE:1177 Use of Prohibited Code

Weakness

closely mapped	Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:1178 Weaknesses Addressed by the SEI CERT Perl Coding Standard

View

hierarchy ancestor

CWE:1180 SEI CERT Perl Coding Standard - Guidelines 02. Declarations and Initialization (DCL)

Category

hierarchy ancestor	Copy-Paste Error Deprecation (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt) Lateinit Usage (detekt) Nullable to String Call (detekt)

CWE:1181 SEI CERT Perl Coding Standard - Guidelines 03. Expressions (EXP)

Category

hierarchy ancestor

CWE:1186 SEI CERT Perl Coding Standard - Guidelines 50. Miscellaneous (MSC)

Category

hierarchy ancestor	Invalid Range (detekt) Unreachable Catch Block (detekt) Unreachable Code (detekt)

CWE:1194 Hardware Design

View

hierarchy ancestor	Forbidden Import (detekt) Forbidden Method Call (detekt) Undocumented Public Class (detekt) Undocumented Public Function (detekt) Undocumented Public Property (detekt)

CWE:1195 Manufacturing and Life Cycle Management Concerns

Category

hierarchy ancestor	Undocumented Public Class (detekt) Undocumented Public Function (detekt) Undocumented Public Property (detekt)

CWE:1200 Weaknesses in the 2019 CWE Top 25 Most Dangerous Software Errors

View

hierarchy ancestor	Array Primitive (detekt) Could Be Sequence (detekt) For Each on Range (detekt) Ignored Return Value (detekt) KDoc References Non Public Property (detekt) Null Check on Mutable Property (detekt) Print Stack Trace (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt) Unsafe Call on Nullable Type (detekt)

CWE:1208 Cross-Cutting Problems

Category

hierarchy ancestor	Forbidden Import (detekt) Forbidden Method Call (detekt) Undocumented Public Class (detekt) Undocumented Public Function (detekt) Undocumented Public Property (detekt)

CWE:1210 Audit / Logging Errors

Category

hierarchy ancestor	Print Stack Trace (detekt)

CWE:1226 Complexity Issues

Category

hierarchy ancestor	Collapsible If Statements (detekt) Cyclomatic Complex Method (detekt) Long Parameter List (detekt) Nested Block Depth (detekt) Unconditional Jump Statement in Loop (detekt)

CWE:1228 API / Function Errors

Category

hierarchy ancestor	Deprecation (detekt) Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:1235 Incorrect Use of Autoboxing and Unboxing for Performance Critical Operations

Weakness

closely mapped	Array Primitive (detekt)

CWE:1305 CISQ Quality Measures (2020)

View

hierarchy ancestor

CWE:1306 CISQ Quality Measures - Reliability

Category

hierarchy ancestor

CWE:1307 CISQ Quality Measures - Maintainability

Category

hierarchy ancestor	Copy-Paste Error Equals Always Returns True or False (detekt) Invalid Range (detekt) Long Parameter List (detekt) Unnecessary Not Null Check (detekt) Unnecessary Not Null Operator (detekt) Unnecessary Safe Call (detekt) Unreachable Catch Block (detekt) Unreachable Code (detekt) Useless Postfix Expression (detekt)

CWE:1308 CISQ Quality Measures - Security

Category

hierarchy ancestor

CWE:1309 CISQ Quality Measures - Efficiency

Category

hierarchy ancestor	Explicit Garbage Collection Call (detekt)

CWE:1329 Reliance on Component That is Not Updateable

Weakness

also related	Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:1337 Weaknesses in the 2021 CWE Top 25 Most Dangerous Software Weaknesses

View

hierarchy ancestor	KDoc References Non Public Property (detekt) Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:1340 CISQ Data Protection Measures

View

hierarchy ancestor

CWE:1344 Weaknesses in OWASP Top Ten (2021)

View

hierarchy ancestor	Ignored Return Value (detekt) KDoc References Non Public Property (detekt) No Name Shadowing (detekt) Serial Version UIDIn Serializable Class (detekt) Too Generic Exception Caught (detekt)

CWE:1345 OWASP Top Ten 2021 Category A01:2021 - Broken Access Control

Category

hierarchy ancestor	Ignored Return Value (detekt) KDoc References Non Public Property (detekt) Serial Version UIDIn Serializable Class (detekt)

CWE:1347 OWASP Top Ten 2021 Category A03:2021 - Injection

Category

hierarchy ancestor	No Name Shadowing (detekt)

CWE:1348 OWASP Top Ten 2021 Category A04:2021 - Insecure Design

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:1349 OWASP Top Ten 2021 Category A05:2021 - Security Misconfiguration

Category

hierarchy ancestor	Ignored Return Value (detekt) Too Generic Exception Caught (detekt)

CWE:1350 Weaknesses in the 2020 CWE Top 25 Most Dangerous Software Weaknesses

View

hierarchy ancestor	Array Primitive (detekt) Could Be Sequence (detekt) For Each on Range (detekt) Ignored Return Value (detekt) KDoc References Non Public Property (detekt) Null Check on Mutable Property (detekt) Print Stack Trace (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt) Unsafe Call on Nullable Type (detekt)

CWE:1357 Reliance on Insufficiently Trustworthy Component

Weakness

hierarchy ancestor	Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:1358 Weaknesses in SEI ETF Categories of Security Vulnerabilities in ICS

View

hierarchy ancestor

CWE:1359 ICS Communications

Category

hierarchy ancestor	Ignored Return Value (detekt) Implicit Unit Return Type (detekt) Instance of Check for Exception (detekt) KDoc References Non Public Property (detekt) Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:1360 ICS Dependencies (& Architecture)

Category

hierarchy ancestor	Forbidden Import (detekt) Forbidden Method Call (detekt) Undocumented Public Class (detekt) Undocumented Public Function (detekt) Undocumented Public Property (detekt)

CWE:1361 ICS Supply Chain

Category

hierarchy ancestor

CWE:1362 ICS Engineering (Constructions/Deployment)

Category

hierarchy ancestor

CWE:1363 ICS Operations (& Maintenance)

Category

hierarchy ancestor

CWE:1364 ICS Communications: Zone Boundary Failures

Category

hierarchy ancestor	Ignored Return Value (detekt) Implicit Unit Return Type (detekt) Instance of Check for Exception (detekt) KDoc References Non Public Property (detekt) Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:1365 ICS Communications: Unreliability

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:1366 ICS Communications: Frail Security in Protocols

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:1367 ICS Dependencies (& Architecture): External Physical Systems

Category

hierarchy ancestor	Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:1368 ICS Dependencies (& Architecture): External Digital Systems

Category

hierarchy ancestor	Forbidden Import (detekt) Forbidden Method Call (detekt) Undocumented Public Class (detekt) Undocumented Public Function (detekt) Undocumented Public Property (detekt)

CWE:1369 ICS Supply Chain: IT/OT Convergence/Expansion

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:1370 ICS Supply Chain: Common Mode Frailties

Category

hierarchy ancestor

CWE:1371 ICS Supply Chain: Poorly Documented or Undocumented Features

Category

hierarchy ancestor	Not Implemented Declaration (detekt) Undocumented Public Class (detekt) Undocumented Public Function (detekt) Undocumented Public Property (detekt)

CWE:1372 ICS Supply Chain: OT Counterfeit and Malicious Corruption

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:1373 ICS Engineering (Construction/Deployment): Trust Model Problems

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:1375 ICS Engineering (Construction/Deployment): Gaps in Details/Data

Category

hierarchy ancestor

CWE:1383 ICS Operations (& Maintenance): Compliance/Conformance with Regulatory Requirements

Category

hierarchy ancestor

CWE:1387 Weaknesses in the 2022 CWE Top 25 Most Dangerous Software Weaknesses

View

hierarchy ancestor	Array Primitive (detekt) Could Be Sequence (detekt) For Each on Range (detekt) Null Check on Mutable Property (detekt) Print Stack Trace (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt) Unsafe Call on Nullable Type (detekt)

CWE:1396 Comprehensive Categorization: Access Control

Category

hierarchy ancestor	Ignored Return Value (detekt)

CWE:1397 Comprehensive Categorization: Comparison

Category

hierarchy ancestor	Avoid Referential Equality (detekt) Equals Null Call (detekt) Equals With Hash Code Exist (detekt)

CWE:1400 Comprehensive Categorization for Software Assurance Trends

View

hierarchy ancestor

CWE:1403 Comprehensive Categorization: Exposed Resource

Category

hierarchy ancestor	KDoc References Non Public Property (detekt)

CWE:1405 Comprehensive Categorization: Improper Check or Handling of Exceptional Conditions

Category

hierarchy ancestor

CWE:1407 Comprehensive Categorization: Improper Neutralization

Category

hierarchy ancestor	Ignored Return Value (detekt) Implicit Default Locale (detekt) Map Get With Not Null Assertion Operator (detekt) No Name Shadowing (detekt)

CWE:1409 Comprehensive Categorization: Injection

Category

hierarchy ancestor	No Name Shadowing (detekt)

CWE:1410 Comprehensive Categorization: Insufficient Control Flow Management

Category

hierarchy ancestor

CWE:1412 Comprehensive Categorization: Poor Coding Practices

Category

hierarchy ancestor

CWE:1415 Comprehensive Categorization: Resource Control

Category

hierarchy ancestor	Forbidden Import (detekt) Forbidden Method Call (detekt)

CWE:1416 Comprehensive Categorization: Resource Lifecycle Management

Category

hierarchy ancestor

CWE:1417 Comprehensive Categorization: Sensitive Information Exposure

Category

hierarchy ancestor	KDoc References Non Public Property (detekt)

CWE:1424 Weaknesses Addressed by ISA/IEC 62443 Requirements

View

hierarchy ancestor

CWE:1425 Weaknesses in the 2023 CWE Top 25 Most Dangerous Software Weaknesses

View

hierarchy ancestor	Ignored Return Value (detekt) Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)

CWE:1430 Weaknesses in the 2024 CWE Top 25 Most Dangerous Software Weaknesses

View

hierarchy ancestor	Array Primitive (detekt) Could Be Sequence (detekt) For Each on Range (detekt) Ignored Return Value (detekt) KDoc References Non Public Property (detekt) Null Check on Mutable Property (detekt) Print Stack Trace (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt) Unsafe Call on Nullable Type (detekt)

CWE:2000 Comprehensive CWE Dictionary

View

hierarchy ancestor