CWE IDs Detected by CodeSonar

JavaScript is not currently enabled, but is required for full CodeSonar manual search and browse functionality.

If you are viewing this file in your hub's Web GUI, enable JavaScript in your browser: you will also need it for GUI functionality.

If you opened this file directly from disk, your browser may be directly suppressing JavaScript functionality: certain browsers perform this suppression on local files (but not files delivered by web servers) for security reasons.

If you access the manual through the hub's Web GUI, the functionality will not be suppressed because the hub is a web server.
Alternatively, your browser may allow you to explicitly disable the security setting that suppresses functionality. See the CodeSonar FAQ for more information.

CodeSonar^® 9.0p0 Hot Tips

CONFIDENTIAL

CodeSecure Inc

CWE IDs Detected by CodeSonar

This section lists the closely-corresponding CWE IDs for weaknesses that are detected by CodeSonar. Note that not all CodeSonar warning classes have a closely-corresponding CWE ID, and not all CWE IDs have a closely-corresponding CodeSonar warning class.

We refer to the this as the close CWE mapping.
A CSV version of this table is provided in CWE-mapping.csv.
You can also view the information in this table by language: C/C++, Java, C#, Python, Kotlin.
For the close CWE mapping organized by CodeSonar warning class, see CWE IDs For CodeSonar Warning Classes.
A broader set of CWE correspondences is shown in Broad Mapping: CWE IDs Detected By CodeSonar.

This version of CodeSonar (9.0p0) uses CWE 4.16, published November 19, 2024.

CWE	Entity Type	C/C++ Warning Classes	Java Warning Classes	C# Warning Classes	Kotlin Warning Classes	Python Warning Classes
CWE:14 Compiler Removal of Code to Clear Buffers	Weakness	Use of memset	-	-	-	-
CWE:15 External Control of System or Configuration Setting	Weakness	Tainted Configuration Setting	-	-	-	-
CWE:20 Improper Input Validation	Weakness	Cast Alters Value Coercion Alters Value Tainted Buffer Access	-	Disabled Input Validation (C#)	-	-
CWE:22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')	Weakness	Tainted Filename	Tainted Path (Java)	Tainted Path (C#)	-	-
CWE:73 External Control of File Name or Path	Weakness	Tainted Filename	-	-	-	-
CWE:74 Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')	Weakness	-	Android URL Injection (Java) DLL Injection (Java) DOS Injection (Java) Tainted @Trusted Value (Java) Tainted Control (Java) Tainted Data in Vulnerable Method (Java) Tainted Hardware Device Property (Java) Tainted Network Address (Java) Tainted Resource (Java) Tainted URL (Java) Tainted XAML (Java) Tainted XML (Java)	DLL Injection (C#) DOS Injection (C#) Tainted @Trusted Value (C#) Tainted Control (C#) Tainted Hardware Device Property (C#) Tainted Network Address (C#) Tainted Resource (C#) Tainted URL (C#) Tainted XAML (C#) Tainted XML (C#)	-	-
CWE:78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')	Weakness	Command Injection Untrusted Process Creation	Command Injection (Java)	Command Injection (C#)	-	-
CWE:79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')	Weakness	-	Cross Site Scripting (Java) Cross Site Scripting In Error Message Web Page (Java)	Cross Site Scripting (C#) Cross Site Scripting In Error Message Web Page (C#)	-	-
CWE:81 Improper Neutralization of Script in an Error Message Web Page	Weakness	-	Cross Site Scripting In Error Message Web Page (Java)	Cross Site Scripting (C#) Cross Site Scripting In Error Message Web Page (C#)	-	-
CWE:88 Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')	Weakness	Command Injection	-	-	-	-
CWE:89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')	Weakness	SQL Injection	SQL Injection (Java)	SQL Injection (C#)	-	-
CWE:90 Improper Neutralization of Special Elements used in an LDAP Query ('LDAP Injection')	Weakness	LDAP Injection	Tainted LDAP Attribute (Java) Tainted LDAP Filter (Java)	Tainted LDAP Attribute (C#) Tainted LDAP Filter (C#)	-	-
CWE:94 Improper Control of Generation of Code ('Code Injection')	Weakness	-	Code Injection (Java)	Code Injection (C#)	-	Eval Used (Pylint) Exec Used (Pylint)
CWE:95 Improper Neutralization of Directives in Dynamically Evaluated Code ('Eval Injection')	Weakness	-	Tainted Expression Evaluation (Java)	Tainted Expression Evaluation (C#)	-	-
CWE:99 Improper Control of Resource Identifiers ('Resource Injection')	Weakness	Tainted Filename Tainted Network Address Untrusted Network Host Untrusted Network Port	-	-	-	-
CWE:103 Struts: Incomplete validate() Method Definition	Weakness	-	Missing Call to super (Java)	-	-	-
CWE:113 Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting')	Weakness	-	Tainted HTTP Response (Java)	Tainted HTTP Response (C#)	-	-
CWE:114 Process Control	Weakness	Command Injection Library Injection Untrusted Library Load	DLL Injection (Java)	DLL Injection (C#)	-	-
CWE:117 Improper Output Neutralization for Logs	Weakness	-	Tainted Log (Java)	Tainted Log (C#)	-	-
CWE:118 Incorrect Access of Indexable Resource ('Range Error')	Weakness	-	-	-	-	Invalid Format Index (Pylint) Invalid Sequence Index (Pylint) Invalid Slice Index (Pylint)
CWE:119 Improper Restriction of Operations within the Bounds of a Memory Buffer	Weakness	High Risk Loop Tainted Buffer Access Type Overrun Type Underrun	-	-	-	-
CWE:120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')	Weakness	Buffer Overrun Use of OemToAnsi Use of OemToChar Use of StrCatChainW Use of getopt Use of getpass Use of gets Use of getwd Use of recvmsg Use of strcat Use of strchr Use of strcmp Use of strcoll Use of strcpy Use of strcspn Use of strlen Use of strpbrk Use of strrchr Use of strspn Use of strstr Use of strtok Use of strtrns Use of syslog	-	-	-	-
CWE:125 Out-of-bounds Read	Weakness	-	-	-	-	Potential Index Error (Pylint)
CWE:128 Wrap-around Error	Weakness	Addition Overflow of Allocation Size Addition Overflow of Size Integer Overflow of Allocation Size Multiplication Overflow of Allocation Size Multiplication Overflow of Size Subtraction Underflow of Allocation Size Subtraction Underflow of Size	-	-	-	-
CWE:131 Incorrect Calculation of Buffer Size	Weakness	Addition Overflow of Allocation Size Integer Overflow of Allocation Size Multiplication Overflow of Allocation Size Subtraction Underflow of Allocation Size Tainted Allocation Size Truncation of Allocation Size	-	-	-	-
CWE:134 Use of Externally-Controlled Format String	Weakness	Format String Format String Injection Use of FormatMessage	Format String Injection (Java)	Format String Injection (C#)	-	-
CWE:170 Improper Null Termination	Weakness	No Space For Null Terminator Unterminated C String	-	-	-	-
CWE:172 Encoding Error	Weakness	-	-	-	Implicit Default Locale (detekt)	-
CWE:190 Integer Overflow or Wraparound	Weakness	Addition Overflow of Allocation Size Addition Overflow of Size Integer Overflow of Allocation Size Multiplication Overflow of Allocation Size Multiplication Overflow of Size Subtraction Underflow of Allocation Size Subtraction Underflow of Size	Cast: int Computation to long (Java)	Cast: int Computation to long (C#)	-	-
CWE:191 Integer Underflow (Wrap or Wraparound)	Weakness	Subtraction Underflow of Allocation Size Subtraction Underflow of Size	Cast: int Computation to long (Java)	-	-	-
CWE:192 Integer Coercion Error	Weakness	Cast Alters Value Coercion Alters Value Truncation of Allocation Size Truncation of Size	Cast: Integer to Floating Point (Java)	Cast: Integer to Floating Point (C#)	-	-
CWE:197 Numeric Truncation Error	Weakness	Truncation of Allocation Size Truncation of Size	Approximate e Constant (Java) Approximate pi Constant (Java)	Approximate e Constant (C#) Approximate pi Constant (C#)	-	-
CWE:200 Exposure of Sensitive Information to an Unauthorized Actor	Weakness	Tainted Write	Use of Hardware ID (Java)	-	-	-
CWE:209 Generation of Error Message Containing Sensitive Information	Weakness	-	Debug Warning (Java)	-	-	-
CWE:229 Improper Handling of Values	Weakness	-	-	-	-	Confusing With Statement (Pylint) Dict Iter Missing Items (Pylint)
CWE:230 Improper Handling of Missing Values	Weakness	-	-	-	Map Get With Not Null Assertion Operator (detekt)	-
CWE:242 Use of Inherently Dangerous Function	Weakness	Use of chroot Use of crypt Use of drem Use of gamma Use of gets Use of getwd Use of longjmp Use of mktemp Use of setjmp Use of tmpfile Use of tmpnam Use of vfork	-	-	-	-
CWE:243 Creation of chroot Jail Without Changing Working Directory	Weakness	Use of chroot chroot without chdir	-	-	-	-
CWE:252 Unchecked Return Value	Weakness	Ignored Return Value	Call Might Return Null (Java) Ignored Return Value (Java) Ignored Return Value for Pure Function (Java)	Call Might Return Null (C#) Ignored Return Value (C#) Ignored Return Value for Pure Function (C#)	Ignored Return Value (detekt)	-
CWE:253 Incorrect Check of Function Return Value	Weakness	-	Useless null Test of Return Value (Java)	Useless null Test of Return Value (C#)	-	-
CWE:256 Plaintext Storage of a Password	Weakness	Plaintext Storage of Password	-	-	-	-
CWE:259 Use of Hard-coded Password	Weakness	Hardcoded Authentication	Hardcoded Password (Java) Sensitive Data Written to External Storage (Java)	Hardcoded Password (C#)	-	-
CWE:269 Improper Privilege Management	Weakness	Use of AddAccessAllowedAce Use of AddAccessDeniedAce	-	-	-	-
CWE:281 Improper Preservation of Permissions	Weakness	Use of AddAccessAllowedAce Use of AddAccessDeniedAce	-	-	-	-
CWE:284 Improper Access Control	Weakness	Null Security Descriptor	-	-	-	-
CWE:287 Improper Authentication	Weakness	-	Hostname in Condition (Java) Ineffective Cleansing of Fragment Taint (Java) Insecure verifier Override for Hostname (Java) Missing Authentication Annotation (Java) Use of Insecure verify for Hostname (Java)	Hostname in Condition (C#) Missing Authentication Annotation (C#)	-	-
CWE:295 Improper Certificate Validation	Weakness	-	Insecure Socket Factory (Java) Insecure verify Override for Certificate (Java) Untrusted Network Host (Java) Use of Insecure verify for Certificate (Java)	-	-	-
CWE:311 Missing Encryption of Sensitive Data	Weakness	Plaintext Storage of Password Plaintext Transmission of Password	-	-	-	-
CWE:313 Cleartext Storage in a File or on Disk	Weakness	Plaintext Storage of Password	-	-	-	-
CWE:316 Cleartext Storage of Sensitive Information in Memory	Weakness	Plaintext Storage of Password	-	-	-	-
CWE:318 Cleartext Storage of Sensitive Information in Executable	Weakness	Hardcoded Authentication Hardcoded Crypto Key Hardcoded Crypto Salt Plaintext Storage of Password	-	-	-	-
CWE:319 Cleartext Transmission of Sensitive Information	Weakness	Plaintext Transmission of Password	Android Message Injection (Java) Tainted Message (Java)	Tainted Message (C#)	-	-
CWE:321 Use of Hard-coded Cryptographic Key	Weakness	Hardcoded Crypto Key	Hardcoded Cryptographic Key (Java)	Hardcoded Cryptographic Key (C#)	-	-
CWE:325 Missing Cryptographic Step	Weakness	Encryption without Padding	Missing Required Cryptographic Step (Java)	Missing Required Cryptographic Step (C#)	-	-
CWE:326 Inadequate Encryption Strength	Weakness	Use of crypt Weak Cryptography	Insecure Key Derivation (Java)	Insecure Key Derivation (C#)	-	-
CWE:327 Use of a Broken or Risky Cryptographic Algorithm	Weakness	Use of Weak Cryptographic Algorithm Use of crypt Use of rand Use of rand48 Function Use of random Weak Cryptography	Cryptographic Algorithm with Risky Default Cipher (Java) Cryptographic Algorithm with Weak Cipher (Java) Deprecated Cryptography Provider (Java) Risky Cipher Algorithm (Java) Risky Cipher Field (Java) Risky Cryptographic Algorithm (Java) Risky Cryptographic Field (Java) Unsafe Base64 Encoding (Java)	Cryptographic Algorithm with Risky Default Cipher (C#) Cryptographic Algorithm with Weak Cipher (C#) Deprecated Cryptography Provider (C#) Risky Cipher Algorithm (C#) Risky Cipher Field (C#) Risky Cryptographic Algorithm (C#) Risky Cryptographic Field (C#) Unsafe Base64 Encoding (C#)	-	-
CWE:328 Use of Weak Hash	Weakness	Use of crypt	Cryptographic Algorithm with Weak Hash (Java) Weak Hash Algorithm (Java) Weak Hash Algorithm Field (Java)	Cryptographic Algorithm with Weak Hash (C#) Weak Hash Algorithm (C#) Weak Hash Algorithm Field (C#)	-	-
CWE:330 Use of Insufficiently Random Values	Weakness	Use of crypt Weak Cryptography	Hardcoded Random Seed (Java) Insecure Random Number Generator (Java) Legacy Random Generator (Java)	Hardcoded Random Seed (C#) Insecure Random Number Generator (C#) Legacy Random Generator (C#)	-	-
CWE:331 Insufficient Entropy	Weakness	Encryption without Padding	-	-	-	-
CWE:332 Insufficient Entropy in PRNG	Weakness	Use of rand Use of rand48 Function Use of random	-	-	-	-
CWE:334 Small Space of Random Values	Weakness	Use of rand Use of rand48 Function Use of random	-	-	-	-
CWE:336 Same Seed in Pseudo-Random Number Generator (PRNG)	Weakness	Hardcoded Seed in PRNG	Use of Same Seed (Java)	Use of Same Seed (C#)	-	-
CWE:337 Predictable Seed in Pseudo-Random Number Generator (PRNG)	Weakness	Predictable Seed in PRNG	-	-	-	-
CWE:338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	Weakness	Use of crypt Use of rand Use of rand48 Function Use of random Weak Cryptography	Weak Cryptographic Value (Java)	Weak Cryptographic Value (C#)	-	-
CWE:349 Acceptance of Extraneous Untrusted Data With Trusted Data	Weakness	-	Potential LDAP Poisoning (Java) Tainted Data in Vulnerable Method (Java)	-	-	-
CWE:362 Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')	Weakness	Data Race	-	-	-	-
CWE:364 Signal Handler Race Condition	Weakness	Data Race	-	-	-	-
CWE:366 Race Condition within a Thread	Weakness	Data Race	Double-Checked Locking (Java) Missing synchronized Statement (Java) Synchronization on Interned String (Java) Synchronization on static (Java) Unguarded Field (Java) Unguarded Method (Java) Unguarded Parameter (Java)	-	-	-
CWE:367 Time-of-check Time-of-use (TOCTOU) Race Condition	Weakness	File System Race Condition	-	-	-	-
CWE:369 Divide By Zero	Weakness	Division By Zero Float Division By Zero	-	-	-	-
CWE:377 Insecure Temporary File	Weakness	Use of GetTempFileName Use of mkstemp Use of mktemp Use of tmpfile Use of tmpfile_s Use of tmpnam Use of tmpnam_s	-	-	-	-
CWE:382 J2EE Bad Practices: Use of System.exit()	Weakness	-	Debug Call (Java)	-	-	-
CWE:383 J2EE Bad Practices: Direct Use of Threads	Weakness	-	Direct Thread Usage in Http Servlet (Java)	-	-	-
CWE:390 Detection of Error Condition Without Action	Weakness	Empty if Statement	Empty Exception Handler (Java)	Empty Exception Handler (C#)	Empty Catch Block (detekt) Suspend Fun Swallowed Cancellation (detekt) Swallowed Exception (detekt)	-
CWE:391 Unchecked Error Condition	Weakness	Ignored Return Value	-	-	Ignored Return Value (detekt)	-
CWE:394 Unexpected Status Code or Return Value	Weakness	Ignored Return Value	-	-	Ignored Return Value (detekt)	-
CWE:395 Use of NullPointerException Catch to Detect NULL Pointer Dereference	Weakness	-	Inappropriate Exception Handler (Java)	Inappropriate Exception Handler (C#)	-	-
CWE:396 Declaration of Catch for Generic Exception	Weakness	Use of catch	Generic Exception Handler (Java)	Generic Exception Handler (C#)	Too Generic Exception Caught (detekt)	Bare Except (Pylint) Broad Exception Caught (Pylint)
CWE:397 Declaration of Throws for Generic Exception	Weakness	Use of throw	Broad Throws Clause (Java)	-	-	-
CWE:400 Uncontrolled Resource Consumption	Weakness	Excessive Stack Depth Potential Unbounded Loop	Closeable Not Stored (Java) Inefficient Instantiation (Java)	Closeable Not Stored (C#)	-	-
CWE:401 Missing Release of Memory after Effective Lifetime	Weakness	Leak	-	-	-	-
CWE:404 Improper Resource Shutdown or Release	Weakness	-	-	-	Explicit Garbage Collection Call (detekt)	-
CWE:410 Insufficient Resource Pool	Weakness	Excessive Stack Depth	-	-	-	-
CWE:412 Unrestricted Externally Accessible Lock	Weakness	-	Synchronization on Interned String (Java)	Synchronization on Interned String (C#)	-	-
CWE:413 Improper Resource Locking	Weakness	Conflicting Lock Order Data Race Missing Lock Acquisition Nested Locks Try-lock that will never succeed Unknown Lock	Impossible Client Side Locking (Java) Synchronization on static (Java)	Impossible Client Side Locking (C#) Synchronization on static (C#)	-	Useless With Lock (Pylint)
CWE:415 Double Free	Weakness	Double Free	-	-	-	-
CWE:416 Use After Free	Weakness	Use After Free	-	-	-	-
CWE:427 Uncontrolled Search Path Element	Weakness	Tainted Environment Variable	-	-	-	-
CWE:440 Expected Behavior Violation	Weakness	-	toString on Array (Java)	toString on Array (C#)	-	-
CWE:453 Insecure Default Variable Initialization	Weakness	-	-	-	-	Invalid Envvar Default (Pylint)
CWE:456 Missing Initialization of a Variable	Weakness	-	Field Never Written (Java) Lambda Parameter may be null (Java) Null Pointer Dereference (Java)	Field Never Written (C#) Null Pointer Dereference (C#)	-	-
CWE:457 Use of Uninitialized Variable	Weakness	Uninitialized Variable	-	-	Lateinit Usage (detekt)	-
CWE:459 Incomplete Cleanup	Weakness	Leak	-	-	-	-
CWE:462 Duplicate Key in Associative List (Alist)	Weakness	-	-	-	-	Duplicate Key (Pylint)
CWE:465 Pointer Issues	Category	Pointer Before Beginning of Object Pointer Past End of Object	-	-	-	-
CWE:467 Use of sizeof() on a Pointer Type	Weakness	sizeof Array Parameter	-	-	-	-
CWE:469 Use of Pointer Subtraction to Determine Size	Weakness	Subtraction of Unrelated Pointers	-	-	-	-
CWE:470 Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	Weakness	-	Fragment Injection (Java) Reflection Injection (Java)	Reflection Injection (C#)	-	-
CWE:474 Use of Function with Inconsistent Implementations	Weakness	Use of gamma	-	-	-	-
CWE:475 Undefined Behavior for Input to API	Weakness	Overlapping Memory Regions	-	-	-	-
CWE:476 NULL Pointer Dereference	Weakness	Null Pointer Dereference Unchecked Parameter Dereference	Actual Parameter Element may be null (Java) Field Element may be null (deep) (Java) Field may be null (deep) (Java) Method Should Not Return null (Java) Null Parameter Dereference (Java) Null Pointer Dereference (Java) Null Pointer Dereference (deep) (Java) Return Value may Contain null Element (Java) Return Value may be null (Java) Return null Array (Java) Return null Boolean (Java) Return null Optional (Java) Unchecked Parameter Dereference (Java) Unchecked Parameter Dereference (deep) (Java) Unchecked Parameter Element Dereference (deep) (Java) null Passed to Method (deep) (Java)	Actual Parameter Element may be null (C#) Field Element may be null (deep) (C#) Field may be null (deep) (C#) Method Should Not Return null (C#) Null Parameter Dereference (C#) Null Pointer Dereference (C#) Null Pointer Dereference (deep) (C#) Return Value may Contain null Element (C#) Return Value may be null (C#) Return null Array (C#) Unchecked Parameter Dereference (C#) Unchecked Parameter Dereference (deep) (C#) Unchecked Parameter Element Dereference (deep) (C#) null Passed to Method (deep) (C#)	Null Check on Mutable Property (detekt) Unsafe Call on Nullable Type (detekt)	-
CWE:477 Use of Obsolete Function	Weakness	Use of LoadModule Use of MoveFile Use of WinExec Use of cuserid Use of drem Use of gamma	Debug Warning (Java)	Debug Warning (C#)	Deprecation (detekt)	Deprecated Method (Pylint)
CWE:478 Missing Default Case in Multiple Condition Expression	Weakness	Missing default	-	-	-	-
CWE:480 Use of Incorrect Operator	Weakness	-	Bitwise AND on Boolean Constant (Java) Bitwise OR on Boolean Constant (Java) Inefficient Bitwise AND (Java) Inefficient Bitwise OR (Java) Should Use == Instead of equals() (Java)	Bitwise AND on Boolean Constant (C#) Bitwise OR on Boolean Constant (C#) Inefficient Bitwise AND (C#) Inefficient Bitwise OR (C#) Should Use == Instead of equals() (C#)	Useless Postfix Expression (detekt)	Bad Chained Comparison (Pylint) Invalid Unary Operand Type (Pylint) Shallow Copy Environ (Pylint) Unsubscriptable Object (Pylint) Unsupported Assignment Operation (Pylint) Unsupported Binary Operation (Pylint) Unsupported Delete Operation (Pylint) Unsupported Membership Test (Pylint)
CWE:481 Assigning instead of Comparing	Weakness	Assignment Result in Expression Assignment in Conditional	Assignment in Conditional (Java)	Assignment in Conditional (C#)	-	-
CWE:482 Comparing instead of Assigning	Weakness	Redundant Condition	-	-	-	-
CWE:484 Omitted Break Statement in Switch	Weakness	Missing break	-	-	-	-
CWE:486 Comparison of Classes by Name	Weakness	-	Comparison to Class Names (Java)	Comparison to Class Names (C#)	-	-
CWE:487 Reliance on Package-level Scope	Weakness	-	Field Too Visible (Java) Static Field Too Visible (Java)	-	-	-
CWE:489 Active Debug Code	Weakness	Leftover Debug Code	Class Enables Debug Features (Java) Debug Call (Java) Method Enables Debug Features (Java)	Class Enables Debug Features (C#) Debug Call (C#) Method Enables Debug Features (C#)	Not Implemented Declaration (detekt)	Forgotten Debug Statement (Pylint)
CWE:491 Public cloneable() Method Without Final ('Object Hijack')	Weakness	-	clone Non-cloneable (Java) clone Subclass of Non-clonable (Java) clone not final (Java)	clone Non-cloneable (C#) clone Subclass of Non-clonable (C#) clone not final (C#)	-	-
CWE:492 Use of Inner Class Containing Sensitive Data	Weakness	-	Inner Class Should be Static (Java)	-	-	-
CWE:493 Critical Public Variable Without Final Modifier	Weakness	-	Method Should be final (Java)	Method Should be final (C#)	-	-
CWE:499 Serializable Class Containing Sensitive Data	Weakness	-	Serialization Not Disabled (Java)	-	-	-
CWE:501 Trust Boundary Violation	Weakness	-	Tainted Bundle (Java) Tainted Session (Java)	Tainted Bundle (C#) Tainted Session (C#)	-	-
CWE:502 Deserialization of Untrusted Data	Weakness	-	Deserializable Class (Java) Serialization Not Disabled (Java)	-	-	-
CWE:506 Embedded Malicious Code	Weakness	Hardcoded DNS Name Untrusted Network Host	-	-	-	-
CWE:511 Logic/Time Bomb	Weakness	Potential Timebomb	-	-	-	-
CWE:522 Insufficiently Protected Credentials	Weakness	-	Password in Property File (Java)	Password in Property File (C#)	-	-
CWE:524 Use of Cache Containing Sensitive Information	Weakness	-	Sensitive Data Cached (Java)	-	-	-
CWE:537 Java Runtime Error Message Containing Sensitive Information	Weakness	-	Debug Warning (Java) Exception Information Disclosure (Java)	-	-	-
CWE:538 Insertion of Sensitive Information into Externally-Accessible File or Directory	Weakness	-	Sensitive Data Written to Local File (Java)	-	-	-
CWE:540 Inclusion of Sensitive Information in Source Code	Weakness	Hardcoded Authentication Hardcoded Crypto Key	-	-	-	-
CWE:546 Suspicious Comment	Weakness	Comment Suggests Code Unfinished	-	-	Forbidden Comment (detekt)	Fixme (Pylint)
CWE:547 Use of Hard-coded, Security-relevant Constants	Weakness	Hardcoded Authentication Hardcoded Crypto Key	Hardcoded Filename (Java) Hardcoded IP Address (Java)	Hardcoded Filename (C#) Hardcoded IP Address (C#)	-	-
CWE:550 Server-generated Error Message Containing Sensitive Information	Weakness	-	Exception Information Disclosure (Java)	Exception Information Disclosure (C#)	-	-
CWE:558 Use of getlogin() in Multithreaded Application	Weakness	Use of getlogin	-	-	-	-
CWE:561 Dead Code	Weakness	Unexercised Call Unexercised Computation Unexercised Conditional Unexercised Control Flow Unexercised Data Flow Unreachable Call Unreachable Catch Unreachable Computation Unreachable Conditional Unreachable Control Flow Unreachable Data Flow Unused Label Unused Macro Unused Parameter Unused Tag Unused Type	Unreachable Instruction (Java) Unused Class (Java) Unused Method (Java)	Unreachable Instruction (C#) Unused Class (C#) Unused Method (C#)	Invalid Range (detekt) Unreachable Catch Block (detekt) Unreachable Code (detekt)	Unreachable (Pylint) Useless Else on Loop (Pylint)
CWE:562 Return of Stack Variable Address	Weakness	Return Pointer to Local	-	-	-	-
CWE:563 Assignment to Variable without Use	Weakness	Unused Value	Unnecessary Field (Java) Unused Value: Actual Parameter (Java) Unused Value: Variable (Java) Unused Value: Write to Parameter (Java)	Unnecessary Field (C#) Unused Value: Actual Parameter (C#) Unused Value: Variable (C#) Unused Value: Write to Parameter (C#)	-	Possibly Unused Variable (Pylint) Redeclared Assigned Name (Pylint) Unused Variable (Pylint)
CWE:567 Unsynchronized Access to Shared Data in a Multithreaded Context	Weakness	Data Race	Missing synchronized Statement (Java) Unguarded Field (Java) Unguarded Parameter (Java) Useless volatile Modifier (Java)	Missing synchronized Statement (C#) Unguarded Field (C#) Unguarded Parameter (C#) Useless volatile Modifier (C#)	-	-
CWE:568 finalize() Method Without super.finalize()	Weakness	-	Missing Call to super (Java)	-	-	-
CWE:570 Expression is Always False	Weakness	Redundant Condition	Impossible reference comparison (Java) Instanceof Always False (Java) Redundant Condition (Java) equals Always Fails (Java)	Impossible reference comparison (C#) Instanceof Always False (C#) Redundant Condition (C#) equals Always Fails (C#)	Equals Always Returns True or False (detekt) Unnecessary Not Null Check (detekt) Unnecessary Not Null Operator (detekt) Unnecessary Safe Call (detekt)	Assert on String Literal (Pylint) Assert on Tuple (Pylint) Bad Chained Comparison (Pylint) Comparison With Callable (Pylint) Comparison With Itself (Pylint) Comparison of Constants (Pylint) Condition Evals to Constant (Pylint) Literal Comparison (Pylint) Missing Parentheses for Call in Test (Pylint) Redundant Unittest Assert (Pylint) Using Constant Test (Pylint)
CWE:571 Expression is Always True	Weakness	Redundant Condition	Instanceof Always True (Java) Redundant Condition (Java)	Instanceof Always True (C#) Redundant Condition (C#)	Equals Always Returns True or False (detekt) Unnecessary Not Null Check (detekt) Unnecessary Not Null Operator (detekt) Unnecessary Safe Call (detekt)	Assert on String Literal (Pylint) Assert on Tuple (Pylint) Bad Chained Comparison (Pylint) Comparison With Callable (Pylint) Comparison With Itself (Pylint) Comparison of Constants (Pylint) Condition Evals to Constant (Pylint) Literal Comparison (Pylint) Missing Parentheses for Call in Test (Pylint) Redundant Unittest Assert (Pylint) Using Constant Test (Pylint)
CWE:572 Call to Thread run() instead of start()	Weakness	-	Synchronous Call to Thread Body (Java)	Synchronous Call to Thread Body (C#)	-	-
CWE:573 Improper Following of Specification by Caller	Weakness	Division By Zero Null Pointer Dereference Use After Free	Missing Call to super (Java)	Missing Call to super (C#)	Iterator Not Throwing No Such Element Exception (detekt)	Inconsistent Mro (Pylint) Inherit Non Class (Pylint) Init Is Generator (Pylint) Invalid All Format (Pylint) Invalid All Object (Pylint) Invalid Bool Returned (Pylint) Invalid Bytes Returned (Pylint) Invalid Enum Extension (Pylint) Invalid Field Call (Pylint) Invalid Format Returned (Pylint) Invalid Getnewargs Ex Returned (Pylint) Invalid Getnewargs Returned (Pylint) Invalid Hash Returned (Pylint) Invalid Index Returned (Pylint) Invalid Length Hint Returned (Pylint) Invalid Length Returned (Pylint) Invalid Metaclass (Pylint) Invalid Repr Returned (Pylint) Invalid Sequence Index (Pylint) Invalid Slice Index (Pylint) Invalid Slice Step (Pylint) Invalid Slots (Pylint) Invalid Slots Object (Pylint) Invalid Star Assignment Target (Pylint) Invalid Str Returned (Pylint) Invalid Unary Operand Type (Pylint) Misplaced Bare Raise (Pylint) Misplaced Future (Pylint) No Member (Pylint) No Method Argument (Pylint) No Name in Module (Pylint) Non Iterator Returned (Pylint) Non Str Assignment to Dunder Name (Pylint) Nonexistent Operator (Pylint) Nonlocal Without Binding (Pylint) Nonlocal and Global (Pylint) Not Async Context Manager (Pylint) Not Callable (Pylint) Not Context Manager (Pylint) Not in Loop (Pylint) Property With Parameters (Pylint) Protected Access (Pylint) Return Arg in Generator (Pylint) Return Outside Function (Pylint) Return in Init (Pylint) Single String Used for Slots (Pylint) Singledispatch Method (Pylint) Singledispatchmethod Function (Pylint) Star Needs Assignment Target (Pylint) Stop Iteration Return (Pylint) Super Without Brackets (Pylint) Syntax Error (Pylint) Too Many Star Expressions (Pylint) Unbalanced Dict Unpacking (Pylint) Unbalanced Tuple Unpacking (Pylint) Undefined All Variable (Pylint) Undefined Loop Variable (Pylint) Undefined Variable (Pylint) Unexpected Special Method Signature (Pylint) Unhashable Member (Pylint) Unpacking Non Sequence (Pylint) Unsubscriptable Object (Pylint) Unsupported Assignment Operation (Pylint) Unsupported Binary Operation (Pylint) Unsupported Delete Operation (Pylint) Unsupported Membership Test (Pylint) Used Before Assignment (Pylint) Used Prior Global Declaration (Pylint) Using F String in Unsupported Version (Pylint) Using Final Decorator in Unsupported Version (Pylint) Yield Inside Async Function (Pylint) Yield Outside Function (Pylint)
CWE:580 clone() Method Without super.clone()	Weakness	-	Clone Call to Super is Missing (Java) Missing Call to super (Java)	-	-	-
CWE:581 Object Model Violation: Just One of Equals and Hashcode Defined	Weakness	-	Defines equals but not hashCode (Java) Defines hashCode but not equals (Java)	Defines equals but not hashCode (C#) Defines hashCode but not equals (C#)	Equals With Hash Code Exist (detekt)	-
CWE:582 Array Declared Public, Final, and Static	Weakness	-	Mutable Public Static Final Array (Java)	Mutable Public Static Final Array (C#)	-	-
CWE:584 Return Inside Finally Block	Weakness	-	-	-	Return From Finally (detekt)	Lost Exception (Pylint) Return in Finally (Pylint)
CWE:585 Empty Synchronized Block	Weakness	-	Useless Synchronization (Java)	Useless Synchronization (C#)	-	-
CWE:586 Explicit Call to Finalize()	Weakness	-	Explicit Finalize (Java)	-	-	-
CWE:587 Assignment of a Fixed Address to a Pointer	Weakness	Coercion: Integer Constant to Pointer	-	-	-	-
CWE:589 Call to Non-ubiquitous API	Weakness	Use of drem	-	-	-	Consider Using Sys Exit (Pylint)
CWE:590 Free of Memory not on the Heap	Weakness	Free Null Pointer Type Mismatch	-	-	-	-
CWE:595 Comparison of Object References Instead of Object Contents	Weakness	-	Should Use equals() Instead of == (Java) equals on Array (Java)	Should Use equals() Instead of == (C#) equals on Array (C#)	Avoid Referential Equality (detekt)	-
CWE:597 Use of Wrong Operator in String Comparison	Weakness	-	Comparison to Empty String (Java)	Comparison to Empty String (C#)	-	Literal Comparison (Pylint)
CWE:601 URL Redirection to Untrusted Site ('Open Redirect')	Weakness	-	Android URL Injection (Java) Open Redirect (Java) Tainted URL (Java)	Open Redirect (C#) Tainted URL (C#)	-	-
CWE:605 Multiple Binds to the Same Port	Weakness	Use of SO_REUSEADDR	-	-	-	-
CWE:607 Public Static Final Field References Mutable Object	Weakness	-	Mutable Constant Field (Java) Mutable Enumeration (Java) Mutable Public Static Final Array (Java)	Mutable Constant Field (C#) Mutable Enumeration (C#) Mutable Public Static Final Array (C#)	-	-
CWE:608 Struts: Non-private Field in ActionForm Class	Weakness	-	Field Too Visible (Java) Static Field Too Visible (Java)	-	-	-
CWE:609 Double-Checked Locking	Weakness	-	Double-Checked Locking (Java)	Double-Checked Locking (C#)	-	-
CWE:610 Externally Controlled Reference to a Resource in Another Sphere	Weakness	Tainted Filename Tainted Network Address Untrusted Network Host Untrusted Network Port	-	-	-	-
CWE:611 Improper Restriction of XML External Entity Reference	Weakness	-	Insecure XSLT Execution (Java) Possible XML External Entity Reference (Java)	Insecure XSLT Execution (C#) Possible XML External Entity Reference (C#)	-	-
CWE:613 Insufficient Session Expiration	Weakness	-	Unsafe Session Expiration Time (Java)	Unsafe Session Expiration Time (C#)	-	-
CWE:614 Sensitive Cookie in HTTPS Session Without 'Secure' Attribute	Weakness	-	Insecure Cookie (Java)	Insecure Cookie (C#)	-	-
CWE:615 Inclusion of Sensitive Information in Source Code Comments	Weakness	Commented-out Code	-	-	KDoc References Non Public Property (detekt)	-
CWE:624 Executable Regular Expression Error	Weakness	-	Tainted Regular Expression (Java)	Tainted Regular Expression (C#)	-	-
CWE:628 Function Call with Incorrectly Specified Arguments	Weakness	Arctangent Domain Error Argument Too High Argument Too Low Floating Point Domain Error Floating Point Range Error Format String Type Error Gamma on Zero Logarithm on Negative Value Logarithm on Zero Raises FE_INVALID Undefined Power of Zero cosh on High Number cosh on Low Number sqrt on Negative Value	Array Parameter Empty (Java) Method Names Differ Only in Case (Java)	Method Names Differ Only in Case (C#)	-	Bad Open Mode (Pylint) Bad Thread Instantiation (Pylint) Format Needs Mapping (Pylint) Keyword Arg Before Vararg (Pylint) Kwarg Superseded By Positional Arg (Pylint) Logging Format Truncated (Pylint) Missing Format Argument Key (Pylint) Missing Format String Key (Pylint) Missing Kwoa (Pylint) Positional Only Arguments Expected (Pylint) Raising Format Tuple (Pylint) Redundant Keyword Arg (Pylint) Repeated Keyword (Pylint) Super Without Brackets (Pylint) Unexpected Keyword Arg (Pylint)
CWE:641 Improper Restriction of Names for Files and Other Resources	Weakness	Tainted Filename Tainted Network Address	-	-	-	-
CWE:643 Improper Neutralization of Data within XPath Expressions ('XPath Injection')	Weakness	-	Tainted Xpath (Java)	Tainted Xpath (C#)	-	-
CWE:657 Violation of Secure Design Principles	Weakness	Library Function Override	-	-	-	-
CWE:662 Improper Synchronization	Weakness	Blocking in Critical Section Inappropriate Storage Duration Lock/Unlock Mismatch	Useless volatile Modifier (Java)	Useless volatile Modifier (C#)	Sleep Instead of Delay (detekt) Suspend Fun With Coroutine Scope Receiver (detekt) Suspend Fun With Flow Return Type (detekt)	-
CWE:664 Improper Control of a Resource Through its Lifetime	Weakness	Misaligned Object	Android Leak (Java)	-	Global Coroutine Usage (detekt) Object Extends Throwable (detekt)	Consider Using With (Pylint) Modified Iterating Dict (Pylint) Modified Iterating List (Pylint) Modified Iterating Set (Pylint)
CWE:665 Improper Initialization	Weakness	Inappropriate C Atomic Initialization Inconsistent Chained Designator Initialization Inconsistent Enumerator Initialization Missing Braces in Initialization Over-initialized Element	Assertion Contains Side Effects (Java) Useless Assignment (Java) Useless Assignment to Default (Java)	Useless Assignment (C#) Useless Assignment to Default (C#)	-	-
CWE:666 Operation on Resource in Wrong Phase of Lifetime	Weakness	Socket In Wrong State Thread is not Joinable Use After Close	-	-	-	-
CWE:667 Improper Locking	Weakness	Missing Lock Release	-	-	-	-
CWE:672 Operation on a Resource after Expiration or Release	Weakness	Double Close Use After Close Use After Free	-	-	-	-
CWE:674 Uncontrolled Recursion	Weakness	Recursion	Potential Infinite Recursion (Java)	Potential Infinite Recursion (C#)	-	-
CWE:675 Multiple Operations on Resource in Single-Operation Context	Weakness	Double Initialization	-	-	-	-
CWE:676 Use of Potentially Dangerous Function	Weakness	Use of <fenv.h> Exception Handling Function Use of <signal.h> Use of <stdio.h> Input/Output Use of <stdio.h> Input/Output Macro Use of <tgmath.h> Use of <time.h> Time/Date Function Use of <wchar.h> Input/Output Use of <wchar.h> Input/Output Macro Use of AddAccessAllowedAce Use of AddAccessDeniedAce Use of AfxLoadLibrary Use of AfxParseURL Use of CoLoadLibrary Use of Condition Variable Signal Use of CreateFile Use of CreateProcess Use of CreateThread Use of FormatMessage Use of GetTempFileName Use of LoadLibrary Use of LoadModule Use of MoveFile Use of OemToAnsi Use of OemToChar Use of SHCreateProcessAsUserW Use of ShellExecute Use of StrCatChainW Use of WinExec Use of _exec Use of _spawn Use of abort Use of atof Use of atoi Use of atol Use of atoll Use of bsearch Use of catopen Use of chroot Use of crypt Use of cuserid Use of execlp Use of execvp Use of exit Use of getenv Use of getlogin Use of getopt Use of getpass Use of longjmp Use of memset Use of mkstemp Use of mktemp Use of popen Use of pthread_kill Use of putenv Use of qsort Use of rand Use of rand48 Function Use of random Use of realloc Use of realpath Use of recvmsg Use of setjmp Use of setuid Use of signal Use of strcat Use of strchr Use of strcmp Use of strcoll Use of strcpy Use of strcspn Use of strlen Use of strpbrk Use of strrchr Use of strspn Use of strstr Use of strtok Use of strtrns Use of syslog Use of system Use of t_open Use of tmpfile Use of tmpfile_s Use of tmpnam Use of tmpnam_s Use of ttyname Use of vfork Weak Cryptography chroot without chdir	Method Disables Security Setting (Java)	Method Disables Security Setting (C#)	-	Eval Used (Pylint) Exec Used (Pylint)
CWE:680 Integer Overflow to Buffer Overflow	Weakness	Addition Overflow of Allocation Size Addition Overflow of Size Integer Overflow of Allocation Size Multiplication Overflow of Allocation Size Multiplication Overflow of Size Subtraction Underflow of Allocation Size Subtraction Underflow of Size Truncation of Allocation Size Truncation of Size	-	-	-	-
CWE:681 Incorrect Conversion between Numeric Types	Weakness	Negative Character Value	-	-	-	-
CWE:682 Incorrect Calculation	Weakness	Float Multiplication Overflow	Abs on random (Java)	Abs on random (C#)	-	-
CWE:683 Function Call With Incorrect Order of Arguments	Weakness	-	-	-	-	Arguments Out of Order (Pylint)
CWE:685 Function Call With Incorrect Number of Arguments	Weakness	-	-	-	-	Logging Too Few Args (Pylint) Logging Too Many Args (Pylint) No Value for Parameter (Pylint) Too Few Format Args (Pylint) Too Many Format Args (Pylint) Too Many Function Args (Pylint)
CWE:686 Function Call With Incorrect Argument Type	Weakness	Array Parameter Mismatch GlobalHandle on GMEM_FIXED Memory GlobalLock on GMEM_FIXED Memory GlobalUnlock on GMEM_FIXED Memory Implicit Function Declaration LocalHandle on LMEM_FIXED Memory LocalLock on LMEM_FIXED Memory LocalUnlock on LMEM_FIXED Memory Negative Character Value Type Mismatch	Non-overriding Method Signature (Java)	Non-overriding Method Signature (C#)	Nullable to String Call (detekt)	Bad Reversed Sequence (Pylint) Bad String Format Type (Pylint) Invalid Envvar Value (Pylint) Invalid Unary Operand Type (Pylint) Isinstance Second Argument Not Valid Type (Pylint) Misplaced Format Function (Pylint) Missing Format Attribute (Pylint) Not a Mapping (Pylint) Not an Iterable (Pylint)
CWE:687 Function Call With Incorrectly Specified Argument Value	Weakness	Arctangent Domain Error Argument Too High Argument Too Low Array Parameter Mismatch Floating Point Domain Error Floating Point Range Error Format String Type Error Function Call Has No Effect Gamma on Zero Logarithm on Negative Value Logarithm on Zero MAX_PATH Exceeded Negative file descriptor Raises FE_INVALID Undefined Power of Zero Unreasonable Size Argument cosh on High Number cosh on Low Number sqrt on Negative Value	-	-	-	Bad Format Character (Pylint) Bad Format String (Pylint) Bad Format String Key (Pylint) Bad Str Strip Call (Pylint) Bad Super Call (Pylint) Logging Unsupported Format (Pylint) Truncated Format String (Pylint)
CWE:688 Function Call With Incorrect Variable or Reference as Argument	Weakness	Arctangent Domain Error Argument Too High Argument Too Low Array Parameter Mismatch Floating Point Domain Error Floating Point Range Error Format String Type Error Function Call Has No Effect Gamma on Zero Logarithm on Negative Value Logarithm on Zero Raises FE_INVALID Undefined Power of Zero Unreasonable Size Argument cosh on High Number cosh on Low Number sqrt on Negative Value	-	-	-	-
CWE:690 Unchecked Return Value to NULL Pointer Dereference	Weakness	Null Pointer Dereference Null Test After Dereference	-	-	-	-
CWE:691 Insufficient Control Flow Management	Weakness	Use of longjmp Use of setjmp	-	-	-	-
CWE:694 Use of Multiple Resources with Duplicate Identifier	Weakness	-	-	-	No Name Shadowing (detekt)	Class Variable Slots Conflict (Pylint) Duplicate Argument Name (Pylint) Function Redefined (Pylint) Method Hidden (Pylint) Shadowed Import (Pylint)
CWE:696 Incorrect Behavior Order	Weakness	Conflicting Lock Order Null Test After Dereference Socket In Wrong State Thread is not Joinable Use After Close Use After Free	-	-	-	-
CWE:697 Incorrect Comparison	Weakness	-	Asymmetric compareTo (Java) compareTo without equals (Java) compareTo/equals mismatch (Java)	Asymmetric compareTo (C#) compareTo without equals (C#) compareTo/equals mismatch (C#)	-	Bad Chained Comparison (Pylint)
CWE:698 Execution After Redirect (EAR)	Weakness	-	Execution After Redirect (Java)	Execution After Redirect (C#)	-	-
CWE:703 Improper Check or Handling of Exceptional Conditions	Weakness	Unreachable Catch	-	-	Throws Count (detekt)	-
CWE:704 Incorrect Type Conversion or Cast	Weakness	Cast Alters Value Cast Removes const Qualifier Cast Removes volatile Qualifier Cast: Arithmetic Type/Void Pointer Cast: Non-integer Arithmetic Type/Object Pointer Cast: Object Pointers Cast: Virtual Base to Derived Coercion Alters Value Conversion from Function Pointer Conversion to Function Pointer Conversion: Pointer to Incomplete Conversion: Pointer/Integer Conversion: Void Pointer to Object Pointer Dangerous Function Cast Expression Value Widened by Assignment Expression Value Widened by Other Operand Float Pointer Conversion Inappropriate Cast Type Inappropriate Cast Type: Expression Risky Integer Promotion Varargs Function Cast	Risky Class Cast (Java) Risky array store (Java)	Risky Class Cast (C#) Risky array store (C#)	Cast Nullable to Non Nullable Type (detekt) Cast to Nullable Type (detekt) Dont Downcast Collection Types (detekt) Unsafe Cast (detekt)	-
CWE:705 Incorrect Control Flow Scoping	Weakness	-	-	-	Exception Raised in Unexpected Location (detekt) Throwing Exception From Finally (detekt) Throwing Exception in Main (detekt)	-
CWE:710 Improper Adherence to Coding Standards	Weakness	## Follows # Operator Basic Numerical Type Used Code Before #include Condition Contains Side Effects Conditional Compilation Confusing Literal Suffix Dynamic Allocation After Initialization Dynamic Thread Creation Float Pointer Conversion Function Pointer Function Pointer Conversion Function Too Long Global Variable Declared with Different Types Goto Statement Inconsistent Enumerator Initialization Library Function Override Lock/Unlock Mismatch Macro Argument is both Mixed and Expanded Macro Defined in Function Body Macro Does Not End With } or ) Macro Does Not Start With { or ( Macro Name is C Keyword Macro Undefined in Function Body Macro Uses # Operator Macro Uses ## Operator Macro Uses -> Operator Macro Uses Unary * Operator Macro Uses [] Operator Missing Parentheses Multiple Declarations of a Global Nested Function Declaration No Matching #endif No Matching #if Non-distinct Identifiers: External Names Non-distinct Identifiers: Macro/Macro Non-distinct Identifiers: Macro/Other Non-distinct Identifiers: Nested Scope Non-distinct Identifiers: Same Scope Non-unique Identifiers: External Name Non-unique Identifiers: Internal Name Non-unique Identifiers: Tag Non-unique Identifiers: Typedef Not Enough Assertions Pointer Type Inside Typedef Recursion Recursive Macro Task Delay Function Too Many Dereferences Too Many Parameters Too Much Indirection in Declaration Unbalanced Parenthesis Use of #define Use of #endif Use of #ifndef Use of #include Use of #undef Use of <stdlib.h> Allocator/Deallocator Use of <stdlib.h> Allocator/Deallocator Macro Use of longjmp Use of setjmp Variable Could Be const Variadic Macro	Naming Style Violation (Java)	Naming Style Violation (C#)	-	-
CWE:732 Incorrect Permission Assignment for Critical Resource	Weakness	-	Accessing File in Permissive Mode (Java) Permissive File Mode (Java)	-	-	Bad Open Mode (Pylint)
CWE:749 Exposed Dangerous Method or Function	Weakness	-	JavaScript Enabled (Java) JavaScript File Access from File URLs (Java) Missing JavaScript Entry Point (Java) Missing JavaScript Execution (Java) Risky JavaScript Interface (Java) Security Annotation Conflict (Java) Universal JavaScript Access to File URLs (Java)	Security Annotation Conflict (C#)	-	-
CWE:754 Improper Check for Unusual or Exceptional Conditions	Weakness	-	-	-	Instance of Check for Exception (detekt)	Binary Op Exception (Pylint) Catching Non Exception (Pylint) Duplicate Except (Pylint)
CWE:755 Improper Handling of Exceptional Conditions	Weakness	-	-	-	Exception Raised in Unexpected Location (detekt) Throwing Exception From Finally (detekt) Throwing Exception in Main (detekt) Throwing New Instance of Same Exception (detekt) Too Generic Exception Thrown (detekt)	Bad Except Order (Pylint) Bad Exception Cause (Pylint) Broad Exception Raised (Pylint) Continue in Finally (Pylint) Lost Exception (Pylint) Notimplemented Raised (Pylint) Raising Bad Type (Pylint) Raising Format Tuple (Pylint) Raising Non Exception (Pylint) Try Except Raise (Pylint) Wrong Exception Operation (Pylint)
CWE:757 Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')	Weakness	-	Deprecated Transfer Protocol (Java)	Deprecated Transfer Protocol (C#)	-	-
CWE:758 Reliance on Undefined, Unspecified, or Implementation-Defined Behavior	Weakness	Inappropriate Comparison of Virtual Member Function Indeterminate Order of Evaluation Missing Return Statement Missing Return Value Negative Shift Amount Shift Amount Exceeds Bit Width Uninitialized Variable Use of <signal.h> Use of <stdio.h> Input/Output Use of <stdio.h> Input/Output Macro Use of <tgmath.h> Use of <time.h> Time/Date Function Use of <wchar.h> Input/Output Use of <wchar.h> Input/Output Macro Use of abort Use of atof Use of atoi Use of atol Use of atoll Use of bsearch Use of exit Use of getenv Use of putenv	-	-	Dont Downcast Collection Types (detekt)	Unspecified Encoding (Pylint)
CWE:760 Use of a One-Way Hash with a Predictable Salt	Weakness	Hardcoded Crypto Salt	-	-	-	-
CWE:761 Free of Pointer not at Start of Buffer	Weakness	Misaligned Object Type Mismatch	-	-	-	-
CWE:762 Mismatched Memory Management Routines	Weakness	Pool Mismatch Type Mismatch	-	-	-	-
CWE:763 Release of Invalid Pointer or Reference	Weakness	Double Free Misaligned Object	-	-	-	-
CWE:764 Multiple Locks of a Critical Resource	Weakness	Double Lock Locked Twice	-	-	-	-
CWE:765 Multiple Unlocks of a Critical Resource	Weakness	Double Unlock	-	-	-	-
CWE:766 Critical Data Element Declared Public	Weakness	-	Field Too Visible (Java) Static Field Too Visible (Java)	-	-	-
CWE:768 Incorrect Short Circuit Evaluation	Weakness	-	Bitwise AND on Boolean (Java) Bitwise OR on Boolean (Java)	Bitwise AND on Boolean (C#) Bitwise OR on Boolean (C#)	-	-
CWE:770 Allocation of Resources Without Limits or Throttling	Weakness	-	-	-	-	Method Cache Max Size None (Pylint)
CWE:771 Missing Reference to Active Allocated Resource	Weakness	Leak	-	-	-	-
CWE:772 Missing Release of Resource after Effective Lifetime	Weakness	Leak	Closeable Not Closed (Java)	Closeable Not Closed (C#)	-	-
CWE:773 Missing Reference to Active File Descriptor or Handle	Weakness	Leak	-	-	-	-
CWE:775 Missing Release of File Descriptor or Handle after Effective Lifetime	Weakness	Leak	-	-	-	-
CWE:779 Logging of Excessive Data	Weakness	-	-	-	Print Stack Trace (detekt)	-
CWE:780 Use of RSA Algorithm without OAEP	Weakness	Encryption without Padding	-	-	-	-
CWE:783 Operator Precedence Logic Error	Weakness	Confusing Operator Overload	-	-	-	-
CWE:785 Use of Path Manipulation Function without Maximum-sized Buffer	Weakness	Use of realpath	-	-	-	-
CWE:786 Access of Memory Location Before Start of Buffer	Weakness	Buffer Underrun	-	-	-	-
CWE:787 Out-of-bounds Write	Weakness	-	-	-	-	Potential Index Error (Pylint)
CWE:788 Access of Memory Location After End of Buffer	Weakness	Buffer Overrun	-	-	-	-
CWE:789 Memory Allocation with Excessive Size Value	Weakness	Tainted Allocation Size	Tainted Allocation Size (Java)	Tainted Allocation Size (C#)	-	-
CWE:798 Use of Hard-coded Credentials	Weakness	Hardcoded Authentication Hardcoded Crypto Key Hardcoded Crypto Salt	-	-	-	-
CWE:820 Missing Synchronization	Weakness	-	Unguarded Method (Java)	Unguarded Method (C#)	-	-
CWE:821 Incorrect Synchronization	Weakness	Risky Atomic Memory Order	-	-	-	-
CWE:822 Untrusted Pointer Dereference	Weakness	Unchecked Parameter Dereference	-	-	-	-
CWE:823 Use of Out-of-range Pointer Offset	Weakness	Misaligned Object Pointer Arithmetic Pointer Before Beginning of Object Pointer Past End of Object	-	-	-	-
CWE:832 Unlock of a Resource that is not Locked	Weakness	Double Unlock Missing Lock Acquisition	-	-	-	-
CWE:833 Deadlock	Weakness	Deadlock	Blocking in Critical Section (Java)	Blocking in Critical Section (C#)	-	Subprocess Popen Preexec Fn (Pylint)
CWE:835 Loop with Unreachable Exit Condition ('Infinite Loop')	Weakness	Potential Unbounded Loop	-	-	Iterator Not Throwing No Such Element Exception (detekt)	-
CWE:843 Access of Resource Using Incompatible Type ('Type Confusion')	Weakness	GlobalHandle on GMEM_FIXED Memory GlobalLock on GMEM_FIXED Memory GlobalUnlock on GMEM_FIXED Memory LocalHandle on LMEM_FIXED Memory LocalLock on LMEM_FIXED Memory LocalUnlock on LMEM_FIXED Memory Type Mismatch	-	-	-	-
CWE:863 Incorrect Authorization	Weakness	Use of cuserid Use of getlogin	-	-	-	-
CWE:908 Use of Uninitialized Resource	Weakness	Inappropriate C Atomic Initialization Uninitialized Variable	-	-	-	Access Member Before Definition (Pylint)
CWE:909 Missing Initialization of Resource	Weakness	-	Empty jar File Archived (Java) Empty zip File Archived (Java)	Empty zip File Archived (C#)	Empty Default Constructor (detekt) Empty Init Block (detekt) Empty Secondary Constructor (detekt)	-
CWE:910 Use of Expired File Descriptor	Weakness	Use After Close	-	-	-	-
CWE:913 Improper Control of Dynamically-Managed Code Resources	Weakness	-	Deserializable Class (Java) Deserializing Non-Serializable Class (Java) Insecure Class Loader (Java) Missing Serial Version Field (Java) Nonserializable Field (Java) Nonserializable Field Element (Java) Nonserializable Outer Class (Java) Unexpected Serial Version Field (Java)	Deserializable Class (C#) Nonserializable Field (C#) Nonserializable Field Element (C#) Nonserializable Outer Class (C#)	Serial Version UIDIn Serializable Class (detekt)	-
CWE:915 Improperly Controlled Modification of Dynamically-Determined Object Attributes	Weakness	-	Reflection Bypasses Member Accessibility (Java) Reflection Modifies Member Accessibility (Java)	Reflection Bypasses Member Accessibility (C#) Reflection Modifies Member Accessibility (C#)	-	-
CWE:916 Use of Password Hash With Insufficient Computational Effort	Weakness	-	Inadequate Salt (Java)	Inadequate Salt (C#)	-	-
CWE:917 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	Weakness	-	Tainted Expression Evaluation (Java)	-	-	-
CWE:922 Insecure Storage of Sensitive Information	Weakness	-	Certificate Added to Root Store (Java)	Certificate Added to Root Store (C#)	-	-
CWE:1007 Insufficient Visual Distinction of Homoglyphs Presented to User	Weakness	Typographically Ambiguous Identifiers	-	-	-	-
CWE:1023 Incomplete Comparison with Missing Factors	Weakness	-	Missing Equals Override (Java)	Missing Equals Override (C#)	-	Use Implicit Booleaness Not Comparison (Pylint) Use Implicit Booleaness Not Comparison to String (Pylint) Use Implicit Booleaness Not Comparison to Zero (Pylint) Use Implicit Booleaness Not Len (Pylint)
CWE:1024 Comparison of Incompatible Types	Weakness	-	== Always Fails Because Types Always Different (Java)	== Always Fails Because Types Always Different (C#)	-	-
CWE:1025 Comparison Using Wrong Factors	Weakness	Read Past Null Terminator	-	-	Equals Null Call (detekt)	Comparison With Callable (Pylint)
CWE:1037 Processor Optimization Removal or Modification of Security-critical Code	Weakness	Use of memset	-	-	-	-
CWE:1041 Use of Redundant Code	Weakness	Copy-Paste Error	Copy-Paste Error	Copy-Paste Error	Copy-Paste Error	Copy-Paste Error Duplicate Code (Pylint)
CWE:1047 Modules with Circular Dependencies	Weakness	-	-	-	-	Cyclic Import (Pylint) Import Self (Pylint)
CWE:1055 Multiple Inheritance from Concrete Classes	Weakness	Multiple Inheritance with Public Base Class Multiple Inheritance with Too Many Protected Base Classes	-	-	-	Too Many Ancestors (Pylint)
CWE:1056 Invokable Control Element with Variadic Parameters	Weakness	Ellipsis	-	-	-	-
CWE:1059 Insufficient Technical Documentation	Weakness	-	-	-	Undocumented Public Class (detekt) Undocumented Public Function (detekt) Undocumented Public Property (detekt)	Empty Docstring (Pylint) Missing Class Docstring (Pylint) Missing Function Docstring (Pylint) Missing Module Docstring (Pylint)
CWE:1061 Insufficient Encapsulation	Weakness	-	Field Too Visible (Java) Method Should be private (Java) Static Field Too Visible (Java)	Field Too Visible (C#) Method Should be private (C#) Static Field Too Visible (C#)	-	-
CWE:1064 Invokable Control Element with Signature Containing an Excessive Number of Parameters	Weakness	Too Many Parameters	-	-	Long Parameter List (detekt)	Too Many Arguments (Pylint)
CWE:1069 Empty Exception Block	Weakness	-	-	-	Empty Catch Block (detekt)	-
CWE:1071 Empty Code Block	Weakness	-	Empty Branch Statement (Java)	Empty Branch Statement (C#)	Empty Class Block (detekt) Empty Default Constructor (detekt) Empty Do While Block (detekt) Empty Else Block (detekt) Empty Finally Block (detekt) Empty Function Block (detekt) Empty If Block (detekt) Empty Init Block (detekt) Empty Kt File (detekt) Empty Secondary Constructor (detekt) Empty Try Block (detekt) Empty When Block (detekt) Empty While Block (detekt) Empty for Block (detekt)	-
CWE:1076 Insufficient Adherence to Expected Conventions	Weakness	Declaration of Reserved Name Implicit Constructor Shadowing Library Function Override Macro Defines Constant Missing Return Statement Missing User-defined Operations Non-const String Literal Not All Warnings Are Enabled Override of Non-Virtual Method Unneeded Implicitly Generated Operations Use of #elif Use of #elifdef Use of #elifndef Use of #else Use of #error Use of #if Use of #ifdef Use of #import Use of #include_next Use of #line Use of #pragma Use of #using Use of #warning Use of NULL Warnings Not Treated As Errors	Ambiguous Call from Inner Class (Java) Inappropriate Instanceof (Java) Missing Serial Version Field (Java) Shadowed Identifier (Java) compareTo in Non-Comparable Class (Java) equals Parameter Should Be Object (Java)	Ambiguous Call from Inner Class (C#) Inappropriate Instanceof (C#) Shadowed Identifier (C#) compareTo in Non-Comparable Class (C#) equals Parameter Should Be Object (C#)	Can Be Non Nullable (detekt) Data Class Contains Functions (detekt) Data Class Should Be Immutable (detekt) Deprecation (detekt) Destructuring Declaration With Too Many Entries (detekt) Double Mutability for Collection (detekt) Else Case Instead of Exhaustive When (detekt) Exit Outside Main (detekt) Explicit Garbage Collection Call (detekt) Forbidden Suppress (detekt) Forbidden Void (detekt) Function Only Returning Constant (detekt) Global Coroutine Usage (detekt) Has Platform Type (detekt) Implicit Unit Return Type (detekt) Inject Dispatcher (detekt) Instance of Check for Exception (detekt) Invalid Range (detekt) Iterator Has Next Calls Next Method (detekt) Labeled Expression (detekt) Lateinit Usage (detekt) May Be Const (detekt) Missing Package Declaration (detekt) Nested Classes Visibility (detekt) No Name Shadowing (detekt) Property Used Before Declaration (detekt) Protected Member in Final Class (detekt) Redundant Higher Order Map Usage (detekt) Rethrow Caught Exception (detekt) Return Count (detekt) Serial Version UIDIn Serializable Class (detekt) Throwing Exceptions Without Message or Cause (detekt) Unnecessary Abstract Class (detekt) Until Instead of Range to (detekt) Use Any or None Instead of Find (detekt) Use Data Class (detekt) Use Empty Counterpart (detekt) Use If Empty or If Blank (detekt) Use Is Null or Empty (detekt) Use Let (detekt) Use Sum of Instead of Flat Map Size (detekt) Utility Class With Public Constructor (detekt) Var Could Be Val (detekt) Wildcard Import (detekt) Wrong Equals Type Parameter (detekt)	Assigning Non Slot (Pylint) Attribute Defined Outside Init (Pylint) Await Outside Async (Pylint) Bare Except (Pylint) Consider Iterating Dictionary (Pylint) Consider Merging Isinstance (Pylint) Consider Swap Variables (Pylint) Consider Using Dict Comprehension (Pylint) Consider Using Dict Items (Pylint) Consider Using Enumerate (Pylint) Consider Using F String (Pylint) Consider Using From Import (Pylint) Consider Using Generator (Pylint) Consider Using Get (Pylint) Consider Using Join (Pylint) Consider Using Max Builtin (Pylint) Consider Using Min Builtin (Pylint) Consider Using Set Comprehension (Pylint) Consider Using Sys Exit (Pylint) Consider Using Ternary (Pylint) Consider Using in (Pylint) Deprecated Argument (Pylint) Deprecated Class (Pylint) Deprecated Decorator (Pylint) Deprecated Method (Pylint) Deprecated Module (Pylint) Deprecated Pragma (Pylint) Duplicate String Formatting Argument (Pylint) Format Combined Specification (Pylint) Global Variable Undefined (Pylint) Implicit Flag Alias (Pylint) Import Outside Toplevel (Pylint) Invalid Overridden Method (Pylint) Logging Format Interpolation (Pylint) Logging Fstring Interpolation (Pylint) Logging Not Lazy (Pylint) Mixed Format String (Pylint) No Self Argument (Pylint) Non Ascii File Name (Pylint) Non Parent Init Called (Pylint) Overridden Final Method (Pylint) Preferred Module (Pylint) Redefined Argument From Local (Pylint) Redefined Builtin (Pylint) Redefined Outer Name (Pylint) Redefined Slots in Subclass (Pylint) Relative Beyond Top Level (Pylint) Self Cls Assignment (Pylint) Signature Differs (Pylint) Subclassed Final Class (Pylint) Subprocess Run Check (Pylint) Super Init Not Called (Pylint) Super With Arguments (Pylint) Typevar Double Variance (Pylint) Unidiomatic Typecheck (Pylint) Unused Wildcard Import (Pylint) Use Implicit Booleaness Not Comparison (Pylint) Use Implicit Booleaness Not Comparison to String (Pylint) Use Implicit Booleaness Not Comparison to Zero (Pylint) Use Implicit Booleaness Not Len (Pylint) Use Maxsplit Arg (Pylint) Use Sequence for Iteration (Pylint) Use a Generator (Pylint)
CWE:1077 Floating Point Comparison with Incorrect Operator	Weakness	Floating Point Equality	Floating Point Equality (Java)	Floating Point Equality (C#)	-	Nan Comparison (Pylint)
CWE:1078 Inappropriate Source Code Style or Formatting	Weakness	Multiple Declarations On Line Multiple Statements On Line Octal Constant	Approximate e Constant (Java) Approximate pi Constant (Java)	Approximate e Constant (C#) Approximate pi Constant (C#)	Absent or Wrong File License (detekt) Also Could Be Apply (detekt) Braces on If Statements (detekt) Braces on When Statements (detekt) Cascading Call Wrapping (detekt) Class Ordering (detekt) Collapsible If Statements (detekt) Explicit Collection Element Access Method (detekt) Explicit It Lambda Parameter (detekt) Expression Body Syntax (detekt) Forbidden Annotation (detekt) Magic Number (detekt) Mandatory Braces Loops (detekt) Max Line Length (detekt) Modifier Order (detekt) Multiline Lambda It Parameter (detekt) Nullable Boolean Check (detekt) Object Literal to Lambda (detekt) Optional Abstract Keyword (detekt) Optional Unit (detekt) Prefer to Over Pair Syntax (detekt) Redundant Explicit Type (detekt) Redundant Visibility Modifier Rule (detekt) Safe Cast (detekt) String Should Be Raw String (detekt) Trim Multiline Raw String (detekt) Underscores in Numeric Literals (detekt) Unnecessary Apply (detekt) Unnecessary Backticks (detekt) Unnecessary Braces Around Trailing Lambda (detekt) Unnecessary Inner Class (detekt) Unnecessary Let (detekt) Unnecessary Parentheses (detekt) Use Array Literals in Annotations (detekt) Use Check Not Null (detekt) Use Check or Error (detekt) Use If Instead of When (detekt) Use Require (detekt) Use Require Not Null (detekt) Use or Empty (detekt)	Bad File Encoding (Pylint) Bad Indentation (Pylint) Bidirectional Unicode (Pylint) Chained Comparison (Pylint) Inconsistent Quotes (Pylint) Invalid Character Backspace (Pylint) Invalid Character Carriage Return (Pylint) Invalid Character Esc (Pylint) Invalid Character Nul (Pylint) Invalid Character Sub (Pylint) Invalid Character Zero Width Space (Pylint) Invalid Unicode Codec (Pylint) Line Too Long (Pylint) Multiple Imports (Pylint) Multiple Statements (Pylint) Named Expr Without Context (Pylint) Nested Min Max (Pylint) No Classmethod Decorator (Pylint) No Else Break (Pylint) No Else Continue (Pylint) No Else Raise (Pylint) No Else Return (Pylint) No Staticmethod Decorator (Pylint) Non Ascii Module Import (Pylint) Non Ascii Name (Pylint) Redundant U String Prefix (Pylint) Superfluous Parens (Pylint) Too Few Public Methods (Pylint) Too Many Ancestors (Pylint) Too Many Arguments (Pylint) Too Many Boolean Expressions (Pylint) Too Many Branches (Pylint) Too Many Instance Attributes (Pylint) Too Many Locals (Pylint) Too Many Nested Blocks (Pylint) Too Many Public Methods (Pylint) Too Many Return Statements (Pylint) Too Many Statements (Pylint) Trailing Comma Tuple (Pylint) Ungrouped Imports (Pylint) Unnecessary Comprehension (Pylint) Unnecessary Dict Index Lookup (Pylint) Unnecessary Direct Lambda Call (Pylint) Unnecessary Dunder Call (Pylint) Unnecessary Ellipsis (Pylint) Unnecessary Lambda Assignment (Pylint) Unnecessary List Index Lookup (Pylint) Unnecessary Negation (Pylint) Unnecessary Pass (Pylint) Unnecessary Semicolon (Pylint) Use Dict Literal (Pylint) Use List Literal (Pylint) Wildcard Import (Pylint) Wrong Import Order (Pylint) Wrong Import Position (Pylint)
CWE:1079 Parent Class without Virtual Destructor Method	Weakness	delete with Non-Virtual Destructor	-	-	-	-
CWE:1080 Source Code File with Excessive Number of Lines of Code	Weakness	Function Too Long	-	-	-	Too Many Lines (Pylint)
CWE:1085 Invokable Control Element with Excessive Volume of Commented-out Code	Weakness	Commented-out Code	-	-	-	-
CWE:1087 Class with Virtual Method without a Virtual Destructor	Weakness	delete with Non-Virtual Destructor	-	-	-	-
CWE:1088 Synchronous Access of Remote Resource without Timeout	Weakness	-	-	-	-	Missing Timeout (Pylint)
CWE:1091 Use of Object without Invoking Destructor Method	Weakness	Leak	-	-	-	-
CWE:1095 Loop Condition Value Update within the Loop	Weakness	-	-	-	-	Modified Iterating Dict (Pylint) Modified Iterating List (Pylint) Modified Iterating Set (Pylint)
CWE:1097 Persistent Storable Data Element without Associated Comparison Control Element	Weakness	-	Non-Object compareTo Parameter (Java)	Non-Object compareTo Parameter (C#)	-	-
CWE:1099 Inconsistent Naming Conventions for Identifiers	Weakness	-	-	-	Boolean Property Naming (detekt) Class Naming (detekt) Constructor Parameter Naming (detekt) Double Negative Lambda (detekt) Enum Naming (detekt) Forbidden Class Name (detekt) Function Max Length (detekt) Function Min Length (detekt) Function Naming (detekt) Function Parameter Naming (detekt) Invalid Package Declaration (detekt) Lambda Parameter Naming (detekt) Matching Declaration Name (detekt) Member Name Equals Class Name (detekt) Non Boolean Property Prefixed With Is (detekt) Object Property Naming (detekt) Package Naming (detekt) Top Level Property Naming (detekt) Variable Max Length (detekt) Variable Min Length (detekt) Variable Naming (detekt)	Bad Classmethod Argument (Pylint) Bad Mcs Classmethod Argument (Pylint) Bad Mcs Method Argument (Pylint) Bad Staticmethod Argument (Pylint) Disallowed Name (Pylint) Invalid Name (Pylint) Typevar Name Incorrect Variance (Pylint) Typevar Name Mismatch (Pylint)
CWE:1106 Insufficient Use of Symbolic Constants	Weakness	switch With Non-enum Expression	-	-	String Literal Duplication (detekt)	-
CWE:1108 Excessive Reliance on Global Variables	Weakness	-	-	-	-	Global Statement (Pylint)
CWE:1113 Inappropriate Comment Style	Weakness	-	-	-	Comment Over Private Function (detekt) Comment Over Private Property (detekt) Deprecated Block Tag (detekt) End of Sentence Format (detekt)	-
CWE:1114 Inappropriate Whitespace Style	Weakness	-	-	-	Equals on Signature Line (detekt) Max Chained Calls on Same Line (detekt) Multiline Raw String Indentation (detekt) New Line at End of File (detekt) No Tabs (detekt) Spacing Between Package and Imports (detekt) Trailing Whitespace (detekt)	Missing Final Newline (Pylint) Mixed Line Endings (Pylint) Trailing Newlines (Pylint) Trailing Whitespace (Pylint) Unexpected Line Ending Format (Pylint)
CWE:1116 Inaccurate Comments	Weakness	-	-	-	Outdated Documentation (detekt)	-
CWE:1119 Excessive Use of Unconditional Branching	Weakness	-	-	-	Unconditional Jump Statement in Loop (detekt)	-
CWE:1120 Excessive Code Complexity	Weakness	Missing Return Statement Multiple Abnormal Loop Exits	-	-	Cognitive Complex Method (detekt) Complex Condition (detekt) Complex Interface (detekt) Destructuring Declaration With Too Many Entries (detekt) Labeled Expression (detekt) Large Class (detekt) Long Method (detekt) Loop With Too Many Jump Statements (detekt) Method Overloading (detekt) Named Arguments (detekt) Nested Scope Functions (detekt) Replace Safe Call Chain With Run (detekt) Return Count (detekt) Throws Count (detekt) Too Many Functions (detekt)	Too Many Ancestors (Pylint) Too Many Arguments (Pylint) Too Many Boolean Expressions (Pylint) Too Many Branches (Pylint) Too Many Instance Attributes (Pylint) Too Many Locals (Pylint) Too Many Public Methods (Pylint) Too Many Return Statements (Pylint) Too Many Statements (Pylint) Unnecessary Comprehension (Pylint) Unnecessary Dict Index Lookup (Pylint) Unnecessary Direct Lambda Call (Pylint) Unnecessary List Index Lookup (Pylint)
CWE:1121 Excessive McCabe Cyclomatic Complexity	Weakness	High Cyclomatic Complexity (Procedure)	-	-	Cyclomatic Complex Method (detekt)	-
CWE:1124 Excessively Deep Nesting	Weakness	-	-	-	Collapsible If Statements (detekt) Nested Block Depth (detekt)	Too Many Nested Blocks (Pylint)
CWE:1126 Declaration of Variable with Unnecessarily Wide Scope	Weakness	Scope Could Be File Static Scope Could Be Local Static	Unnecessary Field (Java)	Unnecessary Field (C#)	-	-
CWE:1127 Compilation with Insufficient Warnings or Errors	Weakness	Not All Warnings Are Enabled Warnings Not Treated As Errors	-	-	Forbidden Suppress (detekt)	-
CWE:1164 Irrelevant Code	Weakness	Explicit Zero Alignment Function Call Has No Effect Over-initialized Element Redundant Condition Unused Value Useless Assignment	Field Never Read (Java) Redundant Call for String Argument (Java) Redundant Implements Clause (Java) Static Field Assigned Non-Static (Java) Unused Field (Java) Unused Object (Java) Useless Class Cast (Java) Useless null Test (Java) Useless null Test of Field (Java) Useless null Test of Parameter (Java)	Field Never Read (C#) Redundant Call for String Argument (C#) Static Field Assigned Non-Static (C#) Unused Field (C#) Unused Object (C#) Useless Class Cast (C#) Useless null Test (C#) Useless null Test of Field (C#) Useless null Test of Parameter (C#)	Nested Classes Visibility (detekt) Optional Abstract Keyword (detekt) Redundant Explicit Type (detekt) Redundant Higher Order Map Usage (detekt) Redundant Suspend Modifier (detekt) Redundant Visibility Modifier Rule (detekt) Rethrow Caught Exception (detekt) Unconditional Jump Statement in Loop (detekt) Unnecessary Annotation Use Site Target (detekt) Unnecessary Filter (detekt) Unnecessary Inheritance (detekt) Unnecessary Not Null Check (detekt) Unnecessary Not Null Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Safe Call (detekt) Unused Imports (detekt) Unused Parameter (detekt) Unused Private Class (detekt) Unused Private Member (detekt) Unused Private Property (detekt) Unused Unary Operator (detekt) Useless Call on Not Null (detekt) Useless Postfix Expression (detekt)	Assert on String Literal (Pylint) Assert on Tuple (Pylint) Assignment From No Return (Pylint) Assignment From None (Pylint) Comparison With Itself (Pylint) Condition Evals to Constant (Pylint) Duplicate Except (Pylint) Expression Not Assigned (Pylint) F String Without Interpolation (Pylint) Format String Without Interpolation (Pylint) Global Variable Not Assigned (Pylint) Global at Module Level (Pylint) Pointless Exception Statement (Pylint) Pointless Statement (Pylint) Pointless String Statement (Pylint) Reimported (Pylint) Self Assigning Variable (Pylint) Shadowed Import (Pylint) Simplifiable Condition (Pylint) Simplifiable If Expression (Pylint) Simplifiable If Statement (Pylint) Simplify Boolean Expression (Pylint) Singleton Comparison (Pylint) Try Except Raise (Pylint) Unnecessary Ellipsis (Pylint) Unnecessary Lambda (Pylint) Unnecessary Pass (Pylint) Unused Argument (Pylint) Unused Format String Argument (Pylint) Unused Format String Key (Pylint) Unused Import (Pylint) Unused Private Member (Pylint) Useless Import Alias (Pylint) Useless Object Inheritance (Pylint) Useless Parent Delegation (Pylint) Useless Return (Pylint) Useless With Lock (Pylint) Using Constant Test (Pylint)
CWE:1173 Improper Use of Validation Framework	Weakness	-	Missing isValidFragment Override (Java)	-	-	-
CWE:1176 Inefficient CPU Computation	Weakness	-	Single-use Random Number Generator (Java)	Single-use Random Number Generator (C#)	Could Be Sequence (detekt) For Each on Range (detekt) Spread Operator (detekt) Unnecessary Part of Binary Expression (detekt) Unnecessary Temporary Instantiation (detekt)	-
CWE:1177 Use of Prohibited Code	Weakness	-	-	-	Forbidden Import (detekt) Forbidden Method Call (detekt)	-
CWE:1204 Generation of Weak Initialization Vector (IV)	Weakness	-	Weak Initialization Vector Field (Java) Weak Initialization Vector Value (Java)	Weak Initialization Vector Field (C#) Weak Initialization Vector Value (C#)	-	-
CWE:1235 Incorrect Use of Autoboxing and Unboxing for Performance Critical Operations	Weakness	-	-	-	Array Primitive (detekt)	-
CWE:1295 Debug Messages Revealing Unnecessary Information	Weakness	Leftover Debug Code	-	-	-	-
CWE:1335 Incorrect Bitwise Shift of Integer	Weakness	Negative Shift Amount Shift Amount Exceeds Bit Width	-	-	-	-
CWE:1339 Insufficient Precision or Accuracy of a Real Number	Weakness	-	Approximate e Constant (Java) Approximate pi Constant (Java)	Approximate e Constant (C#) Approximate pi Constant (C#)	-	-
CWE:1341 Multiple Releases of Same Resource or Handle	Weakness	Double Close	-	-	-	-
CWE:1389 Incorrect Parsing of Numbers with Different Radices	Weakness	Octal Constant	-	-	-	-
CWE:1390 Weak Authentication	Weakness	-	Anonymous LDAP Authentication (Java) LDAP Authentication Disabled (Java)	Anonymous LDAP Authentication (C#)	-	-
CWE:1419 Incorrect Initialization of Resource	Weakness	Initialization Cycle Partially Uninitialized Aggregate Partially Uninitialized Array Uninitialized Variable Unordered Initialization Unspecified Array Size with Designator Initialization Virtual Call in Constructor	-	-	-	-