SpotBugs Bug Detector Report

The following document contains the results of SpotBugs

SpotBugs Version is 4.8.6

Threshold is medium

Effort is max

Summary

Classes	Bugs	Errors	Missing Classes
420	144	0	0

Files

Class	Bugs
org.primefaces.extensions.component.base.AbstractDynamicData	2
org.primefaces.extensions.component.calculator.Calculator	1
org.primefaces.extensions.component.clipboard.Clipboard	1
org.primefaces.extensions.component.codemirror.CodeMirror	2
org.primefaces.extensions.component.codescanner.CodeScanner	1
org.primefaces.extensions.component.cookiepolicy.CookiePolicySaveActionListener	2
org.primefaces.extensions.component.cookiepolicy.CookiePolicySaveTagHandler	1
org.primefaces.extensions.component.counter.Counter	2
org.primefaces.extensions.component.echarts.EChart	2
org.primefaces.extensions.component.fluidgrid.FluidGrid	1
org.primefaces.extensions.component.fuzzysearch.FuzzySearch	2
org.primefaces.extensions.component.gchart.GChart	1
org.primefaces.extensions.component.gchart.model.DefaultGChartModel	2
org.primefaces.extensions.component.gchart.model.DefaultGChartModelRow	2
org.primefaces.extensions.component.imageareaselect.ImageAreaSelect	1
org.primefaces.extensions.component.imagerotateandresize.ImageRotateAndResize	1
org.primefaces.extensions.component.inputphone.InputPhone	2
org.primefaces.extensions.component.inputplace.InputPlace	2
org.primefaces.extensions.component.keynote.Keynote	2
org.primefaces.extensions.component.layout.Layout	5
org.primefaces.extensions.component.layout.LayoutPane	1
org.primefaces.extensions.component.lightswitch.LightSwitch	1
org.primefaces.extensions.component.localized.LocalizedRenderer	1
org.primefaces.extensions.component.masterdetail.MasterDetail	2
org.primefaces.extensions.component.masterdetail.MasterDetailLevelTagHandler	1
org.primefaces.extensions.component.masterdetail.MasterDetailLevelVisitCallback	1
org.primefaces.extensions.component.monacoeditor.MonacoDiffEditorFramed	2
org.primefaces.extensions.component.monacoeditor.MonacoDiffEditorInline	2
org.primefaces.extensions.component.monacoeditor.MonacoEditorFramed	2
org.primefaces.extensions.component.monacoeditor.MonacoEditorInline	2
org.primefaces.extensions.component.orgchart.DefaultOrgChartNode	4
org.primefaces.extensions.component.orgchart.OrgChart	1
org.primefaces.extensions.component.osmap.OSMap	2
org.primefaces.extensions.component.parameters.MethodSignatureTagHandler	1
org.primefaces.extensions.component.sheet.BeanPropertyComparator	1
org.primefaces.extensions.component.sheet.Sheet	7
org.primefaces.extensions.component.sheet.SheetColumn	2
org.primefaces.extensions.component.sheet.SheetInvalidUpdate	5
org.primefaces.extensions.component.slideout.SlideOut	1
org.primefaces.extensions.component.speedtest.Speedtest	1
org.primefaces.extensions.component.suneditor.SunEditor	1
org.primefaces.extensions.component.timepicker.TimePicker	1
org.primefaces.extensions.component.waypoint.Waypoint	1
org.primefaces.extensions.converter.SanitizingConverter	1
org.primefaces.extensions.event.EventDataWrapper	4
org.primefaces.extensions.event.OrgChartClickEvent	3
org.primefaces.extensions.event.OrgChartDropEvent	3
org.primefaces.extensions.model.dynaform.DynaFormLabel	2
org.primefaces.extensions.model.dynaform.DynaFormModel	4
org.primefaces.extensions.model.dynaform.DynaFormModelElement	2
org.primefaces.extensions.model.dynaform.DynaFormRow	2
org.primefaces.extensions.model.inputplace.Place	1
org.primefaces.extensions.model.layout.LayoutOptions	34
org.primefaces.extensions.model.monaco.MonacoDiffEditorModel	2
org.primefaces.extensions.model.mongo.MorphiaLazyDataModel	2
org.primefaces.extensions.model.mongo.MorphiaLazyDataModel$Builder	1
org.primefaces.extensions.model.sheet.SheetUpdate	5

org.primefaces.extensions.component.base.AbstractDynamicData

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.base.AbstractDynamicData.getData() may expose internal representation by returning AbstractDynamicData.data	MALICIOUS_CODE	EI_EXPOSE_REP	183	Medium
org.primefaces.extensions.component.base.AbstractDynamicData.setData(KeyData) may expose internal representation by storing an externally mutable object into AbstractDynamicData.data	MALICIOUS_CODE	EI_EXPOSE_REP2	169	Medium

org.primefaces.extensions.component.calculator.Calculator

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.calculator.Calculator.getEventNames() may expose internal representation by returning Calculator.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	118	Medium

org.primefaces.extensions.component.clipboard.Clipboard

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.clipboard.Clipboard.getEventNames() may expose internal representation by returning Clipboard.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	95	Medium

org.primefaces.extensions.component.codemirror.CodeMirror

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.codemirror.CodeMirror.getEventNames() may expose internal representation by returning CodeMirror.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	115	Medium
org.primefaces.extensions.component.codemirror.CodeMirror.getSuggestions() may expose internal representation by returning CodeMirror.suggestions	MALICIOUS_CODE	EI_EXPOSE_REP	404	Medium

org.primefaces.extensions.component.codescanner.CodeScanner

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.codescanner.CodeScanner.getEventNames() may expose internal representation by returning CodeScanner.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	216	Medium

org.primefaces.extensions.component.cookiepolicy.CookiePolicySaveActionListener

Bug	Category	Details	Line	Priority
new org.primefaces.extensions.component.cookiepolicy.CookiePolicySaveActionListener(ValueExpression, ValueExpression) may expose internal representation by storing an externally mutable object into CookiePolicySaveActionListener.policyValueExpression	MALICIOUS_CODE	EI_EXPOSE_REP2	61	Medium
new org.primefaces.extensions.component.cookiepolicy.CookiePolicySaveActionListener(ValueExpression, ValueExpression) may expose internal representation by storing an externally mutable object into CookiePolicySaveActionListener.retentionValueExpression	MALICIOUS_CODE	EI_EXPOSE_REP2	62	Medium

org.primefaces.extensions.component.cookiepolicy.CookiePolicySaveTagHandler

Bug	Category	Details	Line	Priority
Exception thrown in class org.primefaces.extensions.component.cookiepolicy.CookiePolicySaveTagHandler at new org.primefaces.extensions.component.cookiepolicy.CookiePolicySaveTagHandler(TagConfig) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks.	BAD_PRACTICE	CT_CONSTRUCTOR_THROW	49	Medium

org.primefaces.extensions.component.counter.Counter

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.counter.Counter.getBehaviorEventMapping() may expose internal representation by returning Counter.BEHAVIOR_EVENT_MAPPING	MALICIOUS_CODE	EI_EXPOSE_REP	78	Medium
org.primefaces.extensions.component.counter.Counter.getEventNames() may expose internal representation by returning Counter.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	83	Medium

org.primefaces.extensions.component.echarts.EChart

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.echarts.EChart.getBehaviorEventMapping() may expose internal representation by returning EChart.BEHAVIOR_EVENT_MAPPING	MALICIOUS_CODE	EI_EXPOSE_REP	55	Medium
org.primefaces.extensions.component.echarts.EChart.getEventNames() may expose internal representation by returning EChart.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	60	Medium

org.primefaces.extensions.component.fluidgrid.FluidGrid

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.fluidgrid.FluidGrid.getEventNames() may expose internal representation by returning FluidGrid.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	199	Medium

org.primefaces.extensions.component.fuzzysearch.FuzzySearch

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.fuzzysearch.FuzzySearch.getBehaviorEventMapping() may expose internal representation by returning FuzzySearch.BEHAVIOR_EVENT_MAPPING	MALICIOUS_CODE	EI_EXPOSE_REP	67	Medium
org.primefaces.extensions.component.fuzzysearch.FuzzySearch.getEventNames() may expose internal representation by returning FuzzySearch.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	72	Medium

org.primefaces.extensions.component.gchart.GChart

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.gchart.GChart.getEventNames() may expose internal representation by returning GChart.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	74	Medium

org.primefaces.extensions.component.gchart.model.DefaultGChartModel

Bug	Category	Details	Line	Priority
The field org.primefaces.extensions.component.gchart.model.DefaultGChartModel.columns is transient but isn't set by deserialization	BAD_PRACTICE	SE_TRANSIENT_FIELD_NOT_RESTORED	Not available	Medium
The field org.primefaces.extensions.component.gchart.model.DefaultGChartModel.options is transient but isn't set by deserialization	BAD_PRACTICE	SE_TRANSIENT_FIELD_NOT_RESTORED	Not available	Medium

org.primefaces.extensions.component.gchart.model.DefaultGChartModelRow

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.gchart.model.DefaultGChartModelRow.getValues() may expose internal representation by returning DefaultGChartModelRow.values	MALICIOUS_CODE	EI_EXPOSE_REP	48	Medium
The field org.primefaces.extensions.component.gchart.model.DefaultGChartModelRow.values is transient but isn't set by deserialization	BAD_PRACTICE	SE_TRANSIENT_FIELD_NOT_RESTORED	Not available	Medium

org.primefaces.extensions.component.imageareaselect.ImageAreaSelect

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.imageareaselect.ImageAreaSelect.getEventNames() may expose internal representation by returning ImageAreaSelect.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	124	Medium

org.primefaces.extensions.component.imagerotateandresize.ImageRotateAndResize

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.imagerotateandresize.ImageRotateAndResize.getEventNames() may expose internal representation by returning ImageRotateAndResize.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	101	Medium

org.primefaces.extensions.component.inputphone.InputPhone

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.inputphone.InputPhone.getEventNames() may expose internal representation by returning InputPhone.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	321	Medium
org.primefaces.extensions.component.inputphone.InputPhone.getUnobstrusiveEventNames() may expose internal representation by returning InputPhone.UNOBSTRUSIVE_EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	326	Medium

org.primefaces.extensions.component.inputplace.InputPlace

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.inputplace.InputPlace.getEventNames() may expose internal representation by returning InputPlace.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	87	Medium
org.primefaces.extensions.component.inputplace.InputPlace.getUnobstrusiveEventNames() may expose internal representation by returning InputPlace.UNOBSTRUSIVE_EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	92	Medium

org.primefaces.extensions.component.keynote.Keynote

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.keynote.Keynote.getBehaviorEventMapping() may expose internal representation by returning Keynote.BEHAVIOR_EVENT_MAPPING	MALICIOUS_CODE	EI_EXPOSE_REP	110	Medium
org.primefaces.extensions.component.keynote.Keynote.getEventNames() may expose internal representation by returning Keynote.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	115	Medium

org.primefaces.extensions.component.layout.Layout

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.layout.Layout.getEventNames() may expose internal representation by returning Layout.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	233	Medium
org.primefaces.extensions.component.layout.Layout.getFastStringWriter() may expose internal representation by returning Layout.fsw	MALICIOUS_CODE	EI_EXPOSE_REP	343	Medium
org.primefaces.extensions.component.layout.Layout.getOriginalWriter() may expose internal representation by returning Layout.originalWriter	MALICIOUS_CODE	EI_EXPOSE_REP	335	Medium
org.primefaces.extensions.component.layout.Layout.setFastStringWriter(FastStringWriter) may expose internal representation by storing an externally mutable object into Layout.fsw	MALICIOUS_CODE	EI_EXPOSE_REP2	347	Medium
org.primefaces.extensions.component.layout.Layout.setOriginalWriter(ResponseWriter) may expose internal representation by storing an externally mutable object into Layout.originalWriter	MALICIOUS_CODE	EI_EXPOSE_REP2	339	Medium

org.primefaces.extensions.component.layout.LayoutPane

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.layout.LayoutPane.getOptions() may expose internal representation by returning LayoutPane.options	MALICIOUS_CODE	EI_EXPOSE_REP	355	Medium

org.primefaces.extensions.component.lightswitch.LightSwitch

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.lightswitch.LightSwitch.getEventNames() may expose internal representation by returning LightSwitch.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	137	Medium

org.primefaces.extensions.component.localized.LocalizedRenderer

Bug	Category	Details	Line	Priority
Found reliance on default encoding in org.primefaces.extensions.component.localized.LocalizedRenderer.encodeFromFile(FacesContext, Localized): new String(byte[])	I18N	DM_DEFAULT_ENCODING	97	High

org.primefaces.extensions.component.masterdetail.MasterDetail

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.masterdetail.MasterDetail.getDetailLevelToGo(FacesContext) may expose internal representation by returning MasterDetail.detailLevelToGo	MALICIOUS_CODE	EI_EXPOSE_REP	244	Medium
org.primefaces.extensions.component.masterdetail.MasterDetail.getDetailLevelToProcess(FacesContext) may expose internal representation by returning MasterDetail.detailLevelToProcess	MALICIOUS_CODE	EI_EXPOSE_REP	239	Medium

org.primefaces.extensions.component.masterdetail.MasterDetailLevelTagHandler

Bug	Category	Details	Line	Priority
Exception thrown in class org.primefaces.extensions.component.masterdetail.MasterDetailLevelTagHandler at new org.primefaces.extensions.component.masterdetail.MasterDetailLevelTagHandler(ComponentConfig) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks.	BAD_PRACTICE	CT_CONSTRUCTOR_THROW	42	Medium

org.primefaces.extensions.component.masterdetail.MasterDetailLevelVisitCallback

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.masterdetail.MasterDetailLevelVisitCallback.getEditableValueHolders() may expose internal representation by returning MasterDetailLevelVisitCallback.editableValueHolders	MALICIOUS_CODE	EI_EXPOSE_REP	63	Medium

org.primefaces.extensions.component.monacoeditor.MonacoDiffEditorFramed

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.monacoeditor.MonacoDiffEditorFramed.getBehaviorEventMapping() may expose internal representation by returning MonacoDiffEditorBase.BASE_BEHAVIOR_EVENT_MAPPING	MALICIOUS_CODE	EI_EXPOSE_REP	64	Medium
org.primefaces.extensions.component.monacoeditor.MonacoDiffEditorFramed.getEventNames() may expose internal representation by returning MonacoDiffEditorBase.BASE_EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	70	Medium

org.primefaces.extensions.component.monacoeditor.MonacoDiffEditorInline

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.monacoeditor.MonacoDiffEditorInline.getBehaviorEventMapping() may expose internal representation by returning MonacoDiffEditorBase.BASE_BEHAVIOR_EVENT_MAPPING	MALICIOUS_CODE	EI_EXPOSE_REP	63	Medium
org.primefaces.extensions.component.monacoeditor.MonacoDiffEditorInline.getEventNames() may expose internal representation by returning MonacoDiffEditorBase.BASE_EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	69	Medium

org.primefaces.extensions.component.monacoeditor.MonacoEditorFramed

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.monacoeditor.MonacoEditorFramed.getBehaviorEventMapping() may expose internal representation by returning MonacoEditorBase.BASE_BEHAVIOR_EVENT_MAPPING	MALICIOUS_CODE	EI_EXPOSE_REP	64	Medium
org.primefaces.extensions.component.monacoeditor.MonacoEditorFramed.getEventNames() may expose internal representation by returning MonacoEditorBase.BASE_EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	70	Medium

org.primefaces.extensions.component.monacoeditor.MonacoEditorInline

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.monacoeditor.MonacoEditorInline.getBehaviorEventMapping() may expose internal representation by returning MonacoEditorBase.BASE_BEHAVIOR_EVENT_MAPPING	MALICIOUS_CODE	EI_EXPOSE_REP	63	Medium
org.primefaces.extensions.component.monacoeditor.MonacoEditorInline.getEventNames() may expose internal representation by returning MonacoEditorBase.BASE_EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	69	Medium

org.primefaces.extensions.component.orgchart.DefaultOrgChartNode

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.orgchart.DefaultOrgChartNode.getChildren() may expose internal representation by returning DefaultOrgChartNode.children	MALICIOUS_CODE	EI_EXPOSE_REP	163	Medium
org.primefaces.extensions.component.orgchart.DefaultOrgChartNode.getParent() may expose internal representation by returning DefaultOrgChartNode.parent	MALICIOUS_CODE	EI_EXPOSE_REP	173	Medium
org.primefaces.extensions.component.orgchart.DefaultOrgChartNode.setChildren(List) may expose internal representation by storing an externally mutable object into DefaultOrgChartNode.children	MALICIOUS_CODE	EI_EXPOSE_REP2	168	Medium
org.primefaces.extensions.component.orgchart.DefaultOrgChartNode.setParent(OrgChartNode) may expose internal representation by storing an externally mutable object into DefaultOrgChartNode.parent	MALICIOUS_CODE	EI_EXPOSE_REP2	178	Medium

org.primefaces.extensions.component.orgchart.OrgChart

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.orgchart.OrgChart.getEventNames() may expose internal representation by returning OrgChart.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	101	Medium

org.primefaces.extensions.component.osmap.OSMap

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.osmap.OSMap.getBehaviorEventMapping() may expose internal representation by returning OSMap.BEHAVIOR_EVENT_MAPPING	MALICIOUS_CODE	EI_EXPOSE_REP	62	Medium
org.primefaces.extensions.component.osmap.OSMap.getEventNames() may expose internal representation by returning OSMap.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	67	Medium

org.primefaces.extensions.component.parameters.MethodSignatureTagHandler

Bug	Category	Details	Line	Priority
Exception thrown in class org.primefaces.extensions.component.parameters.MethodSignatureTagHandler at new org.primefaces.extensions.component.parameters.MethodSignatureTagHandler(TagConfig) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks.	BAD_PRACTICE	CT_CONSTRUCTOR_THROW	49	Medium

org.primefaces.extensions.component.sheet.BeanPropertyComparator

Bug	Category	Details	Line	Priority
new org.primefaces.extensions.component.sheet.BeanPropertyComparator(String, SortMeta, Locale) may expose internal representation by storing an externally mutable object into BeanPropertyComparator.sortMeta	MALICIOUS_CODE	EI_EXPOSE_REP2	45	Medium

org.primefaces.extensions.component.sheet.Sheet

Bug	Category	Details	Line	Priority
Dead store to currentSortById in org.primefaces.extensions.component.sheet.Sheet.getSortColRenderIndex()	STYLE	DLS_DEAD_LOCAL_STORE	422	Medium
org.primefaces.extensions.component.sheet.Sheet.getColumns() may expose internal representation by returning Sheet.columns	MALICIOUS_CODE	EI_EXPOSE_REP	189	Medium
org.primefaces.extensions.component.sheet.Sheet.getEventNames() may expose internal representation by returning Sheet.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	150	Medium
org.primefaces.extensions.component.sheet.Sheet.getInvalidUpdates() may expose internal representation by returning Sheet.invalidUpdates	MALICIOUS_CODE	EI_EXPOSE_REP	232	Medium
org.primefaces.extensions.component.sheet.Sheet.getSubmittedValue() may expose internal representation by returning Sheet.submittedValues	MALICIOUS_CODE	EI_EXPOSE_REP	897	Medium
org.primefaces.extensions.component.sheet.Sheet.getUpdates() may expose internal representation by returning Sheet.updates	MALICIOUS_CODE	EI_EXPOSE_REP	920	Medium
org.primefaces.extensions.component.sheet.Sheet.setColumns(List) may expose internal representation by storing an externally mutable object into Sheet.columns	MALICIOUS_CODE	EI_EXPOSE_REP2	222	Medium

org.primefaces.extensions.component.sheet.SheetColumn

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.sheet.SheetColumn.getSheet() may expose internal representation by returning SheetColumn.sheet	MALICIOUS_CODE	EI_EXPOSE_REP	530	Medium
org.primefaces.extensions.component.sheet.SheetColumn.setSheet(Sheet) may expose internal representation by storing an externally mutable object into SheetColumn.sheet	MALICIOUS_CODE	EI_EXPOSE_REP2	546	Medium

org.primefaces.extensions.component.sheet.SheetInvalidUpdate

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.sheet.SheetInvalidUpdate.getInvalidColumn() may expose internal representation by returning SheetInvalidUpdate.invalidColumn	MALICIOUS_CODE	EI_EXPOSE_REP	91	Medium
new org.primefaces.extensions.component.sheet.SheetInvalidUpdate(Object, int, SheetColumn, Object, String) may expose internal representation by storing an externally mutable object into SheetInvalidUpdate.invalidColumn	MALICIOUS_CODE	EI_EXPOSE_REP2	51	Medium
org.primefaces.extensions.component.sheet.SheetInvalidUpdate.setInvalidColumn(SheetColumn) may expose internal representation by storing an externally mutable object into SheetInvalidUpdate.invalidColumn	MALICIOUS_CODE	EI_EXPOSE_REP2	95	Medium
The field org.primefaces.extensions.component.sheet.SheetInvalidUpdate.invalidRowKey is transient but isn't set by deserialization	BAD_PRACTICE	SE_TRANSIENT_FIELD_NOT_RESTORED	Not available	Medium
The field org.primefaces.extensions.component.sheet.SheetInvalidUpdate.invalidValue is transient but isn't set by deserialization	BAD_PRACTICE	SE_TRANSIENT_FIELD_NOT_RESTORED	Not available	Medium

org.primefaces.extensions.component.slideout.SlideOut

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.slideout.SlideOut.getEventNames() may expose internal representation by returning SlideOut.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	116	Medium

org.primefaces.extensions.component.speedtest.Speedtest

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.speedtest.Speedtest.getEventNames() may expose internal representation by returning Speedtest.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	98	Medium

org.primefaces.extensions.component.suneditor.SunEditor

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.suneditor.SunEditor.getEventNames() may expose internal representation by returning SunEditor.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	75	Medium

org.primefaces.extensions.component.timepicker.TimePicker

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.timepicker.TimePicker.getEventNames() may expose internal representation by returning TimePicker.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	388	Medium

org.primefaces.extensions.component.waypoint.Waypoint

Bug	Category	Details	Line	Priority
org.primefaces.extensions.component.waypoint.Waypoint.getEventNames() may expose internal representation by returning Waypoint.EVENT_NAMES	MALICIOUS_CODE	EI_EXPOSE_REP	103	Medium

org.primefaces.extensions.converter.SanitizingConverter

Bug	Category	Details	Line	Priority
Class org.primefaces.extensions.converter.SanitizingConverter defines non-transient non-serializable instance field policy	BAD_PRACTICE	SE_BAD_FIELD	Not available	High

org.primefaces.extensions.event.EventDataWrapper

Bug	Category	Details	Line	Priority
org.primefaces.extensions.event.EventDataWrapper.getData() may expose internal representation by returning EventDataWrapper.data	MALICIOUS_CODE	EI_EXPOSE_REP	56	Medium
org.primefaces.extensions.event.EventDataWrapper.getFacesEvent() may expose internal representation by returning EventDataWrapper.event	MALICIOUS_CODE	EI_EXPOSE_REP	52	Medium
new org.primefaces.extensions.event.EventDataWrapper(UIComponent, FacesEvent, KeyData) may expose internal representation by storing an externally mutable object into EventDataWrapper.data	MALICIOUS_CODE	EI_EXPOSE_REP2	48	Medium
new org.primefaces.extensions.event.EventDataWrapper(UIComponent, FacesEvent, KeyData) may expose internal representation by storing an externally mutable object into EventDataWrapper.event	MALICIOUS_CODE	EI_EXPOSE_REP2	47	Medium

org.primefaces.extensions.event.OrgChartClickEvent

Bug	Category	Details	Line	Priority
org.primefaces.extensions.event.OrgChartClickEvent.getHierarchy() may expose internal representation by returning OrgChartClickEvent.hierarchy	MALICIOUS_CODE	EI_EXPOSE_REP	62	Medium
org.primefaces.extensions.event.OrgChartClickEvent.setHierarchy(JSONObject) may expose internal representation by storing an externally mutable object into OrgChartClickEvent.hierarchy	MALICIOUS_CODE	EI_EXPOSE_REP2	66	Medium
The field org.primefaces.extensions.event.OrgChartClickEvent.hierarchy is transient but isn't set by deserialization	BAD_PRACTICE	SE_TRANSIENT_FIELD_NOT_RESTORED	Not available	Medium

org.primefaces.extensions.event.OrgChartDropEvent

Bug	Category	Details	Line	Priority
org.primefaces.extensions.event.OrgChartDropEvent.getHierarchy() may expose internal representation by returning OrgChartDropEvent.hierarchy	MALICIOUS_CODE	EI_EXPOSE_REP	57	Medium
org.primefaces.extensions.event.OrgChartDropEvent.setHierarchy(JSONObject) may expose internal representation by storing an externally mutable object into OrgChartDropEvent.hierarchy	MALICIOUS_CODE	EI_EXPOSE_REP2	61	Medium
The field org.primefaces.extensions.event.OrgChartDropEvent.hierarchy is transient but isn't set by deserialization	BAD_PRACTICE	SE_TRANSIENT_FIELD_NOT_RESTORED	Not available	Medium

org.primefaces.extensions.model.dynaform.DynaFormLabel

Bug	Category	Details	Line	Priority
org.primefaces.extensions.model.dynaform.DynaFormLabel.getForControl() may expose internal representation by returning DynaFormLabel.forControl	MALICIOUS_CODE	EI_EXPOSE_REP	61	Medium
org.primefaces.extensions.model.dynaform.DynaFormLabel.setForControl(DynaFormControl) may expose internal representation by storing an externally mutable object into DynaFormLabel.forControl	MALICIOUS_CODE	EI_EXPOSE_REP2	65	Medium

org.primefaces.extensions.model.dynaform.DynaFormModel

Bug	Category	Details	Line	Priority
org.primefaces.extensions.model.dynaform.DynaFormModel.getControls() may expose internal representation by returning DynaFormModel.controls	MALICIOUS_CODE	EI_EXPOSE_REP	63	Medium
org.primefaces.extensions.model.dynaform.DynaFormModel.getExtendedRows() may expose internal representation by returning DynaFormModel.extendedRows	MALICIOUS_CODE	EI_EXPOSE_REP	59	Medium
org.primefaces.extensions.model.dynaform.DynaFormModel.getLabels() may expose internal representation by returning DynaFormModel.labels	MALICIOUS_CODE	EI_EXPOSE_REP	67	Medium
org.primefaces.extensions.model.dynaform.DynaFormModel.getRegularRows() may expose internal representation by returning DynaFormModel.regularRows	MALICIOUS_CODE	EI_EXPOSE_REP	55	Medium

org.primefaces.extensions.model.dynaform.DynaFormModelElement

Bug	Category	Details	Line	Priority
org.primefaces.extensions.model.dynaform.DynaFormModelElement.getModel() may expose internal representation by returning DynaFormModelElement.model	MALICIOUS_CODE	EI_EXPOSE_REP	50	Medium
new org.primefaces.extensions.model.dynaform.DynaFormModelElement(DynaFormModel, int, int, int, int, int, boolean) may expose internal representation by storing an externally mutable object into DynaFormModelElement.model	MALICIOUS_CODE	EI_EXPOSE_REP2	41	Medium

org.primefaces.extensions.model.dynaform.DynaFormRow

Bug	Category	Details	Line	Priority
org.primefaces.extensions.model.dynaform.DynaFormRow.getElements() may expose internal representation by returning DynaFormRow.elements	MALICIOUS_CODE	EI_EXPOSE_REP	194	Medium
new org.primefaces.extensions.model.dynaform.DynaFormRow(int, boolean, DynaFormModel) may expose internal representation by storing an externally mutable object into DynaFormRow.dynaFormModel	MALICIOUS_CODE	EI_EXPOSE_REP2	56	Medium

org.primefaces.extensions.model.inputplace.Place

Bug	Category	Details	Line	Priority
Exception thrown in class org.primefaces.extensions.model.inputplace.Place at new org.primefaces.extensions.model.inputplace.Place(String, Map) will leave the constructor. The object under construction remains partially initialized and may be vulnerable to Finalizer attacks.	BAD_PRACTICE	CT_CONSTRUCTOR_THROW	71	Medium

org.primefaces.extensions.model.layout.LayoutOptions

Bug	Category	Details	Line	Priority
org.primefaces.extensions.model.layout.LayoutOptions.getCenterOptions() may expose internal representation by returning LayoutOptions.center	MALICIOUS_CODE	EI_EXPOSE_REP	147	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getChildOptions() may expose internal representation by returning LayoutOptions.child	MALICIOUS_CODE	EI_EXPOSE_REP	155	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getEastOptions() may expose internal representation by returning LayoutOptions.east	MALICIOUS_CODE	EI_EXPOSE_REP	139	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getLayoutOptions(String) may expose internal representation by returning LayoutOptions.center	MALICIOUS_CODE	EI_EXPOSE_REP	204	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getLayoutOptions(String) may expose internal representation by returning LayoutOptions.child	MALICIOUS_CODE	EI_EXPOSE_REP	177	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getLayoutOptions(String) may expose internal representation by returning LayoutOptions.defaults	MALICIOUS_CODE	EI_EXPOSE_REP	186	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getLayoutOptions(String) may expose internal representation by returning LayoutOptions.east	MALICIOUS_CODE	EI_EXPOSE_REP	231	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getLayoutOptions(String) may expose internal representation by returning LayoutOptions.north	MALICIOUS_CODE	EI_EXPOSE_REP	213	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getLayoutOptions(String) may expose internal representation by returning LayoutOptions.south	MALICIOUS_CODE	EI_EXPOSE_REP	222	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getLayoutOptions(String) may expose internal representation by returning LayoutOptions.tips	MALICIOUS_CODE	EI_EXPOSE_REP	195	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getLayoutOptions(String) may expose internal representation by returning LayoutOptions.west	MALICIOUS_CODE	EI_EXPOSE_REP	240	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getNorthOptions() may expose internal representation by returning LayoutOptions.north	MALICIOUS_CODE	EI_EXPOSE_REP	115	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getOptions() may expose internal representation by returning LayoutOptions.options	MALICIOUS_CODE	EI_EXPOSE_REP	79	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getPanesOptions() may expose internal representation by returning LayoutOptions.defaults	MALICIOUS_CODE	EI_EXPOSE_REP	99	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getSouthOptions() may expose internal representation by returning LayoutOptions.south	MALICIOUS_CODE	EI_EXPOSE_REP	123	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getTips() may expose internal representation by returning LayoutOptions.tips	MALICIOUS_CODE	EI_EXPOSE_REP	103	Medium
org.primefaces.extensions.model.layout.LayoutOptions.getWestOptions() may expose internal representation by returning LayoutOptions.west	MALICIOUS_CODE	EI_EXPOSE_REP	131	Medium
org.primefaces.extensions.model.layout.LayoutOptions.replace(String, LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.center	MALICIOUS_CODE	EI_EXPOSE_REP2	292	Medium
org.primefaces.extensions.model.layout.LayoutOptions.replace(String, LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.child	MALICIOUS_CODE	EI_EXPOSE_REP2	259	Medium
org.primefaces.extensions.model.layout.LayoutOptions.replace(String, LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.defaults	MALICIOUS_CODE	EI_EXPOSE_REP2	270	Medium
org.primefaces.extensions.model.layout.LayoutOptions.replace(String, LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.east	MALICIOUS_CODE	EI_EXPOSE_REP2	325	Medium
org.primefaces.extensions.model.layout.LayoutOptions.replace(String, LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.north	MALICIOUS_CODE	EI_EXPOSE_REP2	303	Medium
org.primefaces.extensions.model.layout.LayoutOptions.replace(String, LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.south	MALICIOUS_CODE	EI_EXPOSE_REP2	314	Medium
org.primefaces.extensions.model.layout.LayoutOptions.replace(String, LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.tips	MALICIOUS_CODE	EI_EXPOSE_REP2	281	Medium
org.primefaces.extensions.model.layout.LayoutOptions.replace(String, LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.west	MALICIOUS_CODE	EI_EXPOSE_REP2	336	Medium
org.primefaces.extensions.model.layout.LayoutOptions.setCenterOptions(LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.center	MALICIOUS_CODE	EI_EXPOSE_REP2	143	Medium
org.primefaces.extensions.model.layout.LayoutOptions.setChildOptions(LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.child	MALICIOUS_CODE	EI_EXPOSE_REP2	151	Medium
org.primefaces.extensions.model.layout.LayoutOptions.setEastOptions(LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.east	MALICIOUS_CODE	EI_EXPOSE_REP2	135	Medium
org.primefaces.extensions.model.layout.LayoutOptions.setNorthOptions(LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.north	MALICIOUS_CODE	EI_EXPOSE_REP2	111	Medium
org.primefaces.extensions.model.layout.LayoutOptions.setOptions(Map) may expose internal representation by storing an externally mutable object into LayoutOptions.options	MALICIOUS_CODE	EI_EXPOSE_REP2	83	Medium
org.primefaces.extensions.model.layout.LayoutOptions.setPanesOptions(LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.defaults	MALICIOUS_CODE	EI_EXPOSE_REP2	95	Medium
org.primefaces.extensions.model.layout.LayoutOptions.setSouthOptions(LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.south	MALICIOUS_CODE	EI_EXPOSE_REP2	119	Medium
org.primefaces.extensions.model.layout.LayoutOptions.setTips(LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.tips	MALICIOUS_CODE	EI_EXPOSE_REP2	107	Medium
org.primefaces.extensions.model.layout.LayoutOptions.setWestOptions(LayoutOptions) may expose internal representation by storing an externally mutable object into LayoutOptions.west	MALICIOUS_CODE	EI_EXPOSE_REP2	127	Medium

org.primefaces.extensions.model.monaco.MonacoDiffEditorModel

Bug	Category	Details	Line	Priority
Class (org.primefaces.extensions.model.monaco.MonacoDiffEditorModel) using singleton design pattern has non-private constructor.	CORRECTNESS	SING_SINGLETON_HAS_NONPRIVATE_CONSTRUCTOR	42-45	Medium
Class (org.primefaces.extensions.model.monaco.MonacoDiffEditorModel) using singleton design pattern directly or indirectly implements Serializable interface.	CORRECTNESS	SING_SINGLETON_IMPLEMENTS_SERIALIZABLE	36-130	Medium

org.primefaces.extensions.model.mongo.MorphiaLazyDataModel

Bug	Category	Details	Line	Priority
Class org.primefaces.extensions.model.mongo.MorphiaLazyDataModel defines non-transient non-serializable instance field overrides	BAD_PRACTICE	SE_BAD_FIELD	Not available	Medium
org.primefaces.extensions.model.mongo.MorphiaLazyDataModel is Serializable; consider declaring a serialVersionUID	BAD_PRACTICE	SE_NO_SERIALVERSIONID	63-343	Medium

org.primefaces.extensions.model.mongo.MorphiaLazyDataModel$Builder

Bug	Category	Details	Line	Priority
org.primefaces.extensions.model.mongo.MorphiaLazyDataModel$Builder.build() may expose internal representation by returning MorphiaLazyDataModel$Builder.model	MALICIOUS_CODE	EI_EXPOSE_REP	420	Medium

org.primefaces.extensions.model.sheet.SheetUpdate

Bug	Category	Details	Line	Priority
The field org.primefaces.extensions.model.sheet.SheetUpdate.hashCode is transient but isn't set by deserialization	BAD_PRACTICE	SE_TRANSIENT_FIELD_NOT_RESTORED	Not available	Medium
The field org.primefaces.extensions.model.sheet.SheetUpdate.newValue is transient but isn't set by deserialization	BAD_PRACTICE	SE_TRANSIENT_FIELD_NOT_RESTORED	Not available	Medium
The field org.primefaces.extensions.model.sheet.SheetUpdate.oldValue is transient but isn't set by deserialization	BAD_PRACTICE	SE_TRANSIENT_FIELD_NOT_RESTORED	Not available	Medium
The field org.primefaces.extensions.model.sheet.SheetUpdate.rowData is transient but isn't set by deserialization	BAD_PRACTICE	SE_TRANSIENT_FIELD_NOT_RESTORED	Not available	Medium
The field org.primefaces.extensions.model.sheet.SheetUpdate.rowKey is transient but isn't set by deserialization	BAD_PRACTICE	SE_TRANSIENT_FIELD_NOT_RESTORED	Not available	Medium