CTX.AL.CloudUpload

1.4.0.0

bin/netstandard2.0/Citrix.CloudUpload.dll.RoslynCA.json

                                {

  "$schema": "http://json.schemastore.org/sarif-1.0.0",

  "version": "1.0.0",

  "runs": [

    {

      "tool": {

        "name": "Microsoft (R) Visual C# Compiler",

        "version": "3.7.0.0",

        "fileVersion": "3.7.0-6.20570.4 (dc3f4eef)",

        "semanticVersion": "3.7.0",

        "language": ""

      },

      "results": [

        {

          "ruleId": "S4790",

          "level": "warning",

          "message": "Make sure that hashing data is safe here.",

          "locations": [

            {

              "resultFile": {

                "uri": "file:///home/jenkins/agent/workspace/loud_Services_cloudupload_master/src/GetVhdContentHash.cs",

                "region": {

                  "startLine": 33,

                  "startColumn": 30,

                  "endLine": 33,

                  "endColumn": 65

                }

              }

            }

          ],

          "properties": {

            "warningLevel": 1

          }

        },

        {

          "ruleId": "S112",

          "level": "warning",

          "message": "'System.Exception' should not be thrown by user code.",

          "locations": [

            {

              "resultFile": {

                "uri": "file:///home/jenkins/agent/workspace/loud_Services_cloudupload_master/src/CopyToGcpDisk.cs",

                "region": {

                  "startLine": 300,

                  "startColumn": 23,

                  "endLine": 300,

                  "endColumn": 59

                }

              }

            }

          ],

          "properties": {

            "warningLevel": 1

          }

        }

      ],

      "rules": {

        "S112": {

          "id": "S112",

          "shortDescription": "General exceptions should never be thrown",

          "fullDescription": "Throwing such general exceptions as Exception, SystemException, ApplicationException, IndexOutOfRangeException, NullReferenceException, OutOfMemoryException and ExecutionEngineException prevents calling methods from handling true, system-generated exceptions differently than application-generated errors. ",

          "defaultLevel": "warning",

          "helpUri": "https://rules.sonarsource.com/csharp/RSPEC-112",

          "properties": {

            "category": "Major Code Smell",

            "isEnabledByDefault": true,

            "tags": [

              "C#",

              "SonarWay",

              "MainSourceScope"

            ]

          }

        },

        "S4790": {

          "id": "S4790",

          "shortDescription": "Using weak hashing algorithms is security-sensitive",

          "fullDescription": "Cryptographic hash algorithms such as MD2, MD4, MD5, MD6, HAVAL-128, HMAC-MD5, DSA (which uses SHA-1), RIPEMD, RIPEMD-128, RIPEMD-160, HMACRIPEMD160 and SHA-1 are no longer considered secure, because it is too easy to create hash collisions with them (little computational effort is enough to find two or more different inputs that produces the same hash).",

          "defaultLevel": "warning",

          "helpUri": "https://rules.sonarsource.com/csharp/RSPEC-4790",

          "properties": {

            "category": "Critical Security Hotspot",

            "isEnabledByDefault": true,

            "tags": [

              "C#",

              "SonarWay",

              "MainSourceScope",

              "NotConfigurable"

            ]

          }

        }

      }

    }

  ]

}