Release notes - SonarJava - 7.33
False Negative
SONARJAVA-4770 S2438 FN on arguments whose concrete type is Thread
Task
SONARJAVA-4918 Update dependencies + prepare for next development iteration 7.33.0-SNAPSHOT
SONARJAVA-4922 Upgrade sonar-plugin-api and fix IndexedFile issue
SONARJAVA-4924 Remove deprecated method ExpressionUtils.getEnclosingElement
Improvement
SONARJAVA-4858 S5344: Add support for detection of two additional insecure PasswordEncoders
SONARJAVA-4863 S2092: Support detection of missing secure cookie flag for Spring
SONARJAVA-4864 S3330: Support detection of missing http-only cookie flag for Spring
SONARJAVA-4866 S2077: Support detection of formatted SQL queries in Spring
SONARJAVA-4871 S5122: Support detection of Permissive CORS policies for Spring
SONARJAVA-4875 S4502: Support detection of CSRF Protection for Spring
SONARJAVA-4880 S5804: Support detection of User Enumeration for Spring
SONARJAVA-4882 S5876: Support detection of Session Fixation for Spring
SONARJAVA-4883 S4423: Support detection of TLS Protocol Downgrades for Spring programmatically
SONARJAVA-4884 S4507: Support detection of enabled Debug Features in Spring programmatically
SONARJAVA-4885 S5693: Support detection of Excessive File Upload Size Limit for Spring programmatically
SONARJAVA-4921 Update Java parser version to ECJ 3.37.0