Uploaded image for project: 'Product Roadmaps'
  1. Product Roadmaps
  2. MMF-2225

C# analyzer supports C# 9 Target-typed new expressions

    Details

    • Type: MMF
    • Status: Ready
    • Priority: Major
    • Resolution: Unresolved
    • Labels:

      Description

      WHY

      See MMF-2105.

      WHAT

      New C# 9 language features brings Target-typed new feature for creating new instance of an object. We need to handle this syntax in many affected rules.

      This MMF targets only non-CFG based rules.

      S4432 - AesManagedShouldBeWithSecureMode
      S3330 - CookieShouldBeHttpOnly
      S2092 - CookieShouldBeSecure
      S4426 - CryptographicKeyShouldNotBeTooShort
      S2930 - DisposableNotDisposed
      S2278, S5547 - InsecureEncryptionAlgorithm
      S2070 - InsecureHashAlgorithm
      S5659 - JwtSigned
      S4433 - LdapConnectionShouldBeSecure
      S3254 - RedundantArgument
      S3257 - RedundantDeclaration
      S4057 - SetLocaleForDataTypes
      S3994, S3995, S3996, S3997, S4005 - UseUriInsteadOfString
      S2755 - XmlExternalEntityShouldNotBeParsed
      S1144 - UnusedPrivateMember
      S3453 - ClassNotInstantiatable

      HOW

      Introduce C# 9 support for existing rules using ShimLayer.

      Out of scope

      Update CFG generation.
      Update Symbolic Execution engine.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                pavel.mikula Pavel Mikula
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated: