Resolution: Not an issue
Affects Version/s: None
Fix Version/s: None
Note: this ticket is a copy/paste from
The first implementation of the rule resulted in a lot of false-positives due to the detection of URL protocols. The following improvements can be implemented to reduce the amount of false-positives significantly.
No issue should be raised if a string consists of an URL protocol only. An issue should be still raised if this string gets concatenated with another string:
No issue should be raised if the domain is one of the following as they are commonly used for XML or similar namespaces:
No issue should be raised if the domain is one of the following. Also, no issue should be raised on all sub-domains of this domains: