...
Having a public static final array is a potential security risk because the array elements may be modified by a client.
| Rule | Severity | Likelihood | Remediation Cost | Priority | Level |
|---|---|---|---|---|---|
OBJ13-J | Medium | Likely | Low | P18 | L1 |
Automated Detection
| Tool | Version | Checker | Description | |||||
|---|---|---|---|---|---|---|---|---|
| SonarQube |
|
Related Vulnerabilities
Search for vulnerabilities resulting from the violation of this guideline on the CERT website.
References
| [Bloch 2008] | Item 13, "Minimize the Accessibility of Classes and Members" |
| [JLS 2015] | §6.6, "Access Control" |
...
...