Skip to content

Improvements for CA config options #44647

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
gewarren merged 3 commits into from
Feb 3, 2025
Merged

Improvements for CA config options #44647

gewarren merged 3 commits into from
Feb 3, 2025

Conversation

@gewarren
Copy link
Contributor

@gewarren gewarren commented Feb 1, 2025
edited by github-actions bot
Loading

Fixes #43864
Fixes #41018

  • Add missing dataflow analysis options for code analysis
  • Add code examples to dispose ownership transfer options
  • Move include files for config options to config-options subfolder

Internal previews

Toggle expand/collapse
📄 File 🔗 Preview link
docs/fundamentals/code-analysis/code-quality-rule-options.md Code quality rule configuration options
docs/fundamentals/code-analysis/quality-rules/ca1054.md CA1054: URI parameters should not be strings
docs/fundamentals/code-analysis/quality-rules/ca1055.md "CA1055: URI return values should not be strings (code analysis)"
docs/fundamentals/code-analysis/quality-rules/ca1056.md CA1056: URI properties should not be strings
docs/fundamentals/code-analysis/quality-rules/ca1062.md docs/fundamentals/code-analysis/quality-rules/ca1062
docs/fundamentals/code-analysis/quality-rules/ca1068.md CA1068: CancellationToken parameters must come last
docs/fundamentals/code-analysis/quality-rules/ca1303.md CA1303: Do not pass literals as localized parameters
docs/fundamentals/code-analysis/quality-rules/ca1304.md "CA1304: Specify CultureInfo (code analysis)"
docs/fundamentals/code-analysis/quality-rules/ca1305.md CA1305: Specify IFormatProvider
docs/fundamentals/code-analysis/quality-rules/ca1508.md docs/fundamentals/code-analysis/quality-rules/ca1508
docs/fundamentals/code-analysis/quality-rules/ca1710.md CA1710: Identifiers should have correct suffix
docs/fundamentals/code-analysis/quality-rules/ca1711.md "CA1711: Identifiers should not have incorrect suffix (code analysis)"
docs/fundamentals/code-analysis/quality-rules/ca1715.md CA1715: Identifiers should have correct prefix
docs/fundamentals/code-analysis/quality-rules/ca2000.md docs/fundamentals/code-analysis/quality-rules/ca2000
docs/fundamentals/code-analysis/quality-rules/ca2100.md CA2100: Review SQL queries for security vulnerabilities
docs/fundamentals/code-analysis/quality-rules/ca2213.md "CA2213: Disposable fields should be disposed (code analysis)"
docs/fundamentals/code-analysis/quality-rules/ca2301.md CA2301: Do not call BinaryFormatter.Deserialize without first setting BinaryFormatter.Binder
docs/fundamentals/code-analysis/quality-rules/ca2302.md docs/fundamentals/code-analysis/quality-rules/ca2302
docs/fundamentals/code-analysis/quality-rules/ca2311.md CA2311: Do not deserialize without first setting NetDataContractSerializer.Binder
docs/fundamentals/code-analysis/quality-rules/ca2312.md "CA2312: Ensure NetDataContractSerializer.Binder is set before deserializing (code analysis)"
docs/fundamentals/code-analysis/quality-rules/ca2321.md CA2321: Do not deserialize with JavaScriptSerializer using a SimpleTypeResolver
docs/fundamentals/code-analysis/quality-rules/ca2322.md CA2322: Ensure JavaScriptSerializer is not initialized with SimpleTypeResolver before deserializing
docs/fundamentals/code-analysis/quality-rules/ca2327.md docs/fundamentals/code-analysis/quality-rules/ca2327
docs/fundamentals/code-analysis/quality-rules/ca2328.md CA2328: Ensure that JsonSerializerSettings are secure
docs/fundamentals/code-analysis/quality-rules/ca2329.md "CA2329: Do not deserialize with JsonSerializer using an insecure configuration (code analysis)"
docs/fundamentals/code-analysis/quality-rules/ca2330.md CA2330: Ensure that JsonSerializer has a secure configuration when deserializing
docs/fundamentals/code-analysis/quality-rules/ca3001.md docs/fundamentals/code-analysis/quality-rules/ca3001
docs/fundamentals/code-analysis/quality-rules/ca3002.md CA3002: Review code for XSS vulnerabilities
docs/fundamentals/code-analysis/quality-rules/ca3003.md "CA3003: Review code for file path injection vulnerabilities (code analysis)"
docs/fundamentals/code-analysis/quality-rules/ca3004.md CA3004: Review code for information disclosure vulnerabilities

Note

This table shows preview links for the 30 files with the most changes. For preview links for other files in this PR, select OpenPublishing.Build Details within checks.

@gewarren gewarren requested a review from a team as a code owner February 1, 2025 18:35
@dotnetrepoman dotnetrepoman bot added this to the February 2025 milestone Feb 1, 2025
@gewarren gewarren changed the title Ca config options Improvements for CA config options Feb 1, 2025
BillWagner
BillWagner approved these changes Feb 3, 2025
View reviewed changes
Copy link
Member

@BillWagner BillWagner left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This LGTM @gewarren

Let's :shipit:

@gewarren gewarren merged commit 76e0ffd into dotnet:main Feb 3, 2025
8 checks passed
@gewarren gewarren deleted the ca-config-options branch February 3, 2025 16:18
@gewarren
Copy link
Contributor Author

gewarren commented Feb 3, 2025

Thanks for the review @BillWagner.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@BillWagner BillWagner BillWagner approved these changes

Assignees

No one assigned

Labels

dotnet-fundamentals/svc

Projects

None yet

Milestone

February 2025

Development

Successfully merging this pull request may close these issues.

CA2000: Missing documentation for additonal configuration settings Update CA rule config options

2 participants

@gewarren @BillWagner