Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix S2857 FP: Rule is not checking SQL keywords in const interepolated string #6633

Closed
cristian-ambrosini-sonarsource opened this issue Jan 16, 2023 · 2 comments · Fixed by #8966
Closed

Fix S2857 FP: Rule is not checking SQL keywords in const interepolated string #6633

cristian-ambrosini-sonarsource opened this issue Jan 16, 2023 · 2 comments · Fixed by #8966
Assignees
@gregory-paidis-sonarsource
Labels
Area: C# C# rules related issues. Sprint: Hardening Fix FPs/FNs/improvements Type: False Positive Rule IS triggered when it shouldn't be.
Projects
Best Kanban
Milestone
9.23

Comments

@cristian-ambrosini-sonarsource
Copy link
Contributor

cristian-ambrosini-sonarsource commented Jan 16, 2023
edited
Loading

Description

S2857 fail to check for SQL keywords inside a:

  • constant interpolated string:
  • interpolated string with nameof expression
using System.Data.SqlClient;

public void MyMethod(string unknownValue)
{
  const string One = "One";
  const string myString = $"{One}Two"; // Noncompliant FP
  const string myString1 = $"{nameof(One)}Two"; // Noncompliant FP
  string myString2 = $"{nameof(unknownValue)}Two"; // Noncompliant FP
}
@cristian-ambrosini-sonarsource cristian-ambrosini-sonarsource added Type: False Positive Rule IS triggered when it shouldn't be. Area: C# C# rules related issues. labels Jan 16, 2023
This was referenced Jan 16, 2023
Closed
Merged
martin-strecker-sonarsource pushed a commit that referenced this issue Jan 16, 2023
@cristian-ambrosini-sonarsource
S2857: Add FP repro for #6633 (#6614)
1e9a503
@martin-strecker-sonarsource
Copy link
Contributor

see also #6126

@cristian-ambrosini-sonarsource cristian-ambrosini-sonarsource added this to the 9.7 milestone Jul 26, 2023
@martin-strecker-sonarsource martin-strecker-sonarsource removed this from the 9.7 milestone Aug 4, 2023
Closed
@cristian-ambrosini-sonarsource
Copy link
Contributor Author

cristian-ambrosini-sonarsource commented Sep 28, 2023
edited
Loading

As reported by #8102, non-const string are also raising FPs:

    string nonConstOne = "One";
    string empty = string.Empty;

    string s1 = $"{nonConstOne}";              // Compliant
    string s2 = $"{nonConstOne}Two";           // Noncompliant FP
    string s3 = $"{empty}";                    // Compliant
    string s4 = $"{empty}Two";                 // Compliant

    string s5 = $"{{{nonConstOne}}}";          // Noncompliant FP
                                               // Noncompliant@-1 FP

@gregory-paidis-sonarsource gregory-paidis-sonarsource added the Sprint: Hardening Fix FPs/FNs/improvements label Mar 20, 2024
@gregory-paidis-sonarsource gregory-paidis-sonarsource moved this from To do to In progress in Best Kanban Mar 20, 2024
Merged
@github-actions github-actions bot moved this from In progress to Review in progress in Best Kanban Mar 21, 2024
Best Kanban automation moved this from Review in progress to Validate Peach Mar 21, 2024
@gregory-paidis-sonarsource gregory-paidis-sonarsource moved this from Validate Peach to Done in Best Kanban Mar 22, 2024
@mary-georgiou-sonarsource mary-georgiou-sonarsource added this to the 9.23 milestone Mar 25, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@gregory-paidis-sonarsource gregory-paidis-sonarsource

Labels
Area: C# C# rules related issues. Sprint: Hardening Fix FPs/FNs/improvements Type: False Positive Rule IS triggered when it shouldn't be.
Projects
Best Kanban
  
Done
Milestone
9.23
5 participants
@costin-zaharia-sonarsource @mary-georgiou-sonarsource @martin-strecker-sonarsource @cristian-ambrosini-sonarsource @gregory-paidis-sonarsource