SonarLint for Visual Studio 3.1(和 3.1.1)已发布,本次更新了升级了 SonarC# 分析器,并带来了 15 个新规则。
默认情况下启用以下新规则:
Credentials should not be hard-coded (Vulnerability, CERT, CWE, OSWAP-A2, SANS-Top25-Porous)
"Obsolete" attributes should include explanations (Code-Smell, Bad-Practice, Obsolete)
Inherited member visibility should not be decreased (Code-Smell, Pitfall)
Enumeration members should not be named "Reserved" (Code-Smell)
Base class methods should not be hidden (Code-Smell, Pitfall)
And the following rules can also be enabled:
Event Handlers should have the correct signature (Code-Smell, Convention)
Generic event handlers should be used (Code-Smell)
Collections should implement the generic interface (Code-Smell)
Method signatures should not contain nested generic types (Code-Smell, Confusing)
Generic methods should provide type parameters (Code-Smell)
Enumerations should have "Int32" storage (Code-Smell)
Interfaces should not be empty (Code-Smell)
Assemblies should be marked with "NeutralResourcesLanguageAttribute" (Code-Smell, Performance)
Exceptions should provide standard constructors (Code-Smell, Convention)
Strings should be normalized to uppercase (Code-Smell, Pitfall)
SonarC# 的更新也修复了许多错误和误报,并带来了其他的一些改进。
最后,此版本的 SonarLint 修复了一个 bug,阻止了使用 SonarCloud 连接的模式。
有关更多信息,请查看发行说明或访问专用的 SonarLint for Visual Studio 网站。
Sonar 不只是一个质量数据报告工具,更是代码质量管理平台。支持的语言包括:Java、PHP、C#、C、Cobol、PL/SQL、Flex 等。
软件详情:https://www.sonarsource.com/resources/product-news/news.html#2017-06-28-sonarlint-for-vs-3-1-1-released
下载地址:http://git.oschina.net/mirrors/sonar
来自:开源中国社区
