github
diff --git a/‎java/ql/src/Advisory/Documentation/SpuriousJavadocParam.ql‎
Lines changed: 2 additions & 1 deletion b/‎java/ql/src/Advisory/Documentation/SpuriousJavadocParam.ql‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎java/ql/src/AlertSuppressionAnnotations.ql‎
Lines changed: 2 additions & 1 deletion b/‎java/ql/src/AlertSuppressionAnnotations.ql‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎java/ql/src/Compatibility/JDK9/JdkInternalsReplacement.qll‎
Lines changed: 14 additions & 7 deletions b/‎java/ql/src/Compatibility/JDK9/JdkInternalsReplacement.qll‎
Lines changed: 14 additions & 7 deletions
diff --git a/‎java/ql/src/Likely Bugs/Concurrency/DoubleCheckedLocking.ql‎
Lines changed: 2 additions & 1 deletion b/‎java/ql/src/Likely Bugs/Concurrency/DoubleCheckedLocking.ql‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎java/ql/src/Likely Bugs/Concurrency/InconsistentAccess.ql‎
Lines changed: 2 additions & 3 deletions b/‎java/ql/src/Likely Bugs/Concurrency/InconsistentAccess.ql‎
Lines changed: 2 additions & 3 deletions
diff --git a/‎java/ql/src/Likely Bugs/Concurrency/LazyInitStaticField.ql‎
Lines changed: 2 additions & 3 deletions b/‎java/ql/src/Likely Bugs/Concurrency/LazyInitStaticField.ql‎
Lines changed: 2 additions & 3 deletions
diff --git a/‎java/ql/src/Likely Bugs/Likely Typos/UnusedFormatArg.ql‎
Lines changed: 2 additions & 1 deletion b/‎java/ql/src/Likely Bugs/Likely Typos/UnusedFormatArg.ql‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎java/ql/src/Likely Bugs/Statements/ImpossibleCast.ql‎
Lines changed: 8 additions & 5 deletions b/‎java/ql/src/Likely Bugs/Statements/ImpossibleCast.ql‎
Lines changed: 8 additions & 5 deletions
diff --git a/‎java/ql/src/Likely Bugs/Statements/ReturnValueIgnored.ql‎
Lines changed: 2 additions & 1 deletion b/‎java/ql/src/Likely Bugs/Statements/ReturnValueIgnored.ql‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎java/ql/src/Metrics/Authors/AuthorsPerFile.ql‎
Lines changed: 2 additions & 3 deletions b/‎java/ql/src/Metrics/Authors/AuthorsPerFile.ql‎
Lines changed: 2 additions & 3 deletions
@@ -22,7 +22,8 @@ where
     not exists(TypeVariable tv | tv.getGenericCallable() = callable |
       "<" + tv.getName() + ">" = paramTag.getParamName()
     ) and
-    msg = "@param tag \"" + paramTag.getParamName() + "\" does not match any actual parameter of " +
+    msg =
+      "@param tag \"" + paramTag.getParamName() + "\" does not match any actual parameter of " +
         what + " \"" + callable.getName() + "()\"."
   else
     // The tag has no value at all.
 
@@ -38,7 +38,8 @@ class SuppressionAnnotation extends SuppressWarningsAnnotation {
   }
 
   private Annotation firstAnnotation() {
-    result = min(this.getASiblingAnnotation() as m
+    result =
+      min(this.getASiblingAnnotation() as m
         order by
           m.getLocation().getStartLine(), m.getLocation().getStartColumn()
       )
 
@@ -11,18 +11,21 @@ predicate jdkInternalReplacement(string old, string new) {
 }
 
 private predicate jdkInternalReplacement(string r) {
-  r = "com.sun.crypto.provider.SunJCE=Use java.security.Security.getProvider(provider-name) @since 1.3" or
+  r =
+    "com.sun.crypto.provider.SunJCE=Use java.security.Security.getProvider(provider-name) @since 1.3" or
   r = "com.sun.org.apache.xml.internal.security=Use java.xml.crypto @since 1.6" or
   r = "com.sun.org.apache.xml.internal.security.utils.Base64=Use java.util.Base64 @since 1.8" or
   r = "com.sun.org.apache.xml.internal.resolver=Use javax.xml.catalog @since 9" or
   r = "com.sun.net.ssl=Use javax.net.ssl @since 1.4" or
-  r = "com.sun.net.ssl.internal.ssl.Provider=Use java.security.Security.getProvider(provider-name) @since 1.3" or
+  r =
+    "com.sun.net.ssl.internal.ssl.Provider=Use java.security.Security.getProvider(provider-name) @since 1.3" or
   r = "com.sun.rowset=Use javax.sql.rowset.RowSetProvider @since 1.7" or
   r = "com.sun.tools.javac.tree=Use com.sun.source @since 1.6" or
   r = "com.sun.tools.javac=Use javax.tools and javax.lang.model @since 1.6" or
   r = "java.awt.peer=Should not use. See https://bugs.openjdk.java.net/browse/JDK-8037739" or
   r = "java.awt.dnd.peer=Should not use. See https://bugs.openjdk.java.net/browse/JDK-8037739" or
-  r = "jdk.internal.ref.Cleaner=Use java.lang.ref.PhantomReference @since 1.2 or java.lang.ref.Cleaner @since 9" or
+  r =
+    "jdk.internal.ref.Cleaner=Use java.lang.ref.PhantomReference @since 1.2 or java.lang.ref.Cleaner @since 9" or
   r = "sun.awt.CausedFocusEvent=Use java.awt.event.FocusEvent::getCause @since 9" or
   r = "sun.font.FontUtilities=See java.awt.Font.textRequiresLayout @since 9" or
   r = "sun.reflect.Reflection=Use java.lang.StackWalker @since 9" or
@@ -32,10 +35,13 @@ private predicate jdkInternalReplacement(string r) {
   r = "sun.misc.SignalHandler=See http://openjdk.java.net/jeps/260" or
   r = "sun.security.action=Use java.security.PrivilegedAction @since 1.1" or
   r = "sun.security.krb5=Use com.sun.security.jgss" or
-  r = "sun.security.provider.PolicyFile=Use java.security.Policy.getInstance(\"JavaPolicy\", new URIParameter(uri)) @since 1.6" or
+  r =
+    "sun.security.provider.PolicyFile=Use java.security.Policy.getInstance(\"JavaPolicy\", new URIParameter(uri)) @since 1.6" or
   r = "sun.security.provider.Sun=Use java.security.Security.getProvider(provider-name) @since 1.3" or
-  r = "sun.security.util.HostnameChecker=Use javax.net.ssl.SSLParameters.setEndpointIdentificationAlgorithm(\"HTTPS\") @since 1.7 or javax.net.ssl.HttpsURLConnection.setHostnameVerifier() @since 1.4" or
-  r = "sun.security.util.SecurityConstants=Use appropriate java.security.Permission subclass @since 1.1" or
+  r =
+    "sun.security.util.HostnameChecker=Use javax.net.ssl.SSLParameters.setEndpointIdentificationAlgorithm(\"HTTPS\") @since 1.7 or javax.net.ssl.HttpsURLConnection.setHostnameVerifier() @since 1.4" or
+  r =
+    "sun.security.util.SecurityConstants=Use appropriate java.security.Permission subclass @since 1.1" or
   r = "sun.security.x509.X500Name=Use javax.security.auth.x500.X500Principal @since 1.4" or
   r = "sun.tools.jar=Use java.util.jar or jar tool @since 1.2" or
   // Internal APIs removed in JDK 9
@@ -45,7 +51,8 @@ private predicate jdkInternalReplacement(string r) {
   r = "sun.awt.image.codec=Use javax.imageio @since 1.4" or
   r = "sun.misc.BASE64Encoder=Use java.util.Base64 @since 1.8" or
   r = "sun.misc.BASE64Decoder=Use java.util.Base64 @since 1.8" or
-  r = "sun.misc.Cleaner=Use java.lang.ref.PhantomReference @since 1.2 or java.lang.ref.Cleaner @since 9" or
+  r =
+    "sun.misc.Cleaner=Use java.lang.ref.PhantomReference @since 1.2 or java.lang.ref.Cleaner @since 9" or
   r = "sun.misc.Service=Use java.util.ServiceLoader @since 1.6" or
   r = "sun.misc=Removed. See http://openjdk.java.net/jeps/260" or
   r = "sun.reflect=Removed. See http://openjdk.java.net/jeps/260"
 
@@ -30,7 +30,8 @@ where
     // Non-volatile double-checked locking is ok when the object is immutable and
     // there is only a single non-synchronized field read.
     immutableFieldType(f.getType()) and
-    1 = strictcount(FieldAccess fa |
+    1 =
+      strictcount(FieldAccess fa |
         fa.getField() = f and
         fa.getEnclosingCallable() = sync.getEnclosingCallable() and
         not fa.getEnclosingStmt().getEnclosingStmt*() = sync.getBlock()
 
@@ -53,9 +53,8 @@ class MyField extends Field {
   }
 
   int getNumSynchedAccesses() {
-    result = count(Expr synched |
-        synched = this.getAnAccess() and withinLocalSynchronization(synched)
-      )
+    result =
+      count(Expr synched | synched = this.getAnAccess() and withinLocalSynchronization(synched))
   }
 
   int getNumAccesses() { result = count(this.getAnAccess()) }
 
@@ -51,9 +51,8 @@ class LockObjectField extends Field {
 class ValidSynchStmt extends Stmt {
   ValidSynchStmt() {
     // It's OK to lock the enclosing class.
-    this.(SynchronizedStmt).getExpr().(TypeLiteral).getTypeName().getType() = this
-          .getEnclosingCallable()
-          .getDeclaringType()
+    this.(SynchronizedStmt).getExpr().(TypeLiteral).getTypeName().getType() =
+      this.getEnclosingCallable().getDeclaringType()
     or
     // It's OK to lock on a "lock object field".
     this.(SynchronizedStmt).getExpr().(FieldRead).getField() instanceof LockObjectField
 
@@ -18,7 +18,8 @@ import semmle.code.java.StringFormat
 int getNumberOfReferencedIndices(FormattingCall fmtcall) {
   exists(int maxref, int skippedrefs |
     maxref = max(FormatString fmt | fmtcall.getAFormatString() = fmt | fmt.getMaxFmtSpecIndex()) and
-    skippedrefs = count(int i |
+    skippedrefs =
+      count(int i |
         forex(FormatString fmt | fmtcall.getAFormatString() = fmt |
           i = fmt.getASkippedFmtSpecIndex()
         )
 
@@ -67,8 +67,9 @@ where
   (
     // No unchecked operations, so the cast would crash straight away.
     not uncheckedCastType(target) and
-    message = "Impossible downcast: the cast from " + source.getName() + "[] to " + target.getName()
-        + "[] will always fail with a ClassCastException."
+    message =
+      "Impossible downcast: the cast from " + source.getName() + "[] to " + target.getName() +
+        "[] will always fail with a ClassCastException."
     or
     // For unchecked operations, the crash would not occur at the cast site,
     // but only if/when the value is assigned to a variable of different array type.
@@ -80,7 +81,8 @@ where
     returnedFrom(ce, ce.getEnclosingCallable()) and
     ce.getEnclosingCallable().getReturnType().(Array).getElementType() = target and
     not ce.getEnclosingCallable().isPrivate() and
-    message = "Impossible downcast: this is returned by " + ce.getEnclosingCallable().getName() +
+    message =
+      "Impossible downcast: this is returned by " + ce.getEnclosingCallable().getName() +
         " as a value of type " + target.getName() + "[], but the array has type " + source.getName()
         + "[]. Callers of " + ce.getEnclosingCallable().getName() +
         " may fail with a ClassCastException."
@@ -91,8 +93,9 @@ where
       returnedVariableFrom(v, m) and
       m.getReturnType().(Array).getElementType() = target and
       not m.isPrivate() and
-      message = "Impossible downcast: this is assigned to " + v.getName() + " which is returned by "
-          + m + " as a value of type " + target.getName() + "[], but the array has type " +
+      message =
+        "Impossible downcast: this is assigned to " + v.getName() + " which is returned by " + m +
+          " as a value of type " + target.getName() + "[], but the array has type " +
           source.getName() + "[]. Callers of " + m.getName() +
           " may fail with a ClassCastException."
     )
 
@@ -88,7 +88,8 @@ predicate methodStats(Method m, int used, int total, int percentage) {
 }
 
 int chainedUses(Method m) {
-  result = count(MethodAccess ma, MethodAccess qual |
+  result =
+    count(MethodAccess ma, MethodAccess qual |
       ma.getMethod() = m and
       ma.getQualifier() = qual and
       qual.getMethod() = m
 
@@ -13,7 +13,6 @@ import java
 
 from CompilationUnit u, int num
 where
-  num = strictcount(string s |
-      exists(Documentable d | d.getAuthor() = s and d.getCompilationUnit() = u)
-    )
+  num =
+    strictcount(string s | exists(Documentable d | d.getAuthor() = s and d.getCompilationUnit() = u))
 select u, num
Original file line number	Diff line number	Diff line change
`@@ -38,7 +38,8 @@ class SuppressionAnnotation extends SuppressWarningsAnnotation {`
`38`	`38`	`}`
`39`	`39`
`40`	`40`	`private Annotation firstAnnotation() {`
`41`		`- result = min(this.getASiblingAnnotation() as m`
	`41`	`+ result =`
	`42`	`+ min(this.getASiblingAnnotation() as m`
`42`	`43`	`order by`
`43`	`44`	`m.getLocation().getStartLine(), m.getLocation().getStartColumn()`
`44`	`45`	`)`
Original file line number	Diff line number	Diff line change
`@@ -53,9 +53,8 @@ class MyField extends Field {`
`53`	`53`	`}`
`54`	`54`
`55`	`55`	`int getNumSynchedAccesses() {`
`56`		`- result = count(Expr synched \|`
`57`		`- synched = this.getAnAccess() and withinLocalSynchronization(synched)`
`58`		`- )`
	`56`	`+ result =`
	`57`	`+ count(Expr synched \| synched = this.getAnAccess() and withinLocalSynchronization(synched))`
`59`	`58`	`}`
`60`	`59`
`61`	`60`	`int getNumAccesses() { result = count(this.getAnAccess()) }`
Original file line number	Diff line number	Diff line change
`@@ -88,7 +88,8 @@ predicate methodStats(Method m, int used, int total, int percentage) {`
`88`	`88`	`}`
`89`	`89`
`90`	`90`	`int chainedUses(Method m) {`
`91`		`- result = count(MethodAccess ma, MethodAccess qual \|`
	`91`	`+ result =`
	`92`	`+ count(MethodAccess ma, MethodAccess qual \|`
`92`	`93`	`ma.getMethod() = m and`
`93`	`94`	`ma.getQualifier() = qual and`
`94`	`95`	`qual.getMethod() = m`