corretto / hotpatch-for-apache-log4j2
Source Code Overview

Analysis scope, overview of main, test, generated, deployment, build, and other code.

Source Code Analysis Scope
Files includes and excluded from analyses
txt
properties
policy
  • 13 extensions are included in analyses: java, md, gradle, txt, yml, html, gitignore, bat, sh, xml, json, properties, policy
  • 7 criteria are used to exclude files from analysis:
    • exclude files with path like ".*/[.][a-zA-Z0-9_]+.*" (Hidden files and folders) (3 files).
    • exclude files with path like ".*/gradle/wrapper/.*" (Gradle) (1 file).
    • exclude files with path like ".*/git[-]history[.]txt" (Git history) (1 file).
    • exclude files with path like ".*/git[-][a-zA-Z0-9_]+[.]txt" (Git data exports for sokrates analyses) (0 files).
    • exclude files with path like ".*/bin/.*" (Binaries for distribution) (1 file).
    • exclude files with path like ".*[.]txt" (Text files) (1 file).
    • exclude files with path like ".*/sokrates_conventions[.]json" (Sokrates scoping conventions) (1 file).
Overview of Analyzed Files
Basic stats on analyzed files
Intro
For analysis purposes we separate files in scope into several categories: main, test, generated, deployment and build, and other.

  • The main category contains all manually created source code files that are being used in the production.
  • Files in the main category are used as input for other analyses: logical decomposition, concerns, duplication, file size, unit size, and conditional complexity.
  • Test source code files are used only for testing of the product. These files are normally not deployed to production.
  • Build and deployment source code files are used to configure or support build and deployment process.
  • Generated source code files are automatically generated files that have not been manually changed after generation.
  • While a source code folder may contain a number of files, we are primarily interested in the source code files that are being written and maintained by developers.
  • Files containing binaries, documentation, or third-party libraries, for instance, are excluded from analysis. The exception are third-party libraries that have been changed by developers.

main10501 LOC (96%) 39 files
test42 LOC (<1%) 2 files
generated0 LOC (0%) 0 files
build and deployment101 LOC (<1%) 3 files
other293 LOC (2%) 6 files
Main Code
All manually created or maintained source code that defines logic of the product that is run in a production environment.
Explore:   circles  |  sunburst
  • The following criteria are used to filter files:
    • files with paths like ".*".
  • 39 files match defined criteria (10,501 lines of code, 100.0% vs. main code):
    • 37 *.java files (10,447 lines of code)
    • 2 *.html files (54 lines of code)
  • " *.java" is biggest, containing 99.49% of code.
  • " *.html" is smallest, containing 0.51% of code.


*.java10447 LOC (99%) 37 files
*.html54 LOC (<1%) 2 files
Test Code
Used only for testing of the product. Normally not deployed in a production environment.
policy
Explore:   circles  |  sunburst
  • The following criteria are used to filter files:
    • files with paths like ".*/[Tt]est/.*".
    • files with paths like ".*_tests[.].*".
    • files with any line of content like ".*/simpletest/.*".
  • 2 files match defined criteria (42 lines of code, 0.4% vs. main code):
    • 1 *.java files (39 lines of code)
    • 1 *.policy files (3 lines of code)
  • " *.java" is biggest, containing 92.86% of code.
  • " *.policy" is smallest, containing 7.14% of code.


*.java39 LOC (92%) 1 files
*.policy3 LOC (7%) 1 files
Build and Deployment Code
Source code used to configure or support build and deployment process.
Explore:   circles  |  sunburst
  • The following criteria are used to filter files:
    • files with paths like ".*/pom[.]xml".
    • files with paths like ".*[.]bat".
    • files with paths like ".*[.]git[a-z]+".
    • files with paths like ".*/[.]gitignore".
    • files with paths like ".*[.]gradle".
    • files with paths like ".*[.]sh".
  • 3 files match defined criteria (101 lines of code, 1.0% vs. main code):
    • 1 *.bat files (68 lines of code)
    • 2 *.gradle files (33 lines of code)
  • " *.bat" is biggest, containing 67.33% of code.
  • " *.gradle" is smallest, containing 32.67% of code.


*.bat68 LOC (67%) 1 files
*.gradle33 LOC (32%) 2 files
Other Code
Explore:   circles  |  sunburst
  • The following criteria are used to filter files:
    • files with paths like ".*[.]md".
    • files with paths like ".*/README[.][a-z0-9]+".
    • files with paths like ".*[.]properties".
    • files with paths like ".*[.]txt".
    • files with paths like ".*/[.]gitignore".
    • files with paths like ".*[.]json".
    • files with paths like ".*[.](xml|xsd|robot|sql|pgsql|dashboard|profile|ipynb|raml|avsc|al)".
  • 6 files match defined criteria (293 lines of code, 2.8% vs. main code):
    • 5 *.md files (189 lines of code)
    • 1 *.xml files (104 lines of code)
  • " *.md" is biggest, containing 64.51% of code.
  • " *.xml" is smallest, containing 35.49% of code.


*.md189 LOC (64%) 5 files
*.xml104 LOC (35%) 1 files
Analyzers
Info about analyzers used for source code examinations.
  • *.java files are analyzed with JavaAnalyzer:
    • All basic standard analyses supported (source code overview, duplication, file size, concerns, findings, metrics, controls)
    • Advanced code cleaning (empty lines and comments removed for LOC calculations, additional cleaning for duplication calculations)
    • Unit size analysis
    • Conditional complexity analysis
    • Advanced heuristic dependency analysis (based on package names)
  • *.html files are analyzed with HtmlAnalyzer:
    • All basic standard analyses supported (source code overview, duplication, file size, concerns, findings, metrics, controls)
    • Advanced code cleaning (empty lines and comments removed for LOC calculations, additional cleaning for duplication calculations)
    • Unit size analysis
    • Conditional complexity analysis
    • Advanced heuristic dependency analysis

2022-02-01 04:35