View by Classes

Findings - Overview

info Nonconstant string passed to execute method on an SQL statement (Findbugs)

Method org.jcoderz.testdata.Importer.executeQueries(Properties, Collection, boolean) passes a nonconstant String to an execute method on an SQL statement

Further info on the wiki.

The method invokes the execute method on an SQL statement with a String that seems to be dynamically generated. Consider using a prepared statement instead. It is more efficient and less vulnerable to SQL injection attacks.

1org.jcoderz.testdata.Importer
 [244]