Critical
Code Rules in Critical Severity
| Category | Severity | Name | Description |
|---|---|---|---|
Maintainability
|
Critical
|
%TYPE and %ROWTYPE should not be used in package specification
|
%TYPE and %ROWTYPE should not be used in package specification |
|
Maintainability
|
Critical
|
A primary key should be specified during table creation
|
A primary key should be specified during table creation |
|
Maintainability
|
Critical
|
Block labels should appear on the same lines as END
|
Block labels should appear on the same lines as END |
|
Maintainability
|
Critical
|
Block start and end labels should match
|
Block start and end labels should match |
|
Maintainability
|
Critical
|
Blocks containing EXECUTE IMMEDIATE should trap all exceptions
|
Blocks containing EXECUTE IMMEDIATE should trap all exceptions |
|
Maintainability
|
Critical
|
CASE expressions should end with ELSE clauses
|
CASE expressions should end with ELSE clauses |
|
Bug
|
Critical
|
Collections should not be iterated in FOR loops
|
Collections should not be iterated in FOR loops |
|
Bug
|
Critical
|
COMMIT and ROLLBACK should not be called from non-autonomous transaction triggers
|
COMMIT and ROLLBACK should not be called from non-autonomous transaction triggers |
|
Bug
|
Critical
|
COMMIT should not be used inside a loop
|
COMMIT should not be used inside a loop |
|
Bug
|
Critical
|
Constant declarations should contain initialization assignments
|
Constant declarations should contain initialization assignments |
|
Bug
|
Critical
|
Constraints should not be applied to types that cannot be constrained
|
Constraints should not be applied to types that cannot be constrained |
|
Maintainability
|
Critical
|
CREATE OR REPLACE should be used instead of CREATE
|
CREATE OR REPLACE should be used instead of CREATE |
|
Maintainability
|
Critical
|
DBMS_OUTPUT.PUT_LINE should not be used
|
DBMS_OUTPUT.PUT_LINE should not be used |
Vulnerability
|
Critical
|
DES or 3DES Used
|
Neither DES (Data Encryption Standard) nor DESede (3DES) should be used |
SecurityWarning
|
Critical
|
Dynamically executing code is security-sensitive
|
Dynamically executing code is security-sensitive |
|
Bug
|
Critical
|
END LOOP should be followed by a semicolon
|
END LOOP should be followed by a semicolon |
|
Maintainability
|
Critical
|
EXCEPTION_INIT -20,NNN calls should be centralized
|
EXCEPTION_INIT -20,NNN calls should be centralized |
|
Vulnerability
|
Critical
|
Exceptions should not be ignored
|
Exceptions should not be ignored |
|
Bug
|
Critical
|
FETCH ... BULK COLLECT INTO should not be used without a LIMIT clause
|
FETCH ... BULK COLLECT INTO should not be used without a LIMIT clause |
|
Bug
|
Critical
|
FORALL statements should use the SAVE EXCEPTIONS clause
|
FORALL statements should use the SAVE EXCEPTIONS clause |
|
Bug
|
Critical
|
FORMS_DDL('COMMIT') and FORMS_DDL('ROLLBACK') should not be used
|
FORMS_DDL('COMMIT') and FORMS_DDL('ROLLBACK') should not be used |
|
Bug
|
Critical
|
Functions should end with RETURN statements
|
Functions should end with RETURN statements |
|
Maintainability
|
Critical
|
Global public variables should not be defined
|
Global public variables should not be defined |
|
Maintainability
|
Critical
|
GOTO should not be used to jump backwards
|
GOTO should not be used to jump backwards |
|
Maintainability
|
Critical
|
IF statements should not be nested too deeply
|
IF statements should not be nested too deeply |
|
Maintainability
|
Critical
|
IF...ELSEIF constructs should end with ELSE clauses
|
IF...ELSEIF constructs should end with ELSE clauses |
|
Bug
|
Critical
|
Improper constraint forms should not be used
|
Improper constraint forms should not be used |
|
Bug
|
Critical
|
Individual WHERE clause conditions should not be unconditionally true or false
|
Individual WHERE clause conditions should not be unconditionally true or false |
|
Bug
|
Critical
|
Insert statement values not including Non-Null Columns
|
Insert statements should include values for non-null columns |
|
Maintainability
|
Critical
|
INSERT statements should explicitly list the columns to be set
|
INSERT statements should explicitly list the columns to be set |
|
Maintainability
|
Critical
|
LIKE clauses should not be used without wildcards
|
LIKE clauses should not be used without wildcards |
|
Maintainability
|
Critical
|
Lines should not end with trailing whitespaces
|
Lines should not end with trailing whitespaces |
|
Maintainability
|
Critical
|
LOOP ... END LOOP; constructs should be avoided
|
LOOP ... END LOOP; constructs should be avoided |
|
Maintainability
|
Critical
|
Loop start and end labels should match
|
Loop start and end labels should match |
|
Bug
|
Critical
|
NCHAR and NVARCHAR2 size in bytes
|
NCHAR and NVARCHAR2 size should not be specified in bytes |
|
Maintainability
|
Critical
|
Newline and control characters should not be used in string literals
|
Newline and control characters should not be used in string literals |
|
Bug
|
Critical
|
Nullable subqueries should not be used in NOT IN conditions
|
Nullable subqueries should not be used in NOT IN conditions |
|
Bug
|
Critical
|
Overridden Predefined Exceptions
|
Predefined exceptions should not be overridden |
|
Bug
|
Critical
|
Pipelined functions should have at least one PIPE ROW statement and not return an expression
|
Pipelined functions should have at least one PIPE ROW statement and not return an expression (PLS-00633) |
|
Bug
|
Critical
|
Positional and named arguments should not be mixed in invocations
|
Positional and named arguments should not be mixed in invocations |
|
Maintainability
|
Critical
|
Quoted identifiers should not be used
|
Quoted identifiers should not be used |
|
Bug
|
Critical
|
RAISE_APPLICATION_ERROR should only be used with error codes from -20,000 to - 20,999
|
RAISE_APPLICATION_ERROR should only be used with error codes from -20,000 to - 20,999 |
|
Bug
|
Critical
|
Scale should not be specified for float types
|
Scale should not be specified for float types |
|
Maintainability
|
Critical
|
SELECT statements used as argument of EXISTS statements should be selective
|
SELECT statements used as argument of EXISTS statements should be selective |
|
Vulnerability
|
Critical
|
Sensitive SYS owned functions should not be used
|
Sensitive SYS owned functions should not be used |
|
Vulnerability
|
Critical
|
SHA-1 and Message-Digest hash algorithms should not be used in secure contexts
|
SHA-1 and Message-Digest hash algorithms should not be used in secure contexts |
|
Maintainability
|
Critical
|
SQL JOIN conditions should involve all joined tables
|
SQL JOIN conditions should involve all joined tables |
|
Maintainability
|
Critical
|
String literals should not be duplicated
|
String literals should not be duplicated |
|
Bug
|
Critical
|
String variables with no Size specification
|
Size should be specified for string variables |
|
Bug
|
Critical
|
SYNCHRONIZE should not be used
|
SYNCHRONIZE should not be used |
|
Bug
|
Critical
|
Syntax Errors
|
Syntax Errors |
|
Bug
|
Critical
|
The number of variables in a FETCH statement should match the number of columns in the cursor
|
The number of variables in a FETCH statement should match the number of columns in the cursor |
|
Bug
|
Critical
|
Uninitialized NOT NULL Variables
|
NOT NULL variables should be initialized |
|
Bug
|
Critical
|
Variables Declared multiple times in nested scope
|
Variables should be declared only once in a scope |
|
Maintainability
|
Critical
|
Weak REF CURSOR types should not be used
|
Weak REF CURSOR types should not be used |
|
Maintainability
|
Critical
|
WHEN OTHERS clauses should be used for exception handling
|
WHEN OTHERS clauses should be used for exception handling |
|
Maintainability
|
Critical
|
WHEN OTHERS should not be the only exception handler
|
WHEN OTHERS should not be the only exception handler |
|
Bug
|
Critical
|
WHERE Clause
|
DELETE and UPDATE statements should contain WHERE clause |