Hi all, I would like to propose the following new rule. Rule description & motivation Bean Validation can be triggered programmatically on an object, but it will also run automatically for fields of objects being validated and for any method parameters. However, in both cases, the corresponding …

Hello @bannmann , SonarJava 5.12 is available for download: https://docs.sonarqube.org/display/PLUG/SonarJava and contains your contribution. Regards

Hi all! I’m interested in implementing this rule inside SonarJava. Before I work on it and open a pull request, please state whether the rule as described above seems acceptable. Best regards, Jens

Hello Jens, As it is, I think the scope of the rule is too wide as it will apply to all public class and I believe there are lot of situations where you just need a bean and you don’t want all this validation layer. What about limiting the rule to Spring @Controller , @Service , and @Repository …

Hi Alexandre! In our projects, we could indeed enable that rule for the entire project as we only annotate our “data transfer object” classes which are not used in the lower layers. However, I agree that for other teams it may not be that simple. On the other hand, your suggestion will only work f…

Hello Jens, Let’s try with your suggestion to use “Restrict Scope of Coding Rules” and see even if I believe it’s kind of advance feature that not a lot of SQ users are aware of. I created the rule specification ( https://jira.sonarsource.com/browse/RSPEC-5128 ) and its linked implementation ticket …

Hi all, I created pull request #2446 for this. Best regards, Jens

Hi all, rule S5128 was merged today and will be included in SonarJava 5.12. Thank you, @Alexandre_Gigleux and @Michael for the spec work and the review! It’s been a pleasure :slight_smile: Looking forward to seeing the rule in SonarCloud. Best regards, Jens

Bean Validation should be enabled

Rules and Languages New rules / language support

Topic		Replies	Views
java:S5128 ("Bean Validation" (JSR 380) should be properly configured) rule should be configurable for fields and parameters separately Suggest new features java	2	973	April 13, 2021
False Positive on S2583 when a @NotNull field is allowed to be null Report False-positive / False-negative... java	6	5450	July 10, 2019
S2637 javax.validation.constraints.NotNull False Positives Report False-positive / False-negative... java	2	3921	July 12, 2019
Does the "Bean Validation" (JSR 380) need to be properly configured? IntelliJ Platform java , sonarqube	2	69	December 18, 2025
Rules to detect missing Java input validation SonarQube Server / Community Build java , owasp	4	2227	November 2, 2022

Bean Validation should be enabled

Related topics