Bug S2095 reported when returning an AutoCloseable

gjd6640 · January 26, 2022, 3:43pm

To add to the legit concern of the original poster here’s another similar situation where this rule produces false-positives:

		jdbcTemplate.update(new PreparedStatementCreator() {
			@Override
			public PreparedStatement createPreparedStatement(Connection con) throws SQLException {
				PreparedStatement ps = con.prepareStatement(MessageConstant.INSERT_CUSTOM_RNSD_SCREEN_QUERY,
						new String[] { "SCREEN_ID" });
				ps.setString(1, request.getScreenName());
				ps.setString(2, request.getScreenType());
				ps.setString(3, request.getForeignUserGroup());
				ps.setTimestamp(4, new Timestamp(System.currentTimeMillis()));
				ps.setString(5, request.getCreatedBy());
				return ps;
			}
		}, keyHolder);

The “jdbcTemplate” above is a Spring JdbcTemplate. I’ve verified that JdbcTemplate’s “update” method does close the prepared statement in a finally block.

Also note that this other similar bug report exists for java:S2095.

Topic		Replies	Views
[java:S2095] Initializing Closeable before return Report False-positive / False-negative... java	0	479	March 5, 2021
[Java] S2093: False-Negatives: Resource not managed with try-with-resource SonarQube Server / Community Build java	3	1906	October 30, 2018
PreparedStatement automatically close ResultSet (use try-with-resources or close this "ResultSet" in a "finally" clause) Report False-positive / False-negative... java	2	4704	May 25, 2020
squid:RedundantThrowsDeclarationCheck: False-Positive when using try-with-resources Report False-positive / False-negative... java	1	756	June 11, 2019
java:S2326 false positive with sealed interface type parameters Report False-positive / False-negative... java	1	391	January 12, 2024

Bug S2095 reported when returning an AutoCloseable

Related topics