We are having some issues with code smells having many false positives while analyzing sql scripts with dynamic sql statements that span multiple lines.
SET $SQL = ‘SELECT ’ + $ColumnName + ’ FROM TABLE’
– This works fine
SET $SQL = ’
SELECT ’ + $ColumnName + ’
– The analysis seems to ignore the ’ on the first line, then get confused in the following lines between ‘text’ and commands. As a result, it thinks ’ + $ColumnName + ’ is text and, if this variable is used multiple times in the dynamic sql statement, will raise a duplicate string literal issue. Is this a known issue?