As I mentioned in a previous email we installed spotbugs 4.0.5 ( spotbugs 4.5.0)
And it should contain:
REFL_REFLECTION_INCREASES_ACCESSIBILITY_OF_CLASS to detect public methods instantiating a class they get in their parameter. This rule based on the SEI CERT rule SEC05-J. Do not use reflection to increase accessibility of classes, methods, or fields . (#SEC05-J) @baloghadamsoftware
I tried different combinations of sonar profiles:
Any ideas in which profile I can find this?