3 new Scala code patterns

By Codacy

Latest

Monorepo with Static Code Analysis

Developer Helio Rocha -
0
Monorepo is short for monorepository. With it, code for many projects is stored in the same repository. I like to use...
Read more

Automated Code Review Benefits: Webinar

Education Emily Hunt -
0
Our sales team member Matt Kohler recently gave a presentation on code review benefits with his "Benefits of Automated Code Review" webinar....
Read more

Codacy at DevOps Jenkins World

Events Emily Hunt -
0
Gain key insight on the state of DevOps and come together with the global Jenkins community... The Codacy team...
Read more

Codacy announces raising $7.7M in funding

Codacy News Jaime -
0
Today we’re excited to make a funding announcement.  We have raised $7.7M in funding.  Join Capital along with existing investors EQT Ventures, Armilar Venture...
Read more

DNS problems scaling with Kubernetes

Enterprise Bruno Ferreira -
0
Here at Codacy, everyone has been working really hard in the last few months to move all of our services to Kubernetes. And it...
Read more

How to write legible QA tests

Best Practices Fernando Chovich -
0
Our quality-minded software engineer shares best practices for writing legible QA tests.
Read more

Read about 3 new Scala code patterns we just added to our platform in our mission Codacy to support multiple coding languages effectively.

1. Avoid using DateTime.now without a timezone (Error Prone)

Using DateTime.now without specifying a timezone can lead to error prone code with regard to dealing with other timezones than those initially considered, as well as with daylight saving time.

For instance, the following example:

val now = DateTime.now

could easily be written as:

val now = DateTime.now(DateTimeZone.UTC)

2. Prefer using .nonEmpty (Code Style)

The collections libraries usually provide a method for determining if the iterable has, at least, one element, with:

val hasElements = SomeSequence.nonEmpty

This is a bit cleaner than verifying explicitly the length or the size:

val hasElements = SomeSequence.length > 0
 val hasElementsUsingSize = SomeSequence.size > 0

3. Prevent XML parsing attacks (Security)

XML External Entity (XXE) attacks can occur when an XML parser supports XML entities while processing XML received from an untrusted source.

Vulnerable Code:

SAXParser parser = SAXParserFactory.newInstance().newSAXParser();
 parser.parse(inputStream, customHandler);

Solution using “Secure processing” mode:

SAXParserFactory spf = SAXParserFactory.newInstance();
 spf.setFeature(XMLConstants.FEATURE_SECURE_PROCESSING, true);
 SAXParser parser = spf.newSAXParser();
 parser.parse(inputStream, customHandler);

Solution disabling DTD:

SAXParserFactory spf = SAXParserFactory.newInstance();
 spf.setFeature("http://apache.org/xml/features/disallow-doctype-decl", true);
 SAXParser parser = spf.newSAXParser();
 parser.parse(inputStream, customHandler);

Enabling patterns with Codacy

When new patterns are added, they’re disabled for already existing projects.

To enable them for a project first head to the project and hit “Code Patterns” on the top right corner. You’ll be able to filter the patterns by language or category:

selecting language for patterns

To enable the new patterns simply look for the “New” tag on them and hit their respective checkbox:

enabling patterns

If you’re interested, there’s also a “Fork pattern” button on the bottom right corner of the details of every Scala pattern.

fork pattern

Hitting this button will take you to our Beta Pattern Creator with the current pattern loaded; you can then edit it to create your own:

pattern creator - beta

Have fun, code well!

Edit: We just published an ebook: “The Ultimate Guide to Code Review” based on a survey of 680+ developers. Enjoy!

About Codacy

Codacy is used by thousands of developers to analyze billions of lines of code every day!

Getting started is easy – and free! Just use your  GitHub, Bitbucket or Google account to sign up.

GET STARTED

Related articles

Codacy News

Codacy announces raising $7.7M in funding

Jaime -
0
Today we’re excited to make a funding announcement.  We have raised $7.7M in funding.  Join Capital along with existing investors EQT Ventures, Armilar Venture...
Read more
Codacy News

Taking transparency to the next level at Codacy: our open salary calculator

Jessica Silva -
0
One of the things that defines Codacy - and actually the reason why I joined the company - is the fact that we are always focused on being fair and doing the right thing for the team. Salaries and salary reviews were the natural next step to push our transparency game. This year we decided to create our salary calculator and now, we are making it public!
Read more
Codacy News

Showcasing Codacy at PyCon 2019

Helio Rocha -
0
PyCon is an annual show in the U.S. that brings the Python community together for several days of talks, workshops, job fairs, and engagement...
Read more
Codacy News

ESLint compromised: security

caxaria -
0
On July 12th 2018, a issue was created in the eslint-scope repository. After some analysis, it is clear that this is a bigger issue than what was initially considered.
Read more
Codacy News

What does GDPR mean for Codacy?

Tiago Brígido -
0
Know more about GDPR compliance and what Codacy is doing about it.
Read more
Codacy News

Improve code quality: from people to organizations

Jaime -
1
We have exciting news to share with you. Part of being customer driven is pursuing a deeper understanding of the problems people solve with our product...
Read more

Automatically identify issues through static code review analysis. Get notified on security issues, code coverage, code duplication, and code complexity in every commit and pull request, directly from your current workflow.

Follow Us