To load dependencies withing a gem/app, require_relative should always be preferred to require

We should check for any instance of (send nil? require `{:__dir__ :__FILE__}) and raise an offense.

I can't event think of a single instance where require should be called with an interpolated string tbh

Affects PMD Version: 6.30.0-SNAPSHOT

Rule: JUnitAssertionsShouldIncludeMessage

Description:

From pmd/pmd#2871 (comment)

Code Sample demonstrating the issue:

https://chunk.io/pmd/fc7db65b2c6a46eca4c9a0c3012482e2/diff/spring-framewo

Elm has the option to output errors as JSON (via a flag), and something like that is handy for writing tooling around it. I'm trying to integrate pytype into ALE and this would make it a lot easier.

That is: org.springframework.beans.factory.annotation.Autowired

Writing this mostly as a reminder to self. But if anyone else wants to do it, it should be a trivial change.

Describe the bug
In the docs found here:
https://bandit.readthedocs.io/en/latest/plugins/index.html#complete-test-plugin-listing

B109 and B111 show a description instead of a plugin name. This looks inconsistent since all the other plugin names are listed. I believe this is a result of a recent change to remove these deprecated plugins.

To Reproduce

1. Navigate to https://bandit

$ semgrep -c p/python ../server/setup.py
semgrep: error: unrecognized arguments: -c

I get this almost every week 😅 Since nothing else uses -c we should be good to use it here, right? I assume it was originally -f cause it was used to pass a config file, but now most people pass shorthand or URLs instead of local files.

It's also probably a good idea to keep -f as a hidden al

• Larastan Version: 0.6.1
• --level used: 5

Description

In a project that follows DDD, there are usually multiple directories where migration files exist:

database/migrations/*
domains/<domain>/Database/Migrations/*

In these cases it is not possible to configure larastan to scan all the migrations, since the databaseMigrationsPath only accepts a string.

Is there any way to

How can i run findsecbugs rules in spotbugs?

Am i right?

./spotbugs -textui -pluginList /Users/xxx/Downloads/findsecbugs-plugin-1.11.0-SNAPSHOT.jar -home . -low -output ./aaa -progress -train ./bbb -sourcepath ~/Downloads/codez/test/My-Blog/ -debug -noClassOk -progress -auxclasspath ~/Downloads/codez/test/My-Blog/target/ -choosePlugins edu.umd.cs.findbugs.plugins.core

I wrote some of the code to do this in a branch https://github.com/python-security/pyt/compare/class_based_views, but since I'm working on other things and this feature seems cool and important I'm making this issue 👍

Let me know if you would like any help in implementing.

Rubberduck version information
Version 2.5.1.5557
OS: Microsoft Windows NT 10.0.14393.0, x64
Host Product: Microsoft Outlook x86
Host Version: 16.0.4266.1001
Host Executable: OUTLOOK.EXE

Description
The event procedures _Itemadd on some collections are marked as "Procedure not used"

To Reproduce
declare

Private WithEvents colCeka As Items
Private WithEvents colDraft