| 1 |
Address field size is incorrect (too short or too long) |
Find base table columns that are meant for recording different types of addresses where the filed size does not take into account the possible maximum length. |
Problem detection |
INFORMATION_SCHEMA only |
2023-11-09 12:55 |
MIT License |
View |
| 2 |
Are the passwords hashed? |
Find base table columns that name refers to the possibility that these are used to register passwords. Return a value from each such column. Make sure that the password is not registered as open text. |
General |
INFORMATION_SCHEMA+system catalog base tables |
2020-11-10 12:14 |
MIT License |
View |
| 3 |
A state machine is implemented with the help of an enumeration type |
Find implementations of state machines that uses an enumeration type. |
Problem detection |
INFORMATION_SCHEMA+system catalog base tables |
2023-11-26 15:39 |
MIT License |
View |
| 4 |
A state machine is implemented with the help of a state classifier table |
Find implementations of state machines that use a state classifier table. |
General |
system catalog base tables only |
2023-11-26 15:39 |
MIT License |
View |
| 5 |
Base table column of comments/descriptions has an incorrect data type or maximum character length |
Find base table columns that name refers to the possibility that these are used to register comments/descriptions. Find the columns where the data type is not VARCHAR and TEXT or in case of VARCHAR the maximum number of permitted characters is smaller than 1000. In case of determining field sizes choose a size that permits registration of all possible legal values. |
Problem detection |
INFORMATION_SCHEMA only |
2022-05-01 13:39 |
MIT License |
View |
| 6 |
Base table column of measurements does not have a correct data type |
Find base table columns that name refers to the possibility that these are used to register measurement results. Find the columns that do not have an integer or numeric type. |
Problem detection |
INFORMATION_SCHEMA only |
2021-02-25 17:29 |
MIT License |
View |
| 7 |
Base table column of national identification numbers does not have a correct data type |
Find non-textual base table columns that name refers to the possibility that these are used to register national identification numbers (personal codes). The codes can contain additional symbols to numbers. |
Problem detection |
INFORMATION_SCHEMA only |
2021-02-25 17:29 |
MIT License |
View |
| 8 |
Base table column of national identification numbers has a too short field size |
Find base table columns with VARCHAR type that name refers to the possibility that these are used to register national identification numbers (personal codes). Find the columns where the field size is shorter than 20. |
Problem detection |
INFORMATION_SCHEMA only |
2021-02-25 17:29 |
MIT License |
View |
| 9 |
Base table column of personal names has questionable properties |
Find base table columns that name refers to the possibility that these are used to register personal names. Although there are very long personal names the general approach is to register a shortened version of these. Thus, a large field size is not a good idea because it would cause usability and security problems. There are persons who only have one name (mononymous persons). Database design must take it into account. |
Problem detection |
INFORMATION_SCHEMA only |
2022-10-29 20:35 |
MIT License |
View |
| 10 |
Base table column of quantities does not have a numeric type (based on column names) |
Find base table columns that name refers to the possibility that these are used to register quantities of things. Find the columns that do not have a numeric type. |
Problem detection |
INFORMATION_SCHEMA only |
2021-02-25 17:29 |
MIT License |
View |
| 11 |
Base table column of sums of money does not have a numeric type (based on column names) |
Find base table columns that name refers to the possibility that these are used to register prices/sums of money. Find columns that do not have a numeric type. |
Problem detection |
INFORMATION_SCHEMA only |
2021-03-21 11:45 |
MIT License |
View |
| 12 |
Base table column of sums of money has too big or small scale |
Find base table columns that name refers to the possibility that these are used to register data about prices/sums of money. Find the columns that have decimal type but have a too big (bigger than six) or a too small scale (zero). The selection of field size must be precise and should take into account the possible data in the column. |
Problem detection |
INFORMATION_SCHEMA only |
2021-03-21 11:45 |
MIT License |
View |
| 13 |
Base table column of surrogate key values does not have an integer data type (based on column names) |
Find base table columns that belong to a primary key, unique, or foreign key constraint and that name refers to the possibility that these are used to hold surrogate key values. Find the columns where the data type of the column is not an integer type or uuid. |
Problem detection |
INFORMATION_SCHEMA+system catalog base tables |
2023-11-13 12:10 |
MIT License |
View |
| 14 |
Base table columns for recording geographic coordinates (based on column names) |
Find base table columns that are according to the name meant for recording coordinates. |
General |
INFORMATION_SCHEMA only |
2021-10-08 11:59 |
MIT License |
View |
| 15 |
Base table columns for recording geographic coordinates that do not have a suitable type (based on column names) |
Find base table columns that are according to the name meant for recording geographic coordinate but do not have a suitable type (numeric or point). |
Problem detection |
INFORMATION_SCHEMA only |
2021-10-08 12:01 |
MIT License |
View |
| 16 |
Base table columns for storing username, password, and salt |
Find base table columns that name refers to the possibility that these are used to register usernames, passwords, and salt. Password should not be open text. It should be a hash value that has been hashed by using salt. |
General |
INFORMATION_SCHEMA only |
2020-11-06 14:51 |
MIT License |
View |
| 17 |
Base table columns permitting e-mail addresses without @ sign |
Find non-foreign key base table columns that name refers to the possibility that these are used to register e-mail addresses. Find the columns that do not have any simple CHECK constraint that contains @ sign. A simple check constraint covers a single column. In this case registration of e-mail addresses without @ is most probably not prohibited. |
Problem detection |
INFORMATION_SCHEMA+system catalog base tables |
2021-02-25 17:29 |
MIT License |
View |
| 18 |
Base table columns permitting negative prices/quantity |
Find non-foreign key base table columns that name refers to the possibility that these are used to register prices/quantities. Find the columns that do not have any simple CHECK constraints, i.e., a constraint that covers only this column. In this case registration of negative price/quantity is most probably not prohibited. |
Problem detection |
INFORMATION_SCHEMA+system catalog base tables |
2023-10-06 14:14 |
MIT License |
View |
| 19 |
Base table columns permitting telephone numbers without digits |
Find non-foreign key base table columns that name refers to the possibility that these are used to register phone numbers. Find the columns that do not have any simple CHECK constraint that references to the character class of digits. A simple check constraint covers a single column. In this case registration of e-mail addresses without digits is most probably not prohibited. |
Problem detection |
INFORMATION_SCHEMA+system catalog base tables |
2023-11-09 12:52 |
MIT License |
View |
| 20 |
Base table columns permitting URLs without a protocol |
Find non-foreign key base table columns that name refers to the possibility that these are used to register URLs. Find the columns that do not have any simple CHECK constraint that references to a protocol. A simple check constraint covers a single column. In this case registration of URLs without a protocol is most probably not prohibited. |
Problem detection |
INFORMATION_SCHEMA+system catalog base tables |
2023-11-01 13:13 |
MIT License |
View |