PMD 7.2.0-SNAPSHOT

Release date: 31-May-2024

About
User Documentation
Rule Reference
- Apex Rules
  - Index
  - Best Practices
  - Code Style
  - Design
  - Documentation
  - Error Prone
  - Performance
  - Security
- HTML Rules
  - Index
  - Best Practices
- Java Rules
- Java Server Pages Rules
  - Index
  - Best Practices
  - Code Style
  - Design
  - Error Prone
  - Security
- JavaScript Rules
- Kotlin Rules
- Maven POM Rules
  - Index
  - Error Prone
- Modelica Rules
  - Index
  - Best Practices
- PLSQL Rules
- Salesforce Visualforce Rules
  - Index
  - Security
- Scala Rules
  - Index
- Swift Rules
- Velocity Template Language (VTL) Rules
- WSDL Rules
  - Index
- XML Rules
- XSL Rules
Language-Specific Documentation
- Overview
- Language configuration
- Apex
- C/C++
- C#
- Coco
- Dart
- Fortran
- Gherkin
- Go
- HTML
- Java
- JavaScript / TypeScript
- JSP
- Julia
- Kotlin
- Lua
- Matlab
- Modelica
- Objective-C
- Perl
- PHP
- PLSQL
- Python
- Ruby
- Scala
- Swift
- T-SQL
- Visualforce
- Velocity Template Language (VTL)
- XML and XML dialects
Developer Documentation
Project documentation

» Salesforce Visualforce Rules

Salesforce Visualforce Rules

Index of all built-in rules available for Salesforce Visualforce

Table of Contents

Security

Rules that flag potential security flaws.

VfCsrf: Avoid calling VF action upon page load as the action becomes vulnerable to CSRF.
VfHtmlStyleTagXss: Checks for the correct encoding in ‘<style/>’ tags in Visualforce pages. The rule is based on Sal…
VfUnescapeEl: Avoid unescaped user controlled content in EL as it results in XSS.

Tags: