Skip to content

WFO1000 Analyzer: False positives on private properties without InitializeComponent method #13205

New issue
New issue
Closed
Bug
Closed
WFO1000 Analyzer: False positives on private properties without InitializeComponent method#13205
Bug
Assignees
KlausLoeffelmann
Labels
area-Analyzers/CodeFixesA Roslyn Analyzer is either needed for the context, needs to be scope extended or fixed.
Milestone
10 Preview5
@KlausLoeffelmann

Description

@KlausLoeffelmann
KlausLoeffelmann
opened on Mar 30, 2025

The WFO1000 security analyzer flags private properties of components, which are not used for serialization. This results in false positives.

Example:

public class CustomControl1 : Control {
    public string? Value1 { get; private set; }
    public string? Value2 { get; internal set; }
}

Impact:
This affects custom controls and generates unnecessary warnings, hindering productivity.

Replaces a part of the Bug of #12476.

Metadata

Metadata

Assignees

Labels

area-Analyzers/CodeFixesA Roslyn Analyzer is either needed for the context, needs to be scope extended or fixed.

Type

Bug

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions