Skip to content

WFO1000 Analyzer: False positives on properties of interfaces derived from IComponent #13208

New issue
New issue
Closed
Bug
Closed
WFO1000 Analyzer: False positives on properties of interfaces derived from IComponent#13208
Bug
Assignees
KlausLoeffelmann
Labels
area-Analyzers/CodeFixesA Roslyn Analyzer is either needed for the context, needs to be scope extended or fixed.
Milestone
10 Preview5
@KlausLoeffelmann

Description

@KlausLoeffelmann
KlausLoeffelmann
opened on Mar 30, 2025

The WFO1000 security analyzer flags public and protected properties of interfaces derived from IComponent which are not System.Component.IComponent, which are not used for serialization. This results in false positives, for example in BlazorHybrid scenarios in WinForms.

Example:

public interface IComponent
{
    void NothingTodoWithComponentModelMethod();
}

public interface ICustomInterface : IComponent 
{
    Rectangle Bounds { get; set; }
    Size Size { get; protected set; }
}

Replaces a part of the Bug of #12476.

Metadata

Metadata

Assignees

Labels

area-Analyzers/CodeFixesA Roslyn Analyzer is either needed for the context, needs to be scope extended or fixed.

Type

Bug

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions