ForbiddenAPI is quite useful to prepare for future JDK versions, so we're using it more. With more complex rules it's starting to become more convenient to declare the banned signatures in a dedicated resource file. Since our tests occasionally do have grounds to need doing some dodgy things we'll keep a dedicated resource file for tests, so to be able to tune the rules separately. |