[apex] ApexCrudViolation: Recommend USER MODE, discourage WITH SECURITY ENFORCED

[pozil]

Rule: ApexCRUDViolation

Let's consider the following improvements (quoting @rsoesemann here):

• Change CRUD/FLS rules in Dml and SQOL to recommend USER MODE over all the suboptimal old solutions
• Discourage the use of WITH_SECURITY ENFORCED as Daniel Ballinger and Chris Peterson said on TDX23
• Check what else is missing in PMD regarding Security (e.g.with inherited sharing is also not parsed correctly)

[rsoesemann]

@pozil I believe the scope of this ticket needs to be enhanced to cover all changes that come with User Mode for PMD:

• Change CRUD/FLS rules in Dml and SQOL to recommend USER MODE over all the suboptimal old solutions
• Discourage the use of WITH_SECURITY ENFORCED as Daniel Ballinger and Chris Peterson said on TDX23
• Check what else is missing in PMD regarding Security (e.g.with inherited sharing is also not parsed correctly)

[pozil]

Heads up: the jorge Apex parser has finally been updated to support the new syntax.

[avesolovksyy]

It would be really great to have at least new PMD version released soon with all variations of user mode usage supported: SOQL/DML statements, Database methods etc. Maybe it's better to move other rules improvements (like deprecation of WITH SECURITY_ENFORCED) into separate issue to close this one and release new version faster. Would really appreciate it.

[adangel]

For updating jorje, there is already #3973. I'll update the description of this issue to improve the rule ApexCrudViolations only.