Products
In-IDE
IDE extension that lets you fix coding issues before they exist!
Discover SonarQube for IDE
SaaS
Setup is effortless and analysis is automatic for most languages
Discover SonarQube Cloud
Self-Hosted
Fast, accurate analysis; enterprise scalability
Discover SonarQube Server

Apex static code analysis

Unique rules to find Bugs, Vulnerabilities, Security Hotspots, and Code Smells in your APEX code

Filtered: 1 rule found

lightning

Impact

Clean code attribute

Methods with "@AuraEnabled" should be public or global
Bug

Methods with "@AuraEnabled" should be public or global

intentionality - logical

reliability

Bug

This rule raises an issue when a method is annotated with @AuraEnabled but has private or protected visibility.

Why is this an issue?

How can I fix it?

More Info

Lightning Web Components can only import and call Apex methods that are accessible from outside the class. The @AuraEnabled annotation marks a method as available for Lightning components, but the method must also have the proper visibility to be actually accessible.

When a method is marked as private or protected, it cannot be imported by Lightning Web Components, even if it has the @AuraEnabled annotation. This creates a mismatch between the developer’s intent (making the method available to Lightning components) and the actual accessibility of the method.

The Salesforce platform requires @AuraEnabled methods to be either public or global to ensure they can be properly imported and called from Lightning Web Components using the ES6 import syntax.

What is the potential impact?

The method will not be accessible from Lightning Web Components, causing import errors or runtime failures when the component tries to call the method. This can break the functionality of Lightning components that depend on these Apex methods.

Available In:

Detect issues in your GitHub, Azure DevOps Services, Bitbucket Cloud, GitLab repositories

In-IDE

SaaS

Self-Hosted