Это правило помечает использование методов X509Certificate.getSubjectAlternativeNames, X509Certificate::getIssuerAlternativeNames и X509Certificate.getExtendedKeyUsage .
The JDK implementation (as supplied by the SUN provider) of X509Certificate::getSubjectAlternativeNames, X509Certificate::getIssuerAlternativeNames and X509Certificate::getExtendedKeyUsage now throws Исключительная ситуацияCertificateParsing instead of returning пустая when the extension is non-critical and unparseable (badly encoded or contains invalid values).
Дополнительная информация приведена в разделе JDK-8251468. JDK-8276109.