Add comments

Author: Quoc Truong

Rules/AvoidUserNameAndPasswordParams.cs

@@ -53,19 +53,21 @@ public IEnumerable<DiagnosticRecord> AnalyzeScript(Ast ast, string fileName)
                 // Iterates all ParamAsts and check if their names are on the list.
                 foreach (ParameterAst paramAst in paramAsts)
                 {
+                    // this will be null if there is no [pscredential] attached to the parameter
                     var psCredentialType = paramAst.Attributes.FirstOrDefault(paramAttribute =>
                         (paramAttribute.TypeName.IsArray && (paramAttribute.TypeName as ArrayTypeName).ElementType.GetReflectionType() == typeof(PSCredential))
                         || paramAttribute.TypeName.GetReflectionType() == typeof(PSCredential));
 
+                    // this will be null if there are no [credential()] attribute attached
                     var credentialAttribute = paramAst.Attributes.FirstOrDefault(paramAttribute => paramAttribute.TypeName.GetReflectionType() == typeof(CredentialAttribute));
 
-                    String paramName = paramAst.Name.VariablePath.ToString();
-
-                    // check that the type is securestring
+                    // this will be null if there are no [securestring] attached to the parameter
                     var secureStringType = paramAst.Attributes.FirstOrDefault(paramAttribute =>
                         (paramAttribute.TypeName.IsArray && (paramAttribute.TypeName as ArrayTypeName).ElementType.GetReflectionType() == typeof (System.Security.SecureString))
                         || paramAttribute.TypeName.GetReflectionType() == typeof(System.Security.SecureString));
-                    
+
+                    String paramName = paramAst.Name.VariablePath.ToString();                    
+
                     foreach (String password in passwords)
                     {
                         if (paramName.IndexOf(password, StringComparison.OrdinalIgnoreCase) != -1)