CodeQL library for Java/Kotlin
codeql/java-all 0.9.2-dev (changelog, source)
Index
Search

Module Serializability

Provides classes and predicates for working with Java Serialization.

Import path

import semmle.code.java.Serializability

Imports

java

Provides all default Java QL imports.

Classes

DeserializableField

A deserializable field may be written without code referencing it, due to the use of serialization.

SerializableField

A serializable field may be read without code referencing it, due to the use of serialization.

StandardSerializableField

A non-transient field in a type that (directly or indirectly) implements the Serializable interface and may be read or written via serialization.