CodeQL library for Java/Kotlin
codeql/java-all 7.8.0 (changelog, source)
Index
Search

Module Serializability

Provides classes and predicates for working with Java Serialization.

Import path

import semmle.code.java.Serializability

Imports

java

Provides all default Java QL imports.

Classes

DeserializableField

A deserializable field may be written without code referencing it, due to the use of serialization.

SerializableField

A serializable field may be read without code referencing it, due to the use of serialization.

StandardSerializableField

A non-transient field in a type that (directly or indirectly) implements the Serializable interface and may be read or written via serialization.