CodeQL library for Java/Kotlin
codeql/java-all 0.9.0 (changelog, source)
Index
Search

Module XStream

Provides classes and predicates for working with the XStream XML serialization framework.

Import path

import semmle.code.java.frameworks.XStream

Imports

java

Provides all default Java QL imports.

Classes

XStream

The type com.thoughtworks.xstream.XStream.

XStreamEnableWhiteListing

A call to XStream.addPermission(NoTypePermission.NONE), which enables white-listing.

XStreamReadObjectMethod

An XStream method that deserializes an object.