Predicate unsafeDeserialization
Holds if ma
is a call that deserializes data from sink
.
Import path
import semmle.code.java.security.UnsafeDeserializationQuery
predicate unsafeDeserialization(MethodCall ma, Expr sink)
Holds if ma
is a call that deserializes data from sink
.
import semmle.code.java.security.UnsafeDeserializationQuery
predicate unsafeDeserialization(MethodCall ma, Expr sink)