Predicate unsafeDeserialization
Holds if ma
is a call that deserializes data from sink
.
Import path
import semmle.code.java.security.UnsafeDeserializationQuery
predicate
unsafeDeserialization
(
MethodAccess
ma
,
Expr
sink
)