hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-29 10:45:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

Update java/change-notes/2020-11-04-commonslang-unsafe-deserialization-sinks.md

Browse Source 
Co-authored-by: Anders Schack-Mulligen <aschackmull@users.noreply.github.com>
This commit is contained in:
Alvaro Muñoz
2020-11-04 10:58:27 +01:00
committed by GitHub
parent b284141a16
commit aa7b87aa33
1 changed files with 1 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
java/change-notes/2020-11-04-commonslang-unsafe-deserialization-sinks.md
View File

@@ -1,4 +1,3 @@
lgtm,codescanning
* The Unsafe Deserialization queries have been improved to recognize unsafe Apache Commons Lang(3)? methods.
* The query "Deserialization of user-controlled data" (`java/unsafe-deserialization`) has been improved to recognize unsafe Apache Commons Lang(3) methods.
* The SnakeYAML Unsafe Deserialization sink has been improved to recognize `compose` and `composeAll` unsafe methods.