hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 10:46:30 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
codeql-cli-2.7.4
codeql/java/ql/test/query-tests/security/CWE-502/UnsafeDeserialization.ql
Artem Smotrakov 035f7ac669 Refactored libs for unsafe deserialization
2021-07-19 13:19:36 +02:00

19 lines
659 B
Plaintext
Raw Permalink Blame History

import java
import semmle.code.java.security.UnsafeDeserializationQuery
import TestUtilities.InlineExpectationsTest
class UnsafeDeserializationTest extends InlineExpectationsTest {
UnsafeDeserializationTest() { this = "UnsafeDeserializationTest" }
override string getARelevantTag() { result = "unsafeDeserialization" }
override predicate hasActualResult(Location location, string element, string tag, string value) {
tag = "unsafeDeserialization" and
exists(DataFlow::Node sink, UnsafeDeserializationConfig conf | conf.hasFlowTo(sink) |
sink.getLocation() = location and
element = sink.toString() and
value = ""
)
}
}
Reference in New Issue View Git Blame Copy Permalink