hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2025-12-20 18:56:32 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
codeql-cli-2.7.5
codeql/csharp/ql/test/query-tests/Security Features/CWE-502/UnsafeDeserialization/DataContractJsonSerializerGood.cs
edvraa ac29184521 deserialization sinks
2021-03-20 21:50:46 +02:00

14 lines
330 B
C#
Raw Permalink Blame History

using System.Runtime.Serialization.Json;
using System.IO;
using System;
class GoodDataContractJsonSerializer
{
public static object Deserialize(Stream s)
{
// Good: type is hardcoded
var ds = new DataContractJsonSerializer(typeof(GoodDataContractJsonSerializer));
return ds.ReadObject(s);
}
}
Reference in New Issue View Git Blame Copy Permalink