mirror of
https://github.com/github/codeql.git
synced 2026-06-26 07:07:07 +02:00
fdd1e3fefe
Many of the unsafe deserialization sinks have to stay defined in QL because they have custom logic that cannot be expressed in MaD models.
27 lines
670 B
Plaintext
27 lines
670 B
Plaintext
/**
|
|
* Provides classes and predicates for working with the YamlBeans framework.
|
|
*/
|
|
overlay[local?]
|
|
module;
|
|
|
|
import java
|
|
|
|
/**
|
|
* The class `com.esotericsoftware.yamlbeans.YamlReader`.
|
|
*/
|
|
class YamlBeansReader extends RefType {
|
|
YamlBeansReader() { this.hasQualifiedName("com.esotericsoftware.yamlbeans", "YamlReader") }
|
|
}
|
|
|
|
/**
|
|
* DEPRECATED: Now modeled using data extensions instead.
|
|
*
|
|
* A method with the name `read` declared in `com.esotericsoftware.yamlbeans.YamlReader`.
|
|
*/
|
|
deprecated class YamlBeansReaderReadMethod extends Method {
|
|
YamlBeansReaderReadMethod() {
|
|
this.getDeclaringType() instanceof YamlBeansReader and
|
|
this.getName() = "read"
|
|
}
|
|
}
|