hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-29 18:55:14 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
39e652b26b81c2e57c2ab372574289b32c1baa5f
codeql/java
History
Arthur Baars 39e652b26b Java: teach UnsafeDeserialization about ValidatingObjectInputStream 
The class org.apache.commons.io.serialization.ValidatingObjectInputStream
is an implementation of ObjectInputStream that validates the deserialized
classes against a white list. Therefore, this class should not be considered an
unsafe deserialization sink.
2020-05-06 12:15:30 +02:00
..
config/suites/lgtm
Java: enable java/alert-suppression-annotations in LGTM suite
2019-10-17 22:09:04 -04:00
ql
Java: teach UnsafeDeserialization about ValidatingObjectInputStream
2020-05-06 12:15:30 +02:00
upgrades
Java 14: add dbscheme upgrade script for records
2020-04-07 22:22:09 -04:00