Package io.codemodder.codemods
Class HardenXMLDecoderCodemod
java.lang.Object
io.codemodder.javaparser.JavaParserChanger
io.codemodder.SarifPluginJavaParserChanger<com.github.javaparser.ast.expr.ObjectCreationExpr>
io.codemodder.codemods.HardenXMLDecoderCodemod
- All Implemented Interfaces:
io.codemodder.CodeChanger
@Codemod(id="pixee:java/harden-xmldecoder-stream",
reviewGuidance=MERGE_WITHOUT_REVIEW)
public final class HardenXMLDecoderCodemod
extends io.codemodder.SarifPluginJavaParserChanger<com.github.javaparser.ast.expr.ObjectCreationExpr>
Adds gadget filtering logic to
XMLDecoder streams.-
Field Summary
Fields inherited from class io.codemodder.SarifPluginJavaParserChanger
sarifFields inherited from class io.codemodder.javaparser.JavaParserChanger
reporter -
Constructor Summary
Constructors -
Method Summary
Modifier and TypeMethodDescriptionList<io.codemodder.DependencyGAV>booleanonResultFound(io.codemodder.CodemodInvocationContext context, com.github.javaparser.ast.CompilationUnit cu, com.github.javaparser.ast.expr.ObjectCreationExpr newXmlDecoderCall, com.contrastsecurity.sarif.Result result) Methods inherited from class io.codemodder.SarifPluginJavaParserChanger
visitMethods inherited from class io.codemodder.javaparser.JavaParserChanger
getDescription, getIndividualChangeDescription, getReferences, getSummary
-
Constructor Details
-
HardenXMLDecoderCodemod
@Inject public HardenXMLDecoderCodemod(@SemgrepScan(ruleId="harden-xmldecoder-stream") io.codemodder.RuleSarif sarif)
-
-
Method Details
-
onResultFound
public boolean onResultFound(io.codemodder.CodemodInvocationContext context, com.github.javaparser.ast.CompilationUnit cu, com.github.javaparser.ast.expr.ObjectCreationExpr newXmlDecoderCall, com.contrastsecurity.sarif.Result result) - Specified by:
onResultFoundin classio.codemodder.SarifPluginJavaParserChanger<com.github.javaparser.ast.expr.ObjectCreationExpr>
-
dependenciesRequired
- Overrides:
dependenciesRequiredin classio.codemodder.javaparser.JavaParserChanger
-