io.codemodder.javaparser.JavaParserChanger

io.codemodder.codemods.codeql.CodeQLRemediationCodemod

io.codemodder.codemods.codeql.CodeQLDeserializationOfUserControlledDataCodemod

All Implemented Interfaces:: io.codemodder.CodeChanger, io.codemodder.FixOnlyCodeChanger

@Codemod(id="codeql:java/unsafe-deserialization", reviewGuidance=MERGE_WITHOUT_REVIEW, importance=HIGH, executionPriority=HIGH) public final class CodeQLDeserializationOfUserControlledDataCodemod extends CodeQLRemediationCodemod

A codemod for automatically fixing untrusted deserialization from CodeQL.

Field Summary

Fields inherited from class io.codemodder.codemods.codeql.CodeQLRemediationCodemod
ruleSarif

Fields inherited from class io.codemodder.javaparser.JavaParserChanger
reporter
Constructor Summary

Constructors

Constructor

Description

CodeQLDeserializationOfUserControlledDataCodemod(io.codemodder.RuleSarif sarif)
Method Summary

Modifier and Type

Method

Description

io.codemodder.codetf.DetectorRule

detectorRule()

io.codemodder.CodemodFileScanningResult

visit(io.codemodder.CodemodInvocationContext context, com.github.javaparser.ast.CompilationUnit cu)

Methods inherited from class io.codemodder.codemods.codeql.CodeQLRemediationCodemod
shouldRun, vendorName

Methods inherited from class io.codemodder.javaparser.JavaParserChanger
getDescription, getIncludesExcludesPattern, getIndividualChangeDescription, getReferences, getSummary, supports

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- CodeQLDeserializationOfUserControlledDataCodemod
  
  @Inject public CodeQLDeserializationOfUserControlledDataCodemod(@ProvidedCodeQLScan(ruleId="java/unsafe-deserialization") io.codemodder.RuleSarif sarif)
Method Details
- detectorRule
  
  public io.codemodder.codetf.DetectorRule detectorRule()
- visit
  
  public io.codemodder.CodemodFileScanningResult visit(io.codemodder.CodemodInvocationContext context, com.github.javaparser.ast.CompilationUnit cu)
  
  Specified by:
  
  visit in class io.codemodder.javaparser.JavaParserChanger

Class CodeQLDeserializationOfUserControlledDataCodemod

Field Summary

Fields inherited from class io.codemodder.codemods.codeql.CodeQLRemediationCodemod

Fields inherited from class io.codemodder.javaparser.JavaParserChanger

Constructor Summary

Method Summary

Methods inherited from class io.codemodder.codemods.codeql.CodeQLRemediationCodemod

Methods inherited from class io.codemodder.javaparser.JavaParserChanger

Methods inherited from class java.lang.Object

Constructor Details

CodeQLDeserializationOfUserControlledDataCodemod

Method Details

detectorRule

visit