Package io.codemodder.codemods.sonar

Class SonarObjectDeserializationCodemod

java.lang.Object
io.codemodder.javaparser.JavaParserChanger
io.codemodder.providers.sonar.SonarRemediatingJavaParserChanger
io.codemodder.codemods.sonar.SonarObjectDeserializationCodemod
All Implemented Interfaces:
io.codemodder.CodeChanger, io.codemodder.FixOnlyCodeChanger
@Codemod(id="sonar:java/object-deserialization-s5135", reviewGuidance=MERGE_WITHOUT_REVIEW, executionPriority=HIGH, importance=HIGH) public final class SonarObjectDeserializationCodemod extends io.codemodder.providers.sonar.SonarRemediatingJavaParserChanger
Fixes Object Deserialization issues found by sonar rule javasecurity:S5135.

  • Field Summary

    Fields inherited from class io.codemodder.javaparser.JavaParserChanger

    reporter

  • Constructor Summary

    Constructors
    Constructor
    Description
    SonarObjectDeserializationCodemod(io.codemodder.providers.sonar.RuleIssue issues)
     

  • Method Summary

    Modifier and Type
    Method
    Description
    io.codemodder.codetf.DetectorRule
    detectorRule()
     
    io.codemodder.CodemodFileScanningResult
    visit(io.codemodder.CodemodInvocationContext context, com.github.javaparser.ast.CompilationUnit cu)
     

    Methods inherited from class io.codemodder.providers.sonar.SonarRemediatingJavaParserChanger

    supports, vendorName

    Methods inherited from class io.codemodder.javaparser.JavaParserChanger

    getDescription, getIncludesExcludesPattern, getIndividualChangeDescription, getReferences, getSummary

    Methods inherited from class java.lang.Object

    clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

    Methods inherited from interface io.codemodder.CodeChanger

    shouldRun

  • Constructor Details

    • SonarObjectDeserializationCodemod

      @Inject public SonarObjectDeserializationCodemod(@ProvidedSonarScan(ruleId="javasecurity:S5135") io.codemodder.providers.sonar.RuleIssue issues)

  • Method Details

    • detectorRule

      public io.codemodder.codetf.DetectorRule detectorRule()

    • visit

      public io.codemodder.CodemodFileScanningResult visit(io.codemodder.CodemodInvocationContext context, com.github.javaparser.ast.CompilationUnit cu)
      Specified by:
      visit in class io.codemodder.javaparser.JavaParserChanger