Module Serializability

Provides classes and predicates for working with Java Serialization.

Import path

semmle.code.java.Serializability

Imports

java

Provides all default Java QL imports.

Classes

DeserializableField

A deserializable field may be written without code referencing it, due to the use of serialization.

SerializableField

A serializable field may be read without code referencing it, due to the use of serialization.

StandardSerializableField

A non-transient field in a type that (directly or indirectly) implements the Serializable interface and may be read or written via serialization.