Module UnsafeDeserialization::UnsafeDeserialization

Classes

Configuration

A taint-tracking configuration for reasoning about unsafe deserialization.

JsYamlUnsafeLoad

An expression passed to one of the unsafe load functions of the js-yaml package.

RemoteFlowSourceAsSource

A source of remote user input, considered as a flow source for unsafe deserialization.

Sanitizer

A sanitizer for unsafe deserialization vulnerabilities.

Sink

A data flow sink for unsafe deserialization vulnerabilities.

Source

A data flow source for unsafe deserialization vulnerabilities.