Module UnsafeDeserialization

Provides a taint-tracking configuration for reasoning about unsafe deserialization.

Import path

semmle.javascript.security.dataflow.UnsafeDeserialization

Imports

RemoteFlowSources

Provides a class for modelling sources of remote user input.

javascript

Provides classes for working with JavaScript programs, as well as JSON, YAML and HTML.

Modules

Aliases

UnsafeDeserializationSanitizer

DEPRECATED: Use UnsafeDeserialization::Sanitizer instead.

UnsafeDeserializationSink

DEPRECATED: Use UnsafeDeserialization::Sink instead.

UnsafeDeserializationSource

DEPRECATED: Use UnsafeDeserialization::Source instead.

UnsafeDeserializationTrackingConfig

DEPRECATED: Use UnsafeDeserialization::Configuration instead.