rewrite-java-security icon indicating copy to clipboard operation
rewrite-java-security copied to clipboard

Published 20 hours ago verified publisher icon openrewrite

Using unsafe Jackson deserialization configuration is security-sensitive

Open jkschneider opened this issue 4 years ago • 3 comments
trafficstars

https://rules.sonarsource.com/java/tag/owasp/RSPEC-4544 https://swapneildash.medium.com/understanding-insecure-implementation-of-jackson-deserialization-7b3d409d2038 https://www.nccgroup.com/globalassets/our-research/us/whitepapers/2018/jackson_deserialization.pdf

jkschneider avatar Sep 12 '21 17:09 jkschneider