Skip to main content

Java

📄️ CodeQL: Potential database resource leak

codeql:java/database-resource-leak

📄️ CodeQL: Potential input resource leak

codeql:java/input-resource-leak

📄️ CodeQL: Secure Cookie Transmission

codeql:java/insecure-cookie

📄️ CodeQL: Expression language injection (JEXL)

codeql:java/jexl-expression-injection

📄️ CodeQL: JWT Signature Check

codeql:java/jwt-signature-check

📄️ CodeQL: Failure to use HTTPS or SFTP URL in Maven artifact upload/download

codeql:java/maven-non-https-url

📄️ CodeQL: Potential output resource leak

codeql:java/output-resource-leak

📄️ CodeQL: Stack Trace Exposure

codeql:java/stack-trace-exposure

📄️ Add Clarifying Braces

pixee:java/add-clarifying-braces

📄️ Hardened LDAP Calls Against Deserialization Attacks

pixee:java/disable-dircontext-deserialization

📄️ Encode Untrusted Scriptlet Contents

pixee:java/encode-jsp-scriptlet

📄️ Fix Verb Tampering

pixee:java/fix-verb-tampering

📄️ Harden Java Deserialization Calls

pixee:java/harden-java-deserialization

📄️ Harden Process Creation

pixee:java/harden-process-creation

📄️ Harden XMLDecoder Usage

pixee:java/harden-xmldecoder-stream

📄️ Harden XMLInputFactory Usage

pixee:java/harden-xmlinputfactory

📄️ Harden XStream Usage

pixee:java/harden-xstream

📄️ Harden Against "Zip Slip"

pixee:java/harden-zip-entry-paths

📄️ Limit Java readLine()

pixee:java/limit-readline

📄️ Make PRNG Seed Unpredictable

pixee:java/make-prng-seed-unpredictable

📄️ Move Switch Default Case to Last

pixee:java/move-switch-default-last

📄️ Prevent FileWriter Leak

pixee:java/prevent-filewriter-leak-with-nio

📄️ Sandbox URL Creation

pixee:java/sandbox-url-creation

📄️ Sanitize Apache Multipart Filename

pixee:java/sanitize-apache-multipart-filename

📄️ Sanitize Spring Multipart Filename

pixee:java/sanitize-spring-multipart-filename

📄️ Secure Source of Randomness

pixee:java/secure-random

📄️ Switch to Parameterized SQL APIs

pixee:java/sql-parameterizer

📄️ Sanitize Newlines in HTTP Headers

pixee:java/strip-http-header-newlines

📄️ Switch Order of Literals

pixee:java/switch-literal-first

📄️ Upgrade TLS Version in SSLContext

pixee:java/upgrade-sslcontext-tls

📄️ Upgrade TLS Version in SSLEngine

pixee:java/upgrade-sslengine-tls

📄️ Upgrade TLS Version in SSLParameters

pixee:java/upgrade-sslparameters-tls

📄️ Upgrade TLS Version in SSLSocket

pixee:java/upgrade-sslsocket-tls

📄️ Modernize and Secure Temp File Creation

pixee:java/upgrade-tempfile-to-nio

📄️ Pass Empty Array to Collection.toArray()

pixee:java/use-empty-for-toarray

📄️ Validate Jakarta Forwarding Path

pixee:java/validate-jakarta-forward-path