Java
Cloneable class in secure context
Warning
New
Last modified: 03 December 2024Reports classes which may be cloned.
A class may be cloned if it supports the Cloneable
interface, and its clone()
method is not defined to immediately throw an error. Cloneable classes may be dangerous in code intended for secure use.
Example:
class SecureBean implements Cloneable {}
After the quick-fix is applied:
class SecureBean {}
When the class extends an existing cloneable class or implements a cloneable interface, then after the quick-fix is applied, the code may look like:
class SecureBean extends ParentBean {
@Override
protected SecureBean clone() throws CloneNotSupportedException {
throw new CloneNotSupportedException();
}
}
- By ID
Can be used to locate inspection in e.g. Qodana configuration files, where you can quickly enable or disable it, or adjust its settings.
CloneableClassInSecureContext
Inspection Details | |
---|---|
By default bundled with: | |
Can be installed with plugin: | Java, 243.23126 |
Thanks for your feedback!
Was this page helpful?