Inspectopedia
 
2024.3

Cloneable class in secure context

Warning
New
Last modified: 03 December 2024

Reports classes which may be cloned.

A class may be cloned if it supports the Cloneable interface, and its clone() method is not defined to immediately throw an error. Cloneable classes may be dangerous in code intended for secure use.

Example:

class SecureBean implements Cloneable {}

After the quick-fix is applied:

class SecureBean {}

When the class extends an existing cloneable class or implements a cloneable interface, then after the quick-fix is applied, the code may look like: