Java
'readResolve()' or 'writeReplace()' not declared 'protected'
Warning
New
Last modified: 03 December 2024 Reports classes that implement java.io.Serializable
where the readResolve()
or writeReplace()
methods are not declared protected
.
Declaring readResolve()
and writeReplace()
methods private
can force subclasses to silently ignore them, while declaring them public
allows them to be invoked by untrusted code.
If the containing class is declared final
, these methods can be declared private
.
Example:
class ClassWithSerialization implements Serializable {
public Object writeReplace() { // warning: 'writeReplace()' not declared protected
...
}
}
- By ID
Can be used to locate inspection in e.g. Qodana configuration files, where you can quickly enable or disable it, or adjust its settings.
ReadResolveAndWriteReplaceProtected
Inspection Details | |
---|---|
By default bundled with: | |
Can be installed with plugin: | Java, 243.23126 |
Thanks for your feedback!
Was this page helpful?