Reports non-Serializable objects used as arguments to
javax.servlet.http.HttpSession.setAttribute() or
javax.servlet.http.HttpSession.putValue().
Such objects will not be serialized if the HttpSession is passivated or migrated, and may result in difficult-to-diagnose
bugs. For purposes of this inspection, objects with java.util.Collection or
java.util.Map types are assumed to be Serializable, unless the types
they are declared to contain are non-Serializable.