Make private

aschackmull · web-flow · commit 77c93dcf26fa · 2021-05-17T10:35:04.000+02:00
diff --git a/java/ql/src/semmle/code/java/frameworks/jackson/JacksonSerializability.qll b/java/ql/src/semmle/code/java/frameworks/jackson/JacksonSerializability.qll
@@ -156,15 +156,15 @@ class JacksonDeserializableField extends DeserializableField {
 }
 
 /** A call to a field that may be deserialized using the Jackson JSON framework. */
-class JacksonDeserializableFieldAccess extends FieldAccess {
+private class JacksonDeserializableFieldAccess extends FieldAccess {
   JacksonDeserializableFieldAccess() { getField() instanceof JacksonDeserializableField }
 }
 
 /**
  * When an object is deserialized by the Jackson JSON framework using a tainted input source,
  * the fields that the framework deserialized are themselves tainted input data.
  */
-class JacksonDeserializedTaintStep extends AdditionalTaintStep {
+private class JacksonDeserializedTaintStep extends AdditionalTaintStep {
   override predicate step(DataFlow::Node node1, DataFlow::Node node2) {
     DataFlow::getFieldQualifier(node2.asExpr().(JacksonDeserializableFieldAccess)) = node1
   }

Original file line number	Diff line number	Diff line change
`@@ -156,15 +156,15 @@ class JacksonDeserializableField extends DeserializableField {`
`156`	`156`	`}`
`157`	`157`
`158`	`158`	`/** A call to a field that may be deserialized using the Jackson JSON framework. */`
`159`		`-class JacksonDeserializableFieldAccess extends FieldAccess {`
	`159`	`+private class JacksonDeserializableFieldAccess extends FieldAccess {`
`160`	`160`	`JacksonDeserializableFieldAccess() { getField() instanceof JacksonDeserializableField }`
`161`	`161`	`}`
`162`	`162`
`163`	`163`	`/**`
`164`	`164`	`* When an object is deserialized by the Jackson JSON framework using a tainted input source,`
`165`	`165`	`* the fields that the framework deserialized are themselves tainted input data.`
`166`	`166`	`*/`
`167`		`-class JacksonDeserializedTaintStep extends AdditionalTaintStep {`
	`167`	`+private class JacksonDeserializedTaintStep extends AdditionalTaintStep {`
`168`	`168`	`override predicate step(DataFlow::Node node1, DataFlow::Node node2) {`
`169`	`169`	`DataFlow::getFieldQualifier(node2.asExpr().(JacksonDeserializableFieldAccess)) = node1`
`170`	`170`	`}`