io.codemodder.codemods.UpgradeTempFileToNIOCodemod.report.json Maven / Gradle / Ivy
Go to download
Show more of this group Show more artifacts with this name
Show all versions of core-codemods Show documentation
Show all versions of core-codemods Show documentation
Codemods for fixing common errors across many Java projects
The newest version!
{
"summary" : "Modernize and secure temp file creation",
"change": "Modernize and secure temp file creation",
"reviewGuidanceJustification" : "Unless the temporary files created by this code are intended to be read and edited by other applications on the system, and are intended to be in a predictable directory, this change should be merged. It's difficult to conceive of a situation where this would be by design and these changes would cause an issue.",
"references" : [
"https://cwe.mitre.org/data/definitions/378.html",
"https://docs.fluidattacks.com/criteria/vulnerabilities/160/",
"https://github.com/apache/druid/issues/11130",
"https://owasp.org/www-community/vulnerabilities/Insecure_Temporary_File",
"https://nvd.nist.gov/vuln/detail/CVE-2022-41954",
"https://www.cvedetails.com/vulnerability-list/cwe-378/vulnerabilities.html"
]
}