This rule is a stub.
This noncompliant code example shows an example where ...
In this compliant solution, ...
If non-serializable objects are stored as attributes in an HTTP session then ...
| Rule | Severity | Likelihood | Remediation Cost | Priority | Level | 
|---|---|---|---|---|---|
| MSC08-J | Low | Probable | High | P2 | L3 | 
TBD
| [FindBugs 2008] | Fortify Diagnostic | 
| HTTPSession J2EE Documentation [Note. This is a JavaEE 5 reference. I cannot find the corresponding API in Java 7.] |