Skip to main content


   This documentation is for previous versions. Go here for the newest release documentation.

Check for Java injection vulnerabilities (8.3)

Suggest edit Updated on May 3, 2021

Pega Platform™ now notifies you of Java injection vulnerabilities in activities, functions, and stream rules at design time and at runtime.  You can customize Pega Platform to check for vulnerabilities in addition to the defaults.

The following figure shows a design-time notification of a Java injection vulnerability.

Design-time notification of Java injection vulnerability
Design-time notification of Java injection vulnerability

For more information, see Configuring the Java injection check.

Did you find this content helpful? YesNo

100% found this useful

Have a question? Get answers now.

Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.

Ready to crush complexity?

Experience the benefits of Pega Community when you log in.

We'd prefer it if you saw us at our best.

Pega.com is not optimized for Internet Explorer. For the optimal experience, please use:

Close Deprecation Notice
Contact us