Hi,

I'm using Jboss 5.01GA and I 've a problem with fortify .

Fortify found a issue of " Dynamic code evaluation - unsafe deserialization" with this line of code :

tempList = (ArrayList) ((ObjectMessage)message).getObject()

how can I modify this part of code to resolve the issue ?

I've have found something possible with Apache ActiveMQ 5.13 but I don't know if it works with jboss 5 ?

Anyone can help me?

thanks

Mano