--- old/src/java.base/share/classes/java/io/package-info.java 2018-03-28 13:15:08.053611882 -0400 +++ new/src/java.base/share/classes/java/io/package-info.java 2018-03-28 13:15:07.681425882 -0400 @@ -31,19 +31,17 @@ * method in any class or interface in this package will cause a * {@code NullPointerException} to be thrown. * - *
Warning: Deserialization of untrusted data is inherently dangerous + * and should be avoided. Untrusted data should be carefully validated according to the + * "Serialization and Deserialization" section of the + * {@extLink secure_coding_guidelines_javase Secure Coding Guidelines for Java SE}. + *
* - * - *