Skip to content

Latest commit

 

History

History

spring-jackson-owasp-xml

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
.mvn/wrapper
.mvn/wrapper
 
 
src
src
 
 
README.adoc
README.adoc
 
 
mvnw
mvnw
 
 
mvnw.cmd
mvnw.cmd
 
 
pom.xml
pom.xml
 
 

README.adoc

OWASP JSON

This demonstrates how to configure a Spring XML application to encode JSON rather than simply escaping it as recommended by OWASP XSS cheat sheet. Specifically it states JavaScript should be encoded as

Except for alphanumeric characters, escape all characters with the \uXXXX unicode escaping format (X = Integer).

Running

You can run the application with the following:

./mvnw package cargo:run