rspec/rules/S5753/sensitive.adoc

== Sensitive Code Example

At Controller level:

----
[ValidateInput(false)]
public ActionResult Welcome(string name)
{
  ...
}
----

At application level, configured in the Web.config file:

----
<configuration>
   <system.web>
      <pages validateRequest="false" />
      ...
      <httpRuntime requestValidationMode="0.0" />
   </system.web>
</configuration>
----