ishangsf/rspec
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
rspec/rules/S5496/java/rule.adoc
github-actions[bot] 846d6c7568
Create rule S5496: Server-side templates should not be vulnerable to injection attacks (#3861) 
* Add java to rule S5496

* Add S5496 for Java

* Adjustments based on review

* Fix to make asciidoc tests pass

---------

Co-authored-by: daniel-teuchert-sonarsource <daniel-teuchert-sonarsource@users.noreply.github.com>
Co-authored-by: Daniel Teuchert <daniel.teuchert@sonarsource.com>
Co-authored-by: daniel-teuchert-sonarsource <141642369+daniel-teuchert-sonarsource@users.noreply.github.com>
2024-04-18 15:26:08 +02:00

33 lines
525 B
Plaintext
Raw Blame History

== Why is this an issue?
include::../rationale.adoc[]
include::../impact.adoc[]
// How to fix it section
include::how-to-fix-it/spring.adoc[]
== Resources
=== Articles & blog posts
* https://www.acunetix.com/blog/web-security-zone/exploiting-ssti-in-thymeleaf/[Exploiting SSTI in Thymeleaf]
=== Standards
include::../standards.adoc[]
ifdef::env-github,rspecator-view[]
'''
== Implementation Specification
(visible only on this page)
=== Message
include::../message.adoc[]
'''
endif::env-github,rspecator-view[]
Reference in New Issue View Git Blame Copy Permalink