Kevin W. Wall
Kevin W. Wall
Well, the problem, at least for `Validator.HTTPServerName`, is that AFAIK, valid host names cannot begin nor end with a hyphen and I'm pretty sure that they can't _start_ with a...
For a while now, ESAPI's `Encryptor` has offered `encrypt()` and `decrypt()` methods that take a `SecretKey`. And `SecretKey`'s can be _managed separately_ in a `KeyStore` or stored in an HSM,...
Is there a way to essentially tell an individual JUnit test class (or ideally method) to behave as though ``` 0 false ``` is set, possibly via a JUnit annotation...
Changed to milestone 2.3 since 2.2.0.0 release already released without addressing this.
Changing this from milestone 2.3 to 3.0. I'd like to use Hashicorp Vault for this, but I do not want to pull in more direct and transitive dependencies into ESAPI...
Note: It appears that many of the failing tests were related to Mockito and/or Power Mock which also is likely to be affected by JPMS as well. Currently all tests...
It was working for JDK 8, wasn't it? I only remember it failing for JDK 9 and later. -kevin -- Blog: http://off-the-wall-security.blogspot.com/ | Twitter: @KevinWWall NSA: All your crypto bit...
I think there's a bug in Dependency Check. I've seen same thing. If I kill it and rerun the exact same Maven dep ck goal (with not intervening 'mvn clean'...
May want to try with the latest version of AntiSamy. There's been some updates in it that might fix the issue. -kevin On Tue, Dec 7, 2021, 10:04 PM Matt...
@xeno6696 - **Note**: to test this in JUnit, you will have to create a custom AntiSamy XML policy file and drop it under '`src/test/resources`' and load it with `HTMLValidationRule.loadAntisamyPolicy("Name_of_your_policy_file")` from...