You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@sling.apache.org by "Radu Cotescu (JIRA)" <ji...@apache.org> on 2015/03/20 11:00:50 UTC
[jira] [Closed] (SLING-4236) The XSSAPI's encode methods should
return null for null input
[ https://issues.apache.org/jira/browse/SLING-4236?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Radu Cotescu closed SLING-4236.
-------------------------------
Closing issues fixed in [XSS Protection API 1.0.0|https://issues.apache.org/jira/browse/SLING-4492?jql=fixVersion%20%3D%20%22XSS%20Protection%20API%201.0.0%22%20AND%20project%20%3D%20SLING].
> The XSSAPI's encode methods should return null for null input
> -------------------------------------------------------------
>
> Key: SLING-4236
> URL: https://issues.apache.org/jira/browse/SLING-4236
> Project: Sling
> Issue Type: Bug
> Components: Extensions
> Affects Versions: XSS Protection API 1.0.0
> Reporter: Radu Cotescu
> Assignee: Felix Meschberger
> Fix For: XSS Protection API 1.0.0
>
> Attachments: SLING-4236.patch
>
>
> The XSSAPI's encode methods should return {{null}} for {{null}} input. Currently it seems that the default implementation based on the {{owasp-java-encoder}} transforms {{null}} into {{"null"}}.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)