I am getting this error below. When using ResponseWriter. How can I resolve it?
try {
unifiedResponse = testController.updateData(testRequest);
} catch (RestClientResponseException e) {
try {
PrintWriter writer = response.getWriter();
response.setContentType(MediaType.TEXT_PLAIN);
response.setStatus(e.getRawStatusCode());
writer.print(e.getResponseBodyAsString());
} catch (IOException ex) {
throw new ServiceException("Cannot get update Password error response body", ex);
}
}
Error:
This use of java/io/PrintWriter.write(Ljava/lang/String;)V could be vulnerable to XSS
My output is JSON. HTMLEscape and OWASP creates bad formatting, which I need.
{
"message": "Here is a test message"
}
OWASP Output:
{"message":"Here is a test message (e.g. !@#$)."}
SonarQube Rules:
I tried the SonarQube official solution and still giving error.