ASVS Requirement 1.3.2

• Level: 1
• Chapter: V1 Encoding and Sanitization
• Section: V1.3 Sanitization
• Source: 0x10-V1-Encoding-and-Sanitization.md

Description

Verify that the application avoids the use of eval() or other dynamic code execution features such as Spring Expression Language (SpEL). Where there is no alternative, any user input being included must be sanitized before being executed.