ASVS Requirement 1.3.7

• Level: 2
• Chapter: V1 Encoding and Sanitization
• Section: V1.3 Sanitization
• Source: 0x10-V1-Encoding-and-Sanitization.md

Description

Verify that the application protects against template injection attacks by not allowing templates to be built based on untrusted input. Where there is no alternative, any untrusted input being included dynamically during template creation must be sanitized or strictly validated.