From c339fae1fa85309ccb6fb757b894b216087aafed Mon Sep 17 00:00:00 2001 From: Jerry Duffy Date: Tue, 23 Jun 2026 12:48:20 -0400 Subject: [PATCH] Fix sample app XSS issue --- .../src/main/java/com/newrelic/testapps/dropwizard/Hello.java | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/examples/dropwizard-app/src/main/java/com/newrelic/testapps/dropwizard/Hello.java b/examples/dropwizard-app/src/main/java/com/newrelic/testapps/dropwizard/Hello.java index 1372439..d17509d 100644 --- a/examples/dropwizard-app/src/main/java/com/newrelic/testapps/dropwizard/Hello.java +++ b/examples/dropwizard-app/src/main/java/com/newrelic/testapps/dropwizard/Hello.java @@ -13,7 +13,8 @@ public class Hello { @GET public String sayHello(@PathParam("name") String name) { - return "Hello, " + name + "!"; + String safe = name.replace("&", "&").replace("<", "<").replace(">", ">").replace("\"", """); + return "Hello, " + safe + "!"; } @POST