DEVHIDE
Login Or Sign up

Validation Required issue by IBM AppScan

2k Views Asked by At

IBM AppScan has thrown the error Validation Required while scanning my app for the following code:-

return Arrays.asList(System.getenv("PATH").split(":"));

I am not sure why the error is thrown. Could it be a false positive ? Can I use

System.getProperty("java.class.path")
java android validation security bluemix-app-scan
Original Q&A
2

There are 2 best solutions below

2
On BEST ANSWER

AppScan is reporting validation issue as you are getting variable value from the source which is outside the app. According to IBM AppScan rules, all the strings values from outside the apps should be validated. If you are sure that nobody will change PATH value, you can say it is a false positive.

2
On

Split function: Depends upon what data you have to pass in function. If data is validated before passing the function then you can mark this issues as false positive. Usually we mark split function as false positive

Related Questions in JAVA

Related Questions in ANDROID

Related Questions in VALIDATION

Related Questions in SECURITY

Related Questions in BLUEMIX-APP-SCAN

Trending Questions

Popular # Hahtags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Popular Questions

Copyright © 2021 Jogjafile Inc.