Introduced protections against system command injection

page-object/pom.xml

@@ -30,6 +30,7 @@
   <properties>
     <maven.compiler.source>11</maven.compiler.source>
     <maven.compiler.target>11</maven.compiler.target>
+    <versions.java-security-toolkit>1.2.0</versions.java-security-toolkit>
   </properties>
   <dependencies>
     <dependency>
@@ -68,4 +69,13 @@
       </plugin>
     </plugins>
   </build>
+  <dependencyManagement>
+    <dependencies>
+      <dependency>
+        <groupId>io.github.pixee</groupId>
+        <artifactId>java-security-toolkit</artifactId>
+        <version>${versions.java-security-toolkit}</version>
+      </dependency>
+    </dependencies>
+  </dependencyManagement>
 </project>

page-object/sample-application/pom.xml

@@ -33,4 +33,10 @@
     <version>1.26.0-SNAPSHOT</version>
   </parent>
   <artifactId>sample-application</artifactId>
+  <dependencies>
+    <dependency>
+      <groupId>io.github.pixee</groupId>
+      <artifactId>java-security-toolkit</artifactId>
+    </dependency>
+  </dependencies>
 </project>

page-object/sample-application/src/main/java/com/iluwatar/pageobject/App.java

@@ -24,6 +24,7 @@
  */
 package com.iluwatar.pageobject;
 
+import io.github.pixee.security.SystemCommand;
 import java.awt.Desktop;
 import java.io.File;
 import java.io.IOException;
@@ -79,7 +80,7 @@ public static void main(String[] args) {
 
       } else {
         // java Desktop not supported - above unlikely to work for Windows so try instead...
-        Runtime.getRuntime().exec("cmd.exe start " + applicationFile);
+        SystemCommand.runCommand(Runtime.getRuntime(), "cmd.exe start " + applicationFile);
       }
 
     } catch (IOException ex) {