Skip to content

Add links for Java Encoder and Java HTML Sanitizer #184

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
dhanyabad11 wants to merge 1 commit into from
Closed

Add links for Java Encoder and Java HTML Sanitizer #184

dhanyabad11 wants to merge 1 commit into from
+5 −0

Conversation

@dhanyabad11
Copy link

@dhanyabad11 dhanyabad11 commented Jan 15, 2026
edited
Loading

Fixes #181

Added links to OWASP Java Encoder and OWASP Java HTML Sanitizer in the secure libraries section, as suggested by maintainers.

Summary
Adds references to two OWASP secure libraries to improve discoverability.

Description for the changelog
Add links to OWASP Java Encoder and Java HTML Sanitizer.

Declaration

  • content meets the license for this project
  • I have read the contribution guide and agree to the Code of Conduct
  • Any use of AI is declared: I used AI only for guidance while preparing the contribution, but the actual content added consists solely of factual links.

Other info
N/A

@dhanyabad11
Add OWASP recommended secure libraries section
a45f5fe 
Added recommended secure libraries from OWASP to the documentation.
Copilot AI review requested due to automatic review settings January 15, 2026 03:41
Copilot AI reviewed Jan 15, 2026
View reviewed changes
Copy link

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR adds references to two OWASP Java security libraries (Java Encoder and Java HTML Sanitizer) to the Secure Libraries documentation by creating a new "Recommended Secure Libraries (OWASP Projects)" section in the index page.

Changes:

  • Added a new section header and bullet list to the secure libraries index page with direct links to the OWASP Java Encoder and Java HTML Sanitizer project pages

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

docs/en/05-implementation/03-secure-libraries/index.md
Comment on lines +13 to +14
- **OWASP Java Encoder**https://owasp.org/www-project-java-encoder/
- **OWASP Java HTML Sanitizer**https://owasp.org/www-project-java-html-sanitizer/
Copy link

Copilot AI Jan 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The documentation uses markdown reference-style links consistently throughout (see lines 23-25 for examples). Direct URLs should be converted to reference-style links following the pattern used elsewhere in the file. For example, define [java-encoder] and [java-sanitizer] at the bottom of the file and use them in the list items.

Copilot uses AI. Check for mistakes.
docs/en/05-implementation/03-secure-libraries/index.md
Comment on lines +11 to +15
## Recommended Secure Libraries (OWASP Projects)

- **OWASP Java Encoder**https://owasp.org/www-project-java-encoder/
- **OWASP Java HTML Sanitizer**https://owasp.org/www-project-java-html-sanitizer/

Copy link

Copilot AI Jan 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This section presents libraries differently from the established pattern in this documentation. Other libraries (ESAPI, CSRFGuard, OSHP) have dedicated pages with detailed sections explaining 'What is it?', 'Why use it?', and 'How to use it?'. Consider either creating dedicated pages for these libraries following the same pattern, or removing this section since these libraries are already mentioned in the ESAPI page (line 27-28 of 01-esapi.md) as alternatives.

Suggested change
## Recommended Secure Libraries (OWASP Projects)
- **OWASP Java Encoder**https://owasp.org/www-project-java-encoder/
- **OWASP Java HTML Sanitizer**https://owasp.org/www-project-java-html-sanitizer/

Copilot uses AI. Check for mistakes.
docs/en/05-implementation/03-secure-libraries/index.md
within the SAMM [Security Architecture][sammdsa] security practice
which in turn is part of the [Design][sammd] business function.

## Recommended Secure Libraries (OWASP Projects)
Copy link

Copilot AI Jan 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The section title 'Recommended Secure Libraries (OWASP Projects)' is ambiguous since all libraries in this section (ESAPI, CSRFGuard, OSHP) are OWASP projects. Consider a more specific title that clarifies this is a quick reference list, or reconsider whether a separate section is needed given that dedicated pages exist for other libraries.

Suggested change
## Recommended Secure Libraries (OWASP Projects)
## Quick Reference: OWASP Secure Libraries

Copilot uses AI. Check for mistakes.
@jgadsden
Copy link
Contributor

jgadsden commented Jan 15, 2026

Please follow the contributing guidelines for the Developer Guide
Closing this pull request

@jgadsden jgadsden closed this Jan 15, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

Assignees

No one assigned

Labels

AI-suspect

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Add Java Encoder and Java HTML Sanitizer projects

2 participants

@dhanyabad11 @jgadsden