https://github.com/whitesource/curekit

A repository containing code security remediation solutions used by WhiteSource Cure
https://github.com/whitesource/curekit

Last synced: 11 months ago
JSON representation

A repository containing code security remediation solutions used by WhiteSource Cure

• Host: GitHub
• URL: https://github.com/whitesource/curekit
• Owner: whitesource
• License: apache-2.0
• Created: 2021-02-08T12:43:12.000Z (over 5 years ago)
• Default Branch: master
• Last Pushed: 2022-05-15T14:59:41.000Z (about 4 years ago)
• Last Synced: 2025-04-05T03:23:38.953Z (about 1 year ago)
• Language: Java
• Homepage: https://cure.whitesource.io
• Size: 93.8 KB
• Stars: 8
• Watchers: 6
• Forks: 8
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
CureKit - WhiteSource Cure Encoding Package

==========================

[![Language](https://img.shields.io/badge/language-Java-pink)](https://travis-ci.org/OWASP/owasp-java-encoder) [![Build Status](https://travis-ci.org/OWASP/owasp-java-encoder.svg?branch=main)](https://travis-ci.org/OWASP/owasp-java-encoder) [![License](https://img.shields.io/badge/license-Apache%202.0-blue)](https://www.apache.org/licenses/LICENSE-2.0.html)

CureKit is a security library mostly used by the WhiteSource Cure self-fixing product.

WhiteSource Cure is an innovative solution that automatically generates remediation suggestions for vulnerabilities identified by detection tools in proprietary code.

The remediation suggestions are presented on the vulnerable code itself and can be used as-is in your IDE.

CureKit contains encoders and other utilities, critical to the Self-Healing process suggested by WhiteSource Cure.

The sanitization methods offered in CureKit offer solutions for security vulnerabilities in your code, such as

Cross-Site Scripting, Path Traversal, Os Command Injection and more.

These methods rely on OWASP's encoders and best-practice fix recommendations.

Start using the CureKit Sanitizers

-----------------------------------

You can download a JAR from [Maven Central](https://search.maven.org/artifact/io.whitesource/curekit/1.0.3/jar).

The jar is also available in Maven:

```xml

    io.whitesource

    curekit

    1.1.0

```

Quick Overview

--------------

The CureKit Java library is intended for quick contextual encoding with very little

overhead, either in performance or usage. To get started, simply add the encoder-1.0.3.jar,

import io.whitesource.cure.Encoder and start using.

Example usage:

```java

    PrintWriter out = ....;

        out.println(""+Encode.forHtmlXss(userData)+"");

```