How to sanitize and validate user input to pass a Checkmarx scan

Question

I have an endpoint that receives a String from the client as seen below:

@GET
@Path(\"/{x}\")
public Response doSomething(@PathParam(\"x\") String x) {
    Stri         


        

Answer 1

HtmlUtils from spring-web got the job done with:

HtmlUtils.htmlEscape(x)

Maven dependency:

<dependency>
    <groupId>org.springframework</groupId>
    <artifactId>spring-web</artifactId>
    <version>5.1.7.RELEASE</version>
</dependency>

Answer 2

in .Net framework > 4.0 use AntiXSS

AntiXssEncoder.HtmlEncode()