Hi All,
We have a requirement wherein we pass some input parameters to an external web service from HANA (via XSJS Jobs) and then receive datasets post processing.
Now the client security team raised the concern of major vulnerabilities in (web) applications, such as cross site scripting, SQL injection, interpreter injection, locale/Unicode attacks, file system attacks, and buffer overflows.
The overall architecture of this process is illustrated below:
Now the question is, does HANA have any inbuilt validation mechanism to achieve this or is writing manual validation code the only option?
Let me know if you have any experience in this regard.
Thanks,
Shyam