Article - CS385117
"[SECURITY AUDIT Anonymous:@unknown -> /ExampleApplication/org.owasp.esapi.reference.validation.StringValidationRule] Input validation excludes canonicalization" message received when exporting entity collections or files from ThingWorx Platform
Modified: 17-Dec-2025
Applies To
- ThingWorx Platform 9.3
Description
- Receiving warning message in <ThingWorx home>/ThingworxStorage/logs/ApplicationLog.log when exporting files from ThingWorx:
[SECURITY AUDIT Anonymous:@unknown -> /ExampleApplication/org.owasp.esapi.reference.validation.StringValidationRule] Input validation excludes canonicalization. Context: setHeader Input: attachment; filename="<filename>"; filename*=UTF-8''<filename> - Too many OWASP logs appearing when exporting a collection of entities
- How to configure ESAPI to display fewer logs
This is a printer-friendly version of Article 385117 and may be out of date. For the latest version click CS385117