The Enterprise Security API (ESAPI) project is an OWASP project to create simple strong security controls for every web platform. Security controls are not simple to build. You can read about the hundreds of pitfalls for unwary developers on the OWASP web site. By providing developers with a set of strong controls, we aim to eliminate some of the complexity of creating secure web applications. This can result in significant cost savings across the SDLC.

LicenseBSDCC-BY-SA 3.0
Tagsowasp
Organization The Open Web Application Security Project (OWASP)
HomePage http://www.esapi.org/
DateMay 11, 2011
Filespom (20 KB)  jar (358 KB)  View All
RepositoriesCentralAKSWMulesoftSonatypeUnvusWSO2 Public
Ranking#3725 in MvnRepository (See Top Artifacts)
Used By141 artifacts
VulnerabilitiesDirect vulnerabilities:
CVE-2022-24891
CVE-2022-23457
CVE-2013-5960
View 1 more ...
Vulnerabilities from dependencies:
CVE-2025-48976
CVE-2025-46392
CVE-2024-23635
View 19 more ...

Note: There is a new version for this artifact

New Version2.7.0.0

Scope:
Scope:
Format:
Scope:
Scope:
Scope:
Scope:
Scope:
Scope:

Provided Dependencies (2)

Category/License Group / ArtifactVersionUpdates
Java Spec
CDDLGPL 1.1GPL 2.0
javax.servlet » servlet-api 2.44.0.1
Java Spec
CDDLGPLGPL 2.0
javax.servlet » jsp-api 2.02.2

Test Dependencies (2)

Category/License Group / ArtifactVersionUpdates
I/O
Apache 2.0
commons-io » commons-io1 vulnerability 1.32.20.0
Testing
EPL 2.0
junit » junit 4.45.13.3

Developers

NameEmailDev IdRolesOrganization
Jeff WilliamsProject Owner, Architect, DeveloperAspect Security
Jim ManicoProject Manager, BuildMaster, Developer, Architect
Chris SchmidtProject Manager, Continuous Integration Admin, Architect, DeveloperAspect Security
Kevin WallProject Manager, Architect, Developer, Crypto GuyQwest