From 62920495fe753d94cd7cee85043af1de274923e8 Mon Sep 17 00:00:00 2001
From: Dave Wichers <dwichers@gmail.com>
Date: Wed, 4 Feb 2026 13:49:09 -0500
Subject: [PATCH] Potential fix for code scanning alert no. 117: Information
 exposure through a stack trace

Fix INFO LEAK in Benchmark00684.java

Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com>
---
 .../org/owasp/benchmark/testcode/Benchmark00684.java | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/src/main/java/org/owasp/benchmark/testcode/Benchmark00684.java b/src/main/java/org/owasp/benchmark/testcode/Benchmark00684.java
index 68d69bc..08c4b20 100644
--- a/src/main/java/org/owasp/benchmark/testcode/Benchmark00684.java
+++ b/src/main/java/org/owasp/benchmark/testcode/Benchmark00684.java
@@ -110,37 +110,37 @@ public void doPost(HttpServletRequest request, HttpServletResponse response)
             response.getWriter()
                     .println(
                             "Problem executing crypto - javax.crypto.Cipher.getInstance(java.lang.String,java.security.Provider) Case");
-            e.printStackTrace(response.getWriter());
+            log("Problem executing crypto - NoSuchAlgorithmException", e);
             throw new ServletException(e);
         } catch (javax.crypto.NoSuchPaddingException e) {
             response.getWriter()
                     .println(
                             "Problem executing crypto - javax.crypto.Cipher.getInstance(java.lang.String,java.security.Provider) Case");
-            e.printStackTrace(response.getWriter());
+            log("Problem executing crypto - NoSuchPaddingException", e);
             throw new ServletException(e);
         } catch (javax.crypto.IllegalBlockSizeException e) {
             response.getWriter()
                     .println(
                             "Problem executing crypto - javax.crypto.Cipher.getInstance(java.lang.String,java.security.Provider) Case");
-            e.printStackTrace(response.getWriter());
+            log("Problem executing crypto - IllegalBlockSizeException", e);
             throw new ServletException(e);
         } catch (javax.crypto.BadPaddingException e) {
             response.getWriter()
                     .println(
                             "Problem executing crypto - javax.crypto.Cipher.getInstance(java.lang.String,java.security.Provider) Case");
-            e.printStackTrace(response.getWriter());
+            log("Problem executing crypto - BadPaddingException", e);
             throw new ServletException(e);
         } catch (java.security.InvalidKeyException e) {
             response.getWriter()
                     .println(
                             "Problem executing crypto - javax.crypto.Cipher.getInstance(java.lang.String,java.security.Provider) Case");
-            e.printStackTrace(response.getWriter());
+            log("Problem executing crypto - InvalidKeyException", e);
             throw new ServletException(e);
         } catch (java.security.InvalidAlgorithmParameterException e) {
             response.getWriter()
                     .println(
                             "Problem executing crypto - javax.crypto.Cipher.getInstance(java.lang.String,java.security.Provider) Case");
-            e.printStackTrace(response.getWriter());
+            log("Problem executing crypto - InvalidAlgorithmParameterException", e);
             throw new ServletException(e);
         }
         response.getWriter()