...
It also catches Throwable, as warranted by EX0 of ERR14-J. Do not catch NullPointerException , RuntimeException, Exception, or Throwableor any of its ancestors, It also uses the MyExceptionReporter class described in rule ERR00-J. Do not suppress or ignore checked exceptions, which handles responsibility for filtering sensitive information from any resulting exceptions.
...
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="f0beaffbdf7a3427-3fad6c6a-49d74b7e-85beaa9c-9816fa0bc2b7ae4d85ea7ed2"><ac:plain-text-body><![CDATA[ | [[MITRE 2009 | AA. Bibliography#MITRE 09]] | [CWE ID 209 | http://cwe.mitre.org/data/definitions/209.html] "Information Exposure Through an Error Message" | ]]></ac:plain-text-body></ac:structured-macro> |
| CWE ID 600 "Uncaught Exception in Servlet" | ||||
| CWE ID 497 "Exposure of System Data to an Unauthorized Control Sphere" |
...
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="90fe936b83a52d9e-e9c8a01b-492546d7-b9b49653-ab55938195e177c5da24d4d8"><ac:plain-text-body><![CDATA[ | [[Gong 2003 | AA. Bibliography#Gong 03]] | 9.1 Security Exceptions | ]]></ac:plain-text-body></ac:structured-macro> |
<ac:structured-macro ac:name="unmigrated-wiki-markup" ac:schema-version="1" ac:macro-id="3f72c722cdfc07b3-d266a0e5-4a17476c-b687ba27-0a9c58d05a7e6baba0279f9e"><ac:plain-text-body><![CDATA[ | [[SCG 2007 | AA. Bibliography#SCG 07]] | Guideline 3-4 Purge sensitive information from exceptions | ]]></ac:plain-text-body></ac:structured-macro> |
...