Description: The newWebDriverException message includes the absolute temporary file path
(tmpFilePath.toAbsolutePath()), which can leak sensitive local filesystem information
(e.g., usernames, home/work directories) into logs or upstream error reporting systems.
OutputType.java [91-97]

StringpathInfo = (tmpFilePath !=null)     ?tmpFilePath.toAbsolutePath().toString()     :"temporary file could not be created";thrownewWebDriverException("Failed to create or write screenshot to temporary file: " +pathInfo,e);

• Create ticket/issue

Follow theguide to enable codebase context checks.

Objective: To create a detailed and reliable record of critical system actions for security analysis
and compliance.

Status: Passed

Learn more about managing compliancegeneric rules or creating your owncustom rules

Objective: Ensure all identifiers clearly express their purpose and intent, making code
self-documenting

Status: Passed

Learn more about managing compliancegeneric rules or creating your owncustom rules

Objective: Ensure comprehensive error handling that provides meaningful context and graceful
degradation

Status: Passed

Learn more about managing compliancegeneric rules or creating your owncustom rules

Objective: To ensure logs are useful for debugging and auditing without exposing sensitive
information like PII, PHI, or cardholder data.

Status: Passed

Learn more about managing compliancegeneric rules or creating your owncustom rules

Objective: Ensure all data inputs are validated, sanitized, and handled securely to prevent
vulnerabilities

Status: Passed

Learn more about managing compliancegeneric rules or creating your owncustom rules

Objective: To prevent the leakage of sensitive system information through error messages while
providing sufficient detail for internal debugging.

Status:
Path disclosure risk: The newWebDriverException message includes the screenshot temp file absolute path which
may expose internal filesystem details if this exception is surfaced to end-users.

StringpathInfo = (tmpFilePath !=null)     ?tmpFilePath.toAbsolutePath().toString()     :"temporary file could not be created";thrownewWebDriverException("Failed to create or write screenshot to temporary file: " +pathInfo,e);

Learn more about managing compliancegeneric rules or creating your owncustom rules

Schedule the temporary file for deletion immediately after its creation to
ensure cleanup even if the subsequent write operation fails.

java/src/org/openqa/selenium/OutputType.java [88-89]

 tmpFilePath = Files.createTempFile("screenshot", ".png");+File tmpFile = tmpFilePath.toFile();+tmpFile.deleteOnExit(); Files.write(tmpFilePath, data);

• Apply / Chat