(velocity-engine) branch master updated: Add some more class restrictions to introspector

Sat, 24 Aug 2024 06:03:47 -0700 

This is an automated email from the ASF dual-hosted git repository.

cbrisson pushed a commit to branch master
in repository https://gitbox.apache.org/repos/asf/velocity-engine.git


The following commit(s) were added to refs/heads/master by this push:
     new 2c15764e Add some more class restrictions to introspector
2c15764e is described below

commit 2c15764ed1a9d3192460066a2042acd92f2dadc9
Author: Claude Brisson <[email protected]>
AuthorDate: Sat Aug 24 15:03:32 2024 +0200

    Add some more class restrictions to introspector
---
 .../org/apache/velocity/runtime/defaults/velocity.properties         | 5 +++++
 1 file changed, 5 insertions(+)

diff --git 
a/velocity-engine-core/src/main/resources/org/apache/velocity/runtime/defaults/velocity.properties
 
b/velocity-engine-core/src/main/resources/org/apache/velocity/runtime/defaults/velocity.properties
index 6a3eaa3d..e790f790 100644
--- 
a/velocity-engine-core/src/main/resources/org/apache/velocity/runtime/defaults/velocity.properties
+++ 
b/velocity-engine-core/src/main/resources/org/apache/velocity/runtime/defaults/velocity.properties
@@ -229,6 +229,8 @@ introspector.restrict.classes = java.lang.Compiler
 introspector.restrict.classes = java.lang.InheritableThreadLocal
 introspector.restrict.classes = java.lang.Package
 introspector.restrict.classes = java.lang.Process
+introspector.restrict.classes = java.lang.ProcessBuilder
+introspector.restrict.classes = java.lang.Reflect
 introspector.restrict.classes = java.lang.Runtime
 introspector.restrict.classes = java.lang.RuntimePermission
 introspector.restrict.classes = java.lang.SecurityManager
@@ -236,6 +238,9 @@ introspector.restrict.classes = java.lang.System
 introspector.restrict.classes = java.lang.Thread
 introspector.restrict.classes = java.lang.ThreadGroup
 introspector.restrict.classes = java.lang.ThreadLocal
+introspector.restrict.classes = java.net.Socket
+introspector.restrict.classes = javax.management.MBeanServer
+introspector.restrict.classes = javax.script.ScriptEngine
 
 # ----------------------------------------------------------------------------
 # SPACE GOBBLING

Reply via email to