GitHub user FreeAndNil added a comment to the discussion: Threat model: how should Thread Context (MDC) keys be classified (trusted structural or untrusted content)?
If keys are trusted, the framework may reject a malformed key by throwing rather than sanitizing it, and does not need to escape special characters in keys in structured layouts. Key-based injection would be out of scope, with "do not populate keys from untrusted input" becoming a documented developer responsibility. GitHub link: https://github.com/apache/logging-log4j2/discussions/4132#discussioncomment-17126244 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected]
