Henri Biestro created JEXL-464:
----------------------------------

             Summary: Default permissions are SECURE and default features 
disable new, loops and global side effects.
                 Key: JEXL-464
                 URL: https://issues.apache.org/jira/browse/JEXL-464
             Project: Commons JEXL
          Issue Type: New Feature
    Affects Versions: 3.6.3
            Reporter: Henri Biestro
            Assignee: Henri Biestro
             Fix For: 3.6.4


To avoid any unintended usage through a scope that may be too wide and that 
some users may try and exploit, the default configuration will restrict access 
to classes and features that represent a bare minimum.
This will help application developers realize how much is at stake when 
exposing scripting to users and make conscious choices about what they want to 
expose. 



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to