gnodet commented on code in PR #24196:
URL: https://github.com/apache/camel/pull/24196#discussion_r3458818938
##########
components/camel-http-common/src/main/java/org/apache/camel/http/common/HttpHelper.java:
##########
@@ -40,9 +41,23 @@
import org.apache.camel.util.IOHelper;
import org.apache.camel.util.URISupport;
import org.apache.camel.util.UnsafeUriCharactersEncoder;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
public final class HttpHelper {
+ /**
Review Comment:
This default filter includes `maxdepth=20;maxrefs=10000;maxbytes=10485760`
which none of the sibling components (`camel-netty-http`, `camel-vertx-http`,
`camel-jms`) include in their `DEFAULT_DESERIALIZATION_FILTER`. Their default
is:
```
!java.net.**;java.**;javax.**;org.apache.camel.**;!*
```
Is this intentional? If so, it would be good to unify across all components
in a follow-up. If not, dropping the graph-shape limits here would align
exactly with the siblings.
_Claude Code on behalf of Guillaume Nodet_
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
