walterddr opened a new issue, #9365: URL: https://github.com/apache/pinot/issues/9365
Problem Statement === Previously we allow arbitrary groovy scripts in pinot SQL (see: https://docs.pinot.apache.org/users/user-guide-query/scalar-functions#groovy-scripts) This causes potential RCE security issue. We would like to propose a groovy function registry that is guarded by ACL. - only authorized accounts are allowed to register groovy functions; - users on all access level will have access to use registered groovy functions, This way (1) ad-hoc groovy scripts can be disabled to avoid potential security risk; and (2) we still allow using registered groovy functions -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
