[
https://issues.apache.org/jira/browse/FELIX-4153?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Felix Meschberger resolved FELIX-4153.
--------------------------------------
Resolution: Fixed
Update to latest JavaDoc Plugin 2.9.1 to include the JavaDoc vulnerability
check in Rev. 1498273
Plus have default configuraiton to omit non-API packages from JavaDoc which is
by convention all packages with impl or internal in them. This can easily be
overwritten resetting the site.javadoc.exclude property.
> Use latest JavaDoc plugin and provide default configuration
> -----------------------------------------------------------
>
> Key: FELIX-4153
> URL: https://issues.apache.org/jira/browse/FELIX-4153
> Project: Felix
> Issue Type: Task
> Affects Versions: parent-2
> Reporter: Felix Meschberger
> Assignee: Felix Meschberger
> Fix For: parent-3
>
>
> The latest JavaDoc plugin 2.9.1 has a feature to ensure the generated JavaDoc
> does not expose the JavaDoc vulnerability.
> In addition, I think we should have default configuration to not generate
> JavaDoc at all for implementation classes in impl and internal packages (same
> as BND and the Bundle Plugin by default assume such packages to be private.
> See
> http://maven.apache.org/plugins/maven-javadoc-plugin/javadoc-mojo.html#applyJavadocSecurityFix
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira
