tripodsan commented on pull request #89: URL: https://github.com/apache/jackrabbit-filevault/pull/89#issuecomment-651657301
> Would require API changes, as currently only starting requires passing a session. Also I don't see the additional benefit here. > An attacker could add tasks that copy (confidential) content to his own repository and then _somehow_ manage to get the start started. especially if the entire process is automated, this could easily happen unnoticed. ---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org
