GitHub user vy added a comment to the discussion: Threat model: how should Thread Context (MDC) keys be classified (trusted structural or untrusted content)?
@FreeAndNil has captured it nicely. I agree with all his remarks. GitHub link: https://github.com/apache/logging-log4j2/discussions/4132#discussioncomment-17136813 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected]
