Hello everyone, Java 24 is removing the Security Manager. This is pertinent to us, since we have the SecurityManager enabled by default.
Because of this we need to disable the Security Manager when running Java 24+. We also probably want to remove it entirely for Solr 10. We can do this, but we should really make sure that we still have the same security guarantees built-in to Solr. We have this already with allowedPaths, but we should audit the codebase to make sure this assumption of security is correct. The ticket that is managing this is https://issues.apache.org/jira/browse/SOLR-17641 - Houston
