Do they include user input, or just our own messages? I thought just the latter, so XSS wouldn't be an issue. It's fine to drop them, though... I think users should never see those error messages anyway, if they are using the web service with links from our own monitor app, because we'll never provide a link which generates such an error message (we shouldn't anyway).
[ Full content available at: https://github.com/apache/accumulo/pull/625 ] This message was relayed via gitbox.apache.org for [email protected]
