2010YOUY01 commented on PR #7058:
URL:
https://github.com/apache/arrow-datafusion/pull/7058#issuecomment-1652865045
> > Is this because there might be some other unexpected behavior we might
not be aware of for now?
>
> Yes, I am concerned that since DataFusion is used to build server
software, that it doesn't have security vulnerabilities. Accessing the
environment and home directories are classic attack vectors from my
understanding
TIL 👍🏼
Also I took a look at that approach, and although it's doable, it will make
related code less readable and bring in
an additional configuration knob.
I think the extra complexity outweighs the benefits of this feature, so I
will be closing this PR.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
