In the compiled jar, there is a data.zip file location in org\h2\util\. In data.zip, there is a tools.jsp file that has a dom-xss finding flagged by Fortify tool.jsp. Wondering if data.zip is just a sample since the source jar doesn't have a data.zip file. Can anyone confirm if data.zip is okay to manually remove from the compiled jar?
-- You received this message because you are subscribed to the Google Groups "H2 Database" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/h2-database. For more options, visit https://groups.google.com/d/optout.
