Henri Biestro created JEXL-464:
----------------------------------
Summary: Default permissions are SECURE and default features
disable new, loops and global side effects.
Key: JEXL-464
URL: https://issues.apache.org/jira/browse/JEXL-464
Project: Commons JEXL
Issue Type: New Feature
Affects Versions: 3.6.3
Reporter: Henri Biestro
Assignee: Henri Biestro
Fix For: 3.6.4
To avoid any unintended usage through a scope that may be too wide and that
some users may try and exploit, the default configuration will restrict access
to classes and features that represent a bare minimum.
This will help application developers realize how much is at stake when
exposing scripting to users and make conscious choices about what they want to
expose.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)