exceptionfactory commented on PR #10950: URL: https://github.com/apache/nifi/pull/10950#issuecomment-3986501258
> @exceptionfactory Aren't the vulnerabilities associated more with what value one picks for the `SECURE_PROCESSING` property? There are different classes of vulnerabilities. Secure Processing covers them in general, but allowing DTD resolution is a more narrow type of potential issue. Although it is possible to scope down the issues, it is still a potential attack vector. Given that fact, introducing a new property without an overriding use cases is less than optimal from a maintenance perspective. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
