[
https://issues.apache.org/jira/browse/WW-5353?focusedWorklogId=915667&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-915667
]
ASF GitHub Bot logged work on WW-5353:
--------------------------------------
Author: ASF GitHub Bot
Created on: 20/Apr/24 12:39
Start Date: 20/Apr/24 12:39
Worklog Time Spent: 10m
Work Description: sonarcloud[bot] commented on PR #919:
URL: https://github.com/apache/struts/pull/919#issuecomment-2067661329
## [](https://sonarcloud.io/dashboard?id=apache_struts&pullRequest=919)
**Quality Gate failed**
Failed conditions
 [76.9% Coverage on New
Code](https://sonarcloud.io/component_measures?id=apache_struts&pullRequest=919&metric=new_coverage&view=list)
(required ≥ 80%)
 [C Reliability Rating on New
Code](https://sonarcloud.io/dashboard?id=apache_struts&pullRequest=919)
(required ≥ A)
[See analysis details on
SonarCloud](https://sonarcloud.io/dashboard?id=apache_struts&pullRequest=919)
##
 Catch issues before they fail your Quality Gate with our IDE extension
[SonarLint](https://www.sonarsource.com/products/sonarlint/features/connected-mode/?referrer=pull-request)
Issue Time Tracking
-------------------
Worklog Id: (was: 915667)
Time Spent: 0.5h (was: 20m)
> Implement stronger security defaults in Struts 7.0
> --------------------------------------------------
>
> Key: WW-5353
> URL: https://issues.apache.org/jira/browse/WW-5353
> Project: Struts 2
> Issue Type: Improvement
> Reporter: Kusal Kithul-Godage
> Priority: Major
> Fix For: 7.0.0
>
> Time Spent: 0.5h
> Remaining Estimate: 0h
>
> {{struts.ognl.allowStaticFieldAccess=false}}
> {{struts.ognl.excludedNodeTypes=<TBA>}}
> {{struts.ognl.expressionMaxLength=150}}
> {{struts.disallowDefaultPackageAccess=true}}
> {{struts.disallowProxyMemberAccess=true}}
> {{struts.parameters.requireAnnotations=true}}
> {{struts.ognl.disallowCustomOgnlMap=true}}
> {{struts.allowlist.enable=true}}
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
