mohit07dec opened a new pull request, #3921: URL: https://github.com/apache/hertzbeat/pull/3921
## What's changed? - Added a new documentation page explaining HertzBeat’s default embedded H2 usage and clearly stating it is for **testing/sandbox only** (not recommended for production). - Documented a key security risk: if an attacker can execute SQL against H2, features like `CREATE ALIAS` may allow **arbitrary Java code execution**. - Linked to official [H2 security guidance](https://h2database.com/html/security.html) and pointed users to the existing MySQL/PostgreSQL migration docs for production deployments. - Updated docs sidebars so the H2 page appears under **Quickstart → change-db** (current docs + v1.6.x), including zh-cn translations. ## Checklist - [x] I have read the [Contributing Guide](https://hertzbeat.apache.org/docs/community/code_style_and_quality_guide) (docs changes only). - [x] I have written the necessary doc or comment. - [ ] I have added the necessary unit tests and all cases have passed. (Not applicable: documentation-only change.) ## Add or update API - [ ] I have added the necessary [e2e tests](https://github.com/apache/hertzbeat/tree/master/e2e) and all cases have passed. (Not applicable: docs-only change; no API behavior changes.) -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
