k4n5ha0 opened a new pull request, #504: URL: https://github.com/apache/tomcat/pull/504
jsp and jspx is dangerous. likes spring4shell and others hacker,they use uplaod jsp or write a webshell to disk. If project need jsp or jspx, they pack web.xml in war with jsp mappings by themself. secure by default. thx! -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org