on 12/11/2000 10:34 PM, "Leon Messerschmidt" <[EMAIL PROTECTED]> wrote:
> I added an xslt Service to the cvs.
It needs more documentation and javadocs. I would appreciate it if you would
get that done as soon as possible.
I also want to see us start using code that is secure with regards to
reading file paths. I recently added a method I borrowed from Tomcat to the
StringUtils.java class in Velocity (it is called normalizePath()). I would
like to see your code use that method as well. It prevents people from
trying to do a "/../../../" type of path to get out of the document root.
thanks,
-jon
--
Honk if you love peace and quiet.
------------------------------------------------------------
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Search: <http://www.mail-archive.com/turbine%40list.working-dogs.com/>
Problems?: [EMAIL PROTECTED]
