Greetings! I'm the project Co-Lead for OWASP's ESAPI project, and I'm looking into this library to enhance capability. What I'm unsure about is that it looks like every release was either "incubator" or "Snapshot," and if we brought it on as a dependency, many companies have rules against using "snapshot" terminology.
What kind of instability are we talking about? Is it security related or just bugs for particular file types? This is what sparked my interest: https://www.owasp.org/index.php/Protect_FileUpload_Against_Malicious_File#Case_n.C2.B03:_Images -- xeno6696 --------------------------------------------------------------------- To unsubscribe, e-mail: user-unsubscr...@commons.apache.org For additional commands, e-mail: user-h...@commons.apache.org
