kusalk opened a new pull request, #781: URL: https://github.com/apache/struts/pull/781
WW-5350 -- Implementation for strict OGNL allowlist feature. It is up to the application to determine which classes/packages need to be allowlisted. The exclusion list will still take precedence (classes on the exclusion list cannot be allowlisted). I hope to clean this implementation up and both `OgnlUtil` and `SecurityMemberAccess` up as part of WW-5343. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: commits-unsubscr...@struts.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
