(struts-site) branch master updated (0697e87da -> 88935cc6d)
This is an automated email from the ASF dual-hosted git repository. lukaszlenart pushed a change to branch master in repository https://gitbox.apache.org/repos/asf/struts-site.git from 0697e87da Merge pull request #240 from apache/fix/WW-5400-csp add ef2d9f243 Update index.md to correct allowlist packageNames new 88935cc6d Merge pull request #241 from jogep/patch-1 The 1 revisions listed above as "new" are entirely new to this repository and will be described in separate emails. The revisions listed as "add" were already present in the repository and have only been added to this reference. Summary of changes: source/security/index.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
(struts-site) 01/01: Merge pull request #241 from jogep/patch-1
This is an automated email from the ASF dual-hosted git repository. lukaszlenart pushed a commit to branch master in repository https://gitbox.apache.org/repos/asf/struts-site.git commit 88935cc6dc2c98f8c1a4fa1c434933f8e25e1589 Merge: 0697e87da ef2d9f243 Author: Lukasz Lenart AuthorDate: Wed Jun 12 16:09:33 2024 +0200 Merge pull request #241 from jogep/patch-1 Update index.md to correct allowlist packageNames source/security/index.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)
(struts-site) branch asf-site updated: Automatic Site Publish by Buildbot
This is an automated email from the ASF dual-hosted git repository. git-site-role pushed a commit to branch asf-site in repository https://gitbox.apache.org/repos/asf/struts-site.git The following commit(s) were added to refs/heads/asf-site by this push: new 85cdfa2f6 Automatic Site Publish by Buildbot 85cdfa2f6 is described below commit 85cdfa2f6b4fb8ca8da6f39b837e50d46f71fb1a Author: buildbot AuthorDate: Wed Jun 12 14:10:09 2024 + Automatic Site Publish by Buildbot --- output/security/index.html | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/output/security/index.html b/output/security/index.html index f271dfb73..4cdc88a9b 100644 --- a/output/security/index.html +++ b/output/security/index.html @@ -639,7 +639,7 @@ ensure any necessary parameter injection types are allowlisted, in addition to i struts.allowlist.classes: comma-separated list of allowlisted classes. - struts.allowlist.packages: comma-separated list of allowlisted packages, matched using string comparison via + struts.allowlist.packageNames: comma-separated list of allowlisted packages, matched using string comparison via startsWith. Note that classes in subpackages are also allowlisted.
