maven-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Marc Pompl (JIRA)" <j...@codehaus.org>
Subject [jira] (MRELEASE-861) Rule for JSP comments
Date Fri, 03 Jan 2014 11:13:45 GMT

    [ https://jira.codehaus.org/browse/MRELEASE-861?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=338029#comment-338029
] 

Marc Pompl commented on MRELEASE-861:
-------------------------------------

Sorry Robert, wrong component. :-) JIRA mucked me about. :-/
I will close this request and file it for the correct project.

                
> Rule for JSP comments
> ---------------------
>
>                 Key: MRELEASE-861
>                 URL: https://jira.codehaus.org/browse/MRELEASE-861
>             Project: Maven Release Plugin
>          Issue Type: Wish
>    Affects Versions: 2.1
>            Reporter: Marc Pompl
>            Assignee: Robert Scholte
>            Priority: Minor
>
> It would be really nice if there was a rule to enforce JSP style comments instead of
HTML comments. JSP comments have the benefit of be stripped from the rendered HTML. For this,
it increases security since developers leave regularly hints for attackers.
> So, the rule has to find usages of i.e.
> <!-- set this to X and the server crashes -->
> and suggest the usage of
> <%-- no my clue is hidden from any browser -->

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators
For more information on JIRA, see: http://www.atlassian.com/software/jira

Mime
View raw message