struts-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF GitHub Bot (Jira)" <j...@apache.org>
Subject [jira] [Commented] (WW-5041) Upgrade to OGNL 3.1.26 and adapt to its new features
Date Tue, 01 Oct 2019 11:43:00 GMT

    [ https://issues.apache.org/jira/browse/WW-5041?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16941760#comment-16941760
] 

ASF GitHub Bot commented on WW-5041:
------------------------------------

yasserzamani commented on pull request #371: WW-5041 Upgrade to OGNL 3.1.26 and adapt to its
new features
URL: https://github.com/apache/struts/pull/371
 
 
   It is green on my local builds. When OGNL 3.1.26 released, this one would be green either.
   
   If merged, Struts would be less brittle when user applies an OgnlSecurityManager. Also
Struts would block OGNL expressions longer than 200 characters (albeit it's unit-tested that
it's still able to set long values e.g. a long email text).
 
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
 
For queries about this service, please contact Infrastructure at:
users@infra.apache.org


> Upgrade to OGNL 3.1.26 and adapt to its new features
> ----------------------------------------------------
>
>                 Key: WW-5041
>                 URL: https://issues.apache.org/jira/browse/WW-5041
>             Project: Struts 2
>          Issue Type: Dependency
>            Reporter: Yasser Zamani
>            Assignee: Yasser Zamani
>            Priority: Major
>             Fix For: 2.5.21, 2.6
>
>
> We're required to adapt and use OGNL new features (security manager and expression max
length) for next release version.



--
This message was sent by Atlassian Jira
(v8.3.4#803005)

Mime
View raw message