You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@sling.apache.org by "Felix Meschberger (JIRA)" <ji...@apache.org> on 2015/02/06 15:42:34 UTC

[jira] [Commented] (SLING-4293) [XSS] Reduce footprint and dependencies

    [ https://issues.apache.org/jira/browse/SLING-4293?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14309231#comment-14309231 ] 

Felix Meschberger commented on SLING-4293:
------------------------------------------

This is related to SLING-4273. I think by reducing the embedding footprint, we can drammatically reduce the imports

> [XSS] Reduce footprint and dependencies
> ---------------------------------------
>
>                 Key: SLING-4293
>                 URL: https://issues.apache.org/jira/browse/SLING-4293
>             Project: Sling
>          Issue Type: Improvement
>          Components: Extensions
>            Reporter: Felix Meschberger
>             Fix For: XSS Protection API 1.0.0
>
>         Attachments: SLING-4293.patch
>
>
> The XSS bundle currently embeds all of the Antisamy, ESAPI, and Encoder libraries as well as substantial parts of Batik, NekoHTML, and Xerces. This is done by means of Private-Package and Embed-Dependency statements.
> Leveraging the BND Conditional-Package statement, both the size of the XSS bundle and the dependencies of it can be drastically reduced. The Conditional-Package statement basically causes just to include those packages that are actually needed to be embedded.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)