You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@sling.apache.org by "Robert Munteanu (JIRA)" <ji...@apache.org> on 2016/08/04 09:14:20 UTC

[jira] [Updated] (SLING-4293) [XSS] Reduce footprint and dependencies

     [ https://issues.apache.org/jira/browse/SLING-4293?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Robert Munteanu updated SLING-4293:
-----------------------------------
    Fix Version/s:     (was: XSS Protection API 1.0.10)
                   XSS Protection API 1.0.12

> [XSS] Reduce footprint and dependencies
> ---------------------------------------
>
>                 Key: SLING-4293
>                 URL: https://issues.apache.org/jira/browse/SLING-4293
>             Project: Sling
>          Issue Type: Improvement
>          Components: Extensions
>    Affects Versions: XSS Protection API 1.0.0
>            Reporter: Felix Meschberger
>             Fix For: XSS Protection API 1.0.12
>
>         Attachments: SLING-4293.patch
>
>
> The XSS bundle currently embeds all of the Antisamy, ESAPI, and Encoder libraries as well as substantial parts of Batik, NekoHTML, and Xerces. This is done by means of Private-Package and Embed-Dependency statements.
> Leveraging the BND Conditional-Package statement, both the size of the XSS bundle and the dependencies of it can be drastically reduced. The Conditional-Package statement basically causes just to include those packages that are actually needed to be embedded.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)