You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@sling.apache.org by "Radu Cotescu (JIRA)" <ji...@apache.org> on 2016/01/25 14:04:39 UTC

[jira] [Updated] (SLING-4293) [XSS] Reduce footprint and dependencies

     [ https://issues.apache.org/jira/browse/SLING-4293?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Radu Cotescu updated SLING-4293:
--------------------------------
    Fix Version/s:     (was: XSS Protection API 1.0.8)
                   XSS Protection API 1.0.10

> [XSS] Reduce footprint and dependencies
> ---------------------------------------
>
>                 Key: SLING-4293
>                 URL: https://issues.apache.org/jira/browse/SLING-4293
>             Project: Sling
>          Issue Type: Improvement
>          Components: Extensions
>    Affects Versions: XSS Protection API 1.0.0
>            Reporter: Felix Meschberger
>             Fix For: XSS Protection API 1.0.10
>
>         Attachments: SLING-4293.patch
>
>
> The XSS bundle currently embeds all of the Antisamy, ESAPI, and Encoder libraries as well as substantial parts of Batik, NekoHTML, and Xerces. This is done by means of Private-Package and Embed-Dependency statements.
> Leveraging the BND Conditional-Package statement, both the size of the XSS bundle and the dependencies of it can be drastically reduced. The Conditional-Package statement basically causes just to include those packages that are actually needed to be embedded.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)