Details
-
Improvement
-
Status: Open
-
Minor
-
Resolution: Unresolved
-
2.2.0
-
None
-
None
Description
When using the SecureASTCustomizer to specify a package whitelist or blacklist it'd be nice to be able to say "whitelist this package and all subpackages and classes", maybe using "java.io.**" as syntax.
If that is not feasible, it'd be nice if normalizeStarImportsList(), assertStarImportIsAllowed(), assertImportIsAllowed() and assertStaticImportIsAllowed() were made protected instead of private so that they can be overriden.