Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-4125

Add basic security settings to TransformXml

    XMLWordPrintableJSON

Details

    • Improvement
    • Status: Resolved
    • Minor
    • Resolution: Fixed
    • 1.3.0
    • None
    • Core Framework

    Description

      Since data flows can generally deal with non-trusted data, the processors should handle it in a secure manner.

      In case of XML there are various known vulnerabilities - OWASP. Some can be mitigated via XML parser/XSLT Processor features.

      The TransformXml processor should have a setting enabling these secure settings.

      Attachments

        Issue Links

          relates to

          Improvement - An improvement or enhancement to an existing feature or task. NIFI-9399 Apply Secure Processing to TransformXml XSLT Sources

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          links to

          Web Link GitHub Pull Request #1946

          Activity

            People

              Unassigned Unassigned
              yuri1969 Yuri
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: