Details
-
Improvement
-
Status: Resolved
-
Minor
-
Resolution: Fixed
-
1.15.0
-
None
Description
The TransformXml processor supports Secure Processing as of NiFi 1.3.0, which prevents external access attempts using XML entity references. The Secure Processing property applies to input FlowFiles, but does not apply to the XSLT source that the processor uses during transformation. TransformXml should be updated to apply Secure Processing to XSLT sources.
Attachments
Issue Links
- is related to
-
NIFI-4125 Add basic security settings to TransformXml
- Resolved
- links to