Details
-
Improvement
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
-
None
Description
For XSS support, the jsp taglib currently embeds its own copy of an xss library. Instead it should rather use the xss api to avoid a copy
In addition, we should move the package org.apache.sling.scripting.jsp.taglib.helpers to a separate bundle to free the taglib bundle completely from that stuff
Attachments
Issue Links
- relates to
-
SLING-8266 Stop embedding ESAPI
- Closed