Components such as ExecuteProcess and ExecuteStreamCommand support The framework supports configurable permissions that enable authorized users to execute code ⛔️ Send a message to the project Slack instance disclosing a security vulnerability to the publicĬonfiguring dangerous operating system commands or custom scripts is not a project security vulnerability.Īuthenticated and authorized users are responsible for the security of operating system commands and customĪpache NiFi provides a framework for developing processing pipelines using standard and customĬomponents.⛔️ Send a message to the project mailing lists disclosing a security vulnerability to the public.⛔️ Open a Jira disclosing a security vulnerability to the public.Policy for general guidelines applicable disclosure of security issues for Apache Software Foundation projects.ĭo not perform the following actions after discovering a potential security concern: Please read the Apache Project Security for Committers Project Management Committee members will collaborate and respond to potential vulnerabilities, providing anĪssessment of the concern and a plan of action to remediate verified issues. Apache NiFi welcomes the responsible reporting of security vulnerabilities.
0 kommentar(er)
