Comment by p0w3n3d 10 hours ago what exactly is the security concern with xslt? 4 comments p0w3n3d Reply TingPing 10 hours ago It parses untrusted input, the library is basically unmaintained, it’s not often audited but anytime someone looks they find a CVE. JimDabell 10 hours ago This is answered in the article. jeffbee 9 hours ago XSLT the idea contains few (but not zero) unavoidable security flaws.libxslt the library is a barely-maintained dumpster fire of bad practices. ryoshu 9 hours ago They should audit LLMs.
TingPing 10 hours ago It parses untrusted input, the library is basically unmaintained, it’s not often audited but anytime someone looks they find a CVE.
jeffbee 9 hours ago XSLT the idea contains few (but not zero) unavoidable security flaws.libxslt the library is a barely-maintained dumpster fire of bad practices. ryoshu 9 hours ago They should audit LLMs.
It parses untrusted input, the library is basically unmaintained, it’s not often audited but anytime someone looks they find a CVE.
This is answered in the article.
XSLT the idea contains few (but not zero) unavoidable security flaws.
libxslt the library is a barely-maintained dumpster fire of bad practices.
They should audit LLMs.