Y
Hacker News
new
|
ask
|
show
|
jobs
by
krzyk
710 days ago
But maven does not.
2 comments
oftenwrong
709 days ago
Maven plugins and extensions can execute arbitrary code, so you should still exercise care when running an untrusted maven project.
link
stefs
710 days ago
you mean because it's xml instead of executable code?
link
krzyk
709 days ago
No, because it was designed that way - declarative.
You can have xml with code-like-structures, e.g. Ant
link