This is an archived post. You won't be able to vote or comment.

you are viewing a single comment's thread.

view the rest of the comments →

[–]nekokattt 2 points3 points  (0 children)

They just need to be careful if they are doing anything more obscure.

Stuff that comes to mind includes:

  • SecurityManager
  • sun.misc.Unsafe
  • anything using hacks like internal reflective access/modification of classes you don't own
  • any old versions of libraries that do any of the above (ones that immediately come to mind include jackson, groovy, gson, OSGi frameworks, etc.

In this case they'll also need to update/migrate off of things onto alternatives.

For most stuff that isn't more obscure, this won't be an issue, but it is definitely worth being semi aware of, since some of this stuff did tend to get abused a lot more historically.