[Openid-specs-ab] Issue #1810: JSON.Path Security Considerations (openid/connect)
Kristina Yasuda
issues-reply at bitbucket.org
Sun Feb 5 02:02:07 UTC 2023
New issue 1810: JSON.Path Security Considerations
https://bitbucket.org/openid/connect/issues/1810/jsonpath-security-considerations
Kristina Yasuda:
add a text that implementers must not support arbitrary scripting \(\+ potentially a discussion on potential risks\). More context here: [JSONpath is a security issue · Issue #398 · decentralized-identity/presentation-exchange \(github.com\)](https://github.com/decentralized-identity/presentation-exchange/issues/398)
More information about the Openid-specs-ab
mailing list