pjfanning commented on PR #7548: URL: https://github.com/apache/gravitino/pull/7548#issuecomment-3035631574
@yuqi1129 This looks sensible enough to me. We don't want to overdo the types of params that we check because there might be legitimate reasons to use some params. There is also the philosophical question of whether we should accept that anyone allowed to provide a JDBC URL to the Gravitino app has a lot of power. Basically every part of the URL is sensitive - the host, port, db name, param settings, etc. So basically, is it not more important to worry about who provides these URLs as opposed to what is in the URL? -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
