fix: configure Jetty to block dangerous request URLs (!3) · Merge requests · Library / Developers / AMS / archivesspace-container

Hal Blackburn requested to merge jetty-9-strict-http-compliance into main Dec 08, 2024

This PR enables Jetty's HTTP compliance options to disable ambiguous/dangerous HTTP request attributes. It also upgrades Jetty to the latest 9.x version, and supports configuring the Jetty version in the ArchivesSpace image build.

fix: configure Jetty to block dangerous request URLs

Merge request reports