Package org.wildfly.common.xml

Class TransformerFactoryUtil

  • public final class TransformerFactoryUtil
extends java.lang.Object
    Factory provides TransformerFactory with secure defaults set. Properties not supported generate a warning, but the factory process creation will continue and return a result. Settings based on recommendations of Sonarcloud RSPEC-2755 and OWASP XML External Entity Prevention Cheatsheet.

    • XMLConstants.FEATURE_SECURE_PROCESSING is set to true.
    • XMLConstants.ACCESS_EXTERNAL_DTD is set to empty.
    • XMLConstants.ACCESS_EXTERNAL_STYLESHEET is set to empty.
    Since:
    1.6.0.Final
    Author:
    Boris Unckel

    • Method Summary

      All Methods Static Methods Concrete Methods 
      Modifier and Type Method Description
      static javax.xml.transform.TransformerFactory create()  

      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

    • Method Detail

      • create

        @NotNull
public static javax.xml.transform.TransformerFactory create()