marcphilipp
commented
4 years ago I don't think we should do that. You could manually change the permissions of the temporary folder or stay on 4.13.
@kcooney WDYT?
Closed bradyoo closed 4 years ago
marcphilipp
commented
4 years ago I don't think we should do that. You could manually change the permissions of the temporary folder or stay on 4.13.
@kcooney WDYT?
panchenko
commented
4 years ago I would recommend explicitly setting the desired permissions, as this is quite a special case. Long term that would simplify migrating to JUnit 5.
kcooney
commented
4 years ago I agree with Marc. If you need this functionality you could create your own rule that extends ExternalResource
After the fix for https://github.com/junit-team/junit4/security/advisories/GHSA-269g-pwp5-87pp, the test I have had that creates temp files with multiple users need access broke.
I am wondering if there can be an option to create a TemporaryFolder without the limited access if I'm not worried about the information disclosure vulnerability.