Currently JFR files are listed as sensitive files because they contained access tokens in the past:
|
# Java Flight Recorder files contain session token in some Minecraft versions |
|
- '.*\.jfr' |
However, we were told internally (where #751 had been mentioned as well), that the latest Minecraft versions do not include the access token in the JFR files anymore.
So in for example a month (to add some safety delay in case users still upload them from old versions) we should probably remove the JFR files from the sensitive file names list again.
Currently JFR files are listed as sensitive files because they contained access tokens in the past:
arisa-kt/config/config.yml
Lines 194 to 195 in 743fbd2
However, we were told internally (where #751 had been mentioned as well), that the latest Minecraft versions do not include the access token in the JFR files anymore.
So in for example a month (to add some safety delay in case users still upload them from old versions) we should probably remove the JFR files from the sensitive file names list again.