What Changed
To enhance overall security, we modified internal logic associated with type name processing (including, but not limited to our deserialization mechanism).
If the following data sources use untrusted types, data loading-related restore operations involving these data sources will generate security warnings:
Reasons for Change
This change enhances overall app security by detecting code that processes untrusted types.
Impact on Existing Apps
If you utilize untrusted types, restore operations involving data sources will generate security warnings.
Note: If your current deserialization policy trusts a specific type, using this type within restore operations will not generate security warnings.
If you are unable to resolve issues introduced by this change, contact DevExpress support for assistance.
How to Update the Existing App
To explicitly trust a type for restore operations, call the RegisterTrustedClass
method before application startup.
C#static void Main() {
DevExpress.Utils.DeserializationSettings.RegisterTrustedClass(typeof(CustomClass));
// ...
}
How to Revert to Previous Behavior
The previous behavior is no longer available.