Hello!

How to disable external entity resolving in Saxon XSLT from command line?

In other words, how to avoid the XXE vulnerability when XML document is coming from an untrusted source?

For example, xsltproc and msxsl have certain options to don't resolve external definitions.

--
Ruvim