document mitigation strategies module and enforcer plugin

algomaster99 · algomaster99 · commit 8394872ecc27 · 2025-07-01T15:05:12.000+02:00
diff --git a/java/maven/abstract-project/README.md b/java/maven/abstract-project/README.md
@@ -121,3 +121,28 @@ The concept is to seal `postgresql` jar.
    java.lang.SecurityException: sealing violation: package org.postgresql is 
    sealed
    ```
+
+### Java Modules
+
+See https://github.com/FredBonux/class-hijack-poc/tree/mitigation-module
+
+The packaging of victim application will fail.
+
+### Maven Enforcer Plugin
+
+Using any of the above packaging techniques with profile `enforcer` and 
+expect a build failure.
+Example:
+```shell
+mvn clean package -Passembly,enforcer
+```
+```text
+[ERROR] Rule 0: org.codehaus.mojo.extraenforcer.dependencies.BanDuplicateClasses failed with message:
+[ERROR] Duplicate classes found:
+[ERROR] 
+[ERROR]   Found in:
+[ERROR]     dev.scored:D11:jar:1.0.0:compile
+[ERROR]     org.postgresql:postgresql:jar:42.7.7:compile
+[ERROR]   Duplicate classes:
+[ERROR]     org/postgresql/Driver.class
+```
