Security Considerations
XSLT, XPath, XQuery are Turing-complete functional programming languages with local and remote file access and dynamic execution possibility — therefore, it is recommended to only permit access to them for transformations and/or file processing in a safe and regulated environment, where one has control over the input files and can ensure to execute only previously audited scripts. Should there be a need to access them from an external/public network (or a non-secure sub-network), then it is recommended to limit access with a reverse proxy that implements user authentication and authorization. Furthermore, it is recommended to run the process with a separate user account with access control configured at OS-level to restrict access only to authorized parts of the file system.