Security framework of XStream not initialized, XStream is probably vulnerable I keep getting this console error in red while using XStream (1.4.10) I tried the following: XStream.setupDefaultSecurity(xs); and xs.addPermission(AnyTypePermission.ANY); xs.addPermission(NoTypePermission.NONE); none of which got rid of it. I do not need any fancy security settings, I just want to silence that warning. Maybe also prepare the code for 1.5.x Answer