Add security tips for mock plugin. (apache#893)

LiuTianyou · web-flow · commit bee2cbdba9a7 · 2023-04-18T18:07:25.000+08:00
diff --git a/docs/plugin-center/mock/mock-plugin.md b/docs/plugin-center/mock/mock-plugin.md
@@ -19,6 +19,8 @@ description: mock plugin
 * Set the status code and body of the request.
 * Support configuration `${}` placeholder to automatically generate data.
 
+* **Note:** In order to support a more flexible data generation method, the mock plug-in supports users to use SpEL expressions to generate mock data. Using SpEL expressions may lead to the risk of executing malicious scripts or applying destructive programs. We recommend that you be extra careful when using them, use them in a safe environment as much as possible, such as an intranet environment, and follow security best practices.
+
 ## 1.4 Plugin Code
 
 * Core module ```shenyu-plugin-mock```
diff --git a/i18n/zh/docusaurus-plugin-content-docs/current/plugin-center/mock/mock-plugin.md b/i18n/zh/docusaurus-plugin-content-docs/current/plugin-center/mock/mock-plugin.md
@@ -18,6 +18,8 @@ description: mock插件
 
 * 设置请求的响应状态码和响应体。
 * 支持配置 `${}` 占位符自动生成数据。
+* **注意:** mock 插件为了支持更加灵活的数据生成方式，支持用户使用 SpEL 表达式生mock数据。使用SpEL表达式可能会导致执行恶意脚本或应用破坏性程序的风险。我们建议您在使用时格外小心，尽可能在安全的环境中使用，例如内网环境，并遵循安全最佳实践。
+
 
 ## 1.4 插件代码
 
diff --git a/i18n/zh/docusaurus-plugin-content-docs/version-2.5.1/plugin-center/mock/mock-plugin.md b/i18n/zh/docusaurus-plugin-content-docs/version-2.5.1/plugin-center/mock/mock-plugin.md
@@ -18,6 +18,7 @@ description: mock插件
 
 * 设置请求的响应状态码和响应体。
 * 支持配置 `${}` 占位符自动生成数据。
+* **注意:** mock 插件为了支持更加灵活的数据生成方式，支持用户使用 SpEL 表达式生mock数据。使用SpEL表达式可能会导致执行恶意脚本或应用破坏性程序的风险。我们建议您在使用时格外小心，尽可能在安全的环境中使用，例如内网环境，并遵循安全最佳实践。
 
 ## 1.4 插件代码
 
diff --git a/versioned_docs/version-2.5.1/plugin-center/mock/mock-plugin.md b/versioned_docs/version-2.5.1/plugin-center/mock/mock-plugin.md
@@ -19,6 +19,8 @@ description: mock plugin
 * Set the status code and body of the request.
 * Support configuration `${}` placeholder to automatically generate data.
 
+* **Note:** In order to support a more flexible data generation method, the mock plug-in supports users to use SpEL expressions to generate mock data. Using SpEL expressions may lead to the risk of executing malicious scripts or applying destructive programs. We recommend that you be extra careful when using them, use them in a safe environment as much as possible, such as an intranet environment, and follow security best practices.
+
 ## 1.4 Plugin Code
 
 * Core module ```shenyu-plugin-mock```
