As part of our IT security activities "file-management" passed me by. With file-management the focus was on the control over files that are being uploaded. There are different levels of control you can implement. Probably the easiest but also the worst control you can apply is the control on file extension.
If you want to go a level deeper you want to check the content type of a file. For this you need third party libraries.
Apache Tika goes much further but it supports to scan a file for it’s meta-data and has a wide support for a large scale of different types of files.
This is a companion discussion topic for the original entry at https://quintessens.wordpress.com/2025/11/04/file-management-in-xpages/