...
Always assign appropriate permissions to code. Define custom permissions when the granularity of the standard permissions is insufficient. See guideline rule SEC10-J. Define custom security permissions for fine grained security for more information.
...
This example also violates guideline rule SEC11-J. Call the superclass's getPermissions method when writing a custom class loader.
...