Default SNMP v1/v2 returns after new config loaded or reboot

Per your recommended process, I did the following on two different GS108Tv2s, tested the process twice on both, and I get same results all 4 times.

1. Downloaded the current firmware v5.4.2.27 (only performed this process once).
2. Enabled 5.4.2.27 to be active (only performed this process once).
3. Factory reset the switch.

4. Logged back into switch.
5. Crafted my expected configuration (deleted both factory default public and private SNMP v1/v2).
6. Uploaded the Maintenance>>Upload>>HTTP File Upload>>File Type = Text Configuration so it can be utilized as a "canned" config for other switches at a later time. (See note below).
7. Rebooted switch.
8. Logged back into the switch and observe and confirmed; 
     a. the switches are operating on v 5.4.2.27,
     b. the factory defaults for the SNMP v1/v2 returned after the reboot to the switch.

ScreenShots

NOTE

I opened the uploaded configuration where I had deleted the two SNMP v1/v2 Community Configurations.  The uploaded configuration indicates the uploaded configuration contains the factory default SNMP community configurations in it:

snmp-server community ""

snmp-server community ""

POSSIBLE WORKAROUND

I tested a possible workaround where I DISABLED (rather than deleted) the factory default v1/v2 SNMP Community Configurations.  I proceeded to reboot the switch.  The factory default v1/v2 SNMP Community Configurations are still present (as expected since I left them there), BUT at least they remained DISABLED. 

DESIRED OUTCOME

There are three things I'd expect as desired outcomes to reporting this security issue.  The possible workaround is insufficent long term due to strict security and compliance requirements (remove all default parameters from hardware).

1.  Because this issue creates an unknown threat vector within a user's networking environment, alert GS108Tv2 users of this unexpected condition.  The factory default v1/v2 SNMP Community Configurations are both un-encrypted and well known.  Both SNMP strings give non-authoized individuals read & write access to the switch (default strings are "public" and "private").

2.  Expected behavior when deleting factory default v1/v2 SNMP Community Configurations is the factory default v1/v2 SNMP Community Configurations will remain deleted even after a switch reboot.

3.  The Maintenance>>Upload>>HTTP File Upload>>File Type = Text Configuration must *NOT* include factory default v1/v2 SNMP Community Configurations if the user has deleted the factory default v1/v2 SNMP Community Configurations from the switch.   

HTH