[development] Drupal's CVS policies... including 'foriegn' code in TinyMCE module?
Jeff Eaton
jeff at viapositiva.net
Mon May 21 19:33:43 UTC 2007
it isn't "very simple;" security patches are just one aspect of issue.
What about the fact that Drupal, despite its breakneck pace, moves
SLOWER than some other GPL projects? In those scenarios, we actually
need to keep an older version for compatibility issues.
--Jeff
On May 21, 2007, at 2:08 PM, Karoly Negyesi wrote:
>> I don't understand what's so inconvenient in allowing external files.
>
> It's very simple. When there is a security fix released for the 3rd
> party code then our repository necessarily will be some time behind
> -- if the maintainer is sloppy then seriously behind. I do not want
> Drupal distributing insecure code. Solve this problem and we can
> move on.
More information about the development
mailing list