[development] Drupal's CVS policies... including 'foriegn' code in TinyMCE module?

Jeff Eaton jeff at viapositiva.net
Mon May 21 19:33:43 UTC 2007

it isn't "very simple;" security patches are just one aspect of issue.

What about the fact that Drupal, despite its breakneck pace, moves  
SLOWER than some other GPL projects? In those scenarios, we actually  
need to keep an older version for compatibility issues.


On May 21, 2007, at 2:08 PM, Karoly Negyesi wrote:

>> I don't understand what's so inconvenient in allowing external files.
> It's very simple. When there is a security fix released for the 3rd  
> party code then our repository necessarily will be some time behind  
> -- if the maintainer is sloppy then seriously behind. I do not want  
> Drupal distributing insecure code. Solve this problem and we can  
> move on.

More information about the development mailing list