Bug#753404: zope.security: Port python-zope.security-untrustedpython from Ubuntu
Barry Warsaw
barry at debian.org
Tue Jul 1 15:52:07 UTC 2014
On Jul 01, 2014, at 05:24 PM, Brian Sutherland wrote:
>The reason it was not added in Debian is because it requires the
>RestrictedPython package:
>
> https://pypi.python.org/pypi/RestrictedPython
>
>That has security implications, and no-one wanted to take responsibility
>for that.
I don't blame "them".
As it turns out, I'd forgotten that I already sync'd zope.security into
Ubuntu, so already dropped this package. This will break a few reverse
dependencies which only exist in Ubuntu:
Reverse-Depends
===============
* python-zope.app.pagetemplate
* python-zope.browserpage
* python-zope.pagetemplate
* python-zope.ptresource
Still, I don't want to block on updating this stack. If no one steps up to
take this on in Debian, and it's a critical need in Ubuntu, we'll deal with it
there.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-zope-developers/attachments/20140701/2eec2912/attachment-0001.sig>
More information about the pkg-zope-developers
mailing list