On 20/11/20 11:32 am, Chris Angelico wrote:
It's very tempting to think "oh, I could just make it easier for my users, and then they don't have to think about anything". But what happens when there's a security patch for Python? Are they going to continue to not > think about the dependency?
There seems to be an assumption here that having a natively installable app automatically means bundling everything, including the Python executable. It doesn't have to be that way. There's no reason the installed app can't use a previously installed Python or other libraries.
I still think it would be useful to have some kind of basic installer-creating functionality in the stdlib. Not bundling Python could be the default, or even the only option if you're that concerned about it.