[Distutils] Autobuild packages using snakebite

Stefan Behnel stefan_ml at behnel.de
Fri Jun 19 07:24:21 CEST 2009

Previous message: [Distutils] Autobuild packages using snakebite
Next message: [Distutils] Autobuild packages using snakebite
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Leonardo Santagada wrote:
> The biggest problem I see is security, but if people are really
> interested in this we could at least try it no?

Security certainly is a major issue here. Anyone can upload packages to
PyPI, so you can run arbitrary code on tons of machines, just by pushing
some well-forged setup.py script there.

Stefan

Previous message: [Distutils] Autobuild packages using snakebite
Next message: [Distutils] Autobuild packages using snakebite
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Distutils-SIG mailing list