On Tue, Jul 12, 2005 at 01:33:12PM -0500, Aaron Griffin wrote: > On 7/12/05, Jason Chu <[EMAIL PROTECTED]> wrote: > > On Tue, Jul 12, 2005 at 06:56:26PM +0100, Philip Dillon-Thiselton wrote: > > > I take it this is the guidelines I am trying to develop? The AUR freaks > > > out if your try and > > > upload a PKGBUILD without source or md5sum fields - but it will let you > > > put blank ones :) > > > > I think that's probably something that needs to be fixed in the AUR then. > > The parsing script is definitely sub-par. > > Agreed, but what-cha gonna do? Implement a whole subset of bash in php > to parse all variables? why not run it through bash once? (source > PKGBUILD && echo $source)
What if the PKGBUILD contained a rm -r / (or something the nobody user did own) outside of the build() function? source is just going to execute it. > as for the empty source/md5sums thing - sounds simple enough... I'm > going to assume there's an actual check for this and it's not just a > side effect. I'm pretty sure it is a check. > PS - why doesn't the AUR use namcap? Because. No reason that I'm aware of. Jason -- If you understand, things are just as they are. If you do not understand, things are just as they are.
pgpoXsatBJSmC.pgp
Description: PGP signature
_______________________________________________ arch mailing list [email protected] http://www.archlinux.org/mailman/listinfo/arch
