On Fri, Feb 15, 2013 at 6:30 AM, Nick Coghlan <ncogh...@gmail.com> wrote: > Generalising that to grant the ability to upload arbitrary bootstrap > scripts to every project for no good reason is making a bad situation > worse, for zero payoff. So let's not do that.
Completely agree. There's a legit need for the pip and buildout bootstrap scripts to have a "good home", and I like the idea of making PyPI that home. That means that these bootstrap scripts can benefit from any future security improvements PyPI gets. But there's no need to make it a general thing; make it a special case, just for those projects. If other projects want similar special treatment, they can ask. As a maintainer of Django I have no problem with this; if we wanted a djangobootstrap.py I'd be completely OK having to ask first. Jacob PS: If I do ever ask for that, ask me what I'm smoking and then say "no", OK? _______________________________________________ Catalog-SIG mailing list Catalog-SIG@python.org http://mail.python.org/mailman/listinfo/catalog-sig
