Package: python3-undetected-chromedriver
Severity: wishlist
Hi,
the package description quite clearly explains that the package
downloads a pre-built driver executable and runs it. Indeed, this is
what happens when you do the simplest thing,
`__import__("undetected_chromedriver").Chrome()`.
For software in main, DFSG#2 requires availability of source code.
Applying this is non-trivial. For instance, we generally consider web
browser compatible even though they frequently download minified
javascript and run it. In a similar vein, they download browser plugins
and the videwine DRM plugin.
I am seeing a difference here. The downloaded javascript is contained in
a sandbox and the other downloads are optional. The browser works
without running untrusted code with user privileges. Other downloader
packages such as snmp-mibs-downloader, firmware-b43-installer,
google-android-platform-tools-installer, steam-installer and others are
packaged outside main. I am not seeing a good way to use
python3-undetected-chromedriver without performing that download. Do you
see such a use?
If not, how about moving the package to the contrib section? How about
enabling it to use the chromium-driver package and patching that?
Thanks for considering
Helmut
