On Tue, Jun 15 2021 at 18:21:56 +0000, "Canapathy, Subash"
<[email protected]> wrote:
Regarding security constraints on why we disallow plugins and
requirements on the webserver, I will have to discuss this in person
on PMC but on a high level this comes down to remote code execution
prevention on managed instances, opening possibilities of exploiting
vulnerabilities on the flask-app-builder and the underlying python
runtime.
I'm sorry, I don't agree with this summary.
Airflow's job is to run user submitted code, and to allow the UI to be
pluggable.
Are you providing Airflow, or an Airflow like service?
