On Tue, Apr 19, 2011 at 1:22 PM, Matthew Toseland <[email protected] > wrote:
> > This is a danger. If someone wants to compromise us, with Maven they > just > > need to compromise any one of our dependencies. > > > > We would need to stick to trusted repositories, but switching to Maven > would > > make development quite a bit easier. > > Agreed. If it is secure, it is worth serious consideration. > We might also want to consider some of the Maven-compatible built tools out there, including Apache Ivy, Groovy Grape, and Apache Buildr. I primarily use Maven, but the ludicrously verbose XML configuration files really get annoying to work with. (I'd like to kick the butt of whichever moron decided that it would be a great idea to use a text markup language as a generic human-readable data representation language) Ian. -- Ian Clarke Personal blog: http://blog.locut.us/
_______________________________________________ Devl mailing list [email protected] http://freenetproject.org/cgi-bin/mailman/listinfo/devl
