On Jun 23, 2015, at 10:03 PM, Christopher D. Ramos wrote: >> Yes, that is what I was saying, where, again, by "git project", you mean >> "some software project that just so happens to do its development in a git >> repository". The use of git is incidental to the problem. > > Heh, I think I finally see where we are talking pass one another. I > wholeheartedly agree with this: "some software project that just so happens > to do its development in a git repository." > > That said, I don't think it's merely incidental. After all, git is, in a > sense, part of the Macports ecosystem by virtue of a version of it being > hosted by Macports. Is there not a policy about hosting ports -- whether > version control or other types of software distribution mechanisms -- that > may distribute projects that ultimately harm a Macports installation?
MacPorts has ports for web browsers (QupZilla, lynx, links). You can use a web browser to download code from web sites, and if you compile and run the code it might be harmful to your computer. Indeed you could download already-compiled programs, which might be harmful. Should MacPorts add a disclaimer to all ports that install a web browser? We have ports for curl and wget, which can be used to programmatically download files from web and ftp sites, which again could harm your computer. Should we add disclaimers to those ports? In addition to the git port you've already encountered for accessing git repositories, we have the subversion, bzr, cvs and mercurial ports, which access different kinds of repositories, which are all just more ways of downloading code which, when run, could be harmful. Should we add disclaimers to those ports? MacPorts includes ports for a variety of programming languages: php, ruby, perl, python, javascript, c, c++, fortran, etc. It is possible to write malicious software in any of those languages. Should MacPorts add disclaimers to those ports? When you launch the Terminal application, it starts a program called a shell. The shell is what processes the commands you type. You could type a command that could harm your computer. MacPorts includes ports for several shells, including bash, tcsh and zsh. Should we add disclaimers to those ports? These are rhetorical questions, and the answer is no, we should not add such disclaimers. _______________________________________________ macports-users mailing list macports-users@lists.macosforge.org https://lists.macosforge.org/mailman/listinfo/macports-users
