Using this standard, people can know what packages you are using because of its predictable paths. Some packages are running server-side code as well as exposing public assets.
I said (in the comments of the gist) that exposing stuff is the responsibility of the developer. I’m sure some people will be confused and disclose informations they shouldn’t (as mention by Fabien). Le lundi 17 octobre 2016 16:43:25 UTC+9, Rasmus Schultz a écrit : > > I wrote a draft for a simple scheme for the inclusion of static assets in > (Composer) packages. > > https://gist.github.com/mindplay-dk/90507eb164e74bac7bbbf9abc97a04ee > > Not submitting this or anything, just dumping it here to start a > discussion :-) > > Thoughts? > > -- You received this message because you are subscribed to the Google Groups "PHP Framework Interoperability Group" group. To unsubscribe from this group and stop receiving emails from it, send an email to php-fig+unsubscr...@googlegroups.com. To post to this group, send email to php-fig@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/php-fig/c2ba50bb-ad74-4675-8ccd-08cdd8a360a0%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.