On Wed, Aug 20, 2008 at 9:46 AM, Marius Gedminas <[EMAIL PROTECTED]> wrote:
> I heard people complaining a lot about find-links in setup.py files.

Indeed; using those find-links (dependency-links?) leads to
potentially using untrusted package sources unintentionally.
Fortunately, buildout offers a way to disable these ([buildout]

> find-links in your buildout.cfg might be OK.

Indeed; this is where the set of package sources should be identified.


Fred L. Drake, Jr. <fdrake at gmail.com>
"Chaos is the score upon which reality is written." --Henry Miller
Zope3-users mailing list

Reply via email to