<div dir="ltr"><div class="gmail_extra">Hi,</div><div class="gmail_extra"><br></div><div class="gmail_extra"><div class="gmail_quote"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span id="gmail-m_-1265329916316395630gmail-result_box" class="gmail-m_-1265329916316395630gmail-" lang="en"><span>But in the case</span> <span>of a</span> <span>gis</span><span>,</span> <span>open</span> <span>or not</span><span>,</span> <span>the maximum damage</span> <span>that</span> <span>a plugin can</span> <span>do is</span> <span>produce</span> <span class="gmail-m_-1265329916316395630gmail-">the prints</span> <span>off the</span> <span>press sheet</span><span>.</span> </span></blockquote><div><br></div><div>This is not the case at all.  You can run any code you want, there is no limits as we have a fully functioning Python environment in order to run plugins. </div><div>You can do damage with any programming language, ever heard of a fork bomb?</div><div> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span id="gmail-m_-1265329916316395630gmail-result_box" class="gmail-m_-1265329916316395630gmail-" lang="en"><span><br>Rather</span><span>,</span> <span>I would see</span> <span>the most</span> <span>important</span> <span class="gmail-m_-1265329916316395630gmail-">working upstream</span> <span class="gmail-m_-1265329916316395630gmail-">python</span> <span class="gmail-m_-1265329916316395630gmail-">environment</span><span class="gmail-m_-1265329916316395630gmail-">,</span> <span>and</span> <span class="gmail-m_-1265329916316395630gmail-">the</span> <span class="gmail-m_-1265329916316395630gmail-">plugin</span> <span>to work</span> <span>in a</span> <span>sand-</span><span>safe</span> <span class="gmail-m_-1265329916316395630gmail-">box</span><span>.<br></span></span></blockquote><div><br></div><div>Sandboxing a Python environment is almost impossible in any good functional way. It can be done yes, maybe, but would require a large amount of </div><div>effort to do well, a task which myself, nor any of the other team, have time to embark on.</div><div> </div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span id="gmail-m_-1265329916316395630gmail-result_box" class="gmail-m_-1265329916316395630gmail-" lang="en"><span></span></span><span id="gmail-m_-1265329916316395630gmail-result_box" class="gmail-m_-1265329916316395630gmail-" lang="en"><span><span id="gmail-m_-1265329916316395630gmail-result_box" class="gmail-m_-1265329916316395630gmail-" lang="en"><span>The</span> plugin <span>approval</span> <span>phase  is now</span><span></span> <span class="gmail-m_-1265329916316395630gmail-">only</span> <span class="gmail-m_-1265329916316395630gmail-">a sort of</span> <span>prior censorship</span><span>,</span> <span>given into the hand</span> <span>of a dark</span> <span>presenteeism</span> <span>that moves</span> <span class="gmail-m_-1265329916316395630gmail-">according to his</span> <span class="gmail-m_-1265329916316395630gmail-">personal sympathies</span><span class="gmail-m_-1265329916316395630gmail-">, </span></span></span></span><span id="gmail-m_-1265329916316395630gmail-result_box" class="gmail-m_-1265329916316395630gmail-" lang="en"><span><span id="gmail-m_-1265329916316395630gmail-result_box" class="gmail-m_-1265329916316395630gmail-" lang="en"><span class="gmail-m_-1265329916316395630gmail-"><span id="gmail-m_-1265329916316395630gmail-result_box" class="gmail-m_-1265329916316395630gmail-short_text" lang="en"><span class="gmail-m_-1265329916316395630gmail-">with its time</span> <span class="gmail-m_-1265329916316395630gmail-">and its</span> <span class="gmail-m_-1265329916316395630gmail-">summary judgments</span><span class="gmail-m_-1265329916316395630gmail-">.</span></span></span></span></span></span></blockquote></div><div class="gmail_extra"><br></div>This is not the case at all, and please do not continue to frame it this way. The process is there for a reason, and it is **not** for censorship. </div><div class="gmail_extra"><br></div><div class="gmail_extra">Here are some things you might be asked for before approval:</div><div class="gmail_extra"><br></div><div class="gmail_extra">- Do you have a good description?</div><div class="gmail_extra">- Do you have a link to the plugin source? (required under GPL although you will get it anyway when you pull the plugin in QGIS)</div><div class="gmail_extra">- Do you fit into GPL - e.g you can't upload a plugin that uses a closed source component**</div><div class="gmail_extra">- Yes you may be asked to review a licence files for included packages if you bundle them</div><div class="gmail_extra">- If you plugin is a fork of another plugin would you considering merging with original.  This is to reduce the number of plugins that do the same thing.</div><div class="gmail_extra">- etc etc</div><div class="gmail_extra"><br></div><div class="gmail_extra">This might feel like censorship to some however I can 100% assure you again, this is never the intent nor reason.  This is simply a review process, or </div><div class="gmail_extra">attempt at one to possibly flag issues up front.  A lot of us already deal at this level when working on core code. </div><div class="gmail_extra"><br></div><div class="gmail_extra">QGIS has a increasing user base every year, this comes with some risks and processes that need to be in place.  QGIS isn't simply a small project </div><div class="gmail_extra">used by a few people with no one caring about user experience or pain. Processes we put in place will not always be liked by everyone, but you should </div><div class="gmail_extra">never assume there is evil intent behind it because there never is.</div><div class="gmail_extra"><br></div><div class="gmail_extra"><div class="gmail_quote" style="color:rgb(0,0,0);font-size:12.8px"><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><span id="gmail-m_-1265329916316395630gmail-result_box" class="gmail-m_-1265329916316395630gmail-" lang="en" style="color:rgb(0,0,0);font-size:12.8px"><span class="gmail-m_-1265329916316395630gmail-">This is what</span> <span class="gmail-m_-1265329916316395630gmail-">I think should</span> <span class="gmail-m_-1265329916316395630gmail-">be done</span>, <span class="gmail-m_-1265329916316395630gmail-">not to be left</span> <span class="gmail-m_-1265329916316395630gmail-">to the stone age</span><span class="gmail-m_-1265329916316395630gmail-">.   :</span></span></blockquote><div><br></div><div>That is all fine however we all are generally pretty busy with other development or day jobs. A lot of things you would like to see simply can not be wished into existence.</div><div><br></div><div>- Nathan</div></div></div><div class="gmail_extra"><br></div></div>