<html><head><meta http-equiv="Content-Type" content="text/html charset=us-ascii"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class="">Hi<div class=""><br class=""></div><div class="">In addition to Martin and Nathan's great replies I can add:</div><div class=""><br class=""></div><div class=""><div><blockquote type="cite" class=""><div class="">On 16 Oct 2016, at 6:26 PM, Geo DrinX <<a href="mailto:geodrinx@gmail.com" class="">geodrinx@gmail.com</a>> wrote:</div><br class="Apple-interchange-newline"><div class=""><div dir="ltr" class=""><div class="gmail_extra"><div class="gmail_quote"><div class="gmail_quote"></div></div></div></div></div></blockquote><br class=""><blockquote type="cite" class=""><div class=""><div dir="ltr" class=""><div class="gmail_extra"><div class="gmail_quote"><div class="gmail_quote"><span id="gmail-result_box" class="gmail-" lang="en">[Set up] <span class="">an automatic procedure</span> <span class="">(</span><span class="">antivirus</span><span class="">,</span> <span class="">automatic control</span> <span class="">sources to figure out</span> <span class="">harmful</span> <span class="">instructions</span><span class="">,</span> <span class="">etc.)</span> <span class="">that</span> <span class="">warns</span> <span class="">the existence of</span> <span class="gmail-">problems</span><span class="">.</span><br class=""></span></div></div></div></div></div></blockquote><br class=""></div><div>This was the first option we looked in to. Do you know of some good tools for detecting malicious code in python? It is a hard problem to solve and simple things like preventing shell calls are not productive or effective. In the end we decided to take a social approach to peer review (which is a completely different thing to censorship). By the way I am not averse to some limited censorship of plugins if they go against our code of conduct [1] and diversity statement [2] for example, I would support banning them. I think any reasonable community would expect that of us....</div><div><br class=""></div><div>[1] <a href="https://www.qgis.org/en/site/getinvolved/governance/codeofconduct/codeofconduct.html" class="">https://www.qgis.org/en/site/getinvolved/governance/codeofconduct/codeofconduct.html</a></div><div>[2] <a href="https://www.qgis.org/en/site/getinvolved/governance/codeofconduct/diversitystatement.html" class="">https://www.qgis.org/en/site/getinvolved/governance/codeofconduct/diversitystatement.html</a></div><div><br class=""></div><div><br class=""></div><div>A case in point might be a plugin aimed at belittling a particular ethnic group or gender identification or which otherwise promotes intolerance. Thankfully such a situation has never arisen. Our friendly non-combative community is something that makes the QGIS community a joy to participate in. Lets try to keep that in mind whilst having this discussion too and focus on practical, achievable solutions if you have concerns.</div><div><br class=""></div><div>My best regards</div><div><br class=""></div><div>Tim</div><div><br class=""></div><div><br class=""></div><div><br class=""></div><div><br class=""></div><div><br class=""></div><div class=""><span><img height="65" width="59" apple-inline="yes" id="A3895A79-FC72-417F-89F5-44E01B78E9C2" apple-width="yes" apple-height="yes" src="cid:879A6E78-CA46-47B2-AA0E-1810BD833229" class=""></span><div style="color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; orphans: auto; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px; line-height: normal; word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;" class=""><div style="font-weight: normal;" class=""><br class="Apple-interchange-newline"><br class="Apple-interchange-newline">---</div><div style="font-weight: normal;" class=""><br class=""></div><div class=""><b class="">Tim Sutton</b></div><div style="font-weight: normal;" class="">QGIS Project Steering Committee Chair</div><div style="font-weight: normal;" class=""><a href="mailto:tim@qgis.org" class="">tim@qgis.org</a></div><div style="font-weight: normal;" class=""><br class=""></div></div><br class="Apple-interchange-newline" style="color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; orphans: auto; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px; line-height: normal;"><br class="Apple-interchange-newline" style="color: rgb(0, 0, 0); font-family: Helvetica; font-size: 12px; font-style: normal; font-variant: normal; font-weight: normal; letter-spacing: normal; orphans: auto; text-align: start; text-indent: 0px; text-transform: none; white-space: normal; widows: auto; word-spacing: 0px; -webkit-text-stroke-width: 0px;">
</div>
<br class=""></div></body></html>