[QGIS-Developer] Enhancing QGIS Development and Security Features Proposition
Johannes Kröger (WhereGroup)
johannes.kroeger at wheregroup.com
Fri Nov 3 01:35:29 PDT 2023
Hi Rhea,
I am in no way able to officially answer but maybe I can give some
thoughts and rhetoric questions:
To me those improvements sound like good ideas. I am not sure how far
you could lock down Python extensibility considering the existing API.
And I am not sure if you are aware of the many ways that a QGIS
environment might use network calls, e.g. a tool like Proj might
download grids from the internet in some cases, GDAL might try to fetch
schemas specified in local files, etc. Sandboxing the system from the
outside is probably much easier and secure.
Are those 40 extensions existing extensions? Are you aware that you can
strip out the official repository and use your own instead?
It would probably be best to create QGIS Enhancement Proposals at
https://github.com/qgis/QGIS-Enhancement-Proposals/issues.
And it would be good to proof commitment to maintaining the new features
in some way or enter the sustaining membership program with significant,
recurring contributions so that other developers paid by the QGIS
project can maintain them.
Cheers, Hannes
More information about the QGIS-Developer
mailing list