31 Oct
2008
31 Oct
'08
5:27 p.m.
Shane Hathaway wrote:
Yes, and if such a change leads to faster adoption of new Python releases by Zope, then it seems like a worthwhile effort. Instead of a tree mutator, RestrictedPython would use a tree copier with a filter. New Python features would initially not be supported at all, but that's better than accidentally, insecurely, supporting new features.
This sounds like a great idea apart from the caveats I've already mentioned about breaking out of an environment comprised of only safe builtins, which no-one replied to yet. How would we get going on this? cheers, Chris -- Simplistix - Content Management, Zope & Python Consulting - http://www.simplistix.co.uk