[wp-trac] [WordPress Trac] #22303: Please parse a "vendor" file
WordPress Trac
noreply at wordpress.org
Mon Oct 29 16:07:32 UTC 2012
#22303: Please parse a "vendor" file
-------------------------+------------------------------
Reporter: remicollet | Owner:
Type: enhancement | Status: new
Priority: normal | Milestone: Awaiting Review
Component: General | Version:
Severity: normal | Resolution:
Keywords: |
-------------------------+------------------------------
Changes (by remicollet):
* keywords: reporter-feedback =>
Comment:
> can you please outline the reasons why distro's do this?
Main reason why distro don't want bundled libraries:
- security : use system libraries allow to handle a single security
update, when needed, rather than having to update each package which
bundle a library
- licensing issues : are you absolutely sure that all bundled libraries
are released under license compatible with one of WordPress ?
More information :
https://fedoraproject.org/wiki/Packaging:No_Bundled_Libraries
> We have to ship modified versions of external php libraries in some
cases
I think you will probably hate a WordPress fork. So simply imagine what
the authors of the libraries you are shipping feels ? So, IMHO, this
change should be reported to each upstream project.
> and even require a certain version within a release (either an older, or
newer version)
This is the packager job to ensure that this requirement are meet
(help/documentation from upstream is of course welcome)
> so in general I don't think this is something we can, or should, support
Of course, the package have to be supported by the distro package
maintainer.
Don't forget that having a package included in a linux distribution could
give more visibility to your project (even if WordPress probably don't
need this) and make WordPress's users life really simpler (single point of
installation / update).
On another side, don't forget than most linux distribution have similar
Guidelines. For fedora, one of our rules if "upstream first", so I really
prefer to discuss such feature with you (the project) rather than patching
the sources to respect our Guidelines.
--
Ticket URL: <http://core.trac.wordpress.org/ticket/22303#comment:2>
WordPress Trac <http://core.trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list