[Koha-bugs] [Bug 23890] Plugins that utilise possibly security breaching hooks should warn
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Wed Oct 30 01:47:49 CET 2019
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=23890
--- Comment #5 from David Cook <dcook at prosentient.com.au> ---
(In reply to Kyle M Hall from comment #4)
> I've thought about this a lot over time. I've always imagined a Wordpress
> like ability for Koha to search for and install plugins directly from the
> admin interface. That still doesn't help us describe a backend for such a
> system.
>
As a user/librarian, I think that this sounds awesome.
As a vendor/administrator, I think that this sounds awful.
Since plugins are a stability/security risk, I don't want to allow users to be
able to install plugins. That said, I see the utility of plugins, so I - as a
system administrator - want to be able to install trusted plugins on Koha
(probably from the CLI, since we don't really have an administrator layer in
the web UI).
--
You are receiving this mail because:
You are watching all bug changes.
More information about the Koha-bugs
mailing list