On Tue, May 05, 2020 at 06:35:28PM -0400, Jeremy Bicha wrote: > On Tue, May 5, 2020 at 10:33 AM Simon McVittie <s...@debian.org> wrote: > > However, this plugin has a popcon of 108 installations (compared with 27K > > for its webkit counterpart), wasn't shipped in buster, and I don't think > > we consider mozjs68 to be safe for use with untrusted content (although > > PAC is probably at least semi-trusted in any reasonable threat model); > > so perhaps it should just be removed instead? > > Does anyone know if there is anything the mozjs plugin can do that the > webkit can't? > > I'd prefer we only offer the webkit version.
I'd be OK with that. I only worked on the port because it was required for the mozjs68 transition and evidently didn't test it enough! I asked upstream for help testing / reviewing, but they apparently merged it when it was broken, so that speaks to how much it's cared for there: perhaps they would consider dropping it too. Cheers, -- Iain Lane [ i...@orangesquash.org.uk ] Debian Developer [ la...@debian.org ] Ubuntu Developer [ la...@ubuntu.com ]
signature.asc
Description: PGP signature
