On Tue, 2024-08-06 at 20:51 +0200, Rob Landers wrote:
> Hey Nick,
>
> Looking forward to the RFC!
>
> On Tue, Aug 6, 2024, at 19:28, Nick Lockheart wrote:
> > >
> > > This looks quite valuable, and I assume auto loading would work
> > > just
> > > like normal? Register an autoloader that will e
On Wed, Aug 7, 2024, 2:11 AM Rob Landers wrote:
>
> I find this assertion kind of scary from a shared hosting perspective or
> even from a 3v4l kind of perspective. How do these services protect
> themselves if php is inherently insecure?
>
php is not inherently insecure. not even remotely and q
On 06.08.2024 at 20:59, Niels Dossche wrote:
> On 06/08/2024 10:41, Nick Lockheart wrote:
>>
>> Sandbox: Security
>>
>> A SandBox has two use cases:
>>
>> 1. Unit Testing of code with mocks or stubs, and also, allowing testing
>> with different environments.
>>
>> 2. The secure running of 3rd part
> >
> > Introducing a sandbox API for security also opens up a can of worms
> > for the security policy. Right now we are assuming an attacker
> > model of a remote attacker, and that the code running on your
> > server is trusted. But that would change when an official sandbox
> > API is introd
On Wed, Aug 7, 2024, 7:13 PM Nick Lockheart wrote:
>
>
>
> So I was thinking about this a bit more and I thought, what if instead
> of adding a sandbox as a feature of PHP, what if PHP *was* the sandbox.
>
> So consider this:
>
> What if the PHP engine added a C API that lets C/C++ programs not o
On Tue, July 30, 2024 at 03:49 G. P. Banyard wrote:
> Hello Internals,
>
> I have just opened the vote for the "Transform exit() from a language
> construct into a standard function" RFC:
> https://wiki.php.net/rfc/exit-as-function
>
> The vote will last for two weeks until the 13th of August 202
On Aug 6, 2024, at 3:09 AM, Nick Lockheart wrote:
>
>
> Sand Box: A first class API that allows unit testing of code with mocks
> and stubs of other classes or functions, without the need to modify the
> class under test.
This honestly feels like it's going to be a repeat of safe_mode.
What mi
On 7 August 2024 14:30:24 BST, Theodore Brown wrote:
>On Tue, July 30, 2024 at 03:49 G. P. Banyard wrote:
>
>> Hello Internals,
>>
>> I have just opened the vote for the "Transform exit() from a language
>> construct into a standard function" RFC:
>> https://wiki.php.net/rfc/exit-as-function
>>
>
Stupid question maybe, but are we voting on the RFC or on the patch?
If the patch does not match what.the RFC proposes, then the patch has a
problem. That should IMO though not affect voting on an RFC.
Or am I.missimg something?
Cheers
Andreas
On 7 August 2024 16:27:56 CEST, Derick Rethan
On Wed, 7 Aug 2024, 16:09 Andreas Heigl, wrote:
> Stupid question maybe, but are we voting on the RFC or on the patch?
>
I have been reliably informed that votes are always for RFCs.
Cheers,
Bilge
>
On Wed, August 7, 2024 at 08:27 Derick Rethans wrote:
> On 7 August 2024 14:30:24 BST, Theodore Brown wrote:
>> I really appreciate RFCs like this which not only make the language more
>> consistent for userland developers, but also simplify PHP's internal
>> implementation, paving the way for f
11 matches
Mail list logo
