Iñaki,
I think you got it backwards in your conclusions: CRAN has not generated that
PDF file (and Windows machines are not even involved here), it is the contents
of a contributed package, so CRAN itself is not compromised. Also it is far
from clear that it is really a malware - in fact it's c
Some thoughts for what the next steps could be:
I could be wrong, but I doubt that there's someone out there that
wants to pick up 'XML' and start developing it beyond keeping the
lights on. I also think the community agrees that 'xml2' is the
recommended package to use for XML-related needs. If
On Thu, 25 Jan 2024 09:44:26 -0800
Henrik Bengtsson wrote:
> On Thu, Jan 25, 2024 at 9:23 AM Berwin A Turlach
> wrote:
> >
> > G'day Duncon,
Uups, apologies for the misspelling of your name Duncan. Fingers were
too fast. :)
[...]
> > But you could always code your example (not tested :-) ) al
On Thu, Jan 25, 2024 at 9:23 AM Berwin A Turlach
wrote:
>
> G'day Duncon,
>
> On Thu, 25 Jan 2024 11:27:50 -0500
> Duncan Murdoch wrote:
>
> > On 25/01/2024 11:18 a.m., Henrik Bengtsson wrote:
> [...]
> > I think you're right that syntax errors in help page examples will be
> > installable, but I
On Thu, Jan 25, 2024 at 8:27 AM Duncan Murdoch wrote:
>
> On 25/01/2024 11:18 a.m., Henrik Bengtsson wrote:
> > On Thu, Jan 25, 2024 at 7:48 AM Duncan Murdoch
> > wrote:
> >>
> >> On 25/01/2024 10:27 a.m., Josiah Parry wrote:
> >>> Hey all,
> >>>
> >>> I've encountered use of the native pipe ope
G'day Duncon,
On Thu, 25 Jan 2024 11:27:50 -0500
Duncan Murdoch wrote:
> On 25/01/2024 11:18 a.m., Henrik Bengtsson wrote:
[...]
> I think you're right that syntax errors in help page examples will be
> installable, but I don't think there's a way to make them pass "R CMD
> check" other than w
Re: guidance on how to migrate from XML to xml2, these notes from Daniel Nüst
may be helpful: https://gist.github.com/nuest/3ed3b0057713eb4f4d75d11bb62f2d66.
Best wishes,
Heather
On Wed, Jan 24, 2024, at 3:38 PM, Emmanuel Blondel wrote:
> if XML is deprecated, then what would be the choice for a
On 25/01/2024 11:44 a.m., Josiah Parry wrote:
The package of course passes R CMD check otherwise it wouldn’t be on
CRAN! (:
CRAN doesn't run checks using R 3.6.0. The package claims it works
there, and maybe it will, but it won't pass R CMD check.
Duncan Murdoch
Thank you Henrik! Good t
The package of course passes R CMD check otherwise it wouldn’t be on CRAN!
(:
Thank you Henrik! Good to know my intuition was correct. I’m glad we can
start to use the new features of R in package documentation :)
On Thu, Jan 25, 2024 at 11:27 Duncan Murdoch
wrote:
> On 25/01/2024 11:18 a.m., H
On 25/01/2024 11:18 a.m., Henrik Bengtsson wrote:
On Thu, Jan 25, 2024 at 7:48 AM Duncan Murdoch wrote:
On 25/01/2024 10:27 a.m., Josiah Parry wrote:
Hey all,
I've encountered use of the native pipe operator in the examples for
'httr2' e.g.
request("http://example.com";) |> req_dry_run()
On Thu, Jan 25, 2024 at 7:48 AM Duncan Murdoch wrote:
>
> On 25/01/2024 10:27 a.m., Josiah Parry wrote:
> > Hey all,
> >
> > I've encountered use of the native pipe operator in the examples for
> > 'httr2' e.g.
> >
> > request("http://example.com";) |> req_dry_run()
> >
> >
> > Since r-oldrel (acc
On 25/01/2024 10:27 a.m., Josiah Parry wrote:
Hey all,
I've encountered use of the native pipe operator in the examples for
'httr2' e.g.
request("http://example.com";) |> req_dry_run()
Since r-oldrel (according to rversions::r_oldrel()) is now 4.2.3, can the
native pipe be used in example cod
Hey all,
I've encountered use of the native pipe operator in the examples for
'httr2' e.g.
request("http://example.com";) |> req_dry_run()
Since r-oldrel (according to rversions::r_oldrel()) is now 4.2.3, can the
native pipe be used in example code?
I do notice that the package httr2 requires
It seems some of my emails didn’t make it onto the list, so I just wanted
briefly to follow up to say thank you to Dirk, Ivan, Uwe, and Ben for helping
with this.
Ultimately, following Ivan’s advice, I just added a GitHub action to the repo
as a temporary patch to ensure that the signature gets
I decided to grab a copy of that PDF from the RStudio CRAN mirror, and
downloaded on Linux (where hopefully it won't be an issue) from the list of
vignettes.
Virus Total gives it the same hash as the above linked PDF, so it's
definitely been propagated from CRAN, and *may* be malicious.
That is *
On Thu, 25 Jan 2024 at 10:13, Colin Gillespie wrote:
>
> Hi All,
>
> I've had two emails from users in the last 24 hours about malware
> around one of my vignettes. A snippet from the last user is:
>
> ---
> I was trying to install a R package that depends on PowerRLaw two
> weeks ago. However my
Hi All,
I've had two emails from users in the last 24 hours about malware
around one of my vignettes. A snippet from the last user is:
---
I was trying to install a R package that depends on PowerRLaw two
weeks ago. However my virus protection software F secure did not
allow me to install it fro
17 matches
Mail list logo
