On Tuesday, March 27, 2018 at 8:39:50 AM UTC-4, Erik Bray wrote:
>
> On Sun, Mar 25, 2018 at 4:49 PM, Simon King > wrote:
> > Hi!
> >
> > On 2018-03-25, Volker Braun > wrote:
> >> On Sunday, March 25, 2018 at 2:51:46 PM UTC+2, Dima Pasechnik wrote:
> >>>
> >>> one can install autotools on
>
> I agree--I think there should be at least one buildbot run
> per-platform--maybe not for every issue but at least run once a week,
> that tests building all optional packages and running tests that use
> them (i.e. tagged with # optional - ).
>
> A build with broken optional packages coul
On Sun, Mar 25, 2018 at 4:49 PM, Simon King wrote:
> Hi!
>
> On 2018-03-25, Volker Braun wrote:
>> On Sunday, March 25, 2018 at 2:51:46 PM UTC+2, Dima Pasechnik wrote:
>>>
>>> one can install autotools on archlinux systemwide
>>>
>>
>> Also, autotools aren't even required to build Sage.
>>
>> Wha
Hi!
On 2018-03-25, Volker Braun wrote:
> On Sunday, March 25, 2018 at 2:51:46 PM UTC+2, Dima Pasechnik wrote:
>>
>> one can install autotools on archlinux systemwide
>>
>
> Also, autotools aren't even required to build Sage.
>
> Whats the point of delaying a release for weeks/months to fix an op
On 2018-03-26, 'Martin R' via sage-devel wrote:
> There is another problem, which should be treated separately: sometimes
> doctests of optional packages fail because of newly introduced bugs or
> modifications in sage core. An example is
> https://trac.sagemath.org/ticket/24827 (now fixed and
Hi Vincent,
On 2018-03-25, Vincent Delecroix <20100.delecr...@gmail.com> wrote:
> Apparently Volker does not agree with what was a kind of agreement here
>
> https://trac.sagemath.org/ticket/24903#comment:3
> https://trac.sagemath.org/ticket/23533#comment:13
>
> It would be nice that we take a con
On 2017-09-15 09:00, Jori Mäntysalo wrote:
If so, a
bug in Sage could -- at least in theory -- lead a compromise to the server.
It's a *feature* of Sage (actually Python) that it can run arbitrary
code, not a bug.
--
You received this message because you are subscribed to the Google Groups
On Wed, 13 Sep 2017, Jeroen Demeyer wrote:
What would security even mean for a mathematics program?
I think it could be possible to use Sage as a part of teaching program,
i.e. have it as a part of automatic checking of some exercises. If so, a
bug in Sage could -- at least in theory -- lead
If I were an administrator of a computer network at
an industrial, governmental, or educational operation,
I would not want people downloading risky software
to their workstations. Theft of passwords, confidential
information, access to health, financial, accounts etc
is a growing concern. It's n
On 2017-09-14 15:21, kcrisman wrote:
Well, in principle someone could use a bug in an outside program to hack
into Sage
If that "outside program" is executing arbitrary strings in Sage, the
bug is with that outside program, not with Sage.
There is a reason why things like the Sage Cell serve
On Wednesday, September 13, 2017 at 4:35:38 PM UTC-4, Jeroen Demeyer wrote:
>
> On 2017-09-13 21:56, rjf wrote:
> > Just because a package builds, loads, and passes some tests
> > doesn't mean that it also includes some security attack.
> > Does anyone care about / have any useful thoughts abo
Hi,
On Wed, Sep 13, 2017 at 04:51:09PM +0200, Vincent Delecroix wrote:
> Sided note: as far as I know, these pip packages are not involved in any
> doctest.
Indeed. Most are leftovers from the old system. I am in favor to remove
them from the build/pkgs/ directory for better clarity.
Ciao,
Thier
On 2017-09-13 21:56, rjf wrote:
Just because a package builds, loads, and passes some tests
doesn't mean that it also includes some security attack.
Does anyone care about / have any useful thoughts about /. that?
What would security even mean for a mathematics program? Sage is not
meant for
Just because a package builds, loads, and passes some tests
doesn't mean that it also includes some security attack.
Does anyone care about / have any useful thoughts about /. that?
Sage includes Maxima and Lisp, which generally provides
access to system routines, for example.
RJF
On Wednesda
Sided note: as far as I know, these pip packages are not involved in any
doctest.
On 13/09/2017 16:42, Maarten Derickx wrote:
And related to this, how much do we support pip packages. With this I don't
mean any random pip package that happens to be on pypi, but just the ones
that are returned b
And related to this, how much do we support pip packages. With this I don't
mean any random pip package that happens to be on pypi, but just the ones
that are returned by:
sage -optional
that happen to be pip packages. At the moment:
['beautifulsoup',
'biopython',
'brian',
'guppy',
'
16 matches
Mail list logo
