Return-Path: X-Original-To: apmail-commons-dev-archive@www.apache.org Delivered-To: apmail-commons-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id EC925D140 for ; Wed, 1 Aug 2012 17:04:23 +0000 (UTC) Received: (qmail 20883 invoked by uid 500); 1 Aug 2012 17:04:23 -0000 Delivered-To: apmail-commons-dev-archive@commons.apache.org Received: (qmail 20794 invoked by uid 500); 1 Aug 2012 17:04:23 -0000 Mailing-List: contact dev-help@commons.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Commons Developers List" Delivered-To: mailing list dev@commons.apache.org Delivered-To: moderator for dev@commons.apache.org Received: (qmail 6051 invoked by uid 99); 1 Aug 2012 17:01:08 -0000 X-ASF-Spam-Status: No, hits=-2.3 required=5.0 tests=RCVD_IN_DNSWL_MED,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: local policy) X-MXL-Hash: 501960b67c7d4b56-129adc2740ce2f7049ff8153a8ea6ecd641abc5e Date: Wed, 1 Aug 2012 13:00:35 -0400 Subject: My vote for release Message-ID: References: <19d96013-8a0a-4199-af8a-5149686213c6@sonalysts.com> In-Reply-To: X-Mailer: Kerio Outlook Connector (Offline Edition) (7.4.1.7267 T0) From: Gary Lucas To: 'Commons Developers List' MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" X-Spam: [F=0.2000000000; CM=0.500; S=0.200(2010122901)] X-MAIL-FROM: X-SOURCE-IP: [208.47.253.2] X-AnalysisOut: [v=2.0 cv=eMukegV1 c=1 sm=0 a=eYzKrGYFnXOpM5Tqv89LJg==:17 a] X-AnalysisOut: [=fb5Wf9lGZMQA:10 a=BLceEmwcHowA:10 a=wPDyFdB5xvgA:10 a=kj9] X-AnalysisOut: [zAlcOel0A:10 a=Ey13Ls4AAAAA:8 a=BF3EkC49KIN9rn8oPmoA:9 a=C] X-AnalysisOut: [juIK1q_8ugA:10] X-Virus-Checked: Checked by ClamAV on apache.org Damjan, I just saw that you were soliciting votes for release. I think you've done an outstanding job and I'm all for it. I would vote twice if I could :-) I saw that some of the folks on the Apache page were complaining about some of the code-checking issues. I've never looked at these myself, but I suppose that many of them are not worth fixing. For example, somebody complained that a class shouldn't have a publically scoped array. Let's say a programmer tried to address that. If he writes a "get" method that is a simple pass-through returning a reference to the internal array, has he really added any security (meaning protection against accidental misuse)? Of course not. Suppose, instead, that he writes a method that makes a copy of the array before returning it. Now he's improved security, but degraded the performance of the overall code... maybe seriously. And in imaging processing, performance trumps security almost every time. Anyway, if there are specific areas in the TIFF tree or elsewhere that you would like me to review, please let me know and I'll be glad to take a look at them. Gary --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscribe@commons.apache.org For additional commands, e-mail: dev-help@commons.apache.org