cordova-commits mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Apache Wiki <wikidi...@apache.org>
Subject [Cordova Wiki] Update of "BugtraqResonseDraft" by JoeBowser
Date Sat, 25 Jan 2014 00:31:48 GMT
Dear Wiki user,

You have subscribed to a wiki page or wiki category on "Cordova Wiki" for change notification.

The "BugtraqResonseDraft" page has been changed by JoeBowser:
https://wiki.apache.org/cordova/BugtraqResonseDraft?action=diff&rev1=1&rev2=2

Comment:
We couldn't accept their PoC even if we wanted to. I have no idea what licence this is.

  
  This is by design.  All content is blocked if it does not come from a whitelisted domain
to prevent non-trusted domains to get access to the Cordova API.  This includes advertising
networks.  This further makes the point that web-based advertising networks should not be
used with Cordova.  Again, The purpose of Cordova is to provide web developers the ability
to make hybrid apps in a native context on the web.  The use case is to NOT display web pages,
and not display web advertiser content.
  
- We welcome security submissions, but we request that when presenting a solution that the
git history of the project remain intact.  We have not been able to easily review the changes,
since they were done on an old major version of Cordova on a repository with the history removed,
making it difficult for us to port any of these changes.  We do not know if this was done
intentionally, but we prefer that patches be submitted either by e-mail or a github pull request.
+ We welcome security submissions, but we request that when presenting a solution that the
git history of the project remain intact.  We have not been able to easily review the changes,
since they were done on an old major version of Cordova on a repository with the history removed,
making it difficult for us to port any of these changes.  We do not know if this was done
intentionally, but we prefer that patches be submitted either by e-mail or a github pull request.
 In addition, we require substantial contributions to be donated to the ASF, more information
can be found at http://www.apache.org/licenses/
  

Mime
View raw message