On Tue, Apr 19, 2011 at 1:22 PM, Matthew Toseland <toad at amphibian.dyndns.org > wrote:
> > This is a danger. If someone wants to compromise us, with Maven they > just > > need to compromise any one of our dependencies. > > > > We would need to stick to trusted repositories, but switching to Maven > would > > make development quite a bit easier. > > Agreed. If it is secure, it is worth serious consideration. > We might also want to consider some of the Maven-compatible built tools out there, including Apache Ivy, Groovy Grape, and Apache Buildr. I primarily use Maven, but the ludicrously verbose XML configuration files really get annoying to work with. (I'd like to kick the butt of whichever moron decided that it would be a great idea to use a text markup language as a generic human-readable data representation language) Ian. -- Ian Clarke Personal blog: http://blog.locut.us/ -------------- next part -------------- An HTML attachment was scrubbed... URL: <https://emu.freenetproject.org/pipermail/devl/attachments/20110419/cb9db6dc/attachment.html>
