Request For Candidates: Application Review Board
Allison Randal
allison at canonical.com
Sat Aug 28 00:37:14 BST 2010
Running through the thread again today with Rick, we pulled out 5 things
to do immediately:
- Change Quickly templates to install in /opt by default (FHS location
for "Add-on application software packages"). Added Bug #625581.
- Define a standard set of technologies for PostReleaseApps (PRAs, to
save typing) to use. Quickly is the first, with more to follow as the
group has a chance to discuss.
- Allow no maintainer scripts in PRAs.
- Allow no /etc/cron* files in PRAs.
- Allow no suid/sgid, sudo, gksu, pkexec, etc in PRAs.
Apps that use restricted features get kicked from PRAP to REVU.
In the slightly longer term, more features for developer
accountability/vetting:
- Launchpad account is already required, since distributing through PPA.
- Greater visibility for the app developer in Software Centre for PRAs.
- Strongly encourage (possibly require?) a Launchpad project for PRAs,
for user support, bug submission, discussion lists, etc.
- Add capability to accept ratings and reviews for Software Centre apps
(not just PRAs), and ban user-reported malicious PRAs & developers (with
sensible review to avoid hoax reports).
Really valuable discussion going on here, thanks all!
Allison
More information about the ubuntu-devel
mailing list