[Emacs-diffs] /srv/bzr/emacs/trunk r106629: * lisp/emacs-lisp/package.el (package-archives): Doc fix re riskiness.

[Glenn Morris]

------------------------------------------------------------
revno: 106629
committer: Glenn Morris <address@hidden>
branch nick: trunk
timestamp: Tue 2011-12-06 00:31:42 -0800
message:
  * lisp/emacs-lisp/package.el (package-archives): Doc fix re riskiness.
modified:
  lisp/ChangeLog
  lisp/emacs-lisp/package.el

=== modified file 'lisp/ChangeLog'
--- a/lisp/ChangeLog    2011-12-06 02:22:48 +0000
+++ b/lisp/ChangeLog    2011-12-06 08:31:42 +0000
@@ -1,3 +1,7 @@
+2011-12-06  Glenn Morris  <address@hidden>
+
+       * emacs-lisp/package.el (package-archives): Doc fix re riskiness.
+
 2011-12-06  Chong Yidong  <address@hidden>
 
        * progmodes/cc-fonts.el (c-annotation-face): Use defface.

=== modified file 'lisp/emacs-lisp/package.el'
--- a/lisp/emacs-lisp/package.el        2011-11-20 03:48:53 +0000
+++ b/lisp/emacs-lisp/package.el        2011-12-06 08:31:42 +0000
@@ -113,6 +113,8 @@
 
 ;;; ToDo:
 
+;; - a trust mechanism, since compiling a package can run arbitrary code.
+;;   For example, download package signatures and check that they match.
 ;; - putting info dirs at the start of the info path means
 ;;   users see a weird ordering of categories.  OTOH we want to
 ;;   override later entries.  maybe emacs needs to enforce
@@ -224,7 +226,10 @@
  LOCATION specifies the base location for the archive.
   If it starts with \"http:\", it is treated as a HTTP URL;
   otherwise it should be an absolute directory name.
-  (Other types of URL are currently not supported.)"
+  (Other types of URL are currently not supported.)
+
+Only add locations that you trust, since fetching and installing
+a package can run arbitrary code."
   :type '(alist :key-type (string :tag "Archive name")
                 :value-type (string :tag "URL or directory name"))
   :risky t