-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Bryan Tong Minh:
The "svn up" is still the responsibility of
the user running the tool.
sure, and in real life, users will just svn up and deploy immediately, without
reviewing every commit. people are lazy. (you could say that's the user's
fault, but i'm inclined to err on the side of "secure by default".)
- river.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (HP-UX)
iEYEARECAAYFAko3hDAACgkQIXd7fCuc5vKEfwCgrNE/dJ3BdDLBBxI5Tym7OXG7
uB8An3lGIlk/YA4mFWmLF/nThX7Tuecl
=utw/
-----END PGP SIGNATURE-----