[
https://issues.apache.org/jira/browse/MSCRIPTING-7?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17823331#comment-17823331
]
ASF GitHub Bot commented on MSCRIPTING-7:
-----------------------------------------
bmarwell commented on PR #4:
URL:
https://github.com/apache/maven-scripting-plugin/pull/4#issuecomment-1977407591
> This is a matter of principle, and IMHO, vision.
>
> Plugins like these are like "swiss knives" and allows hacking, in effect,
like Ant or other tools allow it (and makes Maven hackable just like one would
do with Ant).
>
> Maven IMHO should be more like "set of Un*x tools" instead: set of battle
tested (but also simple) plugins, that do few things, but do them well.
>
> If someone is akin for "swiss knife" plugins like these, for me is clear
sign that they want to even widen their "hacking", that is IMHO another sign,
they should be using Gradle, Ant or whatever else. Maven is a _declarative
build system_.
>
> And I did not even mention the reasons Robert brought up.... (plus
multitude of other reasons).
This is also already possible in the exec plugin, and no one said this was
a vuln (see Romains comment). Then, this would mean you need also get rid of
exec-plugin.
Then, what about the requirements history?
Why was this plugin released in the first place? There could have been a
vote against it at that time?
> Session is not bound in scripting bindings
> ------------------------------------------
>
> Key: MSCRIPTING-7
> URL: https://issues.apache.org/jira/browse/MSCRIPTING-7
> Project: Maven Scripting
> Issue Type: Task
> Affects Versions: 3.0.0
> Reporter: Romain Manni-Bucau
> Assignee: Benjamin Marwell
> Priority: Major
> Labels: pull-request-available
>
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
