Re: [PATCH] New predefined role pg_manage_extensions
Tom Lane <tgl@sss.pgh.pa.us>
From: Tom Lane <tgl@sss.pgh.pa.us>
To: Jelte Fennema-Nio <postgres@jeltef.nl>
Cc: Robert Haas <robertmhaas@gmail.com>, Michael Banck <mbanck@gmx.net>,
PostgreSQL Hackers <pgsql-hackers@lists.postgresql.org>
Date: 2025-03-07T16:23:51Z
Lists: pgsql-hackers
Jelte Fennema-Nio <postgres@jeltef.nl> writes: > The reason why I walked back my comment was that cloud providers can > simply choose which extensions they actually add to the image. If an > extension is marked as not trusted by the author, then with this role > they can still choose to add it without having to make changes to the > control file if they think it's "secure enough". If they think it's "secure enough", they can mark it trusted in their images. Why do we need anything beyond that? regards, tom lane
Commits
-
Apply quotes more consistently to GUC names in logs
- 8d9978a7176a 17.0 cited