Probably worth mentioning that extensions validated on phpBB (and downloaded from phpBB only) are tested thoroughly (code wise and usage) and won't create an invisible account that could take over your board. Any external and unvalidated extension could in theory include the creation of a user allowing highjacking (or defacing) of your board.thecoalman wrote: ↑Thu Jun 18, 2020 10:36 pm...That doesn't mean there is something wrong with their extension but it doesn't mean it's right either. If you download something from here you know it's been reviewed and gone though the validation process. If you want to install extensions from other sources you are free to do that but just be aware there are potential risks and complications.
It's in DEV, not even RC so ... (and I don't know the author but everyone has to start somewhere, anyway, a RC is "use at your own risk", a DEV is "use at your own peril"
I can assure you that that is not the case. Nobody, unless they break the rules, gets turned away - some people just choose a different path.
Part of the problem is also that abbreviations and terms are used quickly without actually explaining or defining them. There aren't many end users (speak: non-coders) who are aware of what DEV stands for and what it means, and what difference it makes to RC. The forum description itself neither explains this nor has a link to further details aimed at users - only the developer target audience will follow Extension Development Forum Rules where indeed most abbreviations are explained (but then again not having users in mind, only developers).
From my experience there are far too many Extensions in Development that seem to get to RC and then stall and never advance to Release and therefore to phpBB • Extensions - Customisation Database.
Each extension developer will have their own reasons. There are some who do not agree with the validation process as it becomes restrictive. For example if after release a small bug is found then the only official way to deal with it is to create a new release and depending on the number of extensions waiting to be validated and the workload of the validation team can often take two or three months.
Could be for a few reasons
Then, IMHO, the community needs to step up and assist or ask how they can do so to get the extension to pass validation (which very rarely occurs).I completely understand that like phpBB software, the development of extensions is completely a volunteer effort, but somehow the whole community needs to rally and hopefully push many of those RC extensions over the finish line to get them released.
Thanks to both of you for the explanations and insight that you've provided. It definitely helps understand the current situation.
To be fair no one can really take/steal a board its as simple as going to cpanel and doing a database restore.Probably worth mentioning that extensions validated on phpBB (and downloaded from phpBB only) are tested thoroughly (code wise and usage) and won't create an invisible account that could take over your board. Any external and unvalidated extension could in theory include the creation of a user allowing highjacking (or defacing) of your board.
All extension developers will have total access to your database and an unscrupulous developer could, in theory, extract that data without you knowing about it. They could also "steal" usernames and passwords and use then to then access the ACP. They can also access email addresses and could totally destroy your board (that's easy as most developers will have done it at some point when creating an extension) and as we know many users do not backup their board(s).