According to their own words phpBB-3.0.0 now has significantly improved with respect to security. It has been hard masked in our tree for quite a while now and I added phpBB-3.0.0 today. Given that it is a frequently used webapp I wanted to ask whether we should consider removing the hard mask. We should probably wait a while to see if their will be any sec bugs for 3.0.0 in the coming weeks but I think it can't hurt to document the status of the package as we do it for wordpress and xoops.
If security fixes are applied in a timely manner to the ebuild I see no problem in unmasking. But as you note it would probably be wise to wait a few weeks.
Is phpBB 3.0.0 affected by bug 210948?
phpBB-3.0.0 seems good so far, i've unmasked it now .. phpBB-2 still masked, but i have added an ebuild for 2.0.23 wrt bug 210948
phpBB-3.0.0 is still arch-masked. Any ETA on when it might be stable (at the least for x86)?
Can we ask for a STABLEREQ for this package now? I believe it has been long enough ~x86 without problems, it should be marked stable
Removed phpBB-2* and removed the mask. Closing bug. @Jean-Noël Rivasseau: I'm not too much in favor of unmasking stuff in www-apps at the moment simply because web-apps is a herd with low man power. Stable apps require swifter action to security issues which I feel cannot be guaranteed at the moment.