Community mailing list archives

Re: Odoo: #SecureERP Odoo crowdfund update

Maria Fong
- 09/15/2015 09:48:49
More than a Security Audit what Odoo needs is a structured process to curate code from module and core before allowing it to be available on the apps page.  

Also, there is a big need to structure a security group that revises all "alerts" of problems and announces in a timely manner this vulnerabilities to the creators of the module so it can be fixed on time.

A known Open Source code that has this level of maturity is Drupal.  I do not agree that all opensource CMS and teams do not have this level of attention and promptness to action.  At least not with Drupal, from which I could say is even more mature and transparent than many propietary software.

Any serious Drupal developer is educated on making sure the CMS is updatable always, following best practices.  And mind you, Drupal has a steep learning curve.

Maybe we can learn from the Drupal community and apply it on the Odoo community?

Just my 2 cents.

On Sun, Sep 13, 2015 at 4:47 AM, Stuart J Mackintosh <> wrote:
Dear Odoo community,

Just a quick note to say I have made a couple of updates to the #SecureERP campaign, you can see them here:

All the best,



Stuart J Mackintosh

Director / Owner

<img alt="OpusVL Logo" src="" height="38" width="150">

Business management software - Joined-up, flexible & open

• Open Source Specialists

Drury House

Drury Lane


CV21 3DE

T: 01788 298 450

DDI: 01788 298 457



Mailing-List: Odoo Partners
Post to:

Maria Gabriela Fong
Partner & Consultant
Cel: 6615.7718
MAGA Systems & Consulting