Stefan Kaltenbrunner <stefan@kaltenbrunner.cc> writes:
> So to keep it really under the hood would probably be quite difficult to do.
Certainly. We're not looking for something absolutely bulletproof, we
just don't want to read about it on pgsql-announce before the actual
release ;-). Postgres isn't the sort of target that is likely to have
blackhats tracking our anoncvs watching for interesting commits. We
think it's probably enough if we can keep the topic out of the public
mailing lists until the release announcement. Or at least, let's try
to accomplish that before worrying about anything tighter.
(Speaking of which, somebody can go ahead and approve those Security:
pgsql-commit messages now ...)
regards, tom lane