Upgrading plugins using software tar iso having to rely and give access to local binary directories?

I ran into a problem upgrading plugins because tar needs access to the binary /usr/bin/tar which is outside php’s open_basedir; Giving potentially access to the whole server binary directory might cause security issues I might think.

Idea: Would it be possible for OJS to rely on a software approach for tar iso a server binary, like e.g.
https://www.php.net/manual/en/intro.phar.php ?
So we don’t need to give low-level access to the server’s binaries

Hi @ojknl20,

I see you’ve also posted this here: [OJS 3.2.0.0] Unable to upgrade plugins through the interface: 500 / open_basedir restriction, manually upgrade plugins?

I’ll respond to the other post.

Regards,
Alec Smecher
Public Knowledge Project Team