Force references to an embedded package's admin or sitewide-admin pages to be referenced (relative to the embedding package's mount point) as admin/package-key or sitewide-admin/package-key. This nicely arranges all admin URLs in a composite package under ${mount-point}/admin, which among other things will cause the request processor to do the expected permission check. Backdoor access to the admin pages via URLs like ${mount-point}/package-key/admin or ${mount-point}/package-key/sitewide-admin is blocked, as the request processor won't do the expected permissions check for URLs of that form.,
Finished up PG semantics for global/instance parameters on package upgrade. The Tcl API stuff to do this should technically be moved down into the oracle/PG API but 1) it's a fair amount of db-specific work and 2) people should be using the high level constructs in the first place (and why do people explicitly register new parameters when they're registered from the package info file on upgrade in the first place?)