Posted by chx on September 19, 2013 at 10:24am
Drupal 8 relies on generated PHP files. We have constructed a system that protects against poorly written upload scripts (these have created real life site breaches already) overwriting them. However, security is always a compromise and this solution meant that drush is unable to clear the cache in Drupal 8. This is a compromise we are not happy about so a (still secure) fix has been posted together with detailed testing instructions. Please help with testing the patch!