On Wed, Sep 06, 2023 at 04:15:48PM -0000, Siddhesh Poyarekar wrote: > > My questions: > > > > Do you agree it's a false positve? > > Can you sanction ammending Fedora rpminspct policy with: > > > > unicode: > > ignore: > > # 0x202D character used on purpose to demonstrate RLE in > > # a documentation. > > - Prima-*/Prima/Drawable/Glyphs.pm > > +1, sounds reasonable to me, although maybe rpminspect should continue logging such instances for future audit, without blocking updates. yeah, it seems odd to block fedora updates here. I wouldn't think this should be blocking in fedora...and I agree this is a false positive here. kevin
Attachment:
signature.asc
Description: PGP signature
_______________________________________________ security mailing list -- security@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to security-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/security@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
