On Fri, 2017-12-08 at 12:11 -0500, Steve Dickson wrote: > > On 12/08/2017 11:54 AM, Simo Sorce wrote: > > On Fri, 2017-12-08 at 11:40 -0500, Steve Dickson wrote: > > > > > > On 12/08/2017 11:12 AM, Zbigniew Jędrzejewski-Szmek wrote: > > > > Well, I'd say this works great. There's maybe a hundred or two hundred > > > > proven packagers and somehow none of them decide to mess up the kernel > > > > any day. In fact, the commits which caused this thread are _correct_: > > > > so far I haven't heard one word to the contrary. I don't see any point > > > > in discussing hypotheticals. > > > > > > You are telling me there hundreds of people that have complete > > > control over all the packages in fedora with no boundaries??? > > > They can do anything they what??? Wow... > > > > > > Steve, this is not really shocking. > > Git has history, so you can always see anything that changes, and > > maintainers are supposed to keep an eye on their packages and so they > > will see any malicious intent immediately, right ? > > Right. > > If it is not malicious it is just helping, and there is nothing wrong > > with that. > > But if it is non-massive, non-critical shouldn't the maintainer be notified? > All I'm saying yes, via a pull-request. This would be ideal, yes, but for very trivial and obviously correct changes I do not see the strict need for that overhead. Simo. -- Simo Sorce Sr. Principal Software Engineer Red Hat, Inc _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
