>>>>> "GH" == Gerald Henriksen <ghenriks@xxxxxxxxx> writes: GH> On the other hand, unbuildable packages could be viewed as a GH> security risk. I mentioned security explicitly in my message. Just not in the portion you quoted. GH> If you can't just fix the security issue and rebuild, but instead GH> have to also fix the issue(s) that prevent the package from GH> rebuilding this could cause delays in getting a security update out. I mean, nothing currently guarantees that security fixes go out in a timely manner, for all sorts of reasons. If we're going to get serious about reducing that time, I would think there's a more productive way to do that than dumping all FTBFS packages because they _might_ one day have a security issue that needs fixing. But yes, certainly dump all that have open security bugs. - J< _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
