On 05/06/20 10:26 +0200, Igor Raits wrote:
Well, upstreams are not necessarily enabling many security features or optimizations. So you are effectively saying "upstream knows better" where I would have to disagree with you.
Yes, this is a very good point. Many of Fedora's packages have upstreams that are not using the latest compilers, libraries, security features etc. Just because upstream hasn't been updated to work with compiler hardening features doesn't mean we should disable those features. Just because upstream's code is not portable to more than one compiler doesn't mean we shouldn't send them bugs (or better still, patches). _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx
