On Tue, Dec 10, 2024 at 5:28 AM Carlos Rodriguez-Fernandez <carlosrodrifernandez@xxxxxxxxx> wrote: > > I agree. This dead package has probably security issues waiting to be > discovered. > > There are the other projects as well that would need some relook at its > http-parser dependency and see if it can be dropped: julia, cantor, and > LabPlot. It looks like the http-parser dependency in julia is only there for libgit2 "tests" (why?). If this is indeed the case, that dependency can likely be dropped since libgit2 now uses llhttp. Fabio -- _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue