https://bugzilla.redhat.com/show_bug.cgi?id=1020292 --- Comment #54 from Suvayu <fatkasuvayu@xxxxxxxxx> --- If I may chime in, not an expert on Bitcoin, but I do follow some of the technical discussion in the community. As I understand it, security of the distributed binary is of utmost importance. I believe to that effect, upstream now builds its releases in reproducible builds (some info might be here: https://bitcoinops.org/en/topics/reproducible-builds/). Unless Fedora can guarantee that the distributed binary will be identical to the upstream binary, or at least Fedora infrastructure will provide sufficient information to the user such that they can verify the Fedora packaged binaries aren't compromised, Fedora should not be including this in the repo. Events since 2017 have shown this is an important concern. -- You are receiving this mail because: You are on the CC list for the bug. You are always notified about changes to this product and component _______________________________________________ package-review mailing list -- package-review@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-review-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-review@xxxxxxxxxxxxxxxxxxxxxxx
