https://bugzilla.redhat.com/show_bug.cgi?id=1906287 --- Comment #3 from Matthieu Saulnier <casper@xxxxxxxxxxxxxxxxxx> --- (In reply to code from comment #2) > This contains a bundled copy of libxeddsa > (https://github.com/Syndace/libxeddsa) which must be handled in accordance > with https://docs.fedoraproject.org/en-US/packaging-guidelines/#bundling. > Indeed. Doing it now. > From README.md: > > > !!! IMPORTANT WARNING !!! > > > > This code was not written by a cryptographer and is most probably NOT SECURE. > > Should we even package this? Is there any other (shared)lib which do the job ? I know these libs are in alpha/beta state, and should be audited. But, I plan to import them in Fedora rawhide (which is the future f35). This way gives a lot of time to upstream. -- You are receiving this mail because: You are on the CC list for the bug. You are always notified about changes to this product and component _______________________________________________ package-review mailing list -- package-review@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-review-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-review@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
