https://bugzilla.redhat.com/show_bug.cgi?id=2257948 --- Comment #10 from Fabio Valentini <decathorpe@xxxxxxxxx> --- > Thanks, that make sense, we'll take a look at that crate but, are there any specific guidelines for this audit to be done? In principle, the same source audit that should be done for every package review: - Are there any pre-built binaries that are used during the build process? If yes, can they be replaced and / or rebuilt from source? - Are there any contents that are under licenses that would prohibit it from being distributed by Fedora? - Are there any implementations of cryptographic algorithms that Fedora is not allowed to distribute? - etc. -- You are receiving this mail because: You are on the CC list for the bug. You are always notified about changes to this product and component https://bugzilla.redhat.com/show_bug.cgi?id=2257948 Report this comment as SPAM: https://bugzilla.redhat.com/enter_bug.cgi?product=Bugzilla&format=report-spam&short_desc=Report%20of%20Bug%202257948%23c10 -- _______________________________________________ package-review mailing list -- package-review@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to package-review-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-review@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
