Ævar Arnfjörð Bjarmason <avarab@xxxxxxxxx> writes: > Is there an implied claim here that versions before v2.13.0 don't count > as "older versions"? > > I.e. doesn't v2.12.0 hard fail the verification for all index writing? > It's only after v2.13.0 that we do it only for the fsck. > > That seems like a rather significant caveat that we should be noting > prominently in the docs added in 4/4. True enough. It seems that we only did security releases from 2.30.x track and upwards for the past year or so, and anything older may not matter anymore. Documenting it should be sufficient. I actually was wondering what impact it would have if we made this change unconditionally. Thanks.
