Duncan Roe <duncan_roe@xxxxxxxxxxxxxxx> wrote: > | This is a bad idea; cloning repo followed by "./autogen.sh" brings > | repository into a changed state. > > Agree with the above, except IMHO the "bad idea" is to have a frozen version of > build_man.sh in the repository at all. I absolutely hate the idea of fetching stuff at build time. And in this case, we fetch an exectuable shell script from untrusted location. It has backdoor written all over it.
