>> > Can/should this bug be closed? > > Yes, I think it could be.
Uhhmm... sorry, now I reviewed the whole issue and realised that the first and second posts are about different problems. PCRE2 dependency (second post) has been solved, but I think the first one is not about the package modsecurity-apache. Since this bug is quite old and - I guess - the issue in package libxml2 has been fixed too (because there isn't any similar issue during the building), I think we can close the issue. Sorry, I just wanted to clarify the situation. a.