On Wed, Jun 23, 2021 at 1:53 PM Miro Hrončok <mhron...@redhat.com> wrote: > > Hello Fedorans and especially Pythonistas. > > I'd like to retire python2-setuptools from Fedora 35+. > > It contains utilities to execute code downloaded from the internet and it has > not been updated for 2 years. It has a potential of a security hole, although > I > am not currently aware of any.
If utilities are going to be effectively backported to RHEL 7, it's useful to have at least the hooks to support python2 until a stack of critical utilities finally get updated to python3. This includes tools maintained by Red Hat directly, such as ansible, which still uses python2 for no reason I can ascertain. But they sell it as part of their Ansible Tower commercial subscription, so I don't expect it to to ever be updated for RHEL 7. Fedora should not be limited by specific version compatibility with RHEL, but let's be careful when we potentially disable compatibility with EPEL backports. Nico Kadel-Garcia _______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure
