On Sat, Mar 18, 2017 at 01:36:31PM -0400, John Darrington wrote:
> [CC guix-devel@gnu.org]
>
> So we have to make a choice:
>
> 1. Package a released program with a known vulnerability; or
Although all non-trivial software contains bugs, many of which can be
exploited, we should not add new pack
John Darrington writes:
> [CC guix-devel@gnu.org]
>
> So we have to make a choice:
>
> 1. Package a released program with a known vulnerability; or
> 2. Package an unreleased git snapshot.
>
> Which is the lesser evil?
I choose option two. I'm quite uncomfortable with packaging software
that is
[CC guix-devel@gnu.org]
So we have to make a choice:
1. Package a released program with a known vulnerability; or
2. Package an unreleased git snapshot.
Which is the lesser evil?
J'
On Sat, Mar 18, 2017 at 12:21:40PM -0400, Kei Kebreau wrote:
> John Darrington writes:
>
> > On Fri, Mar 17, 2