Simon Josefsson wrote: > Isn't that what the text refers to? Vendoring and static linking are > two examples of the same problem that the security team may encounter. > The problem with dependencies are more obvious for Go/Rust code but I > think we always have had that problem anyway.
Another example of this class of problem is header only C++ libraries. -- Robert Edmonds edmo...@debian.org
