"Jonathan Dowland" <j...@debian.org> writes: > On Wed Dec 18, 2024 at 10:58 AM GMT, Henrik Ahlgren wrote: >> Adding a couple of lines to the systemd unit should not add any new >> dependincies to the package, or affect users of other init systems in >> any way. > > That's a very good point. In which case that's likely not why there is a > lag in adopting these things. > > Perhaps we could have a release goal to set a certain bar in terms of > hardening features for trixie+1?
(This would be great - i dont think debian's policy says anything at all about this. there's also a bit of a gap in how to replace cron scripts since timers are much more flexible) It might help if there was an analysis tool -- i saw https://github.com/synacktiv/shh/tree/master/ which might be interesting (nb: untested!)
