On 2025-02-13 16:21:10 -0300 (-0300), Santiago Ruano Rincón wrote: [...] > So, this is a call for comments: is this kind of package list useful? [...]
The main problem I see is that the list includes projects who backport security fixes to stable branches, so for example python-keystonemiddleware 10.7.1 is the latest point release on their stable/2024.2 branch, while 10.8.0 is a development release on their master branch. Both include the same security fixes, therefore 10.7.1 isn't outdated even though there is a higher version number available. I see at least a few projects in your list I recognize as being in the same situation, but no idea how many more there might be. -- Jeremy Stanley
signature.asc
Description: PGP signature
