-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 On 01/21/2016 06:30 PM, Alexis Ballier wrote: > On Thu, 21 Jan 2016 18:25:21 +0100 Kristian Fiskerstrand > <k...@gentoo.org> wrote: >
>> However it can cause complications when issues are detected, in >> particular security relevant ones. Attaching a CSV of bugs >> assigned to security with maintainer-needed CCed. >> >> e.g app-text/htmltidy has multiple reverse dependecies but is >> itself maintainer needed with at least two vulnerabilities (bug >> 561452) >> > > well, 'not ( forall x, x is m-n, x is crap )' and 'exists x, x is > m-n, x is crap' don't necessarily disagree either :) > Indeed, however it does cause issues with assignment when security vulnerabilities are reported, as nobody is CCed to handle it if m-n. So this list needs to be actively maintained and treecleaning is difficult with reverse deps involved. ... we might get around this by amending procedures to CC every maintainer of reverse deps in these cases though (and if no rdep simply treeclean it). - -- Kristian Fiskerstrand Public PGP key 0xE3EDFAE3 at hkp://pool.sks-keyservers.net fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3 -----BEGIN PGP SIGNATURE----- iQEcBAEBCgAGBQJWoRb4AAoJECULev7WN52F4ZMH/i4c5tSxJqgPmJY07c4qFkfL N2cNWz+lRe9xr/VQxS9kLwG9IlqEJMMe4A6f2MvIeKwgN3A+HpLHQrEfK7we6Ctl +wy25IxEWbfk8ajuXU89qYN29CIeZcunhcNkA/5WvZSI4fiakxMkP2aDq9nSl+t3 VJ5V54jVEQGvS4vBcR8hKSU7uW5fnwWFIRxV4TFeD+wQNEIDdF8dMEvvqdJUpKuj 5LzlLnXXjBW9vB53wM8n0BsufLVOK/xU1Cx8AJabqmoUX5O+NdlDTXks2r/yuVUk YAze94Pb4oFKUSsQ0eHObr7vXXkpFQgwA4c4H0u75y5zAtaSDQFJ+8Fg7qIvb1k= =NQwO -----END PGP SIGNATURE-----
