On 6/29/22 15:14, Chuck Anderson wrote:
> On Wed, Jun 29, 2022 at 11:49:51PM +0530, Vipul Siddharth wrote:
>> Fedora 37 as a compatibility library. Because libsoup is a sensitive
>> network-facing HTTP library written in an unsafe language and where
>> CVEs may have disastrous impact, it is not saf
On Wed, Jun 29 2022 at 03:14:06 PM -0400, Chuck Anderson
wrote:
Why are we using a "network-facing HTTP library written in an unsafe
language"? Shouldn't we take this opportunity to move to a safer HTTP
library? Or is libsoup 3 safe(r) than libsoup 2?
Not aware of any plausible alternatives
On Wed, Jun 29, 2022 at 11:49:51PM +0530, Vipul Siddharth wrote:
> Fedora 37 as a compatibility library. Because libsoup is a sensitive
> network-facing HTTP library written in an unsafe language and where
> CVEs may have disastrous impact, it is not safe to leave libsoup 2
> hanging around indefin
This document represents a proposed Change. As part of the Changes
process, proposals are publicly announced in order to receive
community feedback. This proposal will only be implemented if approved
by the Fedora Engineering Steering Committee.
== Summary ==
libsoup 3 is a new API version of libs
