On Mon, Oct 04, 2021 at 10:10:35AM -0700, Kevin Fenzi wrote:
On Mon, Oct 04, 2021 at 10:57:42AM +0200, Vít Ondruch wrote:
> Thoughts?
I like the idea!
We can block such a package from ever appearing in a compose in pungi.
Is this really necessary? The package will not be open to anyone,
but only for approved contributors. Malicious behaviour is not more
likely then in any other package (and would be immediately caught).
I think we're thinking up technical solutions to something that is
not a problem.
Zbyszek