https://bugzilla.redhat.com/show_bug.cgi?id=2255917
--- Comment #6 from Fabio Valentini decathorpe@gmail.com --- Upon further investigation, I cannot find any code path in sequoia-chameleon-gnupg or sequoia-openpgp that results in a call to `(SSL_CTX_)set_cipher_list`. They do not use the `SslConnector::builder()` method either. As far as I can tell, sequoia-openpgp uses only some specific ciphers directly, and does not set an "allowed" list of ciphers for a context at all.
Maybe this is a false positive from rpmlint?