Roland Illig wrote:
> Probably the original authors of that piece of software didn't trust 
> themselves enough to properly quote all filenames when they are passed 
> to the shell, so they restricted them.
>
> This check may be removed in the future, after we have thoroughly 
> checked that the pkg_* tools don't create shell commands with unquoted 
> filenames.

A warnx() instead of errx() would then at least let me install the 
binary package and
still let package developers notice that the filename "might be bogus".