Subject: Re: adding check for binary packages to audit-packages
To: Alistair Crooks <agc@pkgsrc.org>
From: Thomas Klausner <wiz@NetBSD.org>
List: tech-pkg
Date: 05/19/2005 16:06:23
On Thu, May 12, 2005 at 01:00:04PM +0100, Alistair Crooks wrote:
> > And maybe provide some way to have multiple pkg-vulnerabilities files. Any
> > thoughts on that? For example, if you use or offer pkgsrc packages not
> > included in official NetBSD pkgsrc.
> 
> I have no problems with doing that for yourself, but this falls under
> the heading of "why don't we allow downloading the pkg-vulnerabilities
> file from any sites other than the official one?", and hopefully the
> answer should be fairly obvious why we don't.

Actually, something like this would be nice to have for pkgsrc-wip...
 Thomas