Hey, good luck and such Just noticed there are packages that don't properly LDFLAGS resulting in binaries without full RELRO. Its good to always checksec the binaries once creating or adopting a new package and see if everything was setup properly to respect hardening and other flags like generic archs. namcap will have such feature soonish
Everything else i had on my list was already mentioned by Eli. libbulletml: - whats up with LDFLAGS from makepkg.conf? like -znow? if there are options that don't work its better to remove them from makepkg.conf LDFLAGS but always use the variable cgo-git: - does not respect LDFLAGS leading to a binary without full relro cheers, Levente
