On 12/06/2026 09:22, Iyán Méndez Veiga wrote:
If all the attacks happened via the PKGBUILD adoption way, perhaps the requirements can be toughen even more, like requiring a min number of packages already being maintained by the account before allowing to orphan.
I missed some words here. Just for clarity, what I meant was: "before allowing to (adopt) orphan (PKGBUILDs). -- Iyán Méndez Veiga GPG Key: 204C 461F BA8C 81D1 0327 E647 422E 3694 311E 5AC1
OpenPGP_signature.asc
Description: OpenPGP digital signature
