On Mon, Jun 08, 2026 at 09:14:35PM +0000, Moritz Mühlenhoff wrote: > It's marked as bogus in the security tracker. I don't think we should > start declaring random packages which are dead upstream as unsupported, > that won't scale and is also not the right course of action. We have > 100s of other packages which no longer have an active upstream and > if there's ever a genuine security issue for ply we can look into > fixes ourselves.
agreed and +1
> > Also: why is there no bug against src:ply?
> Given the package is dead upstream, I think a sensible step would
> be to investigate alternatives and if they have are packaged, file
> bugs against the rdeps.
+1
I guess I will close this bug soon.
--
cheers,
Holger
⢀⣴⠾⠻⢶⣦⠀
⣾⠁⢠⠒⠀⣿⡁ holger@(debian|reproducible-builds|layer-acht).org
⢿⡄⠘⠷⠚⠋⠀ OpenPGP: B8BF54137B09D35CF026FE9D 091AB856069AAA1C
⠈⠳⣄
„Ich mag schöne Menschen. Wie sie aussehen ist mir egal.“
signature.asc
Description: PGP signature
