This has a drop dead date of March 31, 2026. What is the status of this? If this doesn't get resolved at Debian's level, we need to look at using Duo's repo and configs. Thank you. All affected Duo products have new versions available which contain root certificates with redundant and varied certificate authorities to safeguard against this need in the future.
* Soft Cut-Over: After February 2, 2026, older Duo versions still using expiring bundle may begin to fail authentication. * Hard Cut-Over: On March 31, 2026, unsupported versions will stop working entirely.
