Also it is why I suggested that it could be policed.But the D community is too small for that atm.
which means that it is easy to have a concept of relatively trusted vs unknown contributors. of course if someone trusted gets hacked or socially engineered then that is a risk, but on the other hand that is true of many other library repositories and there are probably juicier targets.
