On 10/12/2011 12:54 AM, Zac Medico wrote: > On 10/11/2011 12:56 PM, Michał Górny wrote: >> Or go with a saner defaults... > > So, are any of the following sane? > > 1) Pull in updates for packages even though those packages won't be used > for anything. >
Francisco raised a possibly valid point in his original message: though packages may not be currently used for anything, but they could contain un-patched security flaws. This seems pretty unlikely to me given the sorts of packages that are build-time-only deps, but it could be possible.
signature.asc
Description: OpenPGP digital signature
