On Wed, Oct 18, 2017 at 2:13 PM, Alexander Wirt wrote:
> Please don't get me wrong, but even if gitlab packages are recent tomorrow
> (which I
> don't think) we won't migrate. The work is done and we have all the things in
> place to maintain them. So please do me a favour and don't mention alioth as
> the reason.
I note that the Debian security team doesn't support libv8, nodejs and
the stack above it.
the nodesecurity.io security advisories.
What is your plan for avoiding the security issues discovered in
libv8/nodejs and gitlab-related node modules?