Oof, a package like qtwebsocket that reads a network protocol directly has a security surface and will need a quick security audit.
What pulls pyqt5 into main anyway? (I'd figure this out myself, but reverse-depends isn't working for me right now. But apt-cache rdepends didn't find anything obvious on a quick scan.) I don't suppose we could demote pyqt5 instead of promoting these packages? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1409433 Title: [MIR] qtenginio-opensource-src and qtwebsockets-opensource-src To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/qtenginio-opensource-src/+bug/1409433/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
