The author addresses the issue.

      • Kogasa@programming.dev
        link
        fedilink
        arrow-up
        1
        ·
        6 months ago

        I mean the specific issue about the binary blobs. Something that might set off alarm bells for you or a security-focused group may not do so for some dude working on a passion project in his free time.

        • HayadSont@discuss.online
          link
          fedilink
          arrow-up
          1
          ·
          edit-2
          6 months ago

          Thanks for clarifying.

          The example sentence could also be something like “I would like to notify everyone that I’m aware of this issue and I intend to start tackling it from <insert date> onwards. Allow me to explain the status quo for … (etc. etc.).”. Or whatever sentence you like. The point is not what the exact message is, but an alternative to the absolute radio silence we’ve met.

          As for them working on it or not. Clearly, they haven’t worked on it until now. But I don’t understand what was so crucial in the last 8 releases that they couldn’t address this issue instead. Especially, in the aftermath of the XZ utils backdoor. But that’s not the issue I was trying to address with my previous comment. The issue is radio silence. It doesn’t have to set off alarm bells for themselves in order to acknowledge (timely) the concern a chunk of its user base experiences.