On Feb 14, Colin Watson <cjwatson@debian.org> wrote: > But it doesn't. Santiago's using the data from the security tracker to > determine whether CVEs are open. And in the case of one of my own packages these CVEs have not yet been fixed upstream, not even in an unreleased branch. -- ciao, Marco
Attachment:
signature.asc
Description: PGP signature