On Monday, January 12, 2026 8:25:19 AM Mountain Standard Time Michael Biebl wrote: > Where do you expect that security fixes come from if there is no more > active upstream? > > It appears that most major distros do not have a desire to keep GTK2 > around, which basically means, Debian would have to become upstream. > > Do we actually have the expertise for that? GTK is a non-trivial library. Security support would be my primary concern with maintaining GTK2 in Debian going forward. I am not saying that I would be opposed if qualified people stepped forward and committed to providing that support. But I am saying that any effort to do so would need to be explicit about the ability of the maintainers to provide such support. So far, in this discussion, I have not seen any indication that anyone has committed to providing such security support. -- Soren Stoutner soren@debian.org
Attachment:
signature.asc
Description: This is a digitally signed message part.