Hi, since the upcoming 1.15.6 release is supposed to be targeted at experimental, I think it would be a good idea to fix the recently spotted path traversal/symlink vulnerabilities of dpkg-source in sid as well. Regards, Sven