Hello All, I notice that kf5-messagelib is listed in dla-needed.txt. I also notice that the only security issue listed for kf5-messagelib, CVE-2017-17689, is listed as no-DSA. Should the entry be removed from dla-needed.txt? Regards -- Brian May <bam@debian.org>