Re: golang-go.crypto / CVE-2019-11841

[Paul Wise <pabs@debian.org>]

On Mon, Nov 9, 2020 at 10:33 PM Brian May wrote:

> What is this "Built-Using" header?

It documents which source package versions need to be shipped to
ensure license compliance.

https://www.debian.org/doc/debian-policy/ch-relationships.html#additional-source-packages-used-to-build-the-binary-built-using

Please note that golang folks were/are using it in a more general way
than the use it was intended for.

-- 
bye,
pabs

https://wiki.debian.org/PaulWise