Date: Wed, 12 Dec 2018 10:57:12 +0000 From: Matthew Seaman <matthew@FreeBSD.org> To: Mathieu Arnold <mat@FreeBSD.org> Cc: ports-committers@freebsd.org, svn-ports-all@freebsd.org, svn-ports-head@freebsd.org Subject: Re: svn commit: r487286 - head/security/vuxml Message-ID: <3d70d3fe-0c5d-c6aa-c8af-68d3eb1adbc9@FreeBSD.org> In-Reply-To: <20181212103051.xpzsfs3s3mvx2fj5@atuin.in.mat.cc> References: <201812120916.wBC9G4Y0075539@repo.freebsd.org> <20181212095700.wn4csjwred4gugme@atuin.in.mat.cc> <5db2345e-c8c0-1b2a-0d3f-40af99219cd4@FreeBSD.org> <20181212103051.xpzsfs3s3mvx2fj5@atuin.in.mat.cc>
next in thread | previous in thread | raw e-mail | index | archive | help
On 12/12/2018 10:30, Mathieu Arnold wrote: > On Wed, Dec 12, 2018 at 10:26:29AM +0000, Matthew Seaman wrote: >> On 12/12/2018 09:57, Mathieu Arnold wrote: >>> On Wed, Dec 12, 2018 at 09:16:04AM +0000, Matthew Seaman wrote: >>>> Author: matthew >>>> Date: Wed Dec 12 09:16:04 2018 >>>> New Revision: 487286 >>>> URL: https://svnweb.freebsd.org/changeset/ports/487286 >>>> >>>> Log: >>>> PHP 70 was EoL'd and is no longer in the ports. >>>> >>>> Reported by: joneum >>> >>> No longer in trunk, still in the quarterly, please put it back. >>> >> >> It's been put back now. > > As a side note, the descriptions in vuxml are not about what currently > exists, it is about what once existed, so technically, even in two > years, when recording a flavored php app, one should still mention all > the previous package names, so that people with old ports tree who have > not been updated in a while still get a notification that this app is > vulnerable to something. How far back should we take this? Is there any limit on how old a ports tree and the packages installed from it can be and still be expected to be supported by VuXML? Other than the practical limitation of 'pkg audit' or some equivalent being available? Cheers, Matthew
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3d70d3fe-0c5d-c6aa-c8af-68d3eb1adbc9>