pkg audit false negatives
Roger Marquis
marquis at roble.com
Fri Aug 11 21:47:38 UTC 2017
> It had been resolved for dovecot (it will now match both variants, since people might still have
> the old variant of the port installed) and there is a new paragraph added to the porters handbook
> which tells that we need to have a look at the vuxml entries.
Thanks Remko.
> Hope this solves your issue,
It may for renamed ports/pkgs but doesn't appear to for deprecations.
Once ports are dropped they do not show up in pkg-audit despite having
been installed via pkg and/or ports. That's the false negative that
appears to still be a problem.
Roger
More information about the freebsd-pkg
mailing list