From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <rider@basealt.ru>
X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on
 sa.local.altlinux.org
X-Spam-Level: 
X-Spam-Status: No, score=-3.4 required=5.0 tests=BAYES_00,DKIM_SIGNED,
 DKIM_VALID,DKIM_VALID_AU,RP_MATCHES_RCVD autolearn=ham autolearn_force=no
 version=3.4.1
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=basealt.ru; s=dkim;
 t=1753259911;
 h=from:from:reply-to:subject:subject:date:date:message-id:message-id:
 to:to:cc:mime-version:mime-version:content-type:content-type:
 content-transfer-encoding:content-transfer-encoding:
 in-reply-to:in-reply-to:references:references;
 bh=k/rnSn5kRlf4u478W4A2RuoxL9KTwM6qqR1/nkkAjv0=;
 b=i9gDCFtNZU7EJGKqIlRnVFKOkbrhccmqyeSr8jJwiAXFy9PNrmx+tnMJyACl0PAKnoGNMX
 rsAh/kD/jEjDt7Vex263WyWyAi+A0JoaK+YkdQZ5v1UO/MfXjIo5roeOMVBbhz2eFobxPa
 +OqrtKWO16PjTfIq9+NRA4O6bQLEnF8Hsh3CBb6vjQ1xB6+PAS1hz+AxP35xB6/L0ppKtU
 kqMFPOrKXv1fxDj3oZLkQ3YIWz+rWE+ABXbjgbjZWCpf/ssBbrus0Vm9YHLvEPPsL5HMWJ
 MA+BjjDikKFoTB7VhO6jSIJpskmdn1kfCxg2ZHKTotTpwQNrj+ukrI0gAv5+pA==
Message-ID: <5eea39fc-cae2-40ba-9572-fac5fffdb114@basealt.ru>
Date: Wed, 23 Jul 2025 11:38:30 +0300
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
To: devel@lists.altlinux.org
References: <2233bc34-6e02-4b48-a922-aae21af832a0@altlinux.org>
 <20250707090321.GA22622@strace.io>
Content-Language: ru
From: Anton Farygin <rider@basealt.ru>
Organization: BaseALT
In-Reply-To: <20250707090321.GA22622@strace.io>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 8bit
Subject: Re: [devel] =?utf-8?b?0JjQt9C80LXQvdC10L3QuNC1IFZ1bG5lcmFiaWxpdHkg?=
 =?utf-8?b?UG9saWN5OiDQtNC+0LHQsNCy0LjRgtGMICItIFNlY3VyaXR5IGZpeGVzOiIg?=
 =?utf-8?b?0LrQsNC6INCw0LvRjNGC0LXRgNC90LDRgtC40LLRgyAiLSBGaXhlczoi?=
X-BeenThere: devel@lists.altlinux.org
X-Mailman-Version: 2.1.12
Precedence: list
Reply-To: ALT Linux Team development discussions <devel@lists.altlinux.org>
List-Id: ALT Linux Team development discussions <devel.lists.altlinux.org>
List-Unsubscribe: <https://lists.altlinux.org/mailman/options/devel>,
 <mailto:devel-request@lists.altlinux.org?subject=unsubscribe>
List-Archive: <http://lists.altlinux.org/pipermail/devel>
List-Post: <mailto:devel@lists.altlinux.org>
List-Help: <mailto:devel-request@lists.altlinux.org?subject=help>
List-Subscribe: <https://lists.altlinux.org/mailman/listinfo/devel>,
 <mailto:devel-request@lists.altlinux.org?subject=subscribe>
X-List-Received-Date: Wed, 23 Jul 2025 08:38:33 -0000
Archived-At: <http://lore.altlinux.org/devel/5eea39fc-cae2-40ba-9572-fac5fffdb114@basealt.ru/>
List-Archive: <http://lore.altlinux.org/devel/>
List-Post: <mailto:devel@altlinux.org>

On 7/7/25 12:03, Dmitry V. Levin wrote:
> Если пользователи мониторят %changelog'и обновляемых пакетов, то им рано
> или поздно всё равно придётся узнать, что такое CVE, чтобы понимать, что
> написано в %changelog'е, который написан по действующим правилам.

А можем ли мы ужесточить правила проверки changelog на предмет 
соблюдения Policy и не пропускать пакеты, в changelog которых есть не 
соответствующие политики записи ?