It shouldn't. Security should be implemented as a separate tool, not tied to any package management system.