[msuozzo]

Author here!

Both nix and guix are exciting projects with a lot of enviable security properties. Many here can attest that using them feels like, and perhaps is, the future. I see OSS Rebuild as serving more immediate needs.

By rebuilding packages from the registries people already use, we can bring some of those security properties to users without them needing to change the way they get their software.

[kam]

Nixpkgs pulls source code from places like pypi and crates.io, so verifying the integrity of those packages does help the Nix ecosystem along with everyone else.

[Y_Y]

Why not help them help bring their packages to users, rather than borrowing and circumventing the existing effort?