|
|
|
|
|
|
by BenjiWiebe
164 days ago
|
|
|
I believe some distros require un-vendoring before accepting the package. If the code you vendored was well hidden so the distro maintainer didn't notice, perhaps the bad guys would also fail to realize you were using (for instance) libxml2, and not consider your software a target for attack. |
|
|