Nicolas Mailhot via devel wrote:
And Go has all build dependencies in the release where they are used
(not like rust, with magic ephemeral rawhide-only packages)
Ephemeral Rawhide-only packages mean the builds cannot be reproduced in a
release, which is a clear violation of our packaging guidelines. What if a
security update is needed? (Yes, I know the language claims to be totally
secure by design. But that is at most true for a small number of security
vulnerability classes, such as buffer overflows.) And if the software is
under the GNU GPL or a similar strong copyleft license, it is also a
violation of the license.
Kevin Kofler