[Rpm-maint] [rpm-software-management/rpm] RFE: ensure unwritable buildroot during %check (Issue #3010)

Panu Matilainen notifications at github.com
Tue Apr 2 07:55:38 UTC 2024


On the heels of the xz incident, one of the ideas (from @keszybz it seems) to harden against malicious tests is to make buildroot readonly during %check.  Picked from https://github.com/rpm-software-management/rpm/discussions/3009 as a clear actionable item.

-- 
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/3010
You are receiving this because you are subscribed to this thread.

Message ID: <rpm-software-management/rpm/issues/3010 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20240402/08e02879/attachment-0001.html>


More information about the Rpm-maint mailing list