Could the XZ backdoor have been detected with better Git and Debian packaging practices? - AOS for Lemmy.World - A generic Lemmy server for everyone to use.

120

Could the XZ backdoor have been detected with better Git and Debian packaging practices?

7mon 1d ago by programming.dev/u/otto in debian from optimizedbyotto.com

How did the changes in the binary test files tests/files/bad-3-corrupt_lzma2.xz and tests/files/good-large_compressed.lzma, and the makefile change in m4/build-to-host.m4) manifest to the Debian maintainer? Was there a chance of noticing something odd?