[Pkg-rust-maintainers] Bug#1069946: rust-webpki-roots: hardcoded root certs are unfit for stable Debian

[Jonas Smedegaard]

Source: rust-webpki-roots
Version: 0.26.1-1
Severity: grave
Tags: upstream
Justification: renders package unusable

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

The purpose of WebPKI-Roots is to hardcode a static set of PKI
certificates into compiled code.
This functionality is unfit for a Debian stable release, where the
ability to update certificates is crucial for the long lifespan of the
release.

Hence flagging this as a severe bug, to avoid this package to trickle
into testing and from there into stable.

-----BEGIN PGP SIGNATURE-----
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=X1MJ
-----END PGP SIGNATURE-----