Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.    By clickin

link: don't link openssl. #597

submited by
Style Pass
2022-10-06 01:30:27

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

See https://gist.github.com/tdsmith/4b502c5cc6e7d358acdf for reproduction instructions of the security hole this creates. Unfortunately this is recommended in locations like https://www.microsoft.com/net/core#macos (which provide no specific contact information) that we will unfortunately break but there's not really any other way around. This will scale better than the current system of "Homebrew maintainers notice sites recommend this and ask them to not do so".

Should we add something like "Consider running export CPPFLAGS=-I$(brew --prefix openssl)/include; export LDFLAGS=-L$(brew --prefix openssl)/include before running build scripts for projects which depend on openssl" to help folks along?

Leave a Comment