Re: Update 1.0.9.n this week?
 

Right, except that we don't have bundling of all dependencies of an application. Welcome to Linux, enjoy your horribly uncomfortable stay unless you have a large team of people who know what API/ABI stability are, and can also claim to keep bug compatibility.

(I've yet to meet those people, unfortunately)

The impact of this is that if you just upgrade one part of things, you massively bloat out the number of combinations you have to test. And if any of those have a problem, and you miss it, well done - you just broke an application for an end user.

Re: Update 1.0.9.n this week?
 

Hey woot. Welcome back. Didn't you steal the latest update before you left. Bring us the leak. We won't tell anyone :D

Re: Update 1.0.9.n this week?
 

Neither or either. It doesn't matter. There is a trusted set of developers that have a duty to ensure a change is good and appropriate.. Jolla.

It's the same reason I take patches and updates from a restricted set of repos on my web servers rather than just finding a patch online and recompiling it. I can't review code for every change so I rely on professional companies with QA and support contracts.

Re: Update 1.0.9.n this week?
 

lol. If you dont know where to find the original sources, then dont install it.
hint! its GNU bash - use this search to find official patches
https://www.google.com/webhp?sourcei...+gnu+bash+4.3+

Re: Update 1.0.9.n this week?
 

If you want more laughs, http://talk.maemo.org/showthread.php?t=93648 (edit: wait, you already knew this :) ).

Re: Update 1.0.9.n this week?
 

/me explodes.

Re: Update 1.0.9.n this week?
 

Re: Update 1.0.9.n this week?
 

So on one side you have things like Debian Stable which ship 2-5 year old packages and take years to "stabilize", and on the other hand you have rolling distros which explicitly have minimal QA only (a glaring example is Sid).

You'd be surprised at the number of users Sid has.

I'm not saying one method is better than the other, but there's definitely some significant number of users that would choose "MOAR updated" even if it meant "it crashes every other day". I mean, google for "$DISTRO 'unstable' branch does not deserve its name, it's actually quite stable!!!!"-like posts where you get lots of people with questionable definitions of "quite stable".

Note personally I don't care about this. I use Gentoo stable, which is still stuck at a gcc version not much newer than what Jolla ships today, and Qt 4.8 .

Re: Update 1.0.9.n this week?
 

Of course I understand the problems. Nevertheless it is achievable.

Re: Update 1.0.9.n this week?
 

I appreciate the work you do over on openrepos, but the guy has a point about QA. That's the main difference between updates from you guys at openrepos and Jolla, and it's perfectly acceptable for someone to want to wait for the official package from Jolla that's undergone the sort of rigorous QA w00t is describing. That's the trust he's talking about - not suspicion of malicious code.

The problems back in March with bash are a clear example of that. It shouldn't be up to you guys to do extensive QA, so most people should get their stuff from Jolla and the store so they can be sure their phone will (mostly) keep working.