mtl-2.1 severly broken, cabal needs blacklisting
Henning Thielemann
lemming at henning-thielemann.de
Tue Nov 13 20:03:08 CET 2012
On Tue, 13 Nov 2012, Bas van Dijk wrote:
> On 13 November 2012 17:27, Andreas Abel <andreas.abel at ifi.lmu.de> wrote:
>> This calls for a means of blacklisting broken or malicious packages.
>>
>> cabal update
>>
>> should also pull a blacklist of packages that will never be selected by
>> cabal install (except maybe by explicit user safety overriding).
>
> Maybe we can use the existing preferred-versions file that cabal-install uses:
>
> http://hackage.haskell.org/packages/archive/preferred-versions
It is also possible to deprecate a package. Is it possible to deprecate a
single version? I'm afraid that the user is also not warned if he installs
a deprecated package.
More information about the Libraries
mailing list