Based on comments 19 and 24, even version 1.5.2 would presumably not pass a security review. In Seth's words, "This package needs a severe overhaul."
Til, you even say in comment 21 that openjpeg is dead upstream. I get that it might be reviving (comment 22), but unless you say otherwise, I will assume that a point release is not where a severe overhaul has taken place.
I understand the frustration with the lack of proper jpeg2000 support. But I'd rather not promote a package we believe will just create security problems down the road.
Based on comments 19 and 24, even version 1.5.2 would presumably not pass a security review. In Seth's words, "This package needs a severe overhaul."
Til, you even say in comment 21 that openjpeg is dead upstream. I get that it might be reviving (comment 22), but unless you say otherwise, I will assume that a point release is not where a severe overhaul has taken place.
I understand the frustration with the lack of proper jpeg2000 support. But I'd rather not promote a package we believe will just create security problems down the road.