@dalias It's incredibly baffling to me how frequently it has been demonstrated in the course of uutils development how little people have referenced even coreutils CVE data or taken care to understand really basic things, like, /dev/tty or the file descriptor-oriented calls that make shit safer
it seems less like an exercise in safety and more a clean room effort to relicense a thing in an ecosystem popular with the kids