New comment by notramo on void-packages repository https://github.com/void-linux/void-packages/issues/41107#issuecomment-1406897199 Comment: https://forum.f-droid.org/t/known-vuln-rustdesk/18793 This links to https://github.com/rustdesk/rustdesk/issues/225 Even the comments in the code are written in CJK. Also, a quick search to "rustdesk encryption issue" helped me to find this: https://github.com/rustdesk/rustdesk/issues/451 The devs doesn't seem to be transparent enough about this issue. They just said to “upgrade to fix it”. They didn't provide a possible reason for the issue. That's not how security vulnerabilities are managed. The lack of explanation makes one think that it was an intentional backdoor, which got noticed, and they simply removed it in the next release. There are not enough people to keep an eye on the project, which would be necessary, given their track record. It's worth adding an installation warning to the package if it will be packaged in Void Linux. I would personally recommend not packaging it at all.