New comment by Duncaen on void-packages repository

https://github.com/void-linux/void-packages/pull/43192#issuecomment-1493470004

Comment:
> The daily void-updates job may be fooled there is no new version.

Sure, but so can a man in the middle simply dropping the connection or the server being unreachable simply by chance.

> Could you explain why validate certificate IS an issue? Any package depend on insecure certificate? Why insecure by default? 

This was added years ago without much explanation https://github.com/void-linux/void-packages/commit/ebbb33b51996c381bc8a0d2023e0e048614190.
Might have been the bad state of availability of ssl certificates at the time.
Its probably fine to remove that flag, and maybe add a mechanism to allow self signed certificates through the `srcpkg/*/update` file if required at some point.

> That’s unbelievable attitude for a famous distribution.

This comes a bit of as being hostile for no reason.