Possibly vulnerable packages overview

[aparcar]

Hi all, with some recent work we got better integration in repology.org, which kindly tracks our packages and even show outdated/vulnerable packages.

Looking at the overview, it's clear that quite some packages require and upgrade or should be dropped if no longer maintained within OpenWrt. I invite everyone to have a quick look at the table below:

https://repology.org/projects/?inrepo=openwrt_24_10_x86_64&vulnerable=1

[Nmrawe]

curl 8.10.1 has 4 known vulnerabilities: https://curl.se/docs/vuln-8.10.1.html.
It has been updated to the latest version in Master, but not by the designated maintainer.

[feckert]

@aparcar I would suggest to pin this to the issue overiew page.

[Neustradamus]

To follow this important ticket.