brave/tor_build_scripts

Stop hard-coding library versions

Closed this issue · 1 comments

As mentioned in #82, we're currently hard-coding an old vulnerable version of zlib.

Instead of continuing to manually maintain these dependencies, I'd suggest we outsource this to Debian. Basically, we could just use the latest version of Debian and apt install the latest version of the dependent libraries from the distro. This way, it will include all of the latest security fixes that Debian has released.

This would only work on Linux, so it wouldn't allow us to remove the hard-coded libraries for Windows and Mac.