Currently the upstream readme contains the statement
This project is unmaintained and has known security issues. It is foolish to use this software to process untrusted data.
Additionally, the maintainer removed themselves and while some people have shown interest in stepping up, it's unclear how that will turn out.
This is obviously not great™️ for such a low-level package with 130+ direct dependencies, and many more transitive ones.
FYI @conda-forge/libxml2 @conda-forge/core
Currently the upstream readme contains the statement
Additionally, the maintainer removed themselves and while some people have shown interest in stepping up, it's unclear how that will turn out.
This is obviously not great™️ for such a low-level package with 130+ direct dependencies, and many more transitive ones.
FYI @conda-forge/libxml2 @conda-forge/core