Quote:
Originally Posted by kovidgoyal
@Queso: You are of course welcome to do whatever you find most comfortable. I do not support distro provided calibre packages for good reasons, but, if you prefer them, feel free to use them, the only caveat being that you wont get help from me 
Personally, I find the idea that a small team of distribution package maintainers can effectively (and continuously!) review thousands of packages for bugs whether security or stability related, better than the developers that created the software to be rather incredible. It may well be true for software that is not actively maintained, but for software that is actively maintained, it just doesn't seem very likely.
And, in practice, I have found that distro maintainers introduce far more bugs than they fix. But, YMMV. |
I am sure it is very useful simply because if a package finds its way into the repos in the first place, it can be assumed the package is not malicious (I hope it is safe to assume they get properly vetted the first time even if later they slack off due to overload). After that, feel free to use the developer recommended installation. After all, the only service the repos perform is vetting for downright malicious code (usually not applicable) and package management with debundled deps -- which can be a bad thing depending on the patches.