is there a list of all included packages somewhere?
Couldn’t find it in the docs or FAQ.
Recently we had the xz and CUPS security vulnerabilities.
What do you think about putting a section on the homepage or forum, where you inform the user, what they should/n’t do and what you do to fix the vulnerabilities and when a fix will be available.
It would be out of date extremely quickly considering how fast this project has been moving. Maybe in a couple of years when things slow down but you can see what packages are installed on your system now with the rpm -qa command.