Fedora has moved to retire every package maintained by the deepinde-sig group, marking another serious setback for Deepin in the Linux ecosystem. The decision follows SUSE’s earlier removal of Deepin packages, placing two major distributions on the same side of the security and maintenance debate.
The move does not amount to a permanent ban, but it does raise the bar for any future return. Fedora has made clear that these packages should not be re-enabled until they go through a new security review.
The decision came after internal discussion in Fedora that did not produce any objection. Fedora also asked that the affected packages remain retired unless they can satisfy the stricter review process now required.
SUSE had already taken a similar step in May 2025. At that time, SUSE stopped shipping Deepin packages because of security concerns, along with serious remarks about attempts to bypass SUSE’s security review process.
That earlier action appears to have pushed Fedora to take a harder look at its own policy. During its internal evaluation, Fedora questioned why it seemed to be trailing SUSE in how it handles package changes that carry security implications.
Communication problems added to the pressure
Security was not the only issue in Fedora’s assessment. The project had already tried to work with Deepin to fix the problematic packages, but that effort became difficult because communication with several key people behind the Deepin implementation was not working well.
Fedora’s discussion also described the DDE packages as having been in very poor condition for a long time. To give the project one last chance, Fedora set a four-week window to try reaching the people responsible for Deepin maintenance again.
The result was still disappointing. Some important figures did not respond, while others who did reply said the relevant people were too busy to deal with Fedora’s concerns.
That breakdown in communication became a major factor in the final decision. For a large Linux distribution, a long-running security problem combined with weak maintenance contact is hard to justify.
What this means for Deepin
Deepin has long been known for its visually distinctive desktop environment, and that image still remains one of its strongest points. In earlier impressions, the distro was even described as looking more beautiful than anything made by Microsoft or Apple.
But the current dispute shows that visual appeal is no longer enough on its own. Major Linux distributions now expect active maintenance, quick response to security findings, and clear cooperation with package maintainers.
Fedora has not closed the door completely. The retired packages can still be submitted again later, as long as they pass a fresh security review and show that the old problems have been addressed.
For now, though, Deepin faces growing pressure in mainstream Linux distribution channels. After losing support from SUSE and now Fedora, the project must prove that it can match its polished desktop with stronger security practices and more reliable package management.
Source: www.xda-developers.com
