Comment 43 for bug 210112

Security concerns: while people using Envy are already directly installing software from a non-official repository, if they switch to EnvyNG, they are no less safe. However, since EnvyNG is installable from the repo directly now, it is likely there will be more people installing it, which means more people will be potentially vulnerable to a breach of the PPA driver updates. It would be better if updates were being reviewed by motu or core-dev for issues. Doing full testing is out of scope, this the whole purpose of envy is to provide bleeding-edge drivers.

License concerns: are the drivers in the PPA redistributable? I assume so, since they're in a PPA. If so, why can't they be put into multiverse? They don't change so often that it would be a burden to do SRUs for them, especially if a standing SRU exception was made for Envy drivers.