At the beginning of this year we noticed that the Deepin Desktop as it is currently packaged in openSUSE relies on a packaging policy violation to bypass SUSE security team review restrictions. With a long history of code reviews for Deepin components dating back to 2017, this marks a turning point for us that leads to the removal of the Deepin Desktop from openSUSE for the time being.| SUSE Security Team Blog
dde-api-proxy is a component of the Deepin desktop environment that provides backward compatibility for legacy D-Bus service and interface names. We discovered a major authentication flaw in the design of this D-Bus proxy component.| SUSE Security Team Blog