Hi Why do we still need the polixy.xml, isn't ImageMagick patched for the need of this policy? Greetings Pascal https://svnweb.freebsd.org/ports/head/graphics/ImageMagick6/files/patch-config_policy.xml?annotate=484640
Do we have a good reason for this now? See https://stackoverflow.com/questions/52703123/override-default-imagemagick-policy-xml
Since the patched `policy.xml` is installed as a sample file, it doesn't matter much. However, the *un*patched policy file does a poor job of showing what kinds of policies / restrictions one might want to put in place. For that matter, so does the documentation at https://legacy.imagemagick.org/script/security-policy.php . So overall: we have a sample file that shows what might make sense if you're exposing ImageMagic to untrusted remote users: don't decode from https, .. don't support format MVG or MSL, whatever those are. The patch doesn't hurt, and might help a little.