The situation currently is an unmaintained and guaranteed insecure package, so I don't think having users rely on something else will make it worse.
> These ports haven't been maintained and have been subject to numerous security issues over the past couple years (including a very critical one that made the news this week)
> These ports haven't been maintained and have been subject to numerous security issues over the past couple years (including a very critical one that made the news this week)