In report of SPF record validity, why does the include not override the fail status? In the real world it does, in reporting, it does not – example, if an SPF record ends in ~all, but also has an include that ends in -all, in the real world, the -all overrides, but in reporting, the ~all is used for evaluation, which makes it invalid.
This stakeholder is correct. This is a bug in trustymail. See section 5.2 of RFC7208. Here is the offending piece of code.
One of our stakeholders pointed out that:
This stakeholder is correct. This is a bug in trustymail. See section 5.2 of RFC7208. Here is the offending piece of code.