This probably does need a discussion on the architecture list and we need some discussion and decisions about where/what buildhistory could/should do. Adding this to buildhistory is all well and good but we don't have a meaningful integration/monitoring of existing buildhistory issues in our autobuilder/workflow today even before adding new things.
I was hoping for free cycles. I didn't get one. This will be an intern project.
The way I'm thinking is to have the ABI compat XML be part of the state cache tgz file and come up with a CVE check kind of hook maybe called "ABI check" that will start flagging problems.
