Hey #infosecPeople & #postmaster & #emailExperts what would be the best (as more stable/safe/RFC-compliant…) #DMARC filter for #postfix ? (inbound, obviously)

Until recently I was using policyd-spf as a policy service + #openDKIM & #openDMARC as milters and now I've disabled policyd-spf to do #SPF checking inside openDMARC.
I'm contemplating the idea of switching to Fastmail's authentication_milter but it looks like a very high maintenance piece of software.
Tell me about your choice(s)!