Hi Brian, On 25-07-2019 09:50, Brian May wrote: > Paul Gevers <elb...@debian.org> writes: > >> Your package is trying to fix a CVE, but at the same time dropping >> Python 2 support. There is a multitude of packages that need updating >> for that because they (test-) depend on python-django. I think it is >> smart to revert the Python 2 removal and have the security fix migrate >> to testing. I don't want to judge the severity of the CVE, but otherwise >> I recommend to remove python-django from testing until all the fall-out >> has been fixed. > > Python 2 support was dropped by upstream when we updated to version > 2.2.x. We cannot support Python 2 unless we reverted package to Django > 1.11.x.
Ack. What is the proposed way forward? Paul
signature.asc
Description: OpenPGP digital signature
