Package: lintian Version: 2.5.44 Severity: wishlist Hi!
With dpkg 1.18.5, orig tarball signatures for format 1.0 will be accepted for extraction and building, which means stable systems will not be able to extract them. Extraction of orig taball signatures for format >= 2.0 have been accepted since dpkg 1.17.20, so these are safe to use. It would be nice if lintian could error out when finding an orig tarball signature on source format 1.0 packages. The pattern for the signature is «<basename>.orig.tar.gz.asc». Thanks, Guillem