Paul Wise writes:
> On Tue, 22 Oct 2013 10:42:51 +0200 Ansgar Burchardt wrote:
>> uscan would store the signature for the upstream tarball as
>> obtained via pgpsigurlmangle=... in the debian/ directory
>
> ISTR another idea was to place the upstream signature alongside the
> upstream tarball inst
Hi,
On Tue, Apr 12, 2016 at 09:19:41AM +0200, Ansgar Burchardt wrote:
> Paul Wise writes:
> > On Tue, 22 Oct 2013 10:42:51 +0200 Ansgar Burchardt wrote:
> >> uscan would store the signature for the upstream tarball as
> >> obtained via pgpsigurlmangle=... in the debian/ directory
> >
> > ISTR ano
Package: devscripts
Version: 2.16.2
Severity: wishlist
Hi devscript maintainers,
I'm trying to update the packaging of MAME, which is now GPL.
The only missing bit is updating debian/copyright, but it is a daunting
task in this source package. Being able to have licensecheck aid with it
would be
* Osamu Aoki , 2016-03-25, 01:04:
uscan repacks zip and xpi archives automatically, but AFAICS there's
no option to turn off this feature.
I am curious what Jakub is trying to achieve.
Download upstream sources (which used to be the primary purpose of
uscan). More specifically, I'm using usc
On Tue, 2016-04-12 at 09:19 +0200, Ansgar Burchardt wrote:
> For a given upstream tarball the upstream signature should go in a file
> with the extension `.asc`. For example, for
> dune-common_2.4.1.orig.tar.xz
> the signature should be in
> dune-common_2.4.1.orig.tar.xz.asc
Is there any poss
On Tue, 2016-04-12 at 21:14 +0900, Osamu Aoki wrote:
> I assume "create" means "create a copy of the upstream-generated
> signature" as foo_0.1.2.orig.tar.gz..asc which can be
> verified by the keyring debian/upstream/signing-key.pgp in the older
> package.
Correct.
> I am a bit confused what ki
| |
| Dear Sir,
Thanks for your time to read my email.
Here is Wisva's new kinds of LED strips that perfect for growing in both soil
and hydroponic mediums.
Blue (wavelength: 455-465nm):is good for photosynthesis; and help to induce
Chlorophyll and Carotenoid, which are necessary for healthy l
On Tue 2016-04-12 10:00:09 -0400, Osamu Aoki wrote:
> I assume "create" means "create a copy of the upstream-generated
> signature" as foo_0.1.2.orig.tar.gz..asc which can be
> verified by the keyring debian/upstream/signing-key.pgp in the older
> package.
I'm not sure that we need the in that sp
On Tue, 2016-04-12 at 10:26 -0400, Daniel Kahn Gillmor wrote:
> I'm not sure that we need the in that specification.
This allows for multiple signers: an upstream release team to have
multiple signers attesting that the build of the source tarball from git is
bitwise reproducible, or an upstrea
On Tue 2016-04-12 11:12:44 -0400, Paul Wise wrote:
> On Tue, 2016-04-12 at 10:26 -0400, Daniel Kahn Gillmor wrote:
>
>> I'm not sure that we need the [] in that specification.
>
> This allows for multiple signers: an upstream release team to have
> multiple signers attesting that the build of the
On Tue, 2016-04-12 at 12:06 -0400, Daniel Kahn Gillmor wrote:
> .asc files can already contain multiple signatures -- i guess i have no
> problem with splitting them out if we want, as long as the tooling for
> doing so is easy for people to use.
Having separate keys allows the addition of multip
On Tue, 2016-04-12 at 21:52 +0800, Paul Wise wrote:
> On Tue, 2016-04-12 at 09:19 +0200, Ansgar Burchardt wrote:
> For a given upstream tarball the upstream signature should go in a
> > file
> > with the extension `.asc`. For example, for
> > dune-common_2.4.1.orig.tar.xz
> > the signature should
On Tue, 2016-04-12 at 18:24 +0200, Ansgar Burchardt wrote:
> Why include the fingerprint in the filename instead of just including
> multiple signatures in the single .asc file? That is what we do for
> InRelease and Release.gpg too.
For a start: dak doesn't allow updating files in pool/
--
by
On Wed, 2016-04-13 at 01:15 +0800, Paul Wise wrote:
> On Tue, 2016-04-12 at 18:24 +0200, Ansgar Burchardt wrote:
> > Why include the fingerprint in the filename instead of just
> > including
> > multiple signatures in the single .asc file? That is what we do
> > for InRelease and Release.gpg too.
This is an automated email from the git hooks/post-receive script.
pabs pushed a change to branch master
in repository devscripts.
from b59a30f origtargz: Clarify manpage about when the tarball is
unpacked. (Closes: #820494)
new 3b083ff Fix typo; replace dwnload with download
This is an automated email from the git hooks/post-receive script.
pabs pushed a commit to branch master
in repository devscripts.
commit 3b083ff92df4e38b7688bebc9bfeee1b294461d7
Author: Paul Wise
Date: Wed Apr 13 01:30:35 2016 +0800
Fix typo; replace dwnload with download
---
scripts/de
16 matches
Mail list logo
