[pkg-go] Go security support in buster

Shengjing Zhu i at zhsj.me
Wed Sep 5 16:48:47 BST 2018

> there were earlier discussions about this before (2015 or so),

So for the first question,
- detects which packages need a rebuild if a given Go package has been

dh-golang now generate Built-Using info for both direct and indirect
build-depends. So any tool deal with Built-Using info can do this.
IIRC, when last time such issue raised, dh-golang can only generate
Built-Using info for direct dependencies. But it's been fixed(probably
in 2016).

Best regards,
Shengjing Zhu

More information about the Pkg-go-maintainers mailing list