[pkg-go] Go security support in buster
Florian Weimer
fw at deneb.enyo.de
Wed Sep 5 20:05:00 BST 2018
* Michael Stapelberg:
> Could one automate uploads for all required binNMUs as well?
Sure, to some degree: they will need .changes files with new
signatures.
> On Wed, Sep 5, 2018 at 8:34 PM, Florian Weimer <fw at deneb.enyo.de> wrote:
>
>> * Michael Stapelberg:
>>
>> > I thought haskell was in a similar boat? They have tooling to schedule
>> > binNMUs for affected packages.
>>
>> My understanding is that you can't simply schedule binNMUs on the
>> security archive because the security archive does not have the
>> sources until the first upload of the package. (But I'm a bit out of
>> touch; this may have changed.)
More information about the Pkg-go-maintainers
mailing list