Bug#1120882: flawfinder: please make the build reproducible
Chris Lamb
lamby at debian.org
Mon Nov 17 20:32:01 GMT 2025
Source: flawfinder
Version: 2.0.19-1.1
Severity: wishlist
Tags: patch
User: reproducible-builds at lists.alioth.debian.org
Usertags: nocheck
X-Debbugs-Cc: reproducible-bugs at lists.alioth.debian.org
Hi,
Whilst working on the Reproducible Builds effort [0], we noticed that
flawfinder could not be built reproducibly.
This is because it ships a different binary package depending on
whether the testsuite is run or not.
Specifically, the test-results.html file is changed if the testsuite
is run. A patch is attached that will simply not ship this file as
an example at all (there is already a pretty good example in the
test/correct-results.html file), but there could be another approach
whereby the source package's version if test-results.html is always
shipped and not the one generated in the test run.
[0] https://reproducible-builds.org/
Regards,
--
,''`.
: :' : Chris Lamb
`. `'` lamby at debian.org / chris-lamb.co.uk
`-
-------------- next part --------------
--- a/debian/flawfinder.examples 2025-11-17 10:29:36.062280666 -0800
--- b/debian/flawfinder.examples 2025-11-17 10:37:06.701799573 -0800
@@ -1,5 +1,4 @@
test/correct-results.html
test/correct-results.txt
test/test.c
-test/test-results.html
test/test-patched.c
More information about the Reproducible-bugs
mailing list