On Sun, 2005-08-21 at 19:28 +0200, Jonas Smedegaard wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On 21-08-2005 03:58, Wouter Verhelst wrote: > > > We also came to the conclusion that some of the requirements proposed in > > Vancouver would make sense as initial requirements -- requirements that > > a port would need to fulfill in order to be allowed on the mirror > > network -- but not necessarily as an 'overall' requirement -- a > > requirement that a port will always need to fulfill if it wants to be > > part of a stable release, even if it's already on the mirror network. > > Those would look like this: > [snip] > > Overall: > [snip] > > - binaries must have been built and signed by official Debian > > Developers > > Currently, sponsored packages are only signed, not built, by official > Debian Developers. > > > Is that intended to change, or is it a typo in the proposal? I have always rebuilt (with pbuilder) packages I sponsor before uploading them. This has accidentally broken a sponsored package once due to a misconfiguration, but it's also caught missing build-deps, builds against testing, etc, a dozen times. -- Joe Wreschnig <piman@debian.org>
Attachment:
signature.asc
Description: This is a digitally signed message part