Hello min sun, Le 13/02/2023 à 10:27, min sun a écrit :
Hi, Hilmar Preuße, and tony: Thanks for you guide! I will keep the distribution tag "UNRELEASED" as it is for the sponsor.
which I also support. Some teams have put such practice in their policies, like in
https://science-team.pages.debian.net/policy/#idm56
The debian/watch was modified to direct to apache archive site ,because: 1.Tag names from github are not well defined[1]. 2.Some github release even introduces nonexisted files[2]. I think the apache site will do a little more strict check before archiving. I uploaded again, please refer to mentors.debian.(Upload #2.)
I have just had a look. I am almost ready to upload, I just ask you to address the following, which can be read on [3]:
- insecure-copyright-format-uri - silent-on-rules-requiring-root (add the related line in debian/control)- uses-debhelper-compat-file (i.e. drop debian/compat and depend on debhelper-compat (= 13) instead) - also you could really drop debian/README.source and debian/maven.cleanIgnoreRules
I think it is really fine to care for this package now, but as we are in the soft freeze period, I would upload to experimental: I used japi-compliance-checker to see the differences between the jars in version 4.2-1 and in (your candidate) 4.4-1, and there has been a small number of (upstream) return types changes. The number of reverse-dependencies is too large to be tested with ratt at home.[1]https://github.com/apache/commons-collections/tags [2]https://lists.debian.org/debian-java/2023/01/msg00029.html [3]https://mentors.debian.net/package/libcommons-collections4-java/
Tell us/me once you are done. Best, -- Pierre
Attachment:
OpenPGP_signature
Description: OpenPGP digital signature