On Sat, Aug 25, 2012 at 12:27:02PM +0200, Jonas Smedegaard wrote:
> 1) We have the source for the parts that we ship in binary packages,
> yes. We do not, however, necessarily have the actual source for the
> minified files unused for binary packages yet redistributed by us in
> source tarballs: Just as with autotools files we generally do not verify
> that these files has same source as the source we instead use for our
> binary packages.
That's true; however, it's a source of *potential* bugs, rather than
definitely a bug in every such package, which is an improvement on the
view that they violate the DFSG, where that would be the case.