Re: Legal advice regarding the NEW queue

To: debian-devel@lists.debian.org
Subject: Re: Legal advice regarding the NEW queue
From: Russ Allbery <rra@debian.org>
Date: Tue, 01 Feb 2022 12:15:07 -0800
Message-id: <[🔎] 875ypywdh0.fsf@hope.eyrie.org>
In-reply-to: <[🔎] 2219682.OdeSoEOYfl@localhost> (Scott Kitterman's message of "Tue, 01 Feb 2022 13:13:57 -0500")
References: <ae00554c41106cb34b2e5caf0d7468a8d5bffec8.camel@debian.org> <[🔎] 20220201140721.GW19996@mail.wookware.org> <[🔎] 87leyuwlo0.fsf@hope.eyrie.org> <[🔎] 2219682.OdeSoEOYfl@localhost>

Scott Kitterman <debian@kitterman.com> writes:
> On Tuesday, February 1, 2022 12:18:07 PM EST Russ Allbery wrote:
>> Wookey <wookey@wookware.org> writes:

>>> For what it is worth I concur with everything that Russ has written,
>>> and would like to have us look at this again (and that's honestly not
>>> particularly because I currenly have the honour of the 6th-oldest
>>> package in NEW (8 months) :-) In general I have found NEW valuable as
>>> FTP-masters sometimes spot things that I missed, but the delay, and
>>> perhaps worse, the highly uncertain length of the delay (anything from
>>> a day to a year), is a significant cost and drag, and it seems
>>> increasingly anachronistic as the rest of the software ecosystem seems
>>> to accelerate around us (not entirely a good thing, of course). Who
>>> needs quality when you can have updates, eh?

>> I would hate to entirely lose the quality review that we get via NEW,
>> but I wonder if we could regain many those benefits by setting up some
>> sort of peer review system for new packages that is less formal and
>> less bottlenecked on a single team than the current NEW processing
>> setup.

> It's my impression that review of copyright and license considerations
> when not going through New is not a priority for most.  I doubt making
> New go away will make it more so.

To be clear, that's not the part I was intending to reference.  I think we
spend too much time reviewing copyright and license considerations for the
amount of benefit we get from it and would rather we rely more heavily on
automated tools and upstream's assertions, and otherwise be more reactive
and less proactive about issues that aren't fundamental to whether
something is free software.  (This is one of the reasons why I'm
interested in REUSE.  I would love for us to be able to leverage the work
that some upstreams have already done and trust it unless we know it's
wrong.)

I was thinking about all the other things that NEW catches, where people
have accidentally made more foundational mistakes in constructing a
package.  That comes up a lot in these discussions and I do think there's
merit in NEW as another pair of eyes on each new package.  That's the part
that I think would be interesting to try to find a way to preserve if
possible.

-- 
Russ Allbery (rra@debian.org)              <https://www.eyrie.org/~eagle/>

Reply to:

References:
- Re: Legal advice regarding the NEW queue
  - From: Wookey <wookey@wookware.org>
- Re: Legal advice regarding the NEW queue
  - From: Russ Allbery <rra@debian.org>
- Re: Legal advice regarding the NEW queue
  - From: Scott Kitterman <debian@kitterman.com>

Prev by Date: Re: Legal advice regarding the NEW queue
Next by Date: Bug#1004775: ITP: golang-github-chifflier-nfqueue-go -- Go bindings for NFQueue
Previous by thread: Re: Legal advice regarding the NEW queue
Next by thread: Re: Legal advice regarding the NEW queue
Index(es):
- Date
- Thread