Re: Test uploads for bookworm-security on debusine.debian.net

["Chris Lamb" <lamby@debian.org>]

Hey Santiago,

> According to dsa-needed.txt, nodejs and python-django are being
> prepared by rouca and lamby, respectively.
>
> Could you please tell me if you are willing to test those uploads for
> bookworm-security?

For sure. Django would be a good test as it has a large number of
reverse-deps, and has at least twice found potential in updates to the
Python runtime.

In fact, a new CVE for Django was released a few hours ago
(CVE-2025-32873) so we have something to test it with immediately,
even if we did not want to include/test all of the lower-priority,
outstanding issues.

> As a side note, any debian developer can currently use debusine.d.n.
> There are upload-to-unstable and -experimental workflows available, and
> the debusine team is looking for feedback about how does it work.

Shall I take this is as a request to try the upload-to-experimental
workflows in particular?

I ask because, with the release of today's CVE, Django is pending an
update for all upload targets (jessie, stretch, buster, bullseye,
bookworm, sid & experimental).


Regards,

-- 
      ,''`.
     : :'  :     Chris Lamb
     `. `'`      lamby@debian.org 🍥 chris-lamb.co.uk
       `-