Re: Request for join the team
> On Jul 20, 2021, at 7:44 AM, Samuel Henrique <samueloph@debian.org> wrote:
>
> 2) pocsuite3/thirdparty/: There seems to be a few python libraries
> vendored in that folder, I'm not sure if they're patched or just plain
> vendored. Generally speaking we can't use them and should instead rely
> on their packaged versions on Debian, eg.: make the package depend on
> "python3-prettytable" instead of using the vendored version. This can
> also help by making d/copyright even simpler if you can remove it from
> the orig tarball (either with a repack or if you can provide a tarball
> without it, as upstream).
> Now, I understand that ansistrm, for example, is not packaged on
> Debian, and so It should be fine to keep this one as it is, but
> otherwise could you try to use the ones already packaged on Debian and
> make sure they are not shipped in a vendored manner for pocsuite3? You
> can keep them in the orig tarball if you'd like, and we can also
> discuss using vendored libs if you need them, please let me know if
> that's the case, and also let me know if you need help or would like
> more details about it.
>
> Samuel Henrique <samueloph>
Hello Samuel,
Many thanks for your help with this package.
The design concept of pocsuite3 is out-of-the-box use and stable, mainly considering
the following aspects:
1) Reduce third-party dependency library as much as possible.
The main dependency library is python-requests.
2) Maintain a stable version of the third-party dependency library locally,
without considering upstream changes, which ensures the stability of pocsuite3.
3) In some cases, only a few functions of the library are needed,
and some modifications are made on this basis, eg.
https://github.com/knownsec/pocsuite3/tree/master/pocsuite3/thirdparty/scapy
We are still investigating whether adjusting the dependency will break existing functions.
More information once it’s available :)
Best Regards,
Tian
Reply to: