Bug#776738: security-tracker: ignoring end-of-life packages (was: squeeze/wheezy updates of Redmine (+ long term state of redmine packaging))
On 2016-01-01 11:30:36, Raphael Hertzog wrote:
> Hi,
>
> On Thu, 31 Dec 2015, Antoine Beaupré wrote:
>> > I have thus pushed the attached patch to the git repository of
>> > debian-security-support. Ccing the security team to inform them
>> > of this change.
>>
>> Understood.
>>
>> Would it make sense to fix the secure-testing tracker to show those? It
>> would have stopped me right there, if it would have shown the older
>> versions were unsupported...
>
> Yes, I agree that the tracker should know which version is end-of-life
> and no longer supported... and we should not have to re-add this information
> every time.
>
> The only downside is that we would be less likely to properly record when
> issues do not apply to the unsupported packages.
>
> In fact I would have expected to have a bug report open here:
> https://bugs.debian.org/cgi-bin/pkgreport.cgi?pkg=security-tracker;dist=unstable
>
> But I don't see anything that looks close yet. Maybe we should start by
> requesting this first...
Well, there are a few similar issues filed:
* #772961: Please display no-dsa/end-of-life tags in "open issues"
table in "source package view"
* #776738: end-of-life issues clutter the list of open issues
* #780892: please show unsupported packages as unsupported instead of
unimportant
#776738 seems to be the most relevant to me, so I added it in CC. The
security team (in CC) also suggested way this could be implemented
privately, but i will let them paste that here.
A.
--
O gentilshommes, la vie est courte.
Si nous vivons, nous vivons
pour marcher sur la tête des rois.
- William Shakespeare
Reply to: