Package: sponsorship-requests
Severity: wishlist
Dear mentors,
I am looking for a sponsor for my package "python-in-toto"
* Package name : python-in-toto
Version : 0.3.0-1
Upstream Author : NYU Secure Systems Lab <securesystemslab@googlegroups.com>
* URL : https://in-toto.io
* License : Apache-2.0
Section : devel
It builds those binary packages:
python3-in-toto - software supply chain security framework
To access further information about this package, please visit the following URL:
https://mentors.debian.net/package/python-in-toto
Alternatively, one can download the package with dget using this command:
dget -x
https://mentors.debian.net/debian/pool/main/p/python-in-toto/python-in-toto_0.3.0-1.dsc
More information about python-in-toto can be obtained from
https://github.com/in-toto/in-toto.
Also see below resources about how in-toto may be used to verify the integrity
of the software supply chain of any Debian package:
- https://debconf17.debconf.org/talks/100/
-
https://saimei.ftp.acc.umu.se/Public/debian-meetings/2019/miniconf-hamburg/in-toto.webm
in-toto depends on the general purpose crypto and schema library
"securesystemslib", for which I have already filed an ITP under the subject
"RFS: python-securesystemslib/0.11.3-1 [ITP]".
Changes since the last upload:
python-in-toto (0.3.0-1) unstable; urgency=low
* Initial Debian release from tag:
https://github.com/in-toto/in-toto/tree/v0.3.0
-- Lukas Puehringer <lukas.puehringer@nyu.edu> Fri, 07 Jun 2019 10:50:40 -0400
Regards,
Lukas Pühringer
--
lukas.puehringer@nyu.edu
PGP fingerprint: 8BA6 9B87 D43B E294 F23E 8120 89A2 AD3C 07D9 62E8
Attachment:
signature.asc
Description: OpenPGP digital signature