Package: dput-ng Version: 1.10 Severity: wishlist Hi, it would be great if dput-ng would check if a security upload needs the upstream source included when doing a security upload. This is necessary if the upload is the first security upload for an upstream version not yet present on security-master since upstream tarballs are not shared with the regular archive.
The check could either be done by looking into the changelog or by looking at https://qa.debian.org/madison.php or similar. This would make notifications by the security team about a missing upstream tarball (and a rebuilt with -sa) superfluous. Cheers, -- Guido -- System Information: Debian Release: stretch/sid APT prefers testing APT policy: (990, 'testing'), (500, 'stable-updates'), (500, 'unstable'), (500, 'stable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 4.5.0-2-amd64 (SMP w/4 CPU cores) Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash Init: systemd (via /run/systemd/system) Versions of packages dput-ng depends on: ii python-dput 1.10 pn python:any <none> Versions of packages dput-ng recommends: ii bash-completion 1:2.1-4.3 dput-ng suggests no packages. -- no debconf information
