## Staff
We would like to welcome sudoforge among the Trusted Users [0].
## RFC
We have ratified a RFC to store upstream signing keys alongside the
packaging sources [1]. This will allow easier successive builds without
the need to continuously rely on remote keyservers to retrieve the
upst
## Staff
sudoforge has applied [0] to become a Trusted User and the vote is
currently in progress.
On top we would like to welcome freswa and Foxboron to their new
additional duties as Arch Linux Developers.
Furthermore we have onboarded the project maintainers Torxed
(archinstall) and kevr (au
## Staff
We have on-boarded wiki maintainers as part of our official staff [0]
and wish a warm welcoming.
We would also like to welcome BrainDamage among the Arch IRC op team.
## Debug packages
The required devtools release is live, which handles debug packages and
makes sure to release the
On 2/6/22 14:25, David Runge via arch-dev-public wrote:
On 2022-01-31 21:25:41 (+0100), Jelle van der Waa via arch-dev-public wrote:
We’ve wanted automatic flagging packages out of date for a while and
currently every packager has to come up with it’s own solution. Let’s
solve this centralized b
On 2/2/22 18:32, Evangelos Foutras via arch-dev-public wrote:
On Mon, 31 Jan 2022 at 22:27, Jelle van der Waa via arch-dev-public
wrote:
The question is if anyone object to checking these small .NVCHECKER
files into our svn repository. If there are no real objections, I'll
start implementing t
## Staff
We are happy to welcome Segaja among the Trusted Users [0].
## Monthly Report
We have switched the format of the monthly report to specifically report
the progress of the whole previous month.
## Debug packages
The dbscripts repository handling for debug packages has successfully
An RFC has now entered Final Comment Period. In 14 days, discussion will
end and the proposal will either be accepted, rejected or withdrawn:
https://gitlab.archlinux.org/archlinux/rfcs/-/merge_requests/9
Please visit the above link for discussion.
Summary:
Add an official mediation program to
A new RFC (request for comment) has been opened here:
https://gitlab.archlinux.org/archlinux/rfcs/-/merge_requests/9
Please visit the above link for discussion.
Summary:
Add an official mediation program to our organization consisting of
elected mediators to help settle disputes and provide a
## Report
The pad for the next January 2022 report is available at [0].
## Staff
We are happy to welcome artafinde [1] among the Trusted Users.
Additionally Segaja has applied [2] to become a Trusted User and the
vote is currently in progress.
## mkinitcpio
A new mkinitcpio version v31 has
On 12/6/21 17:48, David Runge via arch-dev-public wrote:
On 2021-12-06 16:11:45 (+0100), Pierre Schmitz via arch-dev-public wrote:
Hi all,
a little heads up as it takes longer than expected. I'll start the PHP
8.1 update and the required rebuilds soon. I noticed some unexpected
incompatibilitie
On 11/18/21 03:19, Allan McRae via arch-dev-public wrote:
On 18/11/21 00:08, Levente Polyak via arch-dev-public wrote:
The idea so far was to release LTO in a second iteration as some
concerns were raised to do both set of changes at the very same time.
My concerns about this are rather
On 11/29/21 14:30, Jelle van der Waa via arch-dev-public wrote:
Hi,
On 14/11/2021 19:40, Jelle van der Waa wrote:
Hi All,
I would like to propose that we start deprecating python2 and only
allowing to exists for:
* Make dependencies where required (js68, grafana-zabbix, etc.)
* Runtime depe
On 11/17/21 13:27, Allan McRae via arch-dev-public wrote:
On 17/11/21 22:03, Jelle van der Waa via arch-dev-public wrote:
## Devtools
* pacman's makepkg.conf is synced with new hardening CFLAGS such as
`-D_FORTIFY_SOURCE=2 -Wformat -Werror=format-security
-fstack-clash-protection -fcf-protect
Hi all,
to mitigate different issues with the current status of PGP keyservers
and to simplify the management of our keyring we worked towards
exploring a new way to handle our keyring:
The idea is to have a curated keyring whose source of truth is the
repository itself without relying on ex
On 10/10/21 16:47, Allan McRae via arch-dev-public wrote:
- Overall, I think the current CoC is below the standard that has been
historically set for official contributions to Arch Linux and would be a
poor reflection on the distribution if officially adopted.
- The RFC should not be adopted
On 8/22/21 12:03, Jelle van der Waa via arch-dev-public wrote:
On 17/08/2021 20:36, Morten Linderud via arch-dev-public wrote:
Yo,
I packaged up the new Go release yesterday and moved it over to stable
earlier
today.
Usually new Go minor releases frequently include new compiler
improvements
On 9/5/21 04:38, Allan McRae via arch-dev-public wrote:
Either the CoC was already a formal document and changes were made by a
small number of staff with limited oversight from the governing body -
in this case we need to revert to the last formal version and all
changes need formally agreed on.
I would like to welcome Jonas Witschel (diabonas) among the Arch Linux
Developers.
Jonas has been a Trusted User since 2019 and lately joined the Arch
Linux Security Team.
We wish you good luck and joy with your new responsibilities within Arch
Linux!
cheers,
Levente
OpenPGP_signature
D
We are happy to announce that Arch Linux has partnered with Nitrokey [0]
to equip its staff with free Nitrokey devices. We will use the Nitrokey
devices to store cryptographic keys for signing of git commits, emails
and software packages, GnuPG keys, and SSH accounts.
Thanks to the Nitrokey’s disc
On 3/16/21 6:00 PM, Pierre Schmitz via arch-dev-public wrote:
> Hi, I saw your post; I just did not want to go off-topic right away.
> :-) At least as long as I am the only contributor I hesitate to give
> up on how the infrastructure is set up. It seems to be much more
> complex to do this on "off
On 3/14/21 3:07 PM, Pierre Schmitz via arch-dev-public wrote:
> I just updated the server to also accept x86_64 feature levels, ARM
> and even i686. There is a new version of pkgstats (>= 3.1.0; currently
> in [testing]) which is able to detect feature levels. ARM support is
> pretty early, but x86
Hi Pierre,
I think at this point we should actually convert the "pet project" into
an real official service hosted under the archlinux.org hood :)
cheers,
Levente
OpenPGP_signature
Description: OpenPGP digital signature
On 3/2/21 2:37 AM, Sébastien Luttringer via arch-dev-public wrote:
> On Tue, 2021-03-02 at 00:19 +0100, Levente Polyak via arch-dev-public wrote:
>> I think this is a great step for our distro to get a nicely pre shaped
>> proposals before hitting the final review and presentatio
Thank you all for the RFC idea, healthy discussion around it and the
first RFC about having and RFC :)
I think this is a great step for our distro to get a nicely pre shaped
proposals before hitting the final review and presentation phase as well
as a central point for storing those. I think its p
Hi all,
We were recently made aware by a bug report [1] that when the strip
executable from binutils 2.36-3 in [core] is run within a fakeroot, it
does not keep the correct file ownership during stripping, but
indiscriminately assigns ownership to root:root instead. This causes
issues with executa
It has been a long ride since our first Arch Linux Security Advisory
released in September 2014 [0], but we are proudly announcing our 1000th
published advisory [1]. In early days, the user RbN started some efforts
[2] to track issues in the ArchWiki. The journey of our team began with
a call for h
On 1/26/21 9:53 PM, Morten Linderud via arch-dev-public wrote:
>
> It's dissapointing frankly.
>
Disappointing doesn't really catch it tho. If it would be just about the
sync functionality: so be it. But crippling the API usage on a level
that rips out especially things like the safe browsing fu
27 matches
Mail list logo
