On Sun, 11 Dec 2016 20:55:23 +0100, Bruno Pagani wrote:
>Personally, I make use of this on as much packages I maintain as
>possible, while pinning a comment redirecting to
>https://wiki.archlinux.org/index.php/Makepkg#Signature_checking, while
>also mentioning --skippgpcheck because it’s always
On Sun, 11 Dec 2016 13:54:08 -0600, Doug Newgard wrote:
>No, there is no reason to avoid it. The argument that people don't
>understand isn't a valid one with Arch.
Full ACK.
If they want to use a helper without taking care about anything on
their own, they could configure their helper to skip
Le 11/12/2016 à 20:46, Ralf Mardorf a écrit :
> Hi,
>
> you likely noticed the discussion about "Stronger Hashes for PKGBUILDs"
> on Arch general. I wonder if there is any reason to avoid validpgpkeys
> for PKGBUILDs of the AUR?
> https://aur.archlinux.org/packages/freetype2-infinality/ ?
>
> If
On Sun, 11 Dec 2016 20:46:56 +0100
Ralf Mardorf wrote:
> Hi,
>
> you likely noticed the discussion about "Stronger Hashes for PKGBUILDs"
> on Arch general. I wonder if there is any reason to avoid validpgpkeys
> for PKGBUILDs of the AUR?
>
Hi,
you likely noticed the discussion about "Stronger Hashes for PKGBUILDs"
on Arch general. I wonder if there is any reason to avoid validpgpkeys
for PKGBUILDs of the AUR?
https://aur.archlinux.org/packages/freetype2-infinality/ ?
If upstream, e.g. kernel.org signs the source, then IMO nothing
On Sun, 11 Dec 2016 13:07:08 +0100, Einhard Leichtfuß wrote:
>Unless there is a genral rule not to include discontinued software in
>the AUR, I would like to resubmit the package.
Hi,
even "community" provides discontinued software, e.g.
Hi,
I just noticed xfce4-volumed having been deleted from AUR.
>From the aur-requests archive [0] (2016-12-07):
> oberon2007 [1] filed a deletion request for xfce4-volumed [2]:
>
> Has been discontinued by xfce since 2009. replaced by xfce4-volumed-
> pulse
>
> [1]
=== Signoff report for [community-testing] ===
https://www.archlinux.org/packages/signoffs/
There are currently:
* 2 new packages in last 24 hours
* 0 known bad packages
* 0 packages not accepting signoffs
* 0 fully signed off packages
* 25 packages missing signoffs
* 4 packages older than 14