Script 'mail_helper' called by obssrc
Hello community,
here is the log from the commit of package ghc-hackage-security for
openSUSE:Factory checked in at 2025-01-27 20:51:01
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/ghc-hackage-security (Old)
and /work/SRC/openSUSE:Factory/.ghc-hackage-security.new.2316 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "ghc-hackage-security"
Mon Jan 27 20:51:01 2025 rev:41 rq:1239816 version:0.6.2.6
Changes:
--------
---
/work/SRC/openSUSE:Factory/ghc-hackage-security/ghc-hackage-security.changes
2024-10-28 15:20:41.312371191 +0100
+++
/work/SRC/openSUSE:Factory/.ghc-hackage-security.new.2316/ghc-hackage-security.changes
2025-01-27 20:51:10.424536974 +0100
@@ -1,0 +2,6 @@
+Sun Jan 5 16:21:50 UTC 2025 - Peter Simons <psim...@suse.com>
+
+- Update hackage-security to version 0.6.2.6 revision 5.
+ Upstream has revised the Cabal build instructions on Hackage.
+
+-------------------------------------------------------------------
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ ghc-hackage-security.spec ++++++
--- /var/tmp/diff_new_pack.EAVTew/_old 2025-01-27 20:51:12.912639693 +0100
+++ /var/tmp/diff_new_pack.EAVTew/_new 2025-01-27 20:51:12.912639693 +0100
@@ -1,7 +1,7 @@
#
# spec file for package ghc-hackage-security
#
-# Copyright (c) 2024 SUSE LLC
+# Copyright (c) 2025 SUSE LLC
#
# All modifications and additions to the file contributed by third parties
# remain the property of their copyright owners, unless otherwise agreed
@@ -26,7 +26,7 @@
License: BSD-3-Clause
URL: https://hackage.haskell.org/package/%{pkg_name}
Source0:
https://hackage.haskell.org/package/%{pkg_name}-%{version}/%{pkg_name}-%{version}.tar.gz
-Source1:
https://hackage.haskell.org/package/%{pkg_name}-%{version}/revision/4.cabal#/%{pkg_name}.cabal
+Source1:
https://hackage.haskell.org/package/%{pkg_name}-%{version}/revision/5.cabal#/%{pkg_name}.cabal
BuildRequires: ghc-Cabal-devel
BuildRequires: ghc-Cabal-prof
BuildRequires: ghc-Cabal-syntax-devel
++++++ hackage-security.cabal ++++++
--- /var/tmp/diff_new_pack.EAVTew/_old 2025-01-27 20:51:12.952641344 +0100
+++ /var/tmp/diff_new_pack.EAVTew/_new 2025-01-27 20:51:12.952641344 +0100
@@ -1,231 +1,232 @@
-cabal-version: 1.12
-name: hackage-security
-version: 0.6.2.6
-x-revision: 4
-
-synopsis: Hackage security library
-description: The hackage security library provides both server and
- client utilities for securing the Hackage package server
- (<https://hackage.haskell.org/>). It is based on The
Update
- Framework (<https://theupdateframework.com/>), a set of
- recommendations developed by security researchers at
- various universities in the US as well as developers on
the
- Tor project (<https://www.torproject.org/>).
- .
- The current implementation supports only index signing,
- thereby enabling untrusted mirrors. It does not yet
provide
- facilities for author package signing.
- .
- The library has two main entry points:
- "Hackage.Security.Client" is the main entry point for
- clients (the typical example being @cabal@), and
- "Hackage.Security.Server" is the main entry point for
- servers (the typical example being @hackage-server@).
-license: BSD3
-license-file: LICENSE
-author: Edsko de Vries
-maintainer: cabal-de...@haskell.org
-copyright: Copyright 2015-2022 Well-Typed LLP
-category: Distribution
-homepage: https://github.com/haskell/hackage-security
-bug-reports: https://github.com/haskell/hackage-security/issues
-build-type: Simple
-
-tested-with:
- GHC == 9.10.1
- GHC == 9.8.2
- GHC == 9.6.5
- GHC == 9.4.8
- GHC == 9.2.8
- GHC == 9.0.2
- GHC == 8.10.7
- GHC == 8.8.4
- GHC == 8.6.5
- GHC == 8.4.4
-
-extra-source-files:
- ChangeLog.md
-
-source-repository head
- type: git
- location: https://github.com/haskell/hackage-security.git
-
-flag Cabal-syntax
- description: Are we using Cabal-syntax?
- manual: False
- default: False
-
-flag lukko
- description: Use @lukko@ for file-locking, otherwise use @GHC.IO.Handle.Lock@
- manual: True
- default: True
-
-library
- -- Most functionality is exported through the top-level entry points .Client
- -- and .Server; the other exported modules are intended for qualified
imports.
- exposed-modules: Hackage.Security.Client
- Hackage.Security.Client.Formats
- Hackage.Security.Client.Repository
- Hackage.Security.Client.Repository.Cache
- Hackage.Security.Client.Repository.Local
- Hackage.Security.Client.Repository.Remote
- Hackage.Security.Client.Repository.HttpLib
- Hackage.Security.Client.Verify
- Hackage.Security.JSON
- Hackage.Security.Key.Env
- Hackage.Security.Server
- Hackage.Security.Trusted
- Hackage.Security.TUF.FileMap
- Hackage.Security.Util.Checked
- Hackage.Security.Util.Path
- Hackage.Security.Util.Pretty
- Hackage.Security.Util.Some
- Text.JSON.Canonical
- other-modules: Hackage.Security.Key
- Hackage.Security.Trusted.TCB
- Hackage.Security.TUF
- Hackage.Security.TUF.Common
- Hackage.Security.TUF.FileInfo
- Hackage.Security.TUF.Header
- Hackage.Security.TUF.Layout.Cache
- Hackage.Security.TUF.Layout.Index
- Hackage.Security.TUF.Layout.Repo
- Hackage.Security.TUF.Mirrors
- Hackage.Security.TUF.Paths
- Hackage.Security.TUF.Patterns
- Hackage.Security.TUF.Root
- Hackage.Security.TUF.Signed
- Hackage.Security.TUF.Snapshot
- Hackage.Security.TUF.Targets
- Hackage.Security.TUF.Timestamp
- Hackage.Security.Util.Base64
- Hackage.Security.Util.Exit
- Hackage.Security.Util.IO
- Hackage.Security.Util.JSON
- Hackage.Security.Util.Lens
- Hackage.Security.Util.Stack
- Hackage.Security.Util.TypedEmbedded
-
- build-depends: base >= 4.11 && < 4.21,
- base16-bytestring >= 0.1.1 && < 1.1,
- base64-bytestring >= 1.0 && < 1.3,
- bytestring >= 0.10.8.2 && < 0.13,
- containers >= 0.5.11 && < 0.8,
- cryptohash-sha256 >= 0.11 && < 0.12,
- directory >= 1.3.1.5 && < 1.4,
- ed25519 >= 0.0 && < 0.1,
- filepath >= 1.4.2 && < 1.6,
- mtl >= 2.2.2 && < 2.4,
- network-uri >= 2.6 && < 2.7,
- network >= 2.6 && < 3.3,
- parsec >= 3.1.13 && < 3.2,
- pretty >= 1.0 && < 1.2,
- -- 0.4.2 introduces TarIndex, 0.4.4 introduces more
- -- functionality, 0.5.0 changes type of serialise
- tar >= 0.5 && < 0.7,
- template-haskell >= 2.13 && < 2.23,
- time >= 1.8.0.2 && < 1.15,
- transformers >= 0.3 && < 0.7,
- zlib >= 0.5 && < 0.8,
- -- whatever versions are bundled with ghc:
- ghc-prim >= 0.5.2 && < 0.12
-
- if flag(lukko)
- build-depends: lukko >= 0.1 && < 0.2
- else
- build-depends: base >= 4.11
-
- if flag(Cabal-syntax)
- build-depends: Cabal-syntax >= 3.7 && < 3.16
- else
- build-depends: Cabal >= 2.2.0.1 && < 2.6
- || >= 3.0 && < 3.7,
- Cabal-syntax < 3.7
-
- hs-source-dirs: src
- default-language: Haskell2010
- default-extensions: DefaultSignatures
- DeriveDataTypeable
- DeriveFunctor
- FlexibleContexts
- FlexibleInstances
- GADTs
- GeneralizedNewtypeDeriving
- KindSignatures
- MultiParamTypeClasses
- NamedFieldPuns
- NoImplicitPrelude
- NoMonomorphismRestriction
- PatternSynonyms
- RankNTypes
- RecordWildCards
- ScopedTypeVariables
- StandaloneDeriving
- TupleSections
- TypeFamilies
- TypeOperators
- ViewPatterns
- other-extensions:
- AllowAmbiguousTypes
- BangPatterns
- CPP
- DeriveLift
- OverlappingInstances
- PackageImports
- RoleAnnotations
- StaticPointers
- UndecidableInstances
-
- ghc-options: -Wall
-
-test-suite TestSuite
- type: exitcode-stdio-1.0
- main-is: TestSuite.hs
- other-modules: TestSuite.HttpMem
- TestSuite.InMemCache
- TestSuite.InMemRepo
- TestSuite.InMemRepository
- TestSuite.JSON
- TestSuite.PrivateKeys
- TestSuite.Util.StrictMVar
-
- -- inherited constraints from lib:hackage-security component
- build-depends: hackage-security,
- base,
- containers,
- bytestring,
- network-uri,
- tar,
- text,
- time,
- zlib
-
- if flag(Cabal-syntax)
- build-depends: Cabal >= 3.7 && < 3.16,
- Cabal-syntax >= 3.7 && < 3.16
- else
- build-depends: Cabal >= 2.2.0.1 && < 2.6
- || >= 3.0 && < 3.7,
- Cabal-syntax < 3.7
-
- -- dependencies exclusive to test-suite
- build-depends: tasty >= 1.1.0.4 && < 1.6,
- -- tasty-1.1.0.4 is the version in Stackage LTS 12.26
(GHC 8.4)
- tasty-hunit == 0.10.*,
- tasty-quickcheck >= 0.10 && < 1,
- QuickCheck >= 2.11 && < 2.16,
- aeson >= 1.4 && < 1.6 || >= 2.0 &&
< 2.3,
- vector >= 0.12 && < 0.14,
- unordered-containers >= 0.2.8.0 && < 0.3,
- temporary >= 1.2 && < 1.4
-
- hs-source-dirs: tests
- default-language: Haskell2010
- default-extensions: FlexibleContexts
- GADTs
- KindSignatures
- RankNTypes
- RecordWildCards
- ScopedTypeVariables
- ghc-options: -Wall
+cabal-version: 1.12
+name: hackage-security
+version: 0.6.2.6
+x-revision: 5
+
+synopsis: Hackage security library
+description: The hackage security library provides both server and
+ client utilities for securing the Hackage package server
+ (<https://hackage.haskell.org/>). It is based on The
Update
+ Framework (<https://theupdateframework.com/>), a set of
+ recommendations developed by security researchers at
+ various universities in the US as well as developers on
the
+ Tor project (<https://www.torproject.org/>).
+ .
+ The current implementation supports only index signing,
+ thereby enabling untrusted mirrors. It does not yet
provide
+ facilities for author package signing.
+ .
+ The library has two main entry points:
+ "Hackage.Security.Client" is the main entry point for
+ clients (the typical example being @cabal@), and
+ "Hackage.Security.Server" is the main entry point for
+ servers (the typical example being @hackage-server@).
+license: BSD3
+license-file: LICENSE
+author: Edsko de Vries
+maintainer: cabal-de...@haskell.org
+copyright: Copyright 2015-2022 Well-Typed LLP
+category: Distribution
+homepage: https://github.com/haskell/hackage-security
+bug-reports: https://github.com/haskell/hackage-security/issues
+build-type: Simple
+
+tested-with:
+ GHC == 9.12.1
+ GHC == 9.10.1
+ GHC == 9.8.2
+ GHC == 9.6.6
+ GHC == 9.4.8
+ GHC == 9.2.8
+ GHC == 9.0.2
+ GHC == 8.10.7
+ GHC == 8.8.4
+ GHC == 8.6.5
+ GHC == 8.4.4
+
+extra-source-files:
+ ChangeLog.md
+
+source-repository head
+ type: git
+ location: https://github.com/haskell/hackage-security.git
+
+flag Cabal-syntax
+ description: Are we using Cabal-syntax?
+ manual: False
+ default: False
+
+flag lukko
+ description: Use @lukko@ for file-locking, otherwise use @GHC.IO.Handle.Lock@
+ manual: True
+ default: True
+
+library
+ -- Most functionality is exported through the top-level entry points .Client
+ -- and .Server; the other exported modules are intended for qualified
imports.
+ exposed-modules: Hackage.Security.Client
+ Hackage.Security.Client.Formats
+ Hackage.Security.Client.Repository
+ Hackage.Security.Client.Repository.Cache
+ Hackage.Security.Client.Repository.Local
+ Hackage.Security.Client.Repository.Remote
+ Hackage.Security.Client.Repository.HttpLib
+ Hackage.Security.Client.Verify
+ Hackage.Security.JSON
+ Hackage.Security.Key.Env
+ Hackage.Security.Server
+ Hackage.Security.Trusted
+ Hackage.Security.TUF.FileMap
+ Hackage.Security.Util.Checked
+ Hackage.Security.Util.Path
+ Hackage.Security.Util.Pretty
+ Hackage.Security.Util.Some
+ Text.JSON.Canonical
+ other-modules: Hackage.Security.Key
+ Hackage.Security.Trusted.TCB
+ Hackage.Security.TUF
+ Hackage.Security.TUF.Common
+ Hackage.Security.TUF.FileInfo
+ Hackage.Security.TUF.Header
+ Hackage.Security.TUF.Layout.Cache
+ Hackage.Security.TUF.Layout.Index
+ Hackage.Security.TUF.Layout.Repo
+ Hackage.Security.TUF.Mirrors
+ Hackage.Security.TUF.Paths
+ Hackage.Security.TUF.Patterns
+ Hackage.Security.TUF.Root
+ Hackage.Security.TUF.Signed
+ Hackage.Security.TUF.Snapshot
+ Hackage.Security.TUF.Targets
+ Hackage.Security.TUF.Timestamp
+ Hackage.Security.Util.Base64
+ Hackage.Security.Util.Exit
+ Hackage.Security.Util.IO
+ Hackage.Security.Util.JSON
+ Hackage.Security.Util.Lens
+ Hackage.Security.Util.Stack
+ Hackage.Security.Util.TypedEmbedded
+
+ build-depends: base >= 4.11 && < 4.22,
+ base16-bytestring >= 0.1.1 && < 1.1,
+ base64-bytestring >= 1.0 && < 1.3,
+ bytestring >= 0.10.8.2 && < 0.13,
+ containers >= 0.5.11 && < 0.8,
+ cryptohash-sha256 >= 0.11 && < 0.12,
+ directory >= 1.3.1.5 && < 1.4,
+ ed25519 >= 0.0 && < 0.1,
+ filepath >= 1.4.2 && < 1.6,
+ mtl >= 2.2.2 && < 2.4,
+ network-uri >= 2.6 && < 2.7,
+ network >= 2.6 && < 3.3,
+ parsec >= 3.1.13 && < 3.2,
+ pretty >= 1.0 && < 1.2,
+ -- 0.4.2 introduces TarIndex, 0.4.4 introduces more
+ -- functionality, 0.5.0 changes type of serialise
+ tar >= 0.5 && < 0.7,
+ template-haskell >= 2.13 && < 2.24,
+ time >= 1.8.0.2 && < 1.15,
+ transformers >= 0.3 && < 0.7,
+ zlib >= 0.5 && < 0.8,
+ -- whatever versions are bundled with ghc:
+ ghc-prim >= 0.5.2 && < 0.14
+
+ if flag(lukko)
+ build-depends: lukko >= 0.1 && < 0.2
+ else
+ build-depends: base >= 4.11
+
+ if flag(Cabal-syntax)
+ build-depends: Cabal-syntax >= 3.7 && < 3.16
+ else
+ build-depends: Cabal >= 2.2.0.1 && < 2.6
+ || >= 3.0 && < 3.7,
+ Cabal-syntax < 3.7
+
+ hs-source-dirs: src
+ default-language: Haskell2010
+ default-extensions: DefaultSignatures
+ DeriveDataTypeable
+ DeriveFunctor
+ FlexibleContexts
+ FlexibleInstances
+ GADTs
+ GeneralizedNewtypeDeriving
+ KindSignatures
+ MultiParamTypeClasses
+ NamedFieldPuns
+ NoImplicitPrelude
+ NoMonomorphismRestriction
+ PatternSynonyms
+ RankNTypes
+ RecordWildCards
+ ScopedTypeVariables
+ StandaloneDeriving
+ TupleSections
+ TypeFamilies
+ TypeOperators
+ ViewPatterns
+ other-extensions:
+ AllowAmbiguousTypes
+ BangPatterns
+ CPP
+ DeriveLift
+ OverlappingInstances
+ PackageImports
+ RoleAnnotations
+ StaticPointers
+ UndecidableInstances
+
+ ghc-options: -Wall
+
+test-suite TestSuite
+ type: exitcode-stdio-1.0
+ main-is: TestSuite.hs
+ other-modules: TestSuite.HttpMem
+ TestSuite.InMemCache
+ TestSuite.InMemRepo
+ TestSuite.InMemRepository
+ TestSuite.JSON
+ TestSuite.PrivateKeys
+ TestSuite.Util.StrictMVar
+
+ -- inherited constraints from lib:hackage-security component
+ build-depends: hackage-security,
+ base,
+ containers,
+ bytestring,
+ network-uri,
+ tar,
+ text,
+ time,
+ zlib
+
+ if flag(Cabal-syntax)
+ build-depends: Cabal >= 3.7 && < 3.16,
+ Cabal-syntax >= 3.7 && < 3.16
+ else
+ build-depends: Cabal >= 2.2.0.1 && < 2.6
+ || >= 3.0 && < 3.7,
+ Cabal-syntax < 3.7
+
+ -- dependencies exclusive to test-suite
+ build-depends: tasty >= 1.1.0.4 && < 1.6,
+ -- tasty-1.1.0.4 is the version in Stackage LTS 12.26
(GHC 8.4)
+ tasty-hunit == 0.10.*,
+ tasty-quickcheck >= 0.10 && < 1,
+ QuickCheck >= 2.11 && < 2.16,
+ aeson >= 1.4 && < 1.6 || >= 2.0 &&
< 2.3,
+ vector >= 0.12 && < 0.14,
+ unordered-containers >= 0.2.8.0 && < 0.3,
+ temporary >= 1.2 && < 1.4
+
+ hs-source-dirs: tests
+ default-language: Haskell2010
+ default-extensions: FlexibleContexts
+ GADTs
+ KindSignatures
+ RankNTypes
+ RecordWildCards
+ ScopedTypeVariables
+ ghc-options: -Wall
