Bug#1121254: marked as done (gitleaks: please provide golang-github-gitleaks-gitleaks-dev)

[Debian Bug Tracking System]

Your message dated Sun, 08 Mar 2026 04:00:31 +0000
with message-id <e1vz5jf-00000004jy0-2...@fasolo.debian.org>
and subject line Bug#1121254: fixed in gitleaks 8.16.0-2~exp0
has caused the Debian Bug report #1121254,
regarding gitleaks: please provide golang-github-gitleaks-gitleaks-dev
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
1121254: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1121254
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Package: gitleaks
Version: 8.16.0-1

golang-github-in-toto-go-witness 1089740 seems to use this package as a
library, so it would be nice to package the *-dev part of this.

Anthony, are you working on this package?  Objections to me looking into
packaging the latest version, uploading that to unstable, and then look
at uploading this with a *-dev package (through NEW)?

/Simon

src/github.com/in-toto/go-witness/attestation/secretscan/detector.go:24:2: 
cannot find package "github.com/zricethezav/gitleaks/v8/config" in any of:
        /usr/lib/go-1.24/src/github.com/zricethezav/gitleaks/v8/config (from 
$GOROOT)
        
/build/golang-github-in-toto-go-witness-0.9.1/_build/src/github.com/zricethezav/gitleaks/v8/config
 (from $GOPATH)
src/github.com/in-toto/go-witness/attestation/secretscan/detector.go:25:2: 
cannot find package "github.com/zricethezav/gitleaks/v8/detect" in any of:
        /usr/lib/go-1.24/src/github.com/zricethezav/gitleaks/v8/detect (from 
$GOROOT)
        
/build/golang-github-in-toto-go-witness-0.9.1/_build/src/github.com/zricethezav/gitleaks/v8/detect
 (from $GOPATH)
src/github.com/in-toto/go-witness/attestation/secretscan/findings.go:22:2: 
cannot find package "github.com/zricethezav/gitleaks/v8/report" in any of:
        /usr/lib/go-1.24/src/github.com/zricethezav/gitleaks/v8/report (from 
$GOROOT)

signature.asc
Description: PGP signature

--- End Message ---

--- Begin Message ---

Source: gitleaks
Source-Version: 8.16.0-2~exp0
Done: Simon Josefsson <si...@josefsson.org>

We believe that the bug you reported is fixed in the latest version of
gitleaks, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 1121...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Simon Josefsson <si...@josefsson.org> (supplier of updated gitleaks package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Format: 1.8
Date: Sat, 07 Mar 2026 23:14:48 +0100
Source: gitleaks
Binary: gitleaks gitleaks-dbgsym golang-github-gitleaks-gitleaks-dev
Architecture: source amd64 all
Version: 8.16.0-2~exp0
Distribution: experimental
Urgency: medium
Maintainer: Debian Go Packaging Team <team+pkg...@tracker.debian.org>
Changed-By: Simon Josefsson <si...@josefsson.org>
Description:
 gitleaks   - protect and discover secrets using Gitleaks 🔑 (program)
 golang-github-gitleaks-gitleaks-dev - protect and discover secrets using 
Gitleaks 🔑 (Go library)
Closes: 1121254
Changes:
 gitleaks (8.16.0-2~exp0) experimental; urgency=medium
 .
   * Team upload.
   * Use gbp sign-tags and upstream-vcs-tag
   * Use watch v5
   * Add golang-github-gitleaks-gitleaks-dev (Closes: #1121254)
   * Drop Priority: optional
   * Standards-Version: 4.7.3
   * Drop Rules-Requires-Root: no
   * Bump debian/* copyright years
   * Fix tag2upload gitignore issue
Checksums-Sha1:
 38b882557f1b01fb29052faf9eab270eac44f298 3144 gitleaks_8.16.0-2~exp0.dsc
 6461e2f311cff4cba29b97308dd1e8a7b00f9d91 2696 
gitleaks_8.16.0-2~exp0.debian.tar.xz
 37751f57635153486667f3af83e63a811acbb043 2369312 
gitleaks-dbgsym_8.16.0-2~exp0_amd64.deb
 89e4e8b6f370b21587db66d687bc27e8443c8407 11248 
gitleaks_8.16.0-2~exp0_amd64.buildinfo
 bdb122ae9576986975c0a8eacdfea6235f81b27d 2261528 
gitleaks_8.16.0-2~exp0_amd64.deb
 e11de3c7d30cc30b43d35539d470813da992b292 68104 
golang-github-gitleaks-gitleaks-dev_8.16.0-2~exp0_all.deb
Checksums-Sha256:
 de5fedf56860d929b972aabd382e6963360bb215aefef1fd8078ec2e935e2352 3144 
gitleaks_8.16.0-2~exp0.dsc
 34cb3637bd7ed0e071d6507a8229de5693fd0dfe5d82f1a915ac6f2d1d8c4692 2696 
gitleaks_8.16.0-2~exp0.debian.tar.xz
 5d7d54420c9a03bf67c211ec46321e29994226a5107995ea961815224e8798d7 2369312 
gitleaks-dbgsym_8.16.0-2~exp0_amd64.deb
 f52b8142ffa3b8e73dd289b5382a33cbcba2a7b965d5c50db9cc36131b6b9082 11248 
gitleaks_8.16.0-2~exp0_amd64.buildinfo
 0ebfb1f33066e5db98b8836a0e26b83743cdd737df5d6512233457c2d9019413 2261528 
gitleaks_8.16.0-2~exp0_amd64.deb
 65524ecda6b390627f257340bd2cf15aa6244bb442e90fd1dcda1eadff0df4ef 68104 
golang-github-gitleaks-gitleaks-dev_8.16.0-2~exp0_all.deb
Files:
 097608fc382bfb8bead62a470c6ccc51 3144 golang optional 
gitleaks_8.16.0-2~exp0.dsc
 eee4eece4bdae697f5d058e865eef1a5 2696 golang optional 
gitleaks_8.16.0-2~exp0.debian.tar.xz
 55a9a4c46bccbe9555e54294bb49d654 2369312 debug optional 
gitleaks-dbgsym_8.16.0-2~exp0_amd64.deb
 f1354933f1e8b0da41a6c4cde9a50b1b 11248 golang optional 
gitleaks_8.16.0-2~exp0_amd64.buildinfo
 26fd9169d501a605d2b47ccecb2fd09d 2261528 utils optional 
gitleaks_8.16.0-2~exp0_amd64.deb
 eaac7a21cbaeb0a8b8c981fd67dd39db 68104 golang optional 
golang-github-gitleaks-gitleaks-dev_8.16.0-2~exp0_all.deb

-----BEGIN PGP SIGNATURE-----
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=NDpC
-----END PGP SIGNATURE-----

pgpiQhfwaftJO.pgp
Description: PGP signature

--- End Message ---