Hi, Am Sonntag, den 05.07.2009, 18:53 +0200 schrieb Stefano Zacchiroli: > > I haven’t worked with get-orig-source before. Is it a standard? I > > thought it’s only a thin people use personally. > > Yup, is in policy. It is the target to use if your upstream tarball > needs some kind of mangling (e.g., stripping non-DFSG bits or packing > together multiple upstream tarballs for multi-upstream source > packages). What I'd love from your script is to test if > get-orig-source is defined (possibly invoking make in some dry-run > way, not just parsing debian/rules cause it can include other files) > before trying uscan.
Of course, "./rules get-orig-source" has the same security implications than a hook. (In a sense, it is a hook.) Is it really desirable to use an imperative feature (run this Makefile rule to get the tarball), when there is a declarative way of doing it (the watch file) as well? I’d say as long as someone does not have to modify the tarball, using debian/watch and uscan should be preferred to coding stuff in get-orig-source. Greetings, Joachim -- Joachim "nomeata" Breitner Debian Developer nome...@debian.org | ICQ# 74513189 | GPG-Keyid: 4743206C JID: nome...@joachim-breitner.de | http://people.debian.org/~nomeata
signature.asc
Description: Dies ist ein digital signierter Nachrichtenteil