Public bug reported: The current implementation of cargo-auditable support in debian/bin/cargo.in unconditionally enables sbom generation, regardless of whether or not cargo-auditable is enabled.
This is a problem because it means extra unexpected build artifacts are generated and installed on the user's system, also potentially causing builds to fail by triggering dh_missing, as exemplified by this rust-coreutils log: https://launchpadlibrarian.net/851451544/buildlog_ubuntu-resolute-amd64.rust-coreutils_0.6.0-0ubuntu1_BUILDING.txt.gz sboms must only be generated when cargo-auditable is enabled. ** Affects: rustc-1.93 (Ubuntu) Importance: High Assignee: Max Gilmour (maxgmr) Status: New -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2144353 Title: rustc generates sboms even when cargo-auditable isn't enabled To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/rustc-1.93/+bug/2144353/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
