I agree with Paride, and approve this FFe, with the following recommendations.
Regarding sync ordering: `python-cotyledon` doesn't actually need to reach the release pocket, but needs to be built and published in -proposed to be picked up as a build dependency by other packages. I agree it needs to go first, though, but you can actually start syncing the rest earlier than you originally planned. About non OpenStack packages' seeding status: ``` ❯ for pkg in alembic cmd2 dnspython platformdirs pyroute2 python-cachetools python-cotyledon python-dogpile.cache python-etcd3gw python-eventlet python-gabbi python-gnocchiclient python-greenlet python-ldap python-requests-kerberos python-requests-oauthlib python-sqlalchemy-utils python-stestr python-threadpoolctl python-uhashring python-wrapt python-xattr python-xmltodict responses sphinxcontrib-httpdomain websocket-client; do echo "-------------"; seeded-in-ubuntu $pkg; done ------------- python3-alembic (from alembic) is seeded in: ubuntustudio: daily-live ------------- python-cmd2-doc (from cmd2) is seeded in: ubuntu-budgie: supported ubuntu: supported ------------- python3-dnspython (from dnspython) is seeded in: edubuntu: daily-live, daily-preinstalled ubuntukylin: daily-live ------------- python3-platformdirs (from platformdirs) is seeded in: edubuntu: daily-live, daily-preinstalled ubuntustudio: daily-live ------------- python-pyroute2-doc (from pyroute2) is seeded in: ubuntu-budgie: supported ubuntu: supported ------------- python-cachetools's binaries are not seeded. ------------- python-cotyledon-doc (from python-cotyledon) is seeded in: ubuntu-budgie: supported ubuntu: supported ------------- python-dogpile.cache-doc (from python-dogpile.cache) is seeded in: ubuntu-budgie: supported ubuntu: supported ------------- python-etcd3gw's binaries are not seeded. ------------- python-eventlet-doc (from python-eventlet) is seeded in: ubuntu-budgie: supported ubuntu: supported ------------- python-gabbi's binaries are not seeded. ------------- python-gnocchiclient-doc (from python-gnocchiclient) is seeded in: ubuntu-budgie: supported ubuntu: supported ------------- python-greenlet-dev (from python-greenlet) is seeded in: ubuntu-budgie: supported python-greenlet-doc (from python-greenlet) is seeded in: ubuntu-budgie: supported ubuntu: supported python3-greenlet (from python-greenlet) is seeded in: ubuntustudio: daily-live ------------- python-ldap-doc (from python-ldap) is seeded in: ubuntu-budgie: supported ubuntu: supported ------------- python-requests-kerberos's binaries are not seeded. ------------- python-requests-oauthlib's binaries are not seeded. ------------- python-sqlalchemy-utils-doc (from python-sqlalchemy-utils) is seeded in: ubuntu-budgie: supported ubuntu: supported ------------- python-stestr's binaries are not seeded. ------------- python-threadpoolctl's binaries are not seeded. ------------- python-uhashring's binaries are not seeded. ------------- python-wrapt-doc (from python-wrapt) is seeded in: ubuntu-budgie: supported ubuntu: supported ------------- python-xattr's binaries are not seeded. ------------- python-xmltodict's binaries are not seeded. ------------- responses's binaries are not seeded. ------------- sphinxcontrib-httpdomain's binaries are not seeded. ------------- websocket-client's binaries are not seeded. ``` Quite verbose output, but the most interesting part boils down to those four source packages that have some binary packages that end up on some ISOs: ``` alembic: ubuntustudio dnspython: edubuntu, ubuntukylin platformdirs: edubuntu, ubuntustudio python-greenlet: ubuntustudio ``` The goal here is to make sure those have migrated to the release pocket before beta, so please get them sync'd with the highest priority, and baby-sit them enough so that they have migrated before next Monday end-of-day. Now for the rest, no much to say, apart from that: > | python-ldap | CVE-2025-61911, CVE-2025-61912 | Debian 3.4.5 is the upstream release that includes these fixes. Safe. Also loses Ubuntu apparmor autopkgtest (test-only). | If I understand correctly, the autopkgtest should fail on Ubuntu without the delta. Please make sure to actually **merge** that package properly and not just **sync** it. ** CVE added: https://cve.org/CVERecord?id=CVE-2025-61911 ** CVE added: https://cve.org/CVERecord?id=CVE-2025-61912 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/2144841 Title: [FFE] Gazpacho Sync of OpenStack packages To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openstack/+bug/2144841/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
