devscripts - Debian Package Tracker

general

source: devscripts (main)
version: 2.26.1
maintainer: Devscripts Maintainers (DMD)
uploaders: Holger Levsen [DMD] – Benjamin Drung [DMD] – Mattia Rizzolo [DMD]
arch: all
std-ver: 4.7.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.21.3+deb11u1
oldstable: 2.23.4+deb12u2
old-bpo: 2.25.15~bpo12+1
stable: 2.25.15+deb13u1
stable-bpo: 2.25.22~bpo13+1
testing: 2.25.33
unstable: 2.26.1

versioned links

2.21.3+deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.23.4+deb12u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.15~bpo12+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.15+deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.22~bpo13+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.26.1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

devscripts (538 bugs: 0, 220, 318, 0)

action needed

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2025-8454: It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

Created: 2025-07-14 Last update: 2026-01-05 08:01

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2025-8454: It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

Created: 2025-08-09 Last update: 2026-01-05 08:01

4 bugs tagged help in the BTS normal

The BTS contains 4 bugs tagged help, please consider helping the maintainer in dealing with them.

Created: 2025-08-23 Last update: 2026-01-07 03:00

45 bugs tagged patch in the BTS normal

The BTS contains patches fixing 45 bugs (47 if counting merged bugs), consider including or untagging them.

Created: 2025-01-06 Last update: 2026-01-07 03:00

Depends on packages which need a new maintainer normal

The packages that devscripts depends on which need a new maintainer are:

docbook-xsl (#802370)
- Build-Depends: docbook-xsl
svn-buildpackage (#726770)
- Suggests: svn-buildpackage

Created: 2019-11-22 Last update: 2026-01-07 01:32

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 2.26.2, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 80d58aa7bae8b6e93459884b076b996f7af15794
Author: Daniel Gröber <dxld@darkboxed.org>
Date:   Tue Jan 6 20:27:08 2026 +0100

    bts: Fix cosmetic $ENV{"_"} uninitialized warning

commit 8581c5340613d59aaf8d7768def7e27d362063a1
Author: Daniel Gröber <dxld@darkboxed.org>
Date:   Tue Jan 6 15:41:23 2026 +0100

    Update changelog for 2.26.2 release

commit 85544f918a401bff4eeb469921a6d52eda84fc7a
Author: Daniel Gröber <dxld@darkboxed.org>
Date:   Tue Jan 6 15:37:53 2026 +0100

    bts: Fix 'unsubscribe' cmd incorrectly sending subscription request

commit a60955edee0391a992e81bc6468fe5af4fbdfb64
Author: Holger Levsen <holger@layer-acht.org>
Date:   Sun Jan 4 22:17:02 2026 +0100

    Bump standards version to 4.7.3 and stop stating optional priority as this is the default now
    
    Signed-off-by: Holger Levsen <holger@layer-acht.org>

commit b8c9d4ea74dc2ef2d9fad53ec876add1982abe98
Author: Holger Levsen <holger@layer-acht.org>
Date:   Sun Jan 4 22:17:10 2026 +0100

    Start 2.26.2 development.
    
    d/changelog entries will be written on release
    using the git commit messages.
    
    Use 'gbp dch --since v2.26.1 --multimaint-merge'
    to write d/changelog entries since that last release.
    
    Gbp-Dch: ignore
    Signed-off-by: Holger Levsen <holger@layer-acht.org>

Created: 2026-01-04 Last update: 2026-01-06 21:02

20 open merge requests in Salsa normal

There are 20 open merge requests for this package on Salsa. You should consider reviewing and/or merging these merge requests.

Created: 2025-09-17 Last update: 2025-09-17 09:05

1 low-priority security issue in trixie low

There is 1 open security issue in trixie.

1 issue left for the package maintainer to handle:

CVE-2025-8454: (needs triaging) It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-08-09 Last update: 2026-01-05 08:01

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2025-8454: (needs triaging) It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-07-14 Last update: 2026-01-05 08:01

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.3 instead of 4.7.2).

Created: 2025-12-23 Last update: 2026-01-05 03:31

testing migrations

excuses:
- Migration status for devscripts (2.25.33 to 2.26.1): Will attempt migration (Any information below is purely informational)
- Additional info (not blocking):
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/d/devscripts.html
- ∙ ∙ Autopkgtest for devscripts/2.26.1: amd64: Pass, arm64: Pass, i386: Pass, ppc64el: Pass, riscv64: Pass, s390x: Pass
- ∙ ∙ Reproducible on amd64 - info ♻
- ∙ ∙ Reproducible on arm64 - info ♻
- ∙ ∙ Required age reduced by 3 days because of autopkgtest
- ∙ ∙ 2 days old (needed 2 days)

news

[rss feed]

[2026-01-04] Accepted devscripts 2.26.1 (source) into unstable (Holger Levsen)
[2026-01-01] devscripts 2.25.33 MIGRATED to testing (Debian testing watch)
[2025-12-29] Accepted devscripts 2.25.33 (source) into unstable (Daniel Gröber)
[2025-12-22] Accepted devscripts 2.25.32 (source) into unstable (Daniel Gröber)
[2025-12-16] Accepted devscripts 2.25.31 (source) into unstable (Holger Levsen)
[2025-12-12] devscripts 2.25.30 MIGRATED to testing (Debian testing watch)
[2025-12-09] Accepted devscripts 2.25.30 (source) into unstable (Holger Levsen)
[2025-12-09] devscripts 2.25.29 MIGRATED to testing (Debian testing watch)
[2025-12-04] Accepted devscripts 2.25.29 (source) into unstable (Holger Levsen)
[2025-12-04] devscripts 2.25.28 MIGRATED to testing (Debian testing watch)
[2025-11-30] Accepted devscripts 2.25.28 (source) into unstable (Holger Levsen)
[2025-11-25] devscripts 2.25.27 MIGRATED to testing (Debian testing watch)
[2025-11-22] Accepted devscripts 2.25.27 (source) into unstable (Holger Levsen)
[2025-11-22] devscripts 2.25.26 MIGRATED to testing (Debian testing watch)
[2025-11-19] Accepted devscripts 2.25.26 (source) into unstable (Jochen Sprickerhof)
[2025-11-08] devscripts 2.25.25 MIGRATED to testing (Debian testing watch)
[2025-11-06] Accepted devscripts 2.25.25 (source) into unstable (Holger Levsen)
[2025-11-05] Accepted devscripts 2.25.24 (source) into unstable (Holger Levsen)
[2025-11-04] devscripts 2.25.23 MIGRATED to testing (Debian testing watch)
[2025-11-02] Accepted devscripts 2.25.23 (source) into unstable (Holger Levsen)
[2025-10-30] devscripts 2.25.22 MIGRATED to testing (Debian testing watch)
[2025-10-29] Accepted devscripts 2.25.22~bpo13+1 (source) into stable-backports (Jochen Sprickerhof)
[2025-10-27] Accepted devscripts 2.25.22 (source) into unstable (Jochen Sprickerhof)
[2025-10-26] devscripts 2.25.21 MIGRATED to testing (Debian testing watch)
[2025-10-24] Accepted devscripts 2.25.21 (source) into unstable (Holger Levsen)
[2025-10-22] devscripts 2.25.20 MIGRATED to testing (Debian testing watch)
[2025-10-19] Accepted devscripts 2.25.20 (source) into unstable (Holger Levsen)
[2025-09-22] Accepted devscripts 2.25.19~bpo13+1 (source all) into stable-backports (Debian FTP Masters) (signed by: Roger Shimizu)
[2025-08-25] devscripts 2.25.19 MIGRATED to testing (Debian testing watch)
[2025-08-24] Accepted devscripts 2.25.15+deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Sebastiaan Couwenberg)

bugs [bug history graph]

all: 528 543
RC: 0
I&N: 215 222
M&W: 313 321
F&P: 0
patch: 45 47
help: 4
NC: 3

links

lintian
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
l10n (83, -)
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.25.31
44 bugs (1 patch)