devscripts - Debian Package Tracker

general

source: devscripts (main)
version: 2.25.25
maintainer: Devscripts Maintainers (DMD)
uploaders: Holger Levsen [DMD] – Benjamin Drung [DMD] – Mattia Rizzolo [DMD]
arch: all
std-ver: 4.7.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.21.3+deb11u1
oldstable: 2.23.4+deb12u2
old-bpo: 2.25.15~bpo12+1
stable: 2.25.15+deb13u1
stable-bpo: 2.25.22~bpo13+1
testing: 2.25.25
unstable: 2.25.25

versioned links

2.21.3+deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.23.4+deb12u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.15~bpo12+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.15+deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.22~bpo13+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.25: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

devscripts (538 bugs: 0, 217, 321, 0)

action needed

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2025-8454: It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

Created: 2025-07-14 Last update: 2025-11-08 04:00

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2025-8454: It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

Created: 2025-08-09 Last update: 2025-11-08 04:00

4 bugs tagged help in the BTS normal

The BTS contains 4 bugs tagged help, please consider helping the maintainer in dealing with them.

Created: 2025-08-23 Last update: 2025-11-16 02:31

46 bugs tagged patch in the BTS normal

The BTS contains patches fixing 46 bugs (48 if counting merged bugs), consider including or untagging them.

Created: 2025-01-06 Last update: 2025-11-16 02:31

Depends on packages which need a new maintainer normal

The packages that devscripts depends on which need a new maintainer are:

docbook-xsl (#802370)
- Build-Depends: docbook-xsl
svn-buildpackage (#726770)
- Suggests: svn-buildpackage

Created: 2019-11-22 Last update: 2025-11-16 02:00

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 2.25.26, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 00041bed1996e8501dd2ef7eb808d893dab6fc29
Author: Jochen Sprickerhof <jspricke@debian.org>
Date:   Sun Nov 9 09:16:13 2025 +0100

    debrebuild: always build with --no-source because we cannot reproduce the signature on the .dsc anyway.
    
    Note that the current version already ignores .dsc files from the given
    buildinfo file as they could be signed and thus be non reproducible. See
    the comment towards the end of the script. It thus makes sense to simply
    not attempt to build a new source package during the rebuild as
    otherwise the comparison of the buildinfo files always fails due to the
    new one having a .dsc entry.
    
    (cherry picked from commit f494c778e281c1c5027d80be41a81b11a7098ac8)
    Signed-off-by: Holger Levsen <holger@layer-acht.org>

commit a884d0ae3be8a8961a1276ab92dc2a40d7764e47
Author: Yadd <yadd@debian.org>
Date:   Fri Nov 7 07:20:34 2025 +0100

    Update French translation

commit a70132ddf1edc19d9e849d1c256005c1c4f7371a
Author: Holger Levsen <holger@layer-acht.org>
Date:   Thu Nov 6 08:47:18 2025 +0100

    Start 2.25.26 development.
    
    d/changelog entries will be written on release
    using the git commit messages.
    
    Use 'gbp dch --since v2.25.25 --multimaint-merge'
    to write d/changelog entries since that last release.
    
    Gbp-Dch: ignore
    Signed-off-by: Holger Levsen <holger@layer-acht.org>

Created: 2025-07-29 Last update: 2025-11-09 12:30

20 open merge requests in Salsa normal

There are 20 open merge requests for this package on Salsa. You should consider reviewing and/or merging these merge requests.

Created: 2025-09-17 Last update: 2025-09-17 09:05

1 low-priority security issue in trixie low

There is 1 open security issue in trixie.

1 issue left for the package maintainer to handle:

CVE-2025-8454: (needs triaging) It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-08-09 Last update: 2025-11-08 04:00

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2025-8454: (needs triaging) It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-07-14 Last update: 2025-11-08 04:00

news

[rss feed]

[2025-11-08] devscripts 2.25.25 MIGRATED to testing (Debian testing watch)
[2025-11-06] Accepted devscripts 2.25.25 (source) into unstable (Holger Levsen)
[2025-11-05] Accepted devscripts 2.25.24 (source) into unstable (Holger Levsen)
[2025-11-04] devscripts 2.25.23 MIGRATED to testing (Debian testing watch)
[2025-11-02] Accepted devscripts 2.25.23 (source) into unstable (Holger Levsen)
[2025-10-30] devscripts 2.25.22 MIGRATED to testing (Debian testing watch)
[2025-10-29] Accepted devscripts 2.25.22~bpo13+1 (source) into stable-backports (Jochen Sprickerhof)
[2025-10-27] Accepted devscripts 2.25.22 (source) into unstable (Jochen Sprickerhof)
[2025-10-26] devscripts 2.25.21 MIGRATED to testing (Debian testing watch)
[2025-10-24] Accepted devscripts 2.25.21 (source) into unstable (Holger Levsen)
[2025-10-22] devscripts 2.25.20 MIGRATED to testing (Debian testing watch)
[2025-10-19] Accepted devscripts 2.25.20 (source) into unstable (Holger Levsen)
[2025-09-22] Accepted devscripts 2.25.19~bpo13+1 (source all) into stable-backports (Debian FTP Masters) (signed by: Roger Shimizu)
[2025-08-25] devscripts 2.25.19 MIGRATED to testing (Debian testing watch)
[2025-08-24] Accepted devscripts 2.25.15+deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Sebastiaan Couwenberg)
[2025-08-23] Accepted devscripts 2.25.19 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2025-08-15] Accepted devscripts 2.25.18 (source) into unstable (Sean Whitton)
[2025-07-28] Accepted devscripts 2.25.17 (source) into experimental (Yadd) (signed by: Xavier Guimard)
[2025-07-20] Accepted devscripts 2.25.16 (source all) into experimental (Yadd) (signed by: Xavier Guimard)
[2025-07-11] Accepted devscripts 2.25.15~bpo12+1 (source) into stable-backports (Roger Shimizu)
[2025-06-21] devscripts 2.25.15 MIGRATED to testing (Debian testing watch)
[2025-06-16] Accepted devscripts 2.25.15 (source) into unstable (Holger Levsen)
[2025-06-01] devscripts 2.25.14 MIGRATED to testing (Debian testing watch)
[2025-05-26] Accepted devscripts 2.25.14 (source) into unstable (Holger Levsen)
[2025-05-22] Accepted devscripts 2.25.13 (source) into unstable (Holger Levsen)
[2025-05-20] devscripts 2.25.12 MIGRATED to testing (Debian testing watch)
[2025-05-11] Accepted devscripts 2.25.12 (source) into unstable (Holger Levsen)
[2025-05-10] devscripts 2.25.11 MIGRATED to testing (Debian testing watch)
[2025-04-29] Accepted devscripts 2.25.11 (source) into unstable (Holger Levsen)
[2025-04-29] Accepted devscripts 2.25.10~bpo12+1 (source) into stable-backports (Roger Shimizu)

bugs [bug history graph]

all: 527 542
RC: 0
I&N: 211 218
M&W: 316 324
F&P: 0
patch: 46 48
help: 4
NC: 3

links

lintian
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
l10n (89, -)
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.25.19ubuntu2
46 bugs (2 patches)
patches for 2.25.19ubuntu2