devscripts - Debian Package Tracker

general

source: devscripts (main)
version: 2.25.33
maintainer: Devscripts Maintainers (DMD)
uploaders: Holger Levsen [DMD] – Benjamin Drung [DMD] – Mattia Rizzolo [DMD]
arch: all
std-ver: 4.7.2
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.21.3+deb11u1
oldstable: 2.23.4+deb12u2
old-bpo: 2.25.15~bpo12+1
stable: 2.25.15+deb13u1
stable-bpo: 2.25.22~bpo13+1
testing: 2.25.30
unstable: 2.25.33

versioned links

2.21.3+deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.23.4+deb12u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.15~bpo12+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.15+deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.22~bpo13+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.30: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.33: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

devscripts (538 bugs: 0, 220, 318, 0)

action needed

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2025-8454: It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

Created: 2025-07-14 Last update: 2025-12-29 18:16

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2025-8454: It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

Created: 2025-08-09 Last update: 2025-12-29 18:16

4 bugs tagged help in the BTS normal

The BTS contains 4 bugs tagged help, please consider helping the maintainer in dealing with them.

Created: 2025-08-23 Last update: 2025-12-30 07:00

45 bugs tagged patch in the BTS normal

The BTS contains patches fixing 45 bugs (47 if counting merged bugs), consider including or untagging them.

Created: 2025-01-06 Last update: 2025-12-30 07:00

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2025-12-28 Last update: 2025-12-30 06:30

Depends on packages which need a new maintainer normal

The packages that devscripts depends on which need a new maintainer are:

docbook-xsl (#802370)
- Build-Depends: docbook-xsl
svn-buildpackage (#726770)
- Suggests: svn-buildpackage

Created: 2019-11-22 Last update: 2025-12-30 05:32

lintian reports 2 warnings normal

Lintian reports 2 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2025-12-29 Last update: 2025-12-29 20:31

20 open merge requests in Salsa normal

There are 20 open merge requests for this package on Salsa. You should consider reviewing and/or merging these merge requests.

Created: 2025-09-17 Last update: 2025-09-17 09:05

1 low-priority security issue in trixie low

There is 1 open security issue in trixie.

1 issue left for the package maintainer to handle:

CVE-2025-8454: (needs triaging) It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-08-09 Last update: 2025-12-29 18:16

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2025-8454: (needs triaging) It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-07-14 Last update: 2025-12-29 18:16

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.3 instead of 4.7.2).

Created: 2025-12-23 Last update: 2025-12-29 18:30

testing migrations

excuses:
- Migration status for devscripts (2.25.30 to 2.25.33): Waiting for test results or another package, or too young (no action required now - check later)
- Issues preventing migration:
- ∙ ∙ Autopkgtest for devscripts/2.25.33: amd64: Pass, arm64: Pass, i386: Pass, ppc64el: Pass, riscv64: Pass, s390x: Pass
- ∙ ∙ Autopkgtest for dgit/13.20: amd64: Pass, arm64: Pass, i386: Pass, ppc64el: Pass, riscv64: Test triggered, s390x: Pass
- ∙ ∙ Autopkgtest for openssh/1:10.2p1-3: amd64: Pass, arm64: Pass, i386: Pass, ppc64el: Pass, riscv64: Test triggered, s390x: Pass
- ∙ ∙ Autopkgtest for sbuild/0.91.5: amd64: Pass, arm64: Pass, i386: Pass, ppc64el: Pass, riscv64: Test triggered, s390x: Pass
- ∙ ∙ Too young, only 1 of 5 days old
- Additional info (not blocking):
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/d/devscripts.html
- ∙ ∙ Waiting for reproducibility test results on amd64 - info ♻
- ∙ ∙ Waiting for reproducibility test results on arm64 - info ♻
- Not considered

news

[rss feed]

[2025-12-29] Accepted devscripts 2.25.33 (source) into unstable (Daniel Gröber)
[2025-12-22] Accepted devscripts 2.25.32 (source) into unstable (Daniel Gröber)
[2025-12-16] Accepted devscripts 2.25.31 (source) into unstable (Holger Levsen)
[2025-12-12] devscripts 2.25.30 MIGRATED to testing (Debian testing watch)
[2025-12-09] Accepted devscripts 2.25.30 (source) into unstable (Holger Levsen)
[2025-12-09] devscripts 2.25.29 MIGRATED to testing (Debian testing watch)
[2025-12-04] Accepted devscripts 2.25.29 (source) into unstable (Holger Levsen)
[2025-12-04] devscripts 2.25.28 MIGRATED to testing (Debian testing watch)
[2025-11-30] Accepted devscripts 2.25.28 (source) into unstable (Holger Levsen)
[2025-11-25] devscripts 2.25.27 MIGRATED to testing (Debian testing watch)
[2025-11-22] Accepted devscripts 2.25.27 (source) into unstable (Holger Levsen)
[2025-11-22] devscripts 2.25.26 MIGRATED to testing (Debian testing watch)
[2025-11-19] Accepted devscripts 2.25.26 (source) into unstable (Jochen Sprickerhof)
[2025-11-08] devscripts 2.25.25 MIGRATED to testing (Debian testing watch)
[2025-11-06] Accepted devscripts 2.25.25 (source) into unstable (Holger Levsen)
[2025-11-05] Accepted devscripts 2.25.24 (source) into unstable (Holger Levsen)
[2025-11-04] devscripts 2.25.23 MIGRATED to testing (Debian testing watch)
[2025-11-02] Accepted devscripts 2.25.23 (source) into unstable (Holger Levsen)
[2025-10-30] devscripts 2.25.22 MIGRATED to testing (Debian testing watch)
[2025-10-29] Accepted devscripts 2.25.22~bpo13+1 (source) into stable-backports (Jochen Sprickerhof)
[2025-10-27] Accepted devscripts 2.25.22 (source) into unstable (Jochen Sprickerhof)
[2025-10-26] devscripts 2.25.21 MIGRATED to testing (Debian testing watch)
[2025-10-24] Accepted devscripts 2.25.21 (source) into unstable (Holger Levsen)
[2025-10-22] devscripts 2.25.20 MIGRATED to testing (Debian testing watch)
[2025-10-19] Accepted devscripts 2.25.20 (source) into unstable (Holger Levsen)
[2025-09-22] Accepted devscripts 2.25.19~bpo13+1 (source all) into stable-backports (Debian FTP Masters) (signed by: Roger Shimizu)
[2025-08-25] devscripts 2.25.19 MIGRATED to testing (Debian testing watch)
[2025-08-24] Accepted devscripts 2.25.15+deb13u1 (source) into proposed-updates (Debian FTP Masters) (signed by: Sebastiaan Couwenberg)
[2025-08-23] Accepted devscripts 2.25.19 (source) into unstable (Yadd) (signed by: Xavier Guimard)
[2025-08-15] Accepted devscripts 2.25.18 (source) into unstable (Sean Whitton)

bugs [bug history graph]

all: 528 543
RC: 0
I&N: 215 222
M&W: 313 321
F&P: 0
patch: 45 47
help: 4
NC: 3

links

lintian (0, 2)
buildd: logs, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
l10n (84, -)
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.25.31
44 bugs (1 patch)