devscripts - Debian Package Tracker

general

source: devscripts (main)
version: 2.26.9
maintainer: Devscripts Maintainers (DMD)
uploaders: Holger Levsen [DMD] – Benjamin Drung [DMD] – Mattia Rizzolo [DMD]
arch: all
std-ver: 4.7.3
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 2.21.3+deb11u1
oldstable: 2.23.4+deb12u2
old-bpo: 2.25.15~bpo12+1
stable: 2.25.15+deb13u1
stable-bpo: 2.26.7~bpo13+1
testing: 2.26.7
unstable: 2.26.9

versioned links

2.21.3+deb11u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.23.4+deb12u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.15~bpo12+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.25.15+deb13u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.26.7~bpo13+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.26.7: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.26.9: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

devscripts (532 bugs: 0, 211, 321, 0)

action needed

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2025-8454: It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

Created: 2025-07-14 Last update: 2026-05-18 01:00

1 security issue in forky high

There is 1 open security issue in forky.

1 important issue:

CVE-2025-8454: It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

Created: 2025-08-09 Last update: 2026-05-18 01:00

4 bugs tagged help in the BTS normal

The BTS contains 4 bugs tagged help, please consider helping the maintainer in dealing with them.

Created: 2025-08-23 Last update: 2026-05-18 21:00

40 bugs tagged patch in the BTS normal

The BTS contains patches fixing 40 bugs (42 if counting merged bugs), consider including or untagging them.

Created: 2026-04-06 Last update: 2026-05-18 21:00

Depends on packages which need a new maintainer normal

The packages that devscripts depends on which need a new maintainer are:

docbook-xml (#802368)
- Build-Depends: docbook-xml
docbook-xsl (#802370)
- Build-Depends: docbook-xsl

Created: 2019-11-22 Last update: 2026-05-18 19:14

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 2.26.10, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit 359511f18d3b2c1f6e9677fd3c7340ddd5808098
Author: Jochen Sprickerhof <jspricke@debian.org>
Date:   Mon May 18 13:33:26 2026 +0200

    Revert "Remove mmdebstrap from recommends again"
    
    As proposed by Holger.
    
    This reverts commit a642bf862d98b0120938456656b342278a9eaed7.

commit 7fcc75b7e77990446df4c369605dc206341f65ca
Author: Jochen Sprickerhof <jspricke@debian.org>
Date:   Sun May 17 16:37:29 2026 +0200

    Start 2.26.10 development.
    
    d/changelog entries will be written on release
    using the git commit messages.
    
    Use 'gbp dch --since v2.26.9 --multimaint-merge'
    to write d/changelog entries since that last release.
    
    Gbp-Dch: ignore

Created: 2026-01-08 Last update: 2026-05-18 13:32

23 open merge requests in Salsa normal

There are 23 open merge requests for this package on Salsa. You should consider reviewing and/or merging these merge requests.

Created: 2025-09-17 Last update: 2026-05-17 15:04

lintian reports 1 warning normal

Lintian reports 1 warning about this package. You should make the package lintian clean getting rid of them.

Created: 2026-05-13 Last update: 2026-05-13 21:30

1 low-priority security issue in trixie low

There is 1 open security issue in trixie.

1 issue left for the package maintainer to handle:

CVE-2025-8454: (needs triaging) It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-08-09 Last update: 2026-05-18 01:00

1 low-priority security issue in bookworm low

There is 1 open security issue in bookworm.

1 issue left for the package maintainer to handle:

CVE-2025-8454: (needs triaging) It was discovered that uscan, a tool to scan/watch upstream sources for new releases of software, included in devscripts (a collection of scripts to make the life of a Debian Package maintainer easier), skips OpenPGP verification if the upstream source is already downloaded from a previous run even if the verification failed back then.

You can find information about how to handle this issue in the security team's documentation.

Created: 2025-07-14 Last update: 2026-05-18 01:00

Issues found with some translations low

Automatic checks made by the Debian l10n team found some issues with the translations contained in this package. You should check the l10n status report for more information.

Issues can be things such as missing translations, problematic translated strings, outdated PO files, unknown languages, etc.

Created: 2026-01-08 Last update: 2026-03-10 09:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.4 instead of 4.7.3).

Created: 2026-03-31 Last update: 2026-05-17 21:19

testing migrations

excuses:
- Migration status for devscripts (2.26.7 to 2.26.9): Waiting for test results or another package, or too young (no action required now - check later)
- Issues preventing migration:
- ∙ ∙ Autopkgtest for autopkgtest/5.55: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for breezy-debian/2.8.81: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for cmake-extras/1.9-1: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for debian-codemods/0.175: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for debmake/5.1.5: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for debomatic/0.40-1: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for debsigs/0.2.2-2: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for debusine/0.14.7: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered (failure will be ignored), s390x: Test triggered
- ∙ ∙ Autopkgtest for devscripts/2.26.9: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for dgit/15.8: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for gem2deb/2.2.8: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for git-buildpackage/0.9.42: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for lava/2026.02-3: amd64: Pass, arm64: Pass, i386: Test triggered (will not be considered a regression) ♻ (reference ♻), ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for npm2deb/0.3.0-14: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for openssh/1:10.3p1-1: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for pkg-js-tools/0.17.4: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for pkg-perl-tools/0.88: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for sbuild/0.91.8: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Autopkgtest for ubuntu-dev-tools/0.210: amd64: Pass, arm64: Pass, i386: Test triggered, ppc64el: Pass, riscv64: Test triggered, s390x: Test triggered
- ∙ ∙ Lintian check waiting for test results - info
- ∙ ∙ Too young, only 0 of 5 days old
- Additional info (not blocking):
- ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/d/devscripts.html
- ∙ ∙ Reproduced on amd64 - info
- ∙ ∙ Reproduced on arm64 - info
- ∙ ∙ Reproduced on armhf - info
- ∙ ∙ Reproduced on i386 - info
- Not considered

news

[rss feed]

[2026-05-17] Accepted devscripts 2.26.9 (source) into unstable (Jochen Sprickerhof)
[2026-05-13] Accepted devscripts 2.26.8 (source) into unstable (Holger Levsen)
[2026-04-03] Accepted devscripts 2.26.7~bpo13+1 (source) into stable-backports (Jochen Sprickerhof)
[2026-04-03] devscripts 2.26.7 MIGRATED to testing (Debian testing watch)
[2026-03-31] Accepted devscripts 2.26.7 (source) into unstable (Benjamin Drung)
[2026-03-12] Accepted devscripts 2.26.6~bpo13+1 (source) into stable-backports (Jochen Sprickerhof)
[2026-03-12] devscripts 2.26.6 MIGRATED to testing (Debian testing watch)
[2026-03-09] Accepted devscripts 2.26.6 (source) into unstable (Jochen Sprickerhof)
[2026-01-20] devscripts 2.26.5 MIGRATED to testing (Debian testing watch)
[2026-01-18] Accepted devscripts 2.26.5 (source) into unstable (Holger Levsen)
[2026-01-18] devscripts 2.26.4 MIGRATED to testing (Debian testing watch)
[2026-01-12] Accepted devscripts 2.26.4 (source) into unstable (Holger Levsen)
[2026-01-10] devscripts 2.26.3 MIGRATED to testing (Debian testing watch)
[2026-01-08] Accepted devscripts 2.26.3 (source) into unstable (Holger Levsen)
[2026-01-07] Accepted devscripts 2.26.2 (source) into unstable (Holger Levsen)
[2026-01-07] devscripts 2.26.1 MIGRATED to testing (Debian testing watch)
[2026-01-04] Accepted devscripts 2.26.1 (source) into unstable (Holger Levsen)
[2026-01-01] devscripts 2.25.33 MIGRATED to testing (Debian testing watch)
[2025-12-29] Accepted devscripts 2.25.33 (source) into unstable (Daniel Gröber)
[2025-12-22] Accepted devscripts 2.25.32 (source) into unstable (Daniel Gröber)
[2025-12-16] Accepted devscripts 2.25.31 (source) into unstable (Holger Levsen)
[2025-12-12] devscripts 2.25.30 MIGRATED to testing (Debian testing watch)
[2025-12-09] Accepted devscripts 2.25.30 (source) into unstable (Holger Levsen)
[2025-12-09] devscripts 2.25.29 MIGRATED to testing (Debian testing watch)
[2025-12-04] Accepted devscripts 2.25.29 (source) into unstable (Holger Levsen)
[2025-12-04] devscripts 2.25.28 MIGRATED to testing (Debian testing watch)
[2025-11-30] Accepted devscripts 2.25.28 (source) into unstable (Holger Levsen)
[2025-11-25] devscripts 2.25.27 MIGRATED to testing (Debian testing watch)
[2025-11-22] Accepted devscripts 2.25.27 (source) into unstable (Holger Levsen)
[2025-11-22] devscripts 2.25.26 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 521 537
RC: 0
I&N: 207 213
M&W: 314 324
F&P: 0
patch: 40 42
help: 4
NC: 3

links

lintian (0, 1)
buildd: logs, reproducibility
popcon
browse source code
other distros
security tracker
l10n (88, -)
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.26.7
43 bugs (1 patch)