Quoting Otto Kekäläinen (2024-03-30 22:09:46) > Is it so that the debian/copyright file is reviewed by ftp-masters > only for packages in NEW queue, and there is probably no automation in > place to flag subsequent copyright changes for re-review?
It is my understanding that it is, and always has been, the responsibility of the _uploader_ and not ftp-masters to ensure that debian/copyright data is accurate. True, ftp-masters review, but we should not rely on that. Which means the flagging you ask about is something each package maintainer should (either themselves or through their choice of tooling) put in place. What I do is recheck for changes to copyright and licensing changes each time a package is changed to use a new upstream release. I am greatly helped (but do not fully trust - I also manually look at source files) by an automated licensecheck scan, where I keep a dump of that in the source package, and compare to a rescan after importing the upstream code but before releasing it: https://wiki.debian.org/CopyrightReviewTools#licensecheck - Jonas -- * Jonas Smedegaard - idealist & Internet-arkitekt * Tlf.: +45 40843136 Website: http://dr.jones.dk/ * Sponsorship: https://ko-fi.com/drjones [x] quote me freely [ ] ask before reusing [ ] keep private
signature.asc
Description: signature
