Package: devscripts Version: 2.24.6 Severity: serious File: /usr/bin/uscan X-Debbugs-Cc: debian-kernel@lists.debian.org, car...@debian.org Control: affects -1 + src:linux
Hi devscripts maintainers, Note the severity might be overrated, please adjust as needed but I believe right now it's safer to have it RC until clear on what to do in other packages. While fetching the new upstream version in src:linux the signature verifification with the new version 2.24.6 fails: $ uscan --download-current-version --vcs-export-uncompressed Newest version of linux on remote site is 6.12.3, specified download version is 6.12.3 Cloning into bare repository '../linux-temporary.7164.git'... remote: Enumerating objects: 91865, done. remote: Counting objects: 100% (91865/91865), done. remote: Compressing objects: 100% (89330/89330), done. remote: Total 91865 (delta 7167), reused 18846 (delta 1562), pack-reused 0 Receiving objects: 100% (91865/91865), 256.56 MiB | 7.13 MiB/s, done. Resolving deltas: 100% (7167/7167), done. gpgv: Signature made vr 06 dec 2024 07:20:53 CET gpgv: using RSA key 647F28654894E3BD457199BE38DBBDC86092693E gpgv: Can't check signature: No public key uscan die: OpenPGP signature did not verify. at /usr/share/perl5/Devscripts/Uscan/Output.pm line 77. This works with the 2.24.5 version. Regards, Salvatore
