Bug#931013: RFS: python-in-toto/0.3.0-1 [ITP]

b", for which I have already filed an ITP under the subject "RFS: python-securesystemslib/0.11.3-1 [ITP]". Changes since the last upload: python-in-toto (0.3.0-1) unstable; urgency=low * Initial Debian release from tag: https://github.com/in-toto/in-toto/tree/v0.3.0 -- Lukas

Bug#931015: RFS: python-securesystemslib/0.11.3-1 [ITP]

c.umu.se/Public/debian-meetings/2019/miniconf-hamburg/in-toto.webm Changes since the last upload: python-securesystemslib (0.11.3-1) unstable; urgency=low * Initial Debian release from tag: https://github.com/secure-systems-lab/securesystemslib/tree/sslibv0.11.3 -- Lukas Puehringer Fri,

Bug#931026: RFS: apt-transport-in-toto/0.1.0 [ITP]

e the last upload: apt-transport-in-toto (0.1.0) unstable; urgency=low * Initial Debian release. -- Lukas Puehringer Fri, 07 Jun 2019 12:14:02 -0400 Regards, Lukas Pühringer -- lukas.puehrin...@nyu.edu PGP fingerprint: 8BA6 9B87 D43B E294 F23E 8120 89A2 AD3C 07D9 62E8 signature.asc Description: OpenPGP digital signature

Bug#931178: RFS: python-tuf/0.11.2.dev3-1 [ITP]

the last upload: python-tuf (0.11.2.dev3-1) unstable; urgency=low * Initial release. -- Lukas Puehringer Thu, 27 Jun 2019 09:06:21 -0400 Regards, Lukas Pühringer -- lukas.puehrin...@nyu.edu PGP fingerprint: 8BA6 9B87 D43B E294 F23E 8120 89A2 AD3C 07D9 62E8 signature.asc Desc

Bug#931013: RFS: python-in-toto/0.4.0-1 [ITP] -- software supply chain security framework

There has been a new upstream release since opening this ticket and we decided to bump the initial Debian release too. The new mentors upload is available at: https://mentors.debian.net/package/python-in-toto Do I need to do anything else to re-dedicate this ITP? Cheers, Lukas On 9/26/19 11:37

Bug#934137: ITP: python-securesystemslib -- crypto and schema library for TUF and in-toto

Package: wnpp Severity: wishlist Please see corresponding RFS ticket for details (description, license, URLs): https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931015 -- lukas.puehrin...@nyu.edu PGP fingerprint: 8BA6 9B87 D43B E294 F23E 8120 89A2 AD3C 07D9 62E8 signature.asc Description: Op

Bug#934142: ITP: python-in-toto -- software supply chain security framework

Package: wnpp Severity: wishlist Please see corresponding RFS ticket for details (description, license, URLs): https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931013 -- lukas.puehrin...@nyu.edu PGP fingerprint: 8BA6 9B87 D43B E294 F23E 8120 89A2 AD3C 07D9 62E8 signature.asc Description: Op

Bug#934143: ITP: apt-transport-in-toto -- apt transport method for in-toto supply chain verification

Package: wnpp Severity: wishlist Please see corresponding RFS ticket for details (description, license, URLs): https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931026 -- lukas.puehrin...@nyu.edu PGP fingerprint: 8BA6 9B87 D43B E294 F23E 8120 89A2 AD3C 07D9 62E8 signature.asc Description: Op

Bug#934151: ITP: python-tuf -- plug-and-play library for securing a software updater

Package: wnpp Severity: wishlist Please see corresponding RFS ticket for details (description, license, URLs): https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=931178 -- lukas.puehrin...@nyu.edu PGP fingerprint: 8BA6 9B87 D43B E294 F23E 8120 89A2 AD3C 07D9 62E8 signature.asc Description: Op

Bug#934137: securesystemslib ftbfs in sid

n:/bin" HOME="/nonexistent" dpkg-buildpackage > -us -uc -rfakeroot > dpkg-buildpackage: info: source package python-securesystemslib > dpkg-buildpackage: info: source version 0.11.3-1 > dpkg-buildpackage: info: source distribution unstable > dpkg-buildpackage: i

Bug#934137: securesystemslib ftbfs in sid

Hi Holger, > official builds are never build with DEB_BUILD_OPTIONS=nocheck thus we > need to disable the tests in d/rules with an > > override_dh_auto_test: > : > > block. Thanks for the heads-up. Just applied and pushed your patch [1], re-built successfully, and re-uploaded to mentors [

Bug#934137: securesystemslib ftbfs in sid

Hooray, thanks! I just applied the same "override_dh_auto_test" patch [1] to in-toto, whose tests will also only be available with the next upstream release. The freshly built package is available on mentors [2]. And there are similar build instructions for in-toto, which take into account that t

Bug#1008349: python-securesystemslib: FTBFS: dh_auto_test: error: pybuild --test -i python{version} -p "3.10 3.9" returned exit code 13

I created an issue in the upstream ticket tracker, including a likely explanation and possible solutions: https://github.com/secure-systems-lab/securesystemslib/issues/397 TLDR: The cause of the error seems to be a race conditio

Bug#966972: [in-toto-dev] Bug#966972: in-toto: FTBFS: ValueError: SSH supports only 1024 bit DSA keys

/ On 11.08.2020 4:54 PM, Lukas Puehringer wrote: > FYI: We just bumped upstream to include the fix: > https://github.com/secure-systems-lab/securesystemslib/releases/tag/v0.16.0 > > Will prepare a downstream release later this week. > > > On 06.08.2020 2:21 PM, Holger Levse

Bug#966972: [in-toto-dev] Bug#966972: in-toto: FTBFS: ValueError: SSH supports only 1024 bit DSA keys

Thanks for the report! It looks like a recent update to pyca/cryptography v3.0 causes our test code (only) to break. I just filed an issue upstream, because I am not fully sure if the change was made intentionally: https://github.com/pyca/cryptography/issues/5373 If it was, I will update our test

Bug#966972: [in-toto-dev] Bug#966972: in-toto: FTBFS: ValueError: SSH supports only 1024 bit DSA keys

FYI: https://github.com/secure-systems-lab/securesystemslib/pull/264 fixes the issue upstream. On 04.08.2020 3:11 PM, Lukas Puehringer wrote: > Thanks for the report! > > It looks like a recent update to pyca/cryptography v3.0 causes our test code > (only) to break. I just fi

Bug#966972: [in-toto-dev] Bug#966972: in-toto: FTBFS: ValueError: SSH supports only 1024 bit DSA keys

FYI: We just bumped upstream to include the fix: https://github.com/secure-systems-lab/securesystemslib/releases/tag/v0.16.0 Will prepare a downstream release later this week. On 06.08.2020 2:21 PM, Holger Levsen wrote: > hey Lukas, > > On Thu, Aug 06, 2020 at 02:03:00PM +02