Debian-news is about one simple thing - news about Debian GNU/Linux and the top free distributions based on Debian GNU/Linux.


Misc Developer News (#34)

In this issue:
+ Email notifications for git commits on
+ now exports project meta-data as RDF (using DOAP/ADMS.SW)
+ Animate the Debian microblogging accounts!
+ Cryptographic verification of upstream packages
+ State of the debian-keyring

The news are collected on
Please contribute short news about your work/plans/subproject.

Email notifications for git commits on

Many projects rely on the git-commit-notice[1] script provided on to send mail notifications of the activity of the git
repositories hosted there. Up to now, this script was based on (a very
old copy of) the “post-receive-email” contrib script from Git upstream. I
recently updated it and it’s now based on git-multimail[2] which
generates more useful mails (with better subjects, with commit ordering
per push, with proper support of merge, etc.). I have tweaked the script
to auto-migrate the old git configuration settings so most of you
shouldn’t have anything to do but you might want to review/tweak the
generated configuration (multimailhook.* git config settings) and drop
the old one (hooks.* git config settings).

— Raphaël Hertzog

[2] now exports project meta-data as RDF (using DOAP/ADMS.SW)

The forge now runs the ADMS.SW FusionForge plugin,
which publishes projects meta-data as RDF / Linked Data. Every project’s
homepage is then available
as RDF for harvesting robots (using proper content-type negotiation, for
instance : $ curl -k -H “Accept: text/turtle” The two main ontologies
used are DOAP[3] and ADMS.SW[4], rendering such meta-data compatible with
other project indexes (such as meta-data published by the PTS[5]). Note
that due to the big number of hosted projects on Alioth (950+) some
package indexes can’t be exported as RDF yet. More details in ADMS.SW
plugin for FusionForge deployed on Alioth[6].

— Olivier Berger


Animate the Debian microblogging accounts!

The Debian publicity team[7] is seeking help to re-animate the Debian
microblogging accounts. If you or your team are are looking for help,
working on something, did something interesting, are holding a Debian
related event or have something short and Debian-related to say, please
propose[8] a short message on the team IRC channel. We also welcome folks
who want to watch Debian IRC/lists/forums/planets and propose short
messages. We will use[9] for link shortening. Messages will be
posted to identica[10] and in the future possibly propagated to other
microblogging systems and social networks. Help us tell the world about
the Debian community!

— Paul Wise


Cryptographic verification of upstream packages

As of devscripts 2.13.3, uscan now supports verifying cryptographic
signatures on upstream source via the pgpsigurlmangle option in
debian/watch. See uscan(1) for details and examples. If your upstream
provides cryptographic signatures, set up your workflow to verify them
automatically! If your upstream doesn’t provide cryptographic signatures,
nag them until they start doing so! :)


State of the debian-keyring

Were keyring-maint to drop all embarrassingly-weak keys from the keyring,
would the web of trust fall apart? Over 62% of the primary keys in the
Debian keyring on 20131213 were only 1024 bits large. Over 72% of UIDs
and user attributes were signed with a digest algorithm weaker than
SHA-2. See more statistics here[11].


————-[12] is a new service that runs test suites for all packages
uploaded to unstable. is powered up by a tool called debci,
which will be uploaded to the official Archive soon[13]. It’s still work
in progress, so a test suite failure there might be due to a problem with
the platform. When it comes to a production-ready state, it will be
properly announced on the debian-debian-announce mailing list. If you
want to help, the debci git repository has a TODO list[14].

— Antonio Terceiro



One Response to “Misc Developer News (#34)” »

  1. Pingback by Misc Developer News (#34) | Debian InfoDebian Info - Just another James n site — January 27, 2014 @ 3:40 pm

    […] Misc Developer News (#34) […]

RSS feed for comments on this post.

Leave a comment

Leave a Reply

Your email address will not be published. Required fields are marked *


Debian-News is not related to the Debian Project.
All logos and trademarks on this site are property of their respective owners.