Path: csiph.com!fu-berlin.de!bofh.it!news.nic.it!robomod From: Thorsten Glaser Newsgroups: linux.debian.maint.java Subject: Re: jtreg7: request to vendor the dependencies Date: Tue, 17 Oct 2023 22:00:01 +0200 Message-ID: References: X-Mailbox-Line: From debian-java-request@lists.debian.org Tue Oct 17 19:51:13 2023 Old-Return-Path: X-Amavis-Spam-Status: No, score=-7.2 tagged_above=-10000 required=5.3 tests=[BAYES_00=-2, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, LDO_WHITELIST=-5, RCVD_IN_DNSWL_NONE=-0.0001] autolearn=ham autolearn_force=no X-Policyd-Weight: NOT_IN_SBL_XBL_SPAMHAUS=-1.5 CL_IP_EQ_HELO_IP=-2 (check from: .tarent. - helo: .mail-wm1-x32e.google. - helo-domain: .google.) FROM/MX_MATCHES_HELO(DOMAIN)=-2; rate: -5.5 X-Gm-Message-State: AOJu0YzljP9q5/EeUWiOpZ5YeRo7eflTVJ8nwqnO0vRejvRkbf0+MCRD XjJvtUig4fbQMDd42vbh7dt0hw== X-Google-SMTP-Source: AGHT+IGtmmKXwhuRrUCz+v62PZlECQB6864odA515IhqueEy/5bwzHk9tWbIuN0TSmgCwhPpH9o7cQ== X-Received: by 2002:a05:6000:ac1:b0:32d:9776:273f with SMTP id di1-20020a0560000ac100b0032d9776273fmr2715212wrb.45.1697572249787; Tue, 17 Oct 2023 12:50:49 -0700 (PDT) Content-Language: de-DE-1901 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: QUOTED-PRINTABLE X-Mailing-List: archive/latest/23395 List-ID: List-URL: List-Archive: https://lists.debian.org/msgid-search/175563e9-a90d-d789-b8ae-a0f5287bb30e@tarent.de Approved: robomod@news.nic.it Lines: 27 Organization: linux.* mail to news gateway Sender: robomod@news.nic.it X-Original-Cc: debian-java@lists.debian.org, tony mancill , openjdk-21@packages.debian.org X-Original-Date: Tue, 17 Oct 2023 21:50:48 +0200 (CEST) X-Original-Message-ID: <175563e9-a90d-d789-b8ae-a0f5287bb30e@tarent.de> X-Original-References: Xref: csiph.com linux.debian.maint.java:12711 On Wed, 18 Oct 2023, Vladimir Petko wrote: >jtreg7 depends on a number of test-related packages (junit4, junit5, >libhamcrest-java) that require transitive dependencies such as picocli >or opentest4j-reporting either introduced (that is not an issue) or >upgraded. Standard answer is that these must be packaged separately. >A new point release of the package in the stable release requires >careful testing and ensuring that there is no impact on reverse >dependencies. Right. Please talk to stable release maintainers and security people and ask them how they=E2=80=99d prefer to have this handled. Do also includ= e Doko (as openjdk-?? maintainer). bye, //mirabilos --=20 Infrastrukturexperte =E2=80=A2 Qvest Digital AG Am Dickobskreuz 10, D-53121 Bonn =E2=80=A2 https://www.qvest-digital.com/ Telephon +49 228 54881-393 =E2=80=A2 Fax: +49 228 54881-235 HRB AG Bonn 18196 =E2=80=A2 USt-ID (VAT): DE274355441 Vorstand: Dr. Stefan Barth, Kai Ebenrett, Boris Esser, Alexander Steeg Vorsitzender Aufsichtsrat: Peter N=C3=B6then