Vagrant Cascadian  

Verifying #ReproducibleBuilds of packages actually in #Debian ... is not exactly a new thing, but is harder than it ought to be, because you need to rebuild with the exact same packages that the original build was built with, and snapshot.debian.org is less than entirely reliable...

So I tried rebuilding packages recently built on buildd.debian.org and it was reasonably successful.

Long-term we will still need some sort of snapshot-like functionality...

lists.reproducible-builds.org/

1
Purism
Follow

@vagrantc

This is very exciting!
Thanks to everyone working on

We very much need need this!

· Web · 0 · 0 · 2
Sign in to participate in the conversation
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml