[Dev] binary dependencies and blacklisting discussion (Was: repo redirector modificatoins)

bill-auger bill-auger at peers.community
Tue Jun 11 19:31:29 GMT 2019

On Tue, 11 Jun 2019 20:45:05 +0200 Andreas wrote:
> I think many of the java packages that build with maven could
> fall into this category... It's a bit of a mess, last time I
> checked.

also, pretty much anything golang or javascript, and quite
commonly, python - these are not isolated cases anymore - this
seems to be a trend that is increasing in popularity; so there
should be a consensus on how to handle such packages generally
- lukeshu suggests that it doesnt require much discussion;
because it is a consequence of the FSDG for the distro to be
self-hostable, and other reasons such as GPL CCS compliance

On Tue, 11 Jun 2019 20:45:05 +0200 Andreas wrote:
> Instead of simply
> removing them from the repositories, we could package a stub,
> that is just empty and has an .inistall script
> That way we could more liberally start blacklisting things,
> and get immediate feedback from the community. Might even be
> able to automate parts of that process.

that would surely ease the issue while deflecting any accusations
that we are too trigger-happy

it does assume though, that most users use pacman in a shell and
not a GUI - freemor and i have discussed similar modifications
(on IRC), regarding a proposed "pac-rollback" feature, that would
need to be implemented in tandem with GUI representations in
octopi in order to cover all users

More information about the Dev mailing list