GNU bug report logs - #44863
Warning about importing a MELPA package

Package: guix;

Reported by: Zhu Zihao <all_but_last <at> 163.com>

Date: Wed, 25 Nov 2020 09:58:01 UTC

Severity: normal

View this message in rfc822 format

From: Zhu Zihao <all_but_last <at> 163.com>
To: 44863 <at> debbugs.gnu.org
Subject: bug#44863: Warning about importing a MELPA package
Date: Wed, 25 Nov 2020 17:57:08 +0800

[Message part 1 (text/plain, inline)]

ELPA importer supports MELPA[1] currently. But MELPA is a rolling
archive, which does not persist any old version tarball of
package, and harmful for reproducible build.

It's still useful for Guix packager to import package from MELPA to
draft a sketch of Emacs package, but it's not a reliable download
service. We may better warn user don't submit package which download url
belongs to MELPA. Maybe emit warning while executing `guix import elpa -a
melpa XXX`, or writing this rule to manual.

[1]: the stable archive is "MELPA stable", I use term "MELPA" to refer
to the unstable one.

-- 
Retrieve my PGP public key: https://meta.sr.ht/~citreu.pgp

Zihao

[signature.asc (application/pgp-signature, inline)]

This bug report was last modified 4 years and 192 days ago.

Previous Next

GNU bug tracking system
Copyright (C) 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson.

GNU bug report logs - #44863 Warning about importing a MELPA package

GNU bug report logs - #44863
Warning about importing a MELPA package