[Git][reproducible-builds/reproducible-website][master] 2021-07: -4 typos
Bernhard M. Wiedemann (@bmwiedemann-guest)
gitlab at salsa.debian.org
Thu Aug 5 03:21:06 UTC 2021
Bernhard M. Wiedemann pushed to branch master at Reproducible Builds / reproducible-website
Commits:
aef1f1fa by Bernhard M. Wiedemann at 2021-08-05T05:20:51+02:00
2021-07: -4 typos
- - - - -
1 changed file:
- _reports/2021-07.md
Changes:
=====================================
_reports/2021-07.md
=====================================
@@ -14,7 +14,7 @@ draft: true
[![]({{ "/images/reports/2021-07/lastmilepy.png#right" | relative_url }})](https://2021.esec-fse.org/details/fse-2021-papers/61/LastPyMile-Identifying-the-Discrepancy-between-Sources-and-Packages)
-On Friday 27th August, WhoDuc Ly Vu, Fabio Massacci, Ivan Pashchenko, Henrik Plate and Antonino Sabetta will present their recent paper at the [ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering](https://2021.esec-fse.org/) (ESEC/FSE) confernence. Titled [**LastPyMile: Identifying the Discrepancy between Sources and Packages**](https://2021.esec-fse.org/details/fse-2021-papers/61/LastPyMile-Identifying-the-Discrepancy-between-Sources-and-Packages), its abstract mentions that:
+On Friday 27th August, Duc Ly Vu, Fabio Massacci, Ivan Pashchenko, Henrik Plate and Antonino Sabetta will present their recent paper at the [ACM Joint European Software Engineering Conference and Symposium on the Foundations of Software Engineering](https://2021.esec-fse.org/) (ESEC/FSE) conference. Titled [**LastPyMile: Identifying the Discrepancy between Sources and Packages**](https://2021.esec-fse.org/details/fse-2021-papers/61/LastPyMile-Identifying-the-Discrepancy-between-Sources-and-Packages), its abstract mentions that:
> Our empirical assessment of 2,438 popular packages in [PyPI](https://pypi.org/) with an analysis of around 10M lines of code shows several differences in the wild: modifications cannot be just attributed to malicious injections. Yet, scanning again all and whole ‘most likely good but modified' packages is hard to manage for FOSS downstream users. We propose a methodology, LastPyMile, for identifying the differences between build artifacts of software packages and the respective source code repository. We show how it can be used to extend current package scanning practices for malware injection (which only covers less than 1% of the code of deployed packages). ([more](https://2021.esec-fse.org/details/fse-2021-papers/61/LastPyMile-identifying-the-discrepancy-between-sources-and-packages))
@@ -144,7 +144,7 @@ The Reproducible Builds project detects, dissects and attempts to fix as many cu
* Richard Purdie:
- * [`python-setuptools`](https://github.com/pypa/setuptools): Sort the output of `glob.glob` as it inherits the nondetermistic ordering of `os.listdir` and the underlying filesystem. [[...](https://github.com/pypa/setuptools/commit/5a0404fa3875a069f7a6436f508116e852909cf2)]
+ * [`python-setuptools`](https://github.com/pypa/setuptools): Sort the output of `glob.glob` as it inherits the nondeterministic ordering of `os.listdir` and the underlying filesystem. [[...](https://github.com/pypa/setuptools/commit/5a0404fa3875a069f7a6436f508116e852909cf2)]
* Vagrant Cascadian:
@@ -181,7 +181,7 @@ Reproducible Builds runs a [Jenkins](https://jenkins.io/)-based testing framewor
* Holger Levsen:
* Create a [new view of Debian Live jobs](https://jenkins.debian.net/view/live/) maintained by Roland Clobus.
- * Randomize the start time of the Debian Live image bulding. [[...](https://salsa.debian.org/qa/jenkins.debian.net/commit/f23bdc5f)]
+ * Randomize the start time of the Debian Live image building. [[...](https://salsa.debian.org/qa/jenkins.debian.net/commit/f23bdc5f)]
* Only run the Debian 'rebuilder prototype' on demand; it has mostly served it's purpose. [[...](https://salsa.debian.org/qa/jenkins.debian.net/commit/fbfabdc3)][[...](https://salsa.debian.org/qa/jenkins.debian.net/commit/57494ca1)]
* Detect [*diffoscope*](https://diffoscope.org/) failures in the health check. [[...](https://salsa.debian.org/qa/jenkins.debian.net/commit/d0d9293d)][[...](https://salsa.debian.org/qa/jenkins.debian.net/commit/b6bd74aa)]
* Build packages with less parallelism on the `i386` architecture to reduce load. [[...](https://salsa.debian.org/qa/jenkins.debian.net/commit/4fa74bde)][[...](https://salsa.debian.org/qa/jenkins.debian.net/commit/be7a86fd)]
View it on GitLab: https://salsa.debian.org/reproducible-builds/reproducible-website/-/commit/aef1f1fa3661b4fadb6a549c144b06d5176981cd
--
View it on GitLab: https://salsa.debian.org/reproducible-builds/reproducible-website/-/commit/aef1f1fa3661b4fadb6a549c144b06d5176981cd
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.reproducible-builds.org/pipermail/rb-commits/attachments/20210805/b03e630a/attachment.htm>
More information about the rb-commits
mailing list