Spec URL: https://www.Rombobjörn.se/packages/gpgverify-2.1-1/gpgverify.spec SRPM URL: https://www.Rombobjörn.se/packages/gpgverify-2.1-1/gpgverify-2.1-1.fc43.src.rpm Description: GPGverify is a wrapper around GnuPG's gpgv. It verifies a file against an OpenPGP signature and one or more keyrings. Rather than assuming manual use by a knowledgeable user, GPGverify is designed to be easy to use safely in a script. It avoids various unsafe ways of using gpgv that could make a script vulnerable. Fedora Account System Username: rombobeorn The package above is for Fedora 43 and later. In Fedora 41 and 42 I'll use this spec file: https://www.Rombobjörn.se/packages/gpgverify-1-1/gpgverify.spec This one is a metapackage that pulls in gnupg2. It will allow spec files to require "gpgverify" in Fedora 41 and 42 too, so the Packaging Guidelines can be updated without waiting a year.
Copr build: https://copr.fedorainfracloud.org/coprs/build/8907820 (succeeded) Review template: https://download.copr.fedorainfracloud.org/results/@fedora-review/fedora-review-2359878-gpgverify/fedora-rawhide-x86_64/08907820-gpgverify/fedora-review/review.txt Please take a look if any issues were found. --- This comment was created by the fedora-review-service https://github.com/FrostyX/fedora-review-service If you want to trigger a new Copr build, add a comment containing new Spec and SRPM URLs or [fedora-review-service-build] string.
Neal Gompa asked to be pinged.
Taking this for review.
Spec review: > License: Boehm-GC This is missing a license file in the sources that is installed along with the package. Can you please add one?
I thought it would be enough to have the license header in both files. If I make a separate license file, what do I write for a copyright notice in that file? SPDX requires the exact words "the above copyright notice", so the license file needs to contain some copyright notice for that phrase to refer to. Should I sort of merge the copyright notices of the script and the macro?
Basically a file with a copy of the notice you have in the header is sufficient.
License file added. https://www.Rombobjörn.se/packages/gpgverify-2.1-2/gpgverify.spec https://www.Rombobjörn.se/packages/gpgverify-2.1-2/gpgverify-2.1-2.fc43.src.rpm
Created attachment 2088748 [details] The .spec file difference from Copr build 8907820 to 9006683
Copr build: https://copr.fedorainfracloud.org/coprs/build/9006683 (succeeded) Review template: https://download.copr.fedorainfracloud.org/results/@fedora-review/fedora-review-2359878-gpgverify/fedora-rawhide-x86_64/09006683-gpgverify/fedora-review/review.txt Please take a look if any issues were found. --- This comment was created by the fedora-review-service https://github.com/FrostyX/fedora-review-service If you want to trigger a new Copr build, add a comment containing new Spec and SRPM URLs or [fedora-review-service-build] string.
Review notes: * Package follows Fedora packaging guidelines * Package licensing is correct and license data is installed * Package builds and installs * No serious issues from rpmlint PACKAGE APPROVED.
The Pagure repository was created at https://src.fedoraproject.org/rpms/gpgverify
Built, tested and submitted for Rawhide. Thanks for the review.