On 2019-05-20, 18:16 GMT, Todd Rme wrote:
Even if we remove them in the %prep section, they are still present in the source rpm, which we are still distributing. In fact the problematic files were never actually packaged, just having them in the source was enough. And we are supposed to use unmodified upstream sources for security reasons.
I am really not sure whether distributing CC-noncomercial licensed documentation in the source package breaks anything (BTW, I hope you filed a bug upstream complaining about it). I am a lawyer by education, but out of the profession for long time, so I am not sure what the proper conclusion is. However, if you feel really uncertain about it, then I am certain that (documented) removing of problematic parts and using modified tarball is perfectly all right. We do it for many packages (and many packages have uncertain tarball).
And these are a source-based wheel, not binary wheels. They doesn't contain any binaries or bytecode, just the normal python sources and some metadata. We are still doing all the building ourselves.
I don't know. I really don't like it, but I guess I cannot stop you. Best, Matěj -- https://matej.ceplovi.cz/blog/, Jabber: mcepl@ceplovi.cz GPG Finger: 3C76 A027 CA45 AD70 98B5 BC1D 7920 5802 880B C9D8 Roses are red; Violets are blue. I'm schizophrenic, And so am I. -- To unsubscribe, e-mail: opensuse-python+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse-python+owner@opensuse.org