1 |
On Friday, September 16, 2016 09:54:42 PM Duncan wrote: |
2 |
> Kristian Fiskerstrand posted on Fri, 16 Sep 2016 14:58:22 +0200 as |
3 |
> |
4 |
> excerpted: |
5 |
> > On 09/16/2016 02:31 PM, Hanno Böck wrote: |
6 |
> >> media-gfx/skencil is a python-written vector graphics tool. It was once |
7 |
> >> popular before inkscape became the de-facto-standard. It hasn't seen |
8 |
> >> any upstream activity for a decade(!), but surprisingly it still seems |
9 |
> >> to work. |
10 |
> >> |
11 |
> >> I haven't used it for many years myself. |
12 |
> >> |
13 |
> >> There are 4 open bugs in bugzilla. |
14 |
> >> |
15 |
> >> Anyone interested in taking it? (else the usual: will be reassigned to |
16 |
> >> maintainer-needed) |
17 |
> > |
18 |
> > Also sounds like a candidate for treecleaning / moving to an overlay and |
19 |
> > not keeping non-upstream maintained things in tree if nobody want to |
20 |
> > take the maintainer burden of it. |
21 |
> |
22 |
> Why treeclean it, if it still works and can still be built against in- |
23 |
> tree python? |
24 |
> |
25 |
> Sometimes mature packages don't get further maintenance because they |
26 |
> "just work" as they are, and don't _need_ to eventually be bloated to |
27 |
> include email and browsing functionality or whatever. |
28 |
> |
29 |
> Of course if it requires old python and eventually the last supported in- |
30 |
> tree python is being removed, and nobody steps up to update it then, |
31 |
> /then/ it should be removed from the tree as it'll be broken /then/, but |
32 |
> that's not the case now, as Hanno explicitly said it still seems to work. |
33 |
|
34 |
It needs a maintainer. Are you offering? |
35 |
|
36 |
Packages without maintainers anywhere along the line (either local or |
37 |
upstream) risk having security vulnerabilities go unfixed (or even |
38 |
unacknowledged) simply from having nobody who actually cares about the |
39 |
package. Very little "just works", even if it appears to, after a decade or |
40 |
two of little to no modifications or maintenance, if only because hidden |
41 |
assumptions the software makes about its environment cease to hold true. |
42 |
|
43 |
So long as it continues to "just work", the work involved in being a proxy |
44 |
maintainer should be next to nil. If it doesn't continue to just work, then at |
45 |
least you have a better idea about what's going on...you might even find |
46 |
effective ways to deal with the problem, either by fixing the package yourself |
47 |
or providing backpressure on the environment changes that have broken (or |
48 |
threaten to break) it. |
49 |
|
50 |
-- |
51 |
:wq |