diff options
author | Marius Bakke <mbakke@fastmail.com> | 2017-11-19 15:01:00 +0100 |
---|---|---|
committer | Marius Bakke <mbakke@fastmail.com> | 2017-11-19 15:01:00 +0100 |
commit | 2dd12924cf4a30a96262b6d392fcde58c9f10d4b (patch) | |
tree | 3f74f5426ff214a02b8f6652f6516979657a7f98 /doc/contributing.texi | |
parent | 259b4f34ba2eaefeafdb7c9f9eb56ee77f16010c (diff) | |
parent | a93447b89a5b132221072e729d13a3f17391b8c2 (diff) | |
download | patches-2dd12924cf4a30a96262b6d392fcde58c9f10d4b.tar patches-2dd12924cf4a30a96262b6d392fcde58c9f10d4b.tar.gz |
Merge branch 'master' into core-updates
Diffstat (limited to 'doc/contributing.texi')
-rw-r--r-- | doc/contributing.texi | 12 |
1 files changed, 6 insertions, 6 deletions
diff --git a/doc/contributing.texi b/doc/contributing.texi index 1b1875fa0c..1dd3ea8e1d 100644 --- a/doc/contributing.texi +++ b/doc/contributing.texi @@ -309,6 +309,12 @@ please run through this check list: @enumerate @item +If the authors of the packaged software provide a cryptographic +signature for the release tarball, make an effort to verify the +authenticity of the archive. For a detached GPG signature file this +would be done with the @code{gpg --verify} command. + +@item Take some time to provide an adequate synopsis and description for the package. @xref{Synopses and Descriptions}, for some guidelines. @@ -336,12 +342,6 @@ updates for a given software package in a single place and have them affect the whole system---something that bundled copies prevent. @item -If the authors of the packaged software provide a cryptographic -signature for the release tarball, make an effort to verify the -authenticity of the archive. For a detached GPG signature file this -would be done with the @code{gpg --verify} command. - -@item Take a look at the profile reported by @command{guix size} (@pxref{Invoking guix size}). This will allow you to notice references to other packages unwillingly retained. It may also help determine |