-
Notifications
You must be signed in to change notification settings - Fork 417
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Remove user specific information from about.json #2239
Conversation
Ooh, don't know about this. I had done this in my hacky approach, but only because I didn't have anywhere canonical to put it. I don't think it's reasonable to suggest that two versions of Anyhow, I had been dreaming of a plugin/feature like: conda-build --export-build-env foo-0.0.0.tar.bz2 > environment.yml Which would indeed use the Better still would be... conda-build --reproduce foo-0.0.0_0.tar.bz2 Which would do the same extraction as above, but then...
The challenging thing in this are the channels. Without a The other thing to do with this would be the One could also imagine checking/generating So at the end of the day, one could imagine a single run of
But now we start getting to some pretty deep stuff, as really what one would want is the ability for other people to sign packages, not just the author, such that an organization could demand that their internal build system had reproduced something claimed in public. |
Hi there, thank you for your contribution! This pull request has been automatically marked as stale because it has not had recent activity. It will be closed automatically if no further activity occurs. If you would like this pull request to remain open please:
NOTE: If this pull request was closed prematurely, please leave a comment. Thanks! |
1 similar comment
Hi there, thank you for your contribution! This pull request has been automatically marked as stale because it has not had recent activity. It will be closed automatically if no further activity occurs. If you would like this pull request to remain open please:
NOTE: If this pull request was closed prematurely, please leave a comment. Thanks! |
In relation to #2140, this PR removes the writing of user specific information to about.json. I spoke with @kalefranz and @abarto and neither conda nor Anaconda.org uses the metadata from about.json. I wasn't sure if it was safe to remove the about.json file completely so I limited the content to package information.