/usr/share/dupload/debian-security-auth is in dupload 2.9.1ubuntu1.
This file is owned by root:root, with mode 0o755.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 | #!/bin/sh
#
# Copyright © 2017 Guillem Jover <guillem@debian.org>
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program. If not, see <https://www.gnu.org/licenses/>.
#
changes="$1"
set -e
cat <<'WARN'
Warning: Do NOT upload packages to the security upload queue
(oldstable-security, stable-security, etc.) without prior authorization
from the Debian security team. For more information, please read:
<https://www.debian.org/doc/developers-reference/pkgs.html#bug-security>
If you have been authorized, you can either disable this hook, or reply to
the following prompt with the exact text presented within parenthesis.
WARN
auth='Yes, I am authorized'
read -p "Are you authorized to upload ($auth)? " prompt
if [ "$prompt" = "$auth" ]; then
echo "Authorized, proceeding with the upload."
echo
else
echo "Not authorized, aborting the upload." >&2
echo
exit 1
fi
# Chain the GnuPG check, so that we can override the default global hook.
/usr/share/dupload/gpg-check "$changes"
|