Debian 14 Forky is mandating bit-for-bit identical builds to stop supply chain attacks. Discover how this shifts trust from servers to auditable source code.

More details here: https://ostechnix.com/debian-linux-reproducible-builds/

#Debian14 #DebianForky #ReproducibleBuilds #Security #Linux #Packages #SupplyChainSecurity

Debian now requires reproducible builds for the Debian 14 “Forky” cycle, blocking non-reproducible packages from entering or remaining in testing. 🐧
The policy lets developers independently verify binaries against published source code, with 98.29% of architecture-independent packages already reproducing successfully. 🔐

🔗 https://itsfoss.com/news/debian-makes-reproducible-builds-mandatory/

#TechNews #Debian #Linux #OpenSource #Security #FOSS #Privacy #Cybersecurity #Developers #Programming #Software #Technology #Debian14 #Forky #Policy

"As of May 9, 2026, Debian’s migration software now actively blocks packages from migrating into the testing archive if they fail the reproducibility check. This applies both to new packages that cannot be reproduced and to existing packages whose reproducibility has regressed. Debian 14.0 will be the first major Debian release to ship under this hard mandate."
https://pbxscience.com/debian-mandates-reproducible-packages-for-debian-14-forky/

#reproducibility #debian #debian14 #reproduciblebuilds

Debian 14 will only contain reproducible packages

Reproducible builds are a set of rules that apply to software development, including applications and libraries, to create a verifiable path from the source code to the binary code. It allows you to build the library or the application bit-for-bit. Reproducible builds tend to have great features, including, but not limited to:

• Security and trust: Allows third-parties to make sure that the software hasn’t been altered or tampered with.
• Transparency in development: Makes sure that developers’ code always works the same way.
• Resilience against attacks: Allows third-parties to verify the developers’ software to prevent your projects from being compromised.

Half way through the development cycle of the upcoming Debian release expected in 2027, Debian 14 Forky, the Debian release team has made a decision regarding the reproducible builds effort. Over the years with the Reproducible Builds effort that makes sure that packages get built consistently bit-for-bit, the Debian release team has decided that reproducible builds must be satisfied for the Debian packages to be approved.

A new mandate for Debian 14 Forky states that the reproducible packages, which are packages that build consistently and with confidence bit-for-bit, must be shipped. The migration software will reject the package addition or update if said package no longer becomes reproducible.

The Debian release team has also provided a link that allows you to check the package reproducibility status for the upcoming version of Debian via https://reproduce.debian.net/.

Via: Phoronix

SparkyLinux 2026.03 Rolling Ships with Linux 6.19, Latest Calamares Installer

https://fed.brid.gy/r/https://9to5linux.com/sparkylinux-2026-03-rolling-ships-with-linux-6-19-latest-calamares-installer

Al fin, es una característica que andaba esperando desde hace tiempo. Ahora toca que #Debian actualice el programa, pero me temo que no lo veremos hasta #Debian14

Cito textualmente de @muylinux

"KeePassXC estrena soporte para {TIMEOTP} como marcador de posición en Auto-Type, lo que permite introducir automáticamente códigos TOTP basados en tiempo durante el autocompletado."

Facilito el enlace por si a alguien más le interesa.

https://www.muylinux.com/2026/03/10/keepassxc-2-7-12/

#Cita #linux #keepassxc #totp