Open pauldotknopf opened 4 years ago
i like this approach! coming from the web ecosystem, i like the familiarity of having something that looks like package.json
and package-lock.json
/ yarn.lock
, which explicitly shows which version of the library / package in use.
Thanks.
Yeah, the fixed versions are great. I'd like to add the ability to report upstream changes (including changelog). This way, my customers can have a fully detailed report of updates and security patches that are available for a specific build.
Just discovered this. Is it production ready? Is it installable via apt?
I'm currently using brickstrap
which is a shell script that invokes multistrap
to build a rootfs for an embedded system.
I cant' do repeatable builds of of older releases. This apt-tool
seems to solve that problem, but is it production ready, mature, active, etc ???
I use it daily for a few projects at work.
I'd recommend to use it if you are interested.
https://pknopf.com/post/2019-11-26-announcing-apt-tool-an-alternative-to-debootstrap-and-multistrap-for-deterministic-and-predictable-root-filesystems/