Package Details: php-pear 1:1.10.12-2

Git Clone URL: https://aur.archlinux.org/php-pear.git (read-only)
Package Base: php-pear
Description: PHP Extension and Application Repository
Upstream URL: https://pear.php.net/
Licenses: PHP
Submitter: Pierre
Maintainer: Pierre
Last Packager: Pierre
Votes: 35
Popularity: 0.019043
First Submitted: 2016-01-03 12:32
Last Updated: 2019-02-14 13:32

Latest Comments

1 2 3 4 Next › Last »

francoism90 commented on 2019-04-22 17:22

Could you please update this package? v1.10.15 is released.

amish commented on 2019-04-02 04:05

If you go to github https://github.com/pear/pearweb_phars/releases latest version released is 1.10.12

But if you go to official website https://pear.php.net/package/pearweb_phars/ latest release is 1.10.14.

Even on main page https://pear.php.net/ on right side under recent releases it shows 1.10.14.

Not sure if pear people have dropped or forgotten to do releases on github.

EDIT: just realized that on github .. just above 1.10.12 release... 2 more versions are hidden under "Show 2 newer tags". Thats weird.

Latest commit on github is also almost 3 weeks back.

bugsmanagement commented on 2019-03-23 04:35

unknown public key 72A321BAC245F175 One or more PGP signatures could not be verified!

Means you need to import the GPG key into your keyring. Eg, search for it on keyservers and verify the fingerprint with the owner of the file.

EricT commented on 2019-03-20 08:07

Hello,

==> Making package: php-pear 1:1.10.12-2 (Wed Mar 20 09:04:44 2019)

==> Checking runtime dependencies...

==> Checking buildtime dependencies...

==> Retrieving sources...

-> Downloading install-pear-nozlib-1.10.12.phar... ... -> Downloading install-pear-nozlib-1.10.12.phar.sig... ...

==> Validating source files with sha256sums...

install-pear-nozlib-1.10.12.phar ... Passed

install-pear-nozlib-1.10.12.phar.sig ... Skipped

==> Verifying source file signatures with gpg...

install-pear-nozlib-1.10.12.phar ... FAILED (unknown public key 72A321BAC245F175)

==> ERROR: One or more PGP signatures could not be verified!

==> ERROR: Makepkg was unable to build php-pear.

Same again

heapifyman commented on 2019-02-14 12:48

Verion 1:1.10.12-1 fails to build. Incorrect SHASUM of "install-pear-nozlib.phar"?

Erstelle php-pear... ==> Erstelle Paket: php-pear 1:1.10.12-1 (Do 14 Feb 2019 13:34:01 CET) ==> Prüfe Laufzeit-Abhängigkeiten... ==> Prüfe Buildtime-Abhängigkeiten... ==> Empfange Quellen... -> install-pear-nozlib.phar gefunden -> install-pear-nozlib.phar.sig gefunden ==> Überprüfe source Dateien mit sha256sums... install-pear-nozlib.phar ... FEHLGESCHLAGEN install-pear-nozlib.phar.sig ... Übersprungen ==> FEHLER: Eine oder mehrere Dateien überstanden nicht die Gültigkeits-Prüfung!

Pierre commented on 2019-01-24 17:19

Good news, I just got confirmation that the AUR package did not fetch the tainted PEAR installer. See https://mobile.twitter.com/pear/status/1088484966898585601

amish commented on 2019-01-24 04:27

As per these links nozlib file was NOT "harmed" https://mobile.twitter.com/pear/status/1088195072158547968 https://mobile.twitter.com/co3k/status/1087178191070875648

Since php-pear AUR package used install-pear-nozlib.phar "hopefully" installing this did not do anything malicious.

stutz commented on 2019-01-23 09:32

according to the wiki this package should provide pecl as well, it doesn't though.

kmvan commented on 2019-01-23 05:47

Cloning php-pear build files... Failed to prepare transaction: target not found: php-pear

amish commented on 2019-01-21 05:21

Correct way to download a github release is: source=("https://github.com/pear/pearweb_phars/archive/v${pkgver}.tar.gz")

and then: package() { ... php -n ${srcdir}/pearweb_phars-${pkgver}/install-pear-nozlib.phar \ ... }

This avoids git in makedepends and unncessary git based download.

And you wont have to change "commit" number everytime a new pear package is released.