Letter P

python-summershum - A fedmsg consumer that extracts and stores hashes of source files

Website: http://pypi.python.org/pypi/summershum
License: GPLv2+
Vendor: Fedora Project
Description:
A fedmsg consumer that extracts and stores hashes of source files.

summershum is composed of two components:

- A fedmsg consumer plugin that listens for
  ``org.fedoraproject.prod.git.lookaside.new`` messages.  Whenever a
  contributor uploads a new source tarball to the lookaside cache,
  summershum will download that tarball, unpack it, and calculate the
  sha1 sum of every file in the tarball.  Those hashes are then stored in
  a database to be queried later.
- A cli tool ``summershum-cli`` that queries datagrepper for the fedmsg
  history.  It then crawls through old lookaside messages to fill in data where
  it was missed.

With the summershum database, we can then make some interesting queries
in short time:

- how many files have this hash sum in all of fedora?  and for which
  packages ?
- we can easily find what is bundling what and generate a programatic list
- we could check the db in taskotron tests
- we could check to see how many packages include the full GPL license
- how many packages have that license but with the old FSF address

Packages

python-summershum-0.1.4-1.el7.noarch [24 KiB] Changelog by Ralph Bean (2014-02-21):
- Latest upstream with bugfixes for symlinks, non-archives, and spamminess.

Listing created by Repoview-0.6.6-4.el7