Comment 9 for bug 2003668

I just uploaded the updates to https://launchpad.net/~aittner/+archive/ubuntu/lp2003668-test/+packages

The new watchfile was a lot trickier than I expected, trying to get the releases from the API failed after a rate limit was reached, so I reverted to reading the list of tags and trying to find a matching release tarball (by tag name) and its signature. Seems convoluted, but works:

opts="pgpsigurlmangle=s/$/.asc/,\
filenamemangle=s#v@ANY_VERSION@\.tar\.gz#@PACKAGE@-$1.tar.gz#,\
oversionmangle=s#v@ANY_VERSION@#$1#,\
downloadurlmangle=s#archive/refs/tags/v(.*)\.tar\.gz#releases/download/v$1/@PACKAGE@-$1\.tar\.gz#" \
https://github.com/opencryptoki/@PACKAGE@/tags \
https://github.com/opencryptoki/@PACKAGE@/archive/refs/tags/(.*)\.tar\.gz

Should we keep it?