Status of packages

[grarpamp]

>> It's nice to see something like redports. It can be helpful to those using
>> ports to diagnose their local builds against the output of a formal
>> sandbox
>> service for the project. It would be cool if the logs, build hiers and
>> packages
>> from such a buildbot were accessible. They'd obviously always be in flux
>> but
>> still useful to see.

> Redports is very bad for providing packages because of all the frequent
> changes and the "chaotic nature" of such a system. Additionally the security
> considerations made clear that redports should never provide any binary data
> to users to minimize risk in case of a potential security incident.

'formal/project/service' and 'flux' were attempts at covering this. Another
partial example might be pointyhat, the logs are viewable, but not the
output file trees.
The 'security' aspect would just seem whether the builds come
from the main repo and are built in a pretty automated sandbox, or
from joe's working tree in their own slush account.