node-ajv - Debian Package Tracker

general

source: node-ajv (main)
version: 6.12.6-2
maintainer: Debian Javascript Maintainers (archive) (DMD)
uploaders: Pirate Praveen [DMD]
arch: all
std-ver: 4.5.0
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-bpo: 5.0.0-1~bpo9+1
oldstable: 5.0.0-1
old-bpo: 6.10.2-1~bpo10+1
stable: 6.12.6-2
testing: 6.12.6-2
unstable: 6.12.6-2

versioned links

5.0.0-1~bpo9+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.0.0-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.10.2-1~bpo10+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
6.12.6-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

node-ajv

action needed

Problems while searching for a new upstream version high

uscan had problems while searching for a new upstream version:

In debian/watch no matching files for watch line
  https://github.com/epoberezkin/ajv/tags .*/archive/v?([\d\.]+).tar.gz debian

Created: 2021-03-21 Last update: 2021-09-28 15:03

Fails to build during reproducibility testing normal

A package building reproducibly enables third parties to verify that the source matches the distributed binaries. It has been identified that this source package produced different results, failed to build or had other issues in a test environment. Please read about how to improve the situation!

Created: 2021-09-12 Last update: 2021-09-28 14:35

version in VCS is newer than in repository, is it time to upload? normal

vcswatch reports that this package seems to have a new changelog entry (version 6.12.6-3, distribution UNRELEASED) and new commits in its VCS. You should consider whether it's time to make an upload.

Here are the relevant commit messages:

commit e208d2c10f7f023684abae8356efcc9198c8dfc4
Author: Yadd <yadd@debian.org>
Date:   Thu Aug 19 11:25:12 2021 +0200

    Fix GitHub tags regex

commit 5853aab58d0d98d2299fad6a81c36f6b3ff7f9af
Author: Yadd <yadd@debian.org>
Date:   Thu Aug 19 11:25:11 2021 +0200

    Declare compliance with policy 4.6.0

commit 8693c1cb5dc5558ce9bc132e2257ac2ce9e89236
Author: Xavier Guimard <yadd@debian.org>
Date:   Mon Dec 7 21:11:41 2020 +0100

    Update d/ch

commit 2294c74d58d3057c8d9393909634609dc54f5583
Author: Xavier Guimard <yadd@debian.org>
Date:   Mon Dec 7 21:10:45 2020 +0100

    Add ctype=nodejs to component(s)

commit 3981618675c339befd3b8f7331f0d7358fa6bfbd
Author: Xavier Guimard <yadd@debian.org>
Date:   Mon Dec 7 21:10:45 2020 +0100

    Modernize debian/watch

commit 7966ca323840f149af6fcc27a28ef3892a20f39d
Author: Xavier Guimard <yadd@debian.org>
Date:   Mon Dec 7 21:10:45 2020 +0100

    Declare compliance with policy 4.5.1

Created: 2020-12-07 Last update: 2021-09-19 20:35

1 low-priority security issue in buster low

There is 1 open security issue in buster.

1 issue left for the package maintainer to handle:

CVE-2020-15366: (needs triaging) An issue was discovered in ajv.validate() in Ajv (aka Another JSON Schema Validator) 6.12.2. A carefully crafted JSON schema could be provided that allows execution of other code by prototype pollution. (While untrusted schemas are recommended against, the worst case of an untrusted schema should be a denial of service, not execution of code.)

You can find information about how to handle this issue in the security team's documentation.

Created: 2021-02-19 Last update: 2021-08-15 00:00

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.6.0 instead of 4.5.0).

Created: 2020-11-17 Last update: 2021-08-18 14:03

news

[rss feed]

[2020-10-19] node-ajv 6.12.6-2 MIGRATED to testing (Debian testing watch)
[2020-10-16] Accepted node-ajv 6.12.6-2 (source) into unstable (Xavier Guimard)
[2020-10-12] Accepted node-ajv 6.12.6-1 (source) into unstable (Xavier Guimard)
[2020-08-27] node-ajv 6.12.4-1 MIGRATED to testing (Debian testing watch)
[2020-08-21] Accepted node-ajv 6.12.4-1 (source) into unstable (Xavier Guimard)
[2019-08-12] Accepted node-ajv 6.10.2-1~bpo10+1 (source all) into buster-backports, buster-backports (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2019-08-10] node-ajv 6.10.2-1 MIGRATED to testing (Debian testing watch)
[2019-08-08] Accepted node-ajv 6.10.2-1 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2019-08-08] node-ajv 6.10.0-5 MIGRATED to testing (Debian testing watch)
[2019-08-05] Accepted node-ajv 6.10.0-5 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2019-08-05] Accepted node-ajv 6.10.0-4 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2019-08-04] Accepted node-ajv 6.10.0-3 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2019-06-17] Accepted node-ajv 6.10.0-2 (source) into experimental (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2019-06-17] Accepted node-ajv 6.10.0-1 (source) into experimental (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2018-09-16] Accepted node-ajv 5.0.0-1~bpo9+1 (source all) into stretch-backports, stretch-backports (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2017-06-20] node-ajv 5.0.0-1 MIGRATED to testing (Debian testing watch)
[2017-05-11] Accepted node-ajv 5.0.0-1 (source all) into unstable, unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)

bugs [bug history graph]

all: 0

links

homepage
lintian
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 6.12.6-2