node-fetch - Debian Package Tracker

general

source: node-fetch (main)
version: 2.6.1-5
maintainer: Debian Javascript Maintainers (archive) (DMD)
uploaders: Pirate Praveen [DMD]
arch: all
std-ver: 4.5.1
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

stable: 1.7.3-1
testing: 2.6.1-5
unstable: 2.6.1-5

versioned links

1.7.3-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
2.6.1-5: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

node-fetch (1 bugs: 0, 1, 0, 0)

action needed

Problems while searching for a new upstream version high

uscan had problems while searching for a new upstream version:

In debian/watch no matching files for watch line
  https://github.com/bitinn/node-fetch/tags .*/archive/v?([\d\.]+).tar.gz

Created: 2021-03-20 Last update: 2021-04-21 02:01

Multiarch hinter reports 1 issue(s) normal

There are issues with the multiarch metadata for this package.

node-fetch could be marked Multi-Arch: foreign

Created: 2020-10-09 Last update: 2021-04-21 02:02

1 new commit since last upload, is it time to release? normal

vcswatch reports that this package seems to have new commits in its VCS but has not yet updated debian/changelog. You should consider updating the Debian changelog and uploading this new version into the archive.

Here are the relevant commit logs:

commit 5d9a80eff1d334f4116f2140830e06cf508a5825
Author: Yadd <yadd@debian.org>
Date:   Thu Apr 15 08:58:04 2021 +0200

    Fix GitHub tags regex

Created: 2021-04-15 Last update: 2021-04-15 07:36

No known security issue in buster wishlist

There is 1 open security issue in buster.

1 ignored issue:

CVE-2020-15168: node-fetch before versions 2.6.1 and 3.0.0-beta.9 did not honor the size option after following a redirect, which means that when a content size was over the limit, a FetchError would never get thrown and the process would end without failure. For most people, this fix will have a little or no impact. However, if you are relying on node-fetch to gate files above a size, the impact could be significant, for example: If you don't double-check the size of the data after fetch() has completed, your JS thread could get tied up doing work on a large file (DoS) and/or cost you money in computing.

Created: 2021-02-19 Last update: 2021-03-21 19:04

news

[rss feed]

[2021-01-09] node-fetch 2.6.1-5 MIGRATED to testing (Debian testing watch)
[2021-01-06] Accepted node-fetch 2.6.1-5 (source) into unstable (Xavier Guimard)
[2021-01-04] node-fetch 2.6.1-4 MIGRATED to testing (Debian testing watch)
[2021-01-04] node-fetch 2.6.1-4 MIGRATED to testing (Debian testing watch)
[2021-01-02] Accepted node-fetch 2.6.1-4 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2020-11-01] node-fetch 2.6.1-3 MIGRATED to testing (Debian testing watch)
[2020-10-29] Accepted node-fetch 2.6.1-3 (source) into unstable (Xavier Guimard)
[2020-10-14] node-fetch 2.6.1-2 MIGRATED to testing (Debian testing watch)
[2020-10-09] Accepted node-fetch 2.6.1-2 (source) into unstable (Nicolas Mora)
[2020-09-12] Accepted node-fetch 2.6.1-1 (source) into experimental (Nicolas Mora)
[2020-08-30] Accepted node-fetch 2.6.0-1 (source) into experimental (Nicolas Mora)
[2020-02-27] node-fetch 1.7.3-2 MIGRATED to testing (Debian testing watch)
[2020-02-22] Accepted node-fetch 1.7.3-2 (source) into unstable (Xavier Guimard)
[2018-01-14] node-fetch 1.7.3-1 MIGRATED to testing (Debian testing watch)
[2018-01-04] Accepted node-fetch 1.7.3-1 (source all) into unstable, unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)

bugs [bug history graph]

all: 1
RC: 0
I&N: 1
M&W: 0
F&P: 0
patch: 0

links

homepage
lintian
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
other distros
security tracker
screenshots
debci

ubuntu

[Information about Ubuntu for Debian Developers]

version: 2.6.1-5