Debian Package Tracker

general

versioned links

1.4.21+ds-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.8.0+ds-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

action needed

Problems while searching for a new upstream version high

uscan had problems while searching for a new upstream version:

In debian/watch no matching files for watch line
  https://github.com/isaacs/npm/tags .*/archive/v?([\d\.]+).tar.gz

Created: 2018-08-17 Last update: 2018-08-20 23:04

lintian reports 12 warnings high

Lintian reports 12 warnings about this package. You should make the package lintian clean getting rid of them.

Created: 2015-08-19 Last update: 2018-08-18 01:46

1 security issue in sid high

There is 1 open security issue in sid.

1 important issue:

CVE-2016-3956: The CLI in npm before 2.15.1 and 3.x before 3.8.3, as used in Node.js 0.10 before 0.10.44, 0.12 before 0.12.13, 4 before 4.4.2, and 5 before 5.10.0, includes bearer tokens with arbitrary requests, which allows remote HTTP servers to obtain sensitive information by reading Authorization headers.

Please fix it.

Created: 2016-07-05 Last update: 2018-08-17 19:52

The package has not entered testing even though the delay is over normal

The package has not entered testing even though the 2-day delay is over. Check why.

Created: 2018-08-19 Last update: 2018-08-20 21:09

The URL(s) for this package had some recent persistent issues low

DUCK reports some issues concerning upstream URLs defined for this package.

Created: 2018-06-14 Last update: 2018-08-20 22:58

1 ignored security issue in jessie low

There is 1 open security issue in jessie.

1 issue skipped by the security teams:

CVE-2016-3956: The CLI in npm before 2.15.1 and 3.x before 3.8.3, as used in Node.js 0.10 before 0.10.44, 0.12 before 0.12.13, 4 before 4.4.2, and 5 before 5.10.0, includes bearer tokens with arbitrary requests, which allows remote HTTP servers to obtain sensitive information by reading Authorization headers.

Please fix it.

Created: 2016-07-05 Last update: 2018-08-17 19:52

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.2.0 instead of 4.1.0).

Created: 2018-04-16 Last update: 2018-08-20 17:15

[2018-08-17] Accepted npm 5.8.0+ds-2 (source) into unstable (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2018-07-18] Accepted npm 5.8.0+ds-1 (source all) into experimental (Pirate Praveen) (signed by: Praveen Arimbrathodiyil)
[2017-04-23] npm REMOVED from testing (Debian testing watch)
[2014-08-11] npm 1.4.21+ds-2 MIGRATED to testing (Britney)
[2014-08-05] Accepted npm 1.4.21+ds-2 (source all) into unstable (Jérémy Lal)
[2014-08-03] npm 1.4.21+ds-1 MIGRATED to testing (Britney)
[2014-07-29] Accepted npm 1.4.21+ds-1 (source all) into unstable (Jérémy Lal)
[2014-03-06] npm 1.4.4+ds-1 MIGRATED to testing (Debian testing watch)
[2014-03-01] Accepted npm 1.4.4+ds-1 (source all) (Jérémy Lal)
[2013-12-30] npm 1.3.10~dfsg-1 MIGRATED to testing (Debian testing watch)
[2013-12-29] npm REMOVED from testing (Debian testing watch)
[2013-09-29] npm 1.3.10~dfsg-1 MIGRATED to testing (Debian testing watch)
[2013-09-08] Accepted npm 1.3.10~dfsg-1 (source all) (Jérémy Lal)
[2013-04-29] Accepted npm 1.2.18~dfsg-3 (source all) (Jérémy Lal)
[2013-04-28] Accepted npm 1.2.18~dfsg-2 (source all) (Jérémy Lal)
[2013-04-28] Accepted npm 1.2.18~dfsg-1 (source all) (Jérémy Lal)
[2012-09-21] Accepted npm 1.1.4~dfsg-2 (source all) (Jonas Smedegaard)
[2012-04-07] Accepted npm 1.1.4~dfsg-1 (source all) (Jonas Smedegaard)
[2011-04-16] Accepted npm 0.2.19-1 (source all) (Jonas Smedegaard)
[2011-03-30] Accepted npm 0.2.16-1 (source all) (Jonas Smedegaard)

bugs [bug history graph]

links

ubuntu