[Pkg-javascript-devel] Bug#927254: Bug#927254: libjs-vue-router: ships node module instead of browser one
Le 17/04/2019 à 00:44, Dmitry Bogatov a écrit : > > Package: libjs-vue-router > Version: 3.0.2+ds-1 > Severity: normal > > Dear Maintainer, > > I am working on packaging Laminar CI system, and libjs-vue-router is one > of its dependencies. Upstream build system of Laminar downloads its > dependencies from web, but to comply with Policy, I patched it to use > local files. Unfortunately, it did not work. > > Upstream author of Laminar (in CC) kindly provided following information: > > OK this is a problem. It looks like the libjs-vue-router package is not > really a pure javascript package but actually a node.js one (probably > should be named node-vue-router). It even lists nodejs in its dependencies: > https://packages.debian.org/sid/libjs-vue-router > > I tried all the variations under /usr/share/javascript/vue-router, all fail > in some variation of the same issue. I don't know how it worked for me last > time, probably I made a mistake and accidentally used the "browser" > vue-router js file. > > If you use the latest "browser" version of vue-router, available here: > https://unpkg.com/vue-router@3.0.3/dist/vue-router.js and linked from their > installation page: > https://router.vuejs.org/installation.html#direct-download-cdn then it > works. So I think what should happen, at least ideally, is that the > existing libjs-vue-router package should be renamed node-vue-router (and it > should not symlink from /usr/share/javascript/vue-router to > ../../lib/nodejs/vue-router/dist, and it should depend on node-vue not > libjs-vue), and a new package named libjs-vue-router should be created > containing the "browser" version. This would seem to be consistent with > Debian Javascript packaging as I understand it > > I have no expertise to comment on this, but can you please consider this > argument? Provided files are not node-* ones but recompiled using rollup. Could you check if Laminar works well with https://unpkg.com/vue-router@3.0.2/dist/vue-router.js file ? (same version than in Buster) -- Pkg-javascript-devel mailing list Pkg-javascript-devel@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-javascript-devel
[Pkg-javascript-devel] Processed: Bug #924378 in vue-router.js marked as pending
Processing control commands: > tag -1 pending Bug #924378 [src:vue-router.js] vue-router.js: please make the build reproducible Added tag(s) pending. -- 924378: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=924378 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- Pkg-javascript-devel mailing list Pkg-javascript-devel@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-javascript-devel
Re: [Pkg-javascript-devel] jquery_3.3.1~dfsg-2_sourceonly.changes ACCEPTED into unstable
Le 18/04/2019 à 23:04, Debian FTP Masters a écrit : > > Accepted: > > Format: 1.8 > Date: Thu, 18 Apr 2019 22:34:14 +0200 > Source: jquery > Architecture: source > Version: 3.3.1~dfsg-2 > Distribution: unstable > Urgency: medium > Maintainer: Debian Javascript Maintainers > > Changed-By: Xavier Guimard > Closes: 927385 > Changes: > jquery (3.3.1~dfsg-2) unstable; urgency=medium > . >* Team upload >* Add patch to prevent Object.prototype pollution (Closes: #927385) >* Upgrade links to https > > Thank you for your contribution to Debian. debdiff sent also for stretch-security (branch stretch-security) -- Pkg-javascript-devel mailing list Pkg-javascript-devel@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-javascript-devel
[Pkg-javascript-devel] Bug#927385: marked as done (jquery: Prototype Pollution vulnerability)
Your message dated Thu, 18 Apr 2019 21:04:26 + with message-id and subject line Bug#927385: fixed in jquery 3.3.1~dfsg-2 has caused the Debian Bug report #927385, regarding jquery: Prototype Pollution vulnerability to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 927385: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927385 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Source: jquery Version: 3.3.1~dfsg-1 Severity: grave Tags: patch security upstream fixed-upstream Justification: user security hole Control: found -1 3.1.1-2 Hi A prototype pollution vulnerability (so far no CVE) has been fixed in jQuery 3.4.0: https://blog.jquery.com/2019/04/10/jquery-3-4-0-released/ Patches: https://github.com/DanielRuf/snyk-js-jquery-174006?files=1 https://snyk.io/vuln/SNYK-JS-JQUERY-174006 Regards, Salvatore --- End Message --- --- Begin Message --- Source: jquery Source-Version: 3.3.1~dfsg-2 We believe that the bug you reported is fixed in the latest version of jquery, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 927...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Xavier Guimard (supplier of updated jquery package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 18 Apr 2019 22:34:14 +0200 Source: jquery Architecture: source Version: 3.3.1~dfsg-2 Distribution: unstable Urgency: medium Maintainer: Debian Javascript Maintainers Changed-By: Xavier Guimard Closes: 927385 Changes: jquery (3.3.1~dfsg-2) unstable; urgency=medium . * Team upload * Add patch to prevent Object.prototype pollution (Closes: #927385) * Upgrade links to https Checksums-Sha1: c68b8f4dfd48b0fff00894739d377bf370d45127 2070 jquery_3.3.1~dfsg-2.dsc 51bd8d5330e761a474a2f5f1741212ec5ffacd5b 12428 jquery_3.3.1~dfsg-2.debian.tar.xz Checksums-Sha256: 3f053bce209434e572da87b1fa74c0834ec9db4e5af90cb00ea867ec50572c0e 2070 jquery_3.3.1~dfsg-2.dsc 0ff3f35dff884577a0e3b0d285e2b85955b0643dc25a3765b49f64bcbc0dfb68 12428 jquery_3.3.1~dfsg-2.debian.tar.xz Files: 6a9867fd4f75fe097723420c6fa65892 2070 javascript optional jquery_3.3.1~dfsg-2.dsc b09585e6b6e360839a18613da850f93e 12428 javascript optional jquery_3.3.1~dfsg-2.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEAN/li4tVV3nRAF7J9tdMp8mZ7ukFAly43/YACgkQ9tdMp8mZ 7ul3qA//YEJDt0cuwEexHBYGK+cBt75QkP3XVQLJTHxo46/HCdwlKh81UNhMXf6o in1Zx+ztg6bnwgXWmeC572y46yg4FHi3laZbNDXdzuOnQX/taqdCJlDw0xh6YuRL +0HbEh4n8fzWz018lozJFuK5+npdzN02RrGvh6WJCD3NFGAUuc4rkCTDGK/9trNX H7VAf8bRqUIvVwE3I2uU/wIB3xx+bGL/4+FP0Gu6zJxmlnyGGDlOxJiEi+6+zXir 7zbWSvHoVaohTGn8EBAgOpR+Q+v3xu0pJFw+SH2oXMSVkSwEVIPTLiswQMMnI1ta shzwwkWMcgZ+NCYT9XiblycTciEK2wW345TRV0VlNDf7bt56C269nlPvCkSk3Fsh pCKe1jKsHN+qbXcBz2tWWSMGokSv47Ikco8saHk3dCEYs04t83ixlVK8kvE1H33b MamNUXGkaoSaCnDxX4zh0Q0b32a9JnyQLAzGVqeS5zIeXz+RIIMvxrIqwH5fQmsU u577a+EVKeTEB/3bmLRUkN0lnjtEEBjgps8bWQ56qIYJuoSVGvGBd9uaAdi1SxRq 37weyrq9lW8Qy/eQQS8Iyx6UNnB1zdBiD7umCfPb6i9ub5QNLd9GS518rMv07VQI VLUW0jUuIWz2O7E3zxii7WdVdQBHGDL8yOW6EInrlsOL6iLaibk= =gTRU -END PGP SIGNATURE End Message --- -- Pkg-javascript-devel mailing list Pkg-javascript-devel@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-javascript-devel
[Pkg-javascript-devel] jquery_3.3.1~dfsg-2_sourceonly.changes ACCEPTED into unstable
Accepted: -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 18 Apr 2019 22:34:14 +0200 Source: jquery Architecture: source Version: 3.3.1~dfsg-2 Distribution: unstable Urgency: medium Maintainer: Debian Javascript Maintainers Changed-By: Xavier Guimard Closes: 927385 Changes: jquery (3.3.1~dfsg-2) unstable; urgency=medium . * Team upload * Add patch to prevent Object.prototype pollution (Closes: #927385) * Upgrade links to https Checksums-Sha1: c68b8f4dfd48b0fff00894739d377bf370d45127 2070 jquery_3.3.1~dfsg-2.dsc 51bd8d5330e761a474a2f5f1741212ec5ffacd5b 12428 jquery_3.3.1~dfsg-2.debian.tar.xz Checksums-Sha256: 3f053bce209434e572da87b1fa74c0834ec9db4e5af90cb00ea867ec50572c0e 2070 jquery_3.3.1~dfsg-2.dsc 0ff3f35dff884577a0e3b0d285e2b85955b0643dc25a3765b49f64bcbc0dfb68 12428 jquery_3.3.1~dfsg-2.debian.tar.xz Files: 6a9867fd4f75fe097723420c6fa65892 2070 javascript optional jquery_3.3.1~dfsg-2.dsc b09585e6b6e360839a18613da850f93e 12428 javascript optional jquery_3.3.1~dfsg-2.debian.tar.xz -BEGIN PGP SIGNATURE- iQIzBAEBCgAdFiEEAN/li4tVV3nRAF7J9tdMp8mZ7ukFAly43/YACgkQ9tdMp8mZ 7ul3qA//YEJDt0cuwEexHBYGK+cBt75QkP3XVQLJTHxo46/HCdwlKh81UNhMXf6o in1Zx+ztg6bnwgXWmeC572y46yg4FHi3laZbNDXdzuOnQX/taqdCJlDw0xh6YuRL +0HbEh4n8fzWz018lozJFuK5+npdzN02RrGvh6WJCD3NFGAUuc4rkCTDGK/9trNX H7VAf8bRqUIvVwE3I2uU/wIB3xx+bGL/4+FP0Gu6zJxmlnyGGDlOxJiEi+6+zXir 7zbWSvHoVaohTGn8EBAgOpR+Q+v3xu0pJFw+SH2oXMSVkSwEVIPTLiswQMMnI1ta shzwwkWMcgZ+NCYT9XiblycTciEK2wW345TRV0VlNDf7bt56C269nlPvCkSk3Fsh pCKe1jKsHN+qbXcBz2tWWSMGokSv47Ikco8saHk3dCEYs04t83ixlVK8kvE1H33b MamNUXGkaoSaCnDxX4zh0Q0b32a9JnyQLAzGVqeS5zIeXz+RIIMvxrIqwH5fQmsU u577a+EVKeTEB/3bmLRUkN0lnjtEEBjgps8bWQ56qIYJuoSVGvGBd9uaAdi1SxRq 37weyrq9lW8Qy/eQQS8Iyx6UNnB1zdBiD7umCfPb6i9ub5QNLd9GS518rMv07VQI VLUW0jUuIWz2O7E3zxii7WdVdQBHGDL8yOW6EInrlsOL6iLaibk= =gTRU -END PGP SIGNATURE- Thank you for your contribution to Debian. -- Pkg-javascript-devel mailing list Pkg-javascript-devel@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-javascript-devel
[Pkg-javascript-devel] Processing of jquery_3.3.1~dfsg-2_sourceonly.changes
jquery_3.3.1~dfsg-2_sourceonly.changes uploaded successfully to localhost along with the files: jquery_3.3.1~dfsg-2.dsc jquery_3.3.1~dfsg-2.debian.tar.xz Greetings, Your Debian queue daemon (running on host usper.debian.org) -- Pkg-javascript-devel mailing list Pkg-javascript-devel@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-javascript-devel
[Pkg-javascript-devel] Processed: Bug #927385 in jquery marked as pending
Processing control commands: > tag -1 pending Bug #927385 [src:jquery] jquery: Prototype Pollution vulnerability Added tag(s) pending. -- 927385: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927385 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- Pkg-javascript-devel mailing list Pkg-javascript-devel@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-javascript-devel
[Pkg-javascript-devel] Processed: jquery: Prototype Pollution vulnerability
Processing control commands: > found -1 3.1.1-2 Bug #927385 [src:jquery] jquery: Prototype Pollution vulnerability Marked as found in versions jquery/3.1.1-2. -- 927385: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927385 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- Pkg-javascript-devel mailing list Pkg-javascript-devel@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-javascript-devel
[Pkg-javascript-devel] Bug#927361: unblock: node-superagent/0.20.0+dfsg-2
Package: release.debian.org Severity: normal User: release.debian@packages.debian.org Usertags: unblock Please unblock package node-superagent Hi all, node-superagent is vulnerable to CVE-2017-16129 (tag high). Unfortunatly no corresponding BTS has been filled, and I didn't see this before. I imported the upstreal patch and updated the package and enable some upstream tests (not all due to missing dependencies). Here is the full changes: * Declare compliance with policy 4.3.0 * Change section to javascript * Change priority to optional * Patch to fix ZIP bomb attacks (Closes: CVE-2017-16129) * Fix tests for Node.js >= 10 * Enable some upstream tests using pkg-js-tools * Fix VCS fields * Fix debian/copyright format URL * Add upstream/metadata Reverse dependencies: node-superagent +-(build)-> node-multiparty +-> node-supertest | (build dependencies) | V +- node-body-parser +- node-compression +- node-connect +- node-connect-timeout +- node-cookie-parser +- node-errorhandler +- node-finalhandler +- node-on-headers +- node-response-time +- node-send +- node-serve-index +- node-serve-static +- node-vary +- node-vhost Change on installed files just adds a limit to response body content (CVE-2017-16129.diff patch). The rest of this debdiff updates debian/* files and enable tests (build & autopkgtest). I think this CVE should be considered as RC bug, so I think it is needed and low risky to unblock node-superagent. Cheers, Xavier diff --git a/debian/changelog b/debian/changelog index 0df52d2..e52f880 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,18 @@ +node-superagent (0.20.0+dfsg-2) unstable; urgency=medium + + * Team upload + * Declare compliance with policy 4.3.0 + * Change section to javascript + * Change priority to optional + * Patch to fix ZIP bomb attacks (Closes: CVE-2017-16129) + * Fix tests for Node.js >= 10 + * Enable some upstream tests using pkg-js-tools + * Fix VCS fields + * Fix debian/copyright format URL + * Add upstream/metadata + + -- Xavier Guimard Thu, 18 Apr 2019 14:22:09 +0200 + node-superagent (0.20.0+dfsg-1) unstable; urgency=medium * Imported Upstream version 0.20.0+dfsg diff --git a/debian/control b/debian/control index 8a9adb8..4207e63 100644 --- a/debian/control +++ b/debian/control @@ -1,17 +1,30 @@ Source: node-superagent -Section: web -Priority: extra +Section: javascript +Priority: optional Maintainer: Debian Javascript Maintainers Uploaders: Leo Iannacone +Testsuite: autopkgtest-pkg-nodejs Build-Depends: debhelper (>= 8) , dh-buildinfo + , mocha , nodejs -Standards-Version: 3.9.6 + , node-cookiejar + , node-cookie-parser + , node-debug + , node-express + , node-extend + , node-formidable + , node-form-data + , node-methods + , node-mime + , node-qs + , node-should + , pkg-js-tools +Standards-Version: 4.3.0 +Vcs-Browser: https://salsa.debian.org/js-team/node-superagent +Vcs-Git: https://salsa.debian.org/js-team/node-superagent.git Homepage: https://github.com/visionmedia/superagent -Vcs-Git: git://anonscm.debian.org/pkg-javascript/node-superagent.git -Vcs-Browser: http://anonscm.debian.org/gitweb/?p=pkg-javascript/node-superagent.git -XS-Testsuite: autopkgtest Package: node-superagent Architecture: all diff --git a/debian/copyright b/debian/copyright index c1b2e17..216a109 100644 --- a/debian/copyright +++ b/debian/copyright @@ -1,4 +1,4 @@ -Format: http://www.debian.org/doc/packaging-manuals/copyright-format/1.0/ +Format: https://www.debian.org/doc/packaging-manuals/copyright-format/1.0/ Upstream-Name: superagent Upstream-Contact: https://github.com/visionmedia/superagent/issues Source: https://github.com/visionmedia/superagent @@ -39,4 +39,3 @@ License: Expat ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. - diff --git a/debian/patches/CVE-2017-16129.diff b/debian/patches/CVE-2017-16129.diff new file mode 100644 index 000..7fc56a9 --- /dev/null +++ b/debian/patches/CVE-2017-16129.diff @@ -0,0 +1,34 @@ +Description: Fix for CVE-2017-16129 +Author: Xavier Guimard +Origin: https://github.com/visionmedia/superagent/commit/946e28dab08f2ab334753bf36a2fbc5110d17789 +Bug: https://security-tracker.debian.org/tracker/CVE-2017-16129 +Forwarded: https://github.com/visionmedia/superagent/commit/946e28dab08f2ab334753bf36a2fbc5110d17789 +Last-Update: 2019-04-18 + +--- a/lib/node/index.js b/lib/node/index.js +@@ -898,6 +898,24 @@ + // explicit parser + if (parser) parse = parser; + ++if (buffer) { ++ // Protectiona against zip bombs and other nuisance ++ let responseBytesLeft = self._maxResponseSize || 2; ++ res.on('data', function(buf) { ++responseBytesLeft -= buf.byteLength || buf.length; ++if (responseBytesLeft < 0) { ++ //
[Pkg-javascript-devel] Bug#927333: marked as done (node-postcss-reporter: depends on non-existent node-log-symbols)
Your message dated Thu, 18 Apr 2019 08:33:48 + with message-id and subject line Bug#927333: fixed in node-postcss-reporter 6.0.1+~3.0.0-1 has caused the Debian Bug report #927333, regarding node-postcss-reporter: depends on non-existent node-log-symbols to be marked as done. This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what this message is talking about, this may indicate a serious mail system misconfiguration somewhere. Please contact ow...@bugs.debian.org immediately.) -- 927333: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927333 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems --- Begin Message --- Package: node-postcss-reporter Version: 5.0.0-1 Severity: grave User: ubuntu-de...@lists.ubuntu.com Usertags: origin-ubuntu disco The node-postcss-reporter package is uninstallable because it depends on a non-existent node-log-symbols package. $ sudo apt install node-postcss-reporter Reading package lists... Done Building dependency tree Reading state information... Done Some packages could not be installed. This may mean that you have requested an impossible situation or if you are using the unstable distribution that some required packages have not yet been created or been moved out of Incoming. The following information may help to resolve the situation: The following packages have unmet dependencies: node-postcss-reporter : Depends: node-log-symbols (>= 2.0.0) but it is not installable E: Unable to correct problems, you have held broken packages. $ -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. Ubuntu Developer https://www.debian.org/ slanga...@ubuntu.com vor...@debian.org signature.asc Description: PGP signature --- End Message --- --- Begin Message --- Source: node-postcss-reporter Source-Version: 6.0.1+~3.0.0-1 We believe that the bug you reported is fixed in the latest version of node-postcss-reporter, which is due to be installed in the Debian FTP archive. A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to 927...@bugs.debian.org, and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Xavier Guimard (supplier of updated node-postcss-reporter package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing ftpmas...@ftp-master.debian.org) -BEGIN PGP SIGNED MESSAGE- Hash: SHA512 Format: 1.8 Date: Thu, 18 Apr 2019 09:53:44 +0200 Source: node-postcss-reporter Architecture: source Version: 6.0.1+~3.0.0-1 Distribution: unstable Urgency: medium Maintainer: Xavier Guimard Changed-By: Xavier Guimard Closes: 927333 Changes: node-postcss-reporter (6.0.1+~3.0.0-1) unstable; urgency=medium . * Team upload. . [ Paolo Greppi ] * Update Vcs fields for migration to https://salsa.debian.org/ . [ Xavier Guimard ] * Team upload * Add log-symbols as component (Closes: #927333) * Enable upstream tests using pkg-js-tools. This adds log-symbols and strip-color in debian/tests/test-modules (used for tests only, not installed) * Add upstream/metadata * Bump debhelper compatibility level to 11 * Declare compliance with policy 4.3.0 * Fix d/copyright format url Checksums-Sha1: 39468786856bd1b05ffd6b395d8406a94ae94f37 2578 node-postcss-reporter_6.0.1+~3.0.0-1.dsc b2150925e8feaef7ec20640f1746a574470b1ed1 17047 node-postcss-reporter_6.0.1+~3.0.0.orig-logsymbols.tar.gz adbdf59ed773adc4b1711b8b913a596f94534b36 123851 node-postcss-reporter_6.0.1+~3.0.0.orig.tar.gz 10c75e66edc1076d020c6eaa86378f57fd01ffe9 5528 node-postcss-reporter_6.0.1+~3.0.0-1.debian.tar.xz Checksums-Sha256: 5245af1a162b28a2f1bbc1734cdd009f4c0995a249251dfc54bd649cbdd57f6d 2578 node-postcss-reporter_6.0.1+~3.0.0-1.dsc cfc5e4fdd2b0a2c2548622ae61d0c4ad74e14fc6d8482b79944ee566c8c38382 17047 node-postcss-reporter_6.0.1+~3.0.0.orig-logsymbols.tar.gz 4fe4ca071d27eca50067773a5b8871e5ac6fec82ce3d1120d464dd0e802f1928 123851 node-postcss-reporter_6.0.1+~3.0.0.orig.tar.gz 306b1e6db63eea10da60ef6c2784d1fabc29357959615b366f42b0592f71aa06 5528 node-postcss-reporter_6.0.1+~3.0.0-1.debian.tar.xz Files: 008fc870a1b28b750ba89828ff40ca6c 2578 javascript optional node-postcss-reporter_6.0.1+~3.0.0-1.dsc 684ce2c3e05b64533bf3a73c727adc71 17047 javascript optional node-postcss-reporter_6.0.1+~3.0.0.orig-logsymbols.tar.gz 494d04a73bb1ba44c694652a8fc1c0d6 123851 javascript optional
[Pkg-javascript-devel] Processed: Bug #927333 in node-postcss-reporter marked as pending
Processing control commands: > tag -1 pending Bug #927333 [node-postcss-reporter] node-postcss-reporter: depends on non-existent node-log-symbols Added tag(s) pending. -- 927333: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=927333 Debian Bug Tracking System Contact ow...@bugs.debian.org with problems -- Pkg-javascript-devel mailing list Pkg-javascript-devel@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/pkg-javascript-devel