Source: node-ssri
Version: 5.0.0-1
Severity: important
Tags: patch security upstream
Forwarded: https://github.com/zkat/ssri/issues/10
Hi
See the following references for details:
https://github.com/zkat/ssri/commit/d0ebcdc22cb5c8f47f89716d08b3518b2485d65d
https://github.com/zkat/ssri/issues/10
Package: wnpp
Severity: wishlist
* Package name: galleria
Version : 1.5.7
Upstream Author : David Hellsing
* URL : http://galleria.io
* License : MIT/expat
Programming Lang: Javascript
Description : Responsive JavaScript Image Gallery
Jquery based
Package: wnpp
Severity: wishlist
* Package name: photoswipe
Version : 4.1.2
Upstream Author : Dmitry Semenov?
* URL : http://photoswipe.com/
* License : MIT/Expat
Programming Lang: Javascript
Description : image gallery for mobile and desktop
Package: wnpp
Severity: wishlist
* Package name: colorbox
Version : 1.6.4
Upstream Author : Jack Moore
* URL : http://www.jacklmoore.com/colorbox/
* License : MIT/Expat
Programming Lang: Javascript
Description : A lightweight customizable lightbox
On വെള്ളി 02 മാർച്ച് 2018 09:25 വൈകു, Sean Whitton wrote:
> Hello,
>
> On Fri, Mar 02 2018, Pirate Praveen wrote:
>
>> I think the policy is good and request debian policy team to endorse
>> it.
>
> The way forward is to add the JavaScript policy to the debian-policy
> package. It would not be
On വെള്ളി 02 മാർച്ച് 2018 09:57 വൈകു, Jonas Smedegaard wrote:
> I generally read team policies with an implicit "...as long as it
> doesn't conflict with the general Debian Policy".
>
> Specifically, I read the "should" in above quote as "in most cases, but
> not a "must".
>
> We have in the
FYI: The status of the node-nan source package
in Debian's testing distribution has changed.
Previous version: 2.8.0-1
Current version: 2.9.2-1
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple times a day you will
FYI: The status of the node-timers-browserify source package
in Debian's testing distribution has changed.
Previous version: 2.0.2+dfsg-1
Current version: 2.0.6+dfsg-1
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple
Processing commands for cont...@bugs.debian.org:
> block 892013 by 785696
Bug #892013 [wnpp] RFP: ruby-therubyracer -- Embed the V8 Javascript
Interpreter into Ruby
892013 was not blocked by any bugs.
892013 was blocking: 827314
Added blocking bug(s) of 892013: 785696
>
End of message, stopping
Processing commands for cont...@bugs.debian.org:
> retitle 891980 node-ssri: CVE-2018-7651
Bug #891980 [src:node-ssri] node-ssri: Regular Expression Denial of Service
vulnerability in the strict mode functionality
Changed Bug title to 'node-ssri: CVE-2018-7651' from 'node-ssri: Regular
FYI: The status of the node-uniq source package
in Debian's testing distribution has changed.
Previous version: (not in testing)
Current version: 1.0.1-1
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple times a day you
FYI: The status of the node-os-browserify source package
in Debian's testing distribution has changed.
Previous version: 0.2.1-2
Current version: 0.3.0-1
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple times a day you
FYI: The status of the node-coa source package
in Debian's testing distribution has changed.
Previous version: (not in testing)
Current version: 2.0.0-1
--
This email is automatically generated once a day. As the installation of
new packages into testing happens multiple times a day you
On Sat, 03 Mar 2018 at 19:53:42 +0530, Pirate Praveen wrote:
> What do you think about the case of handlebars? In that case I think a
> separate binary is required because the command line tool must declare a
> dependency on nodejs, whereas the javascript library (libjs-*), does not
> require it.
14 matches
Mail list logo