[ubuntu/bionic-proposed] lintian 2.5.75ubuntu1 (Accepted)

Matthias Klose doko at ubuntu.com
Fri Feb 16 05:08:18 UTC 2018


lintian (2.5.75ubuntu1) bionic; urgency=medium

  * Merge with Debian; remaining changes:
    - tests/binaries-general: Don't expect the
      binary-compiled-with-profiling-enabled tag with binutils 2.30.

lintian (2.5.75) unstable; urgency=medium

  * Summary of tag changes:
    + Added:
      - debian-rules-uses-unnecessary-dh-argument
      - missing-explanation-for-repacked-upstream-tarball
      - udevadm-called-without-guard

  * checks/changelog-file.desc:
    + [CL] When checking latest-debian-changelog-entry-without-new-version
      ignore any change of epoch.  (Closes: #889991)
  * checks/debhelper.{desc,pm}:
    + [CL] Warn when specifying --parallel to dh(1) in compat levels >= 10.
      Thanks to Nicolas Braud-Santoni for the idea.  (Closes: #890358)
    + [CL] Add a missing verb to the long description of the
      dh-quilt-addon-but-quilt-source-format tag.
  * checks/files.pm:
    + [CL] Tidy logic for detecting allowed rel="" values in <link/>
      HTML tags.
    + [CL] Allow rel="canonical" in <link/> HTML tags; they are used by
      search engines (etc.) and do not cause internet access.
      (Closes: #762753)
  * checks/init.desc:
    + [CL] Improve various parts of the long description for
      init.d-script-should-always-start-service.
  * checks/patch-systems.{desc,pm}:
    + [CL] Avoid false positives when checking for typos by ignoring files
      or patch descriptions that contain the words "typo" or "spelling".
      Thanks to Bas Couwenberg for the report.  (Closes: #889964)
    + [CL] Check the first line of the description separately for spelling
      errors to avoid false-positive duplicate checks across a patch
      description's synopsis and its body.  (Closes: #890100)
  * checks/python.desc:
    + [CL] Underline that maintainers do not need to override the
      new-package-should-not-package-python2-module tag but rather leave a
      comment in debian/changelog.
  * checks/scripts.{desc,pm}:
    + [CL] Check for maintainer scripts that call udevadm without a guard
      as it can fail within a chroot.  (Closes: #890298)
  * checks/source-copyright.{desc,pm}:
    + [CL] Emit a pendatic warning for packages with repacked upstream
      tarballs that lack a Files-Excluded or Comment header in
      debian/copyright.

  * collection/override-file:
    + [CL] Actually pick the first out of debian/source/lintian-overrides
      and debian/source.lintian-overrides. Thanks to Thorsten Glaser for
      the report.  (Closes: #890361)

  * commands/reporting-html-reports.html:
    + [NT] Minimize generated SVG files if scour is installed and
      available in PATH.

  * data/spelling/corrections:
    + [PW] Add a number of corrections.

lintian (2.5.74) unstable; urgency=medium

  * Summary of tag changes:
    + Added:
      - control-tarball-compression-format
      - data-tarball-compression-format
      - debian-rules-is-dh_make-template
      - init.d-script-should-always-start-service
      - jar-contains-source
      - missing-systemd-service-for-init.d-script
      - source-contains-prebuilt-wasm-binary
      - spelling-error-in-patch-description
      - systemd-service-file-refers-to-unusual-wantedby-target
    + Renamed:
      - systemd-no-service-for-init-script ->
        omitted-systemd-service-for-init.d-script
      - systemd-no-service-for-init-rcS-script ->
        missing-systemd-service-for-init.d-rcS-script
      - override_dh_auto_test-does-not-check-DEB_BUILD_PROFILES ->
        override_dh_auto_test-does-not-check-DEB_BUILD_OPTIONS

  * checks/changelog-file.desc:
    + [CL] Improve the long description of epoch-change-without-comment.
      Based on suggestions by Raphael Hertzog and Ian Jackson - thanks!
      (Closes: #889814)
  * checks/cruft.desc:
    + [BR] Check for wasm files.  (Closes: #889102)
    + [CL] Factor out call to _ships_examples to avoid excessive looping
      over $sorted_index.
    + [CL] Do not emit package-does-not-install-examples if we don't have
      any binary packages in our laboratory.  (Closes: #889591)
    + [CL] Improve the description of package-does-not-install-examples to
      give more debhelper advice.
    + [CL] Assume that if a source package generates a binary ending in
      "-examples" then it does ship examples.
  * checks/deb-format.{desc,pm}:
    + [CL] Add a classification tag for the .deb data tarball compression
      format.  (Closes: #738442)
    + [CL] Add a classification tag for the control tarball compression
      format.  (Closes: #889856)
  * checks/fields.pm:
    + [CL] Avoid false positives when checking binary packages depending on
      toolchain packages by ignoring packages starting with "dh-" or ending
      with "-source". Thanks to Josh Triplett for the report.
      (Closes: #889486)
  * checks/files.pm:
    + [BR] Add context for privacy breach in order to improve debugging.
  * checks/fields.desc:
    + [CL] Downgrade severity of build-depends-on-obsolete-package from
      error to warning.  (Closes: #889638)
  * checks/java.{desc,pm}:
    + [CL] Only warn about bad-jar-name for "public" .jar files.
      (Closes: #889628)
    + [CL] Check for .jar files that embed Foo.java alongside a Foo.class
      file.  (Closes: #762113)
  * checks/init.d.{desc,pm}:
    + [CL] Warn about packages that use ENABLED="true" (etc.) in
      /etc/default files.
  * checks/patch-systems.{desc,pm}:
    + [CL] Avoid emitting "Can't use an undefined value as an ARRAY
      reference" warnings when debian/patches is a file, not a directory.
      (Closes: #889535)
    + [CL] Check spelling of patch headers.  (Closes: #756130)
  * checks/rules.{desc,pm}:
    + [CL] Fix a number of false-positives when checking the
      "override_dh_auto_test-does-not-check-DEB_BUILD_PROFILES" tag
      (Closes: #889592)
    + [CL] Make a large number of changes suggested by Mattia Rizzolo to
      the override_dh_auto_test-does-not-check-DEB_BUILD_PROFILES tag,
      renaming it to reference DEB_BUILD_OPTIONS throughout, add Debian
      Policy 4.9.1 to the tag's Ref, lower "Certanty" to "wild-guess" and
      mark the tag as experimental, updating the tests to match.
      (Closes: #889746)
    + [CL] Check for debian/rules files that are dh_make templates.
      (Closes: #679124)
  * checks/scripts.desc:
    + [CL] Improve, elaborate and tidy the long description of the
      maintainer-script-should-not-use-recursive-chown-or-chmod tag.
      Heavily based on a patch by Daniel Kahn Gillmor - thanks!
      (Closes: #889489)
  * checks/source-copyright.pm:
    + [CL] Prevent false positives when checking for missing NOTICE.txt
      files by looking inside .jar archives.  (Closes: #889760)
  * checks/systemd.{desc,pm}:
    + [CL] Warn about unit files that install to usual WantedBy= targets.
      Thanks to Sam Morris for the initial patch.  (Closes: #817170)
    + [CL] Rework the no service detection, improving the (rarely
      overridden) tag names to better match what they detect as well as
      adding a new "missing-systemd-service-for-init.d-script" pedantic tag
      where we do not have an equivalent unit as this implies missing
      bespoke security hardening support, etc. Thanks to Lucas Nussbaum for
      his input.  (Closes: #858588)
  * checks/udev.pm:
    + [CL] Add simple GOTO parsing to avoid false positives when checking
      for udev rules for SUBSYSTEM specifiers.  (Closes: #869547, #889639)

  * commands/reporting-{html-reports,lintian-harness}.pm:
    + [NT] Register packages that fail during archive wide processing.

  * data/files/privacy-breaker-fragments:
    + [BR] Detect new fragments for Google CSE.
  * data/spelling/corrections:
    + [PW] Add a number of corrections.

  * lib/Lintian/Util.pm:
    + [NT] Give lower processing priority to packages that repeatedly
      trigger errors during archive-wide processing.

  * reporting/templates/index.tmpl:
    + [NT] Display summary of how many groups had errors during their
      last processing.
  * reporting/templates/{lintian.css,maintainer}.tmpl:
    + [NT] Use a distinct error status instead of "Outdated" for
      packages with errors during their last processing.

lintian (2.5.73) unstable; urgency=medium

  * Summary of tag changes:
    + Added:
      - bad-jar-name
      - binary-package-depends-on-toolchain-package
      - checksum-count-mismatch-in-changes-file
      - co-maintained-package-with-no-vcs-headers
      - description-mentions-planned-features
      - files-excluded-without-copyright-format-1.0
      - global-files-wildcard-not-first-paragraph-in-dep5-copyright
      - maintainer-script-should-not-use-recursive-chown-or-chmod
      - missing-explanation-for-contrib-or-non-free-package
      - multi-arch-same-package-has-arch-specific-overrides
      - override_dh_auto_test-does-not-check-DEB_BUILD_PROFILES
      - package-does-not-install-examples
      - package-uses-deprecated-dpatch-patch-system
      - package-uses-deprecated-source-override-location
      - unusual-documentation-package-name

  * checks/cruft.{desc,pm}:
    + [CL] When looking for the source of "build/foo/bar.min.js", also
      check "src/foo/bar.js".  (Closes: #832027)
    + [CL] Check for upstream tarballs that ship examples but none is
      installed in any binary package.  (Closes: #539326)
  * checks/debian-source-dir.desc:
    + [CL] Upgrade severity of missing-debian-source-format from wishlist
      ("I") to normal ("W").  (Closes: #702671)
  * checks/description.{desc.pm}:
    + [CL] Check for packages that mention planned/upcoming features in
      their long description.  (Closes: #782990)
    + [CL] Improve the description-synopsis-might-not-be-phrased-properly
      tag also detect multiple sentences and improve the tag description.
      (Closes: #778427)
  * checks/changes-file.{desc.pm}:
    + [CL] Fix an issue where the bad-section-in-changes-file,
      file-size-mismatch-in-changes-file and
      checksum-mismatch-in-changes-file tags were not being checked if a
      package contained an upstream signature.
    + [CL] Check for inconsistencies between "Files" and Checksums-*
      sections in .changes files.  (Closes: #658542)
  * checks/cruft.{desc.pm}:
    + [CL] Add pedantic warning for packages using source.lintian-overrides
      instead of debian/source/lintian-overrides.
  * checks/fields.{desc,pm}:
    + [CL] Add a pedantic warning for co-maintained packages that are not
      managed in a revision control system.  (Closes: #884497)
    + [CL] Warn about Multi-Arch: same packages that ship
      architecture-specific Lintian overrides. Thanks to Sebastian
      Ramacher for the report.  (Closes: #787469)
    + [CL] Check for packages that specify binary dependencies on toolchain
      packages such as cdbs or debhelper.  (Closes: #700953)
    + [CL] Emit a warning about documentation packages that end with -docs.
      (Closes: #664520)
    + [CL] Ensure salsa.debian.org Vcs-Git and Vcs-Browser URIs are
      canonical and do not redirect.  (Closes: #888809)
  * checks/files.pm:
    + [CL] Support scanning contents of (eg.) data/files/js-libraries.
  * checks/java.{desc,pm}:
    + [CL] Check for .jar files that do not match the Debian Java policy.
      (Closes: #791552)
  * checks/patch-systems.{desc,pm}:
    + [CL] Emit a pedantic warning for packages that are using the dpatch
      patch system.  (Closes: #884500)
  * checks/rules.pm:
    + [CL] Check for override_dh_auto_test targets that do not check
      DEB_BUILD_OPTIONS for "nocheck".  (Closes: #712394)
  * checks/scripts.desc:
    + [CL] Update the maintainer-script-should-not-use-service tag to
      include advice and Debian Policy reference.  (Closes: #889154)
  * checks/source-copyright.{desc,pm}:
    + [CL] Warn about packages that specify a Files-Excluded header without
      a valid Format header as the former will be ignored by uscan(1).
      Thanks to Gunnar Wolf for the initial patch.  (Closes: #745743)
    + [CL] Warn when a "Files: *" DEP-5 paragraph exists but it is not the
      first paragraph. Thank to Christoph Biedl for the report and idea.
      (Closes: #879235)
    + [CL] Ask maintainers to add a comment header to debian/copyright if
      their package is in contrib or non-free.  (Closes: #773562)

  * commands/reporting-html-reports.pm:
    + [NT] Add a limit to how many instances of a tag is deplayed on a tag
      page as 151 000 instances of unstripped-static-library is hardly
      human readable.

  * data/spelling/corrections:
    + [PW] Add a number of corrections.
  * data/common/dh_addons:
    + [CL] Move/create from data/debhelper/dh_addons as we plan to use
      it elsewhere.
  * data/debhelper/dh_commands:
    + [CL] Update requirement for dh_scour (again!) from python3-scour to
      scour.  (Closes: #889016)
  * data/debhelper/dh_commands-manual:
    + [NT] Remove dh_systemd* entries.  Debian stable have a recent
      enough version of debhelper that this entry no longer matters.
  * data/files/fnames:
    + [CL] Ensure package-contains-python-doctree-file also warns about
      compressed .doctree files.
  * data/files/js-libraries:
    + [CL] Avoid false-positives when detecting Twitter's bootstrap
      library.  (Closes: #888972)
  * data/files/python-generic-modules:
    + [CL] Detect "backports" (and "backport") as overly generic Python
      module names.  (Closes: #888559)
  * data/scripts/maintainer-script-bad-command:
    + [CL] Warn if the maintainer scripts include "chown -R" or "chmod -R"
      to prevent hardlink attacks on kernels that do not have
      fs.protected_hardlinks=1.  (Closes: #889066)

  * doc/lintian.xml:
    + [CL] Use the debian/source/lintian-overrides location in override
      example.

  * lib/Lintian/*:
    + [CL] Add support for passing .buildinfo files to Lintian.
      (Closes: #853274)

  * reporting/templates/tag.tmpl:
    + [NT] Update template to mention tag limit when not all instances
      are shown.

Date: Fri, 16 Feb 2018 11:38:42 +0700
Changed-By: Matthias Klose <doko at ubuntu.com>
Maintainer: Debian Lintian Maintainers <lintian-maint at debian.org>
https://launchpad.net/ubuntu/+source/lintian/2.5.75ubuntu1
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Fri, 16 Feb 2018 11:38:42 +0700
Source: lintian
Binary: lintian
Architecture: source
Version: 2.5.75ubuntu1
Distribution: bionic
Urgency: medium
Maintainer: Debian Lintian Maintainers <lintian-maint at debian.org>
Changed-By: Matthias Klose <doko at ubuntu.com>
Description:
 lintian    - Debian package checker
Closes: 539326 658542 664520 679124 700953 702671 712394 738442 745743 756130 762113 762753 773562 778427 782990 787469 791552 817170 832027 853274 858588 869547 879235 884497 884500 888559 888809 888972 889016 889066 889102 889154 889486 889489 889535 889591 889592 889628 889638 889639 889746 889760 889814 889856 889964 889991 890100 890298 890358 890361
Changes:
 lintian (2.5.75ubuntu1) bionic; urgency=medium
 .
   * Merge with Debian; remaining changes:
     - tests/binaries-general: Don't expect the
       binary-compiled-with-profiling-enabled tag with binutils 2.30.
 .
 lintian (2.5.75) unstable; urgency=medium
 .
   * Summary of tag changes:
     + Added:
       - debian-rules-uses-unnecessary-dh-argument
       - missing-explanation-for-repacked-upstream-tarball
       - udevadm-called-without-guard
 .
   * checks/changelog-file.desc:
     + [CL] When checking latest-debian-changelog-entry-without-new-version
       ignore any change of epoch.  (Closes: #889991)
   * checks/debhelper.{desc,pm}:
     + [CL] Warn when specifying --parallel to dh(1) in compat levels >= 10.
       Thanks to Nicolas Braud-Santoni for the idea.  (Closes: #890358)
     + [CL] Add a missing verb to the long description of the
       dh-quilt-addon-but-quilt-source-format tag.
   * checks/files.pm:
     + [CL] Tidy logic for detecting allowed rel="" values in <link/>
       HTML tags.
     + [CL] Allow rel="canonical" in <link/> HTML tags; they are used by
       search engines (etc.) and do not cause internet access.
       (Closes: #762753)
   * checks/init.desc:
     + [CL] Improve various parts of the long description for
       init.d-script-should-always-start-service.
   * checks/patch-systems.{desc,pm}:
     + [CL] Avoid false positives when checking for typos by ignoring files
       or patch descriptions that contain the words "typo" or "spelling".
       Thanks to Bas Couwenberg for the report.  (Closes: #889964)
     + [CL] Check the first line of the description separately for spelling
       errors to avoid false-positive duplicate checks across a patch
       description's synopsis and its body.  (Closes: #890100)
   * checks/python.desc:
     + [CL] Underline that maintainers do not need to override the
       new-package-should-not-package-python2-module tag but rather leave a
       comment in debian/changelog.
   * checks/scripts.{desc,pm}:
     + [CL] Check for maintainer scripts that call udevadm without a guard
       as it can fail within a chroot.  (Closes: #890298)
   * checks/source-copyright.{desc,pm}:
     + [CL] Emit a pendatic warning for packages with repacked upstream
       tarballs that lack a Files-Excluded or Comment header in
       debian/copyright.
 .
   * collection/override-file:
     + [CL] Actually pick the first out of debian/source/lintian-overrides
       and debian/source.lintian-overrides. Thanks to Thorsten Glaser for
       the report.  (Closes: #890361)
 .
   * commands/reporting-html-reports.html:
     + [NT] Minimize generated SVG files if scour is installed and
       available in PATH.
 .
   * data/spelling/corrections:
     + [PW] Add a number of corrections.
 .
 lintian (2.5.74) unstable; urgency=medium
 .
   * Summary of tag changes:
     + Added:
       - control-tarball-compression-format
       - data-tarball-compression-format
       - debian-rules-is-dh_make-template
       - init.d-script-should-always-start-service
       - jar-contains-source
       - missing-systemd-service-for-init.d-script
       - source-contains-prebuilt-wasm-binary
       - spelling-error-in-patch-description
       - systemd-service-file-refers-to-unusual-wantedby-target
     + Renamed:
       - systemd-no-service-for-init-script ->
         omitted-systemd-service-for-init.d-script
       - systemd-no-service-for-init-rcS-script ->
         missing-systemd-service-for-init.d-rcS-script
       - override_dh_auto_test-does-not-check-DEB_BUILD_PROFILES ->
         override_dh_auto_test-does-not-check-DEB_BUILD_OPTIONS
 .
   * checks/changelog-file.desc:
     + [CL] Improve the long description of epoch-change-without-comment.
       Based on suggestions by Raphael Hertzog and Ian Jackson - thanks!
       (Closes: #889814)
   * checks/cruft.desc:
     + [BR] Check for wasm files.  (Closes: #889102)
     + [CL] Factor out call to _ships_examples to avoid excessive looping
       over $sorted_index.
     + [CL] Do not emit package-does-not-install-examples if we don't have
       any binary packages in our laboratory.  (Closes: #889591)
     + [CL] Improve the description of package-does-not-install-examples to
       give more debhelper advice.
     + [CL] Assume that if a source package generates a binary ending in
       "-examples" then it does ship examples.
   * checks/deb-format.{desc,pm}:
     + [CL] Add a classification tag for the .deb data tarball compression
       format.  (Closes: #738442)
     + [CL] Add a classification tag for the control tarball compression
       format.  (Closes: #889856)
   * checks/fields.pm:
     + [CL] Avoid false positives when checking binary packages depending on
       toolchain packages by ignoring packages starting with "dh-" or ending
       with "-source". Thanks to Josh Triplett for the report.
       (Closes: #889486)
   * checks/files.pm:
     + [BR] Add context for privacy breach in order to improve debugging.
   * checks/fields.desc:
     + [CL] Downgrade severity of build-depends-on-obsolete-package from
       error to warning.  (Closes: #889638)
   * checks/java.{desc,pm}:
     + [CL] Only warn about bad-jar-name for "public" .jar files.
       (Closes: #889628)
     + [CL] Check for .jar files that embed Foo.java alongside a Foo.class
       file.  (Closes: #762113)
   * checks/init.d.{desc,pm}:
     + [CL] Warn about packages that use ENABLED="true" (etc.) in
       /etc/default files.
   * checks/patch-systems.{desc,pm}:
     + [CL] Avoid emitting "Can't use an undefined value as an ARRAY
       reference" warnings when debian/patches is a file, not a directory.
       (Closes: #889535)
     + [CL] Check spelling of patch headers.  (Closes: #756130)
   * checks/rules.{desc,pm}:
     + [CL] Fix a number of false-positives when checking the
       "override_dh_auto_test-does-not-check-DEB_BUILD_PROFILES" tag
       (Closes: #889592)
     + [CL] Make a large number of changes suggested by Mattia Rizzolo to
       the override_dh_auto_test-does-not-check-DEB_BUILD_PROFILES tag,
       renaming it to reference DEB_BUILD_OPTIONS throughout, add Debian
       Policy 4.9.1 to the tag's Ref, lower "Certanty" to "wild-guess" and
       mark the tag as experimental, updating the tests to match.
       (Closes: #889746)
     + [CL] Check for debian/rules files that are dh_make templates.
       (Closes: #679124)
   * checks/scripts.desc:
     + [CL] Improve, elaborate and tidy the long description of the
       maintainer-script-should-not-use-recursive-chown-or-chmod tag.
       Heavily based on a patch by Daniel Kahn Gillmor - thanks!
       (Closes: #889489)
   * checks/source-copyright.pm:
     + [CL] Prevent false positives when checking for missing NOTICE.txt
       files by looking inside .jar archives.  (Closes: #889760)
   * checks/systemd.{desc,pm}:
     + [CL] Warn about unit files that install to usual WantedBy= targets.
       Thanks to Sam Morris for the initial patch.  (Closes: #817170)
     + [CL] Rework the no service detection, improving the (rarely
       overridden) tag names to better match what they detect as well as
       adding a new "missing-systemd-service-for-init.d-script" pedantic tag
       where we do not have an equivalent unit as this implies missing
       bespoke security hardening support, etc. Thanks to Lucas Nussbaum for
       his input.  (Closes: #858588)
   * checks/udev.pm:
     + [CL] Add simple GOTO parsing to avoid false positives when checking
       for udev rules for SUBSYSTEM specifiers.  (Closes: #869547, #889639)
 .
   * commands/reporting-{html-reports,lintian-harness}.pm:
     + [NT] Register packages that fail during archive wide processing.
 .
   * data/files/privacy-breaker-fragments:
     + [BR] Detect new fragments for Google CSE.
   * data/spelling/corrections:
     + [PW] Add a number of corrections.
 .
   * lib/Lintian/Util.pm:
     + [NT] Give lower processing priority to packages that repeatedly
       trigger errors during archive-wide processing.
 .
   * reporting/templates/index.tmpl:
     + [NT] Display summary of how many groups had errors during their
       last processing.
   * reporting/templates/{lintian.css,maintainer}.tmpl:
     + [NT] Use a distinct error status instead of "Outdated" for
       packages with errors during their last processing.
 .
 lintian (2.5.73) unstable; urgency=medium
 .
   * Summary of tag changes:
     + Added:
       - bad-jar-name
       - binary-package-depends-on-toolchain-package
       - checksum-count-mismatch-in-changes-file
       - co-maintained-package-with-no-vcs-headers
       - description-mentions-planned-features
       - files-excluded-without-copyright-format-1.0
       - global-files-wildcard-not-first-paragraph-in-dep5-copyright
       - maintainer-script-should-not-use-recursive-chown-or-chmod
       - missing-explanation-for-contrib-or-non-free-package
       - multi-arch-same-package-has-arch-specific-overrides
       - override_dh_auto_test-does-not-check-DEB_BUILD_PROFILES
       - package-does-not-install-examples
       - package-uses-deprecated-dpatch-patch-system
       - package-uses-deprecated-source-override-location
       - unusual-documentation-package-name
 .
   * checks/cruft.{desc,pm}:
     + [CL] When looking for the source of "build/foo/bar.min.js", also
       check "src/foo/bar.js".  (Closes: #832027)
     + [CL] Check for upstream tarballs that ship examples but none is
       installed in any binary package.  (Closes: #539326)
   * checks/debian-source-dir.desc:
     + [CL] Upgrade severity of missing-debian-source-format from wishlist
       ("I") to normal ("W").  (Closes: #702671)
   * checks/description.{desc.pm}:
     + [CL] Check for packages that mention planned/upcoming features in
       their long description.  (Closes: #782990)
     + [CL] Improve the description-synopsis-might-not-be-phrased-properly
       tag also detect multiple sentences and improve the tag description.
       (Closes: #778427)
   * checks/changes-file.{desc.pm}:
     + [CL] Fix an issue where the bad-section-in-changes-file,
       file-size-mismatch-in-changes-file and
       checksum-mismatch-in-changes-file tags were not being checked if a
       package contained an upstream signature.
     + [CL] Check for inconsistencies between "Files" and Checksums-*
       sections in .changes files.  (Closes: #658542)
   * checks/cruft.{desc.pm}:
     + [CL] Add pedantic warning for packages using source.lintian-overrides
       instead of debian/source/lintian-overrides.
   * checks/fields.{desc,pm}:
     + [CL] Add a pedantic warning for co-maintained packages that are not
       managed in a revision control system.  (Closes: #884497)
     + [CL] Warn about Multi-Arch: same packages that ship
       architecture-specific Lintian overrides. Thanks to Sebastian
       Ramacher for the report.  (Closes: #787469)
     + [CL] Check for packages that specify binary dependencies on toolchain
       packages such as cdbs or debhelper.  (Closes: #700953)
     + [CL] Emit a warning about documentation packages that end with -docs.
       (Closes: #664520)
     + [CL] Ensure salsa.debian.org Vcs-Git and Vcs-Browser URIs are
       canonical and do not redirect.  (Closes: #888809)
   * checks/files.pm:
     + [CL] Support scanning contents of (eg.) data/files/js-libraries.
   * checks/java.{desc,pm}:
     + [CL] Check for .jar files that do not match the Debian Java policy.
       (Closes: #791552)
   * checks/patch-systems.{desc,pm}:
     + [CL] Emit a pedantic warning for packages that are using the dpatch
       patch system.  (Closes: #884500)
   * checks/rules.pm:
     + [CL] Check for override_dh_auto_test targets that do not check
       DEB_BUILD_OPTIONS for "nocheck".  (Closes: #712394)
   * checks/scripts.desc:
     + [CL] Update the maintainer-script-should-not-use-service tag to
       include advice and Debian Policy reference.  (Closes: #889154)
   * checks/source-copyright.{desc,pm}:
     + [CL] Warn about packages that specify a Files-Excluded header without
       a valid Format header as the former will be ignored by uscan(1).
       Thanks to Gunnar Wolf for the initial patch.  (Closes: #745743)
     + [CL] Warn when a "Files: *" DEP-5 paragraph exists but it is not the
       first paragraph. Thank to Christoph Biedl for the report and idea.
       (Closes: #879235)
     + [CL] Ask maintainers to add a comment header to debian/copyright if
       their package is in contrib or non-free.  (Closes: #773562)
 .
   * commands/reporting-html-reports.pm:
     + [NT] Add a limit to how many instances of a tag is deplayed on a tag
       page as 151 000 instances of unstripped-static-library is hardly
       human readable.
 .
   * data/spelling/corrections:
     + [PW] Add a number of corrections.
   * data/common/dh_addons:
     + [CL] Move/create from data/debhelper/dh_addons as we plan to use
       it elsewhere.
   * data/debhelper/dh_commands:
     + [CL] Update requirement for dh_scour (again!) from python3-scour to
       scour.  (Closes: #889016)
   * data/debhelper/dh_commands-manual:
     + [NT] Remove dh_systemd* entries.  Debian stable have a recent
       enough version of debhelper that this entry no longer matters.
   * data/files/fnames:
     + [CL] Ensure package-contains-python-doctree-file also warns about
       compressed .doctree files.
   * data/files/js-libraries:
     + [CL] Avoid false-positives when detecting Twitter's bootstrap
       library.  (Closes: #888972)
   * data/files/python-generic-modules:
     + [CL] Detect "backports" (and "backport") as overly generic Python
       module names.  (Closes: #888559)
   * data/scripts/maintainer-script-bad-command:
     + [CL] Warn if the maintainer scripts include "chown -R" or "chmod -R"
       to prevent hardlink attacks on kernels that do not have
       fs.protected_hardlinks=1.  (Closes: #889066)
 .
   * doc/lintian.xml:
     + [CL] Use the debian/source/lintian-overrides location in override
       example.
 .
   * lib/Lintian/*:
     + [CL] Add support for passing .buildinfo files to Lintian.
       (Closes: #853274)
 .
   * reporting/templates/tag.tmpl:
     + [NT] Update template to mention tag limit when not all instances
       are shown.
Checksums-Sha1:
 a2a77a8aef3a527fe1f8f2dfb118048ee782f3d3 3558 lintian_2.5.75ubuntu1.dsc
 bbe1afeca81fd001db3417bd2204270ff3e7ee54 1482152 lintian_2.5.75ubuntu1.tar.xz
 b6eb0eb7ff604dbe973bf7c2bf76f73ac8acf870 20347 lintian_2.5.75ubuntu1_source.buildinfo
Checksums-Sha256:
 97dcf729ec57088caeee9c8fff6f6824274a8acdb0b7c7ccc6d6ec0c81fd58d3 3558 lintian_2.5.75ubuntu1.dsc
 5ecaa26ae031e6be2ad4bfb4af1e0f5c2e455f2ee041682570a227f1b0486686 1482152 lintian_2.5.75ubuntu1.tar.xz
 c8725cab214f3642137fd04bece04d63d58a79343767d38b4e6a54a63e91de1a 20347 lintian_2.5.75ubuntu1_source.buildinfo
Files:
 4dc2ef66dc3a4c2135a0eec972417158 3558 devel optional lintian_2.5.75ubuntu1.dsc
 8692b8f2b52f37d8c012c42ceb693317 1482152 devel optional lintian_2.5.75ubuntu1.tar.xz
 5fe0c3b96897e684a036835c3aa9ea55 20347 devel optional lintian_2.5.75ubuntu1_source.buildinfo

-----BEGIN PGP SIGNATURE-----
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=/boF
-----END PGP SIGNATURE-----


More information about the Bionic-changes mailing list