[Bug 1543641] Re: [MIR] python-sqlalchemy-utils
Avital Ostromich
1543641 at bugs.launchpad.net
Tue Sep 22 17:58:06 UTC 2020
I reviewed python-sqlalchemy-utils 0.36.1-0ubuntu2 as checked into groovy. This shouldn't be
considered a full audit but rather a quick gauge of maintainability.
python-sqlalchemy-utils is a python package providing additional data
types and utility functions for SQLAlchemy.
- CVE History:
- No history of CVEs
- No security sensitive Build-Depends
- debhelper-compat (= 12), dh-python, openstack-pkg-tools, python3-all, python3-setuptools, python3-sphinx
- pre/post inst/rm scripts
- Populated automatically by python debhelper
- No init scripts
- No systemd units
- No dbus services
- No setuid binaries
- No binaries in PATH
- No sudo fragments
- No polkit files
- No udev rules
- unit tests / autopkgtests
- Unit tests passing, run during build
- Sizable and organized test suite
- Autopkgtests minimal, although also passing
- No cron jobs
- Build logs
- No significant build errors or warnings
- Some autodoc warnings
- No processes spawned
- Memory management is n/a
- No notable file IO
- No logging
- No environment variable usage
- No use of privileged functions
- No use of cryptography / random number sources
- No use of temp files
- No of networking
- No use of WebKit
- No use of PolicyKit
- No significant cppcheck results
- No significant Coverity results
- No significant shellcheck results
- No significant bandit results
Produced some autodoc tracebacks during build but nothing egregious,
code is well documented and backed by a sizable test suite.
Security team ACK for promoting python-sqlalchemy-utils to main.
** Changed in: python-sqlalchemy-utils (Ubuntu)
Assignee: Ubuntu Security Team (ubuntu-security) => (unassigned)
--
You received this bug notification because you are a member of Ubuntu
OpenStack, which is subscribed to the bug report.
https://bugs.launchpad.net/bugs/1543641
Title:
[MIR] python-sqlalchemy-utils
Status in python-sqlalchemy-utils package in Ubuntu:
New
Bug description:
[MIR] python-sqlalchemy-utils
[Availability]
Currently in universe.
[Rationale]
python-sqlalchemy-utils is a dependency of python-taskflow which is a dependency of several OpenStack packages.
[Security]
No security history.
[Quality Assurance]
Package works out of the box with no prompting. There are no major bugs in Ubuntu and there are no major bugs in Debian. Unit tests are run during build.
[Dependencies]
All are in main.
[Standards Compliance]
FHS and Debian Policy compliant.
[Maintenance]
Simple python package that the OpenStack Team will take care of.
[Background]
This package provides various utility functions, new data types and helpers for SQLAlchemy.
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/python-sqlalchemy-utils/+bug/1543641/+subscriptions
More information about the Ubuntu-openstack-bugs
mailing list