Accepted roundcube 1.4.7+dfsg.2-1~bpo10+1 (source) into buster-backports
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Mon, 03 Aug 2020 14:08:51 +0200
Source: roundcube
Architecture: source
Version: 1.4.7+dfsg.2-1~bpo10+1
Distribution: buster-backports
Urgency: medium
Maintainer: Debian Roundcube Maintainers <pkg-roundcube-maintainers@alioth-lists.debian.net>
Changed-By: Guilhem Moulin <guilhem@debian.org>
Changes:
roundcube (1.4.7+dfsg.2-1~bpo10+1) buster-backports; urgency=medium
.
* Rebuild for buster-backports. Changes:
- d/rules: Remove --js flag in lessc(1) calls as it was default before
3.0.0.
- d/control: Set maximum node-less version to <3.0.0
.
roundcube (1.4.7+dfsg.2-1) unstable; urgency=low
.
* d/rules: Exclude TinyMCE language Javascript packs from minification as
Roundcube and TinyMCE load $code.js files not $code.min.js.
* d/patches: Rename Use-system-JQueryUI.patch to use-system-JQueryUI.patch.
* Bundle TinyCME as secondary orig tarballs (downloaded automatically using
custom uscan(1) script) rather than in d/missing-sources. The TinyCME zip
archive we used to ship in d/missing-sources violates DFSG (since
1.3.0+dfsg.1-1), because upstream's jsdeps.json links to the so-called
"production package" which doesn't include preferred sources of
modification. This remained unnoticed because lintian doesn't inspect the
content of archives in d/missing-sources. Unfortunately Roundcube is
still too dependent on the TinyCME version for us to switch to the
packaged version (see #784351), so we use secondary tarballs (repacked to
exclude generated files such as minified JS and CSS files) for now.
* d/control: Bump minimum node-less version to 3.0.0 as for later versions
evaluation of JavaScript inline is disabled by default unless the new --js
flag is set.
* d/patches: Add Forwarded: DEP-3 headers.
Checksums-Sha1:
0b6909e1a4c7f08525275cbf857af70e67f1a4ac 3110 roundcube_1.4.7+dfsg.2-1~bpo10+1.dsc
29cb2b018bad550c3a14406e7aefe4cc2532bf55 74936 roundcube_1.4.7+dfsg.2-1~bpo10+1.debian.tar.xz
619f9d8caae4b3204a9870b02a4236da6ae49cc1 9858 roundcube_1.4.7+dfsg.2-1~bpo10+1_amd64.buildinfo
Checksums-Sha256:
b3ba4ad1dbfb149f232d160fbed107905ca92ceaa6ed50743796023dbaf2206b 3110 roundcube_1.4.7+dfsg.2-1~bpo10+1.dsc
f9c6b531a6f305c31f047dfe9dfe42c1bf456fc87746d031f84181187f9c6ee6 74936 roundcube_1.4.7+dfsg.2-1~bpo10+1.debian.tar.xz
ba0d942536f607edc459c8ba71df37d5e3c8f496a3bd3cd1317f725fe46fcc68 9858 roundcube_1.4.7+dfsg.2-1~bpo10+1_amd64.buildinfo
Files:
1c388c4e72343b9f63600ef1e2893f32 3110 web optional roundcube_1.4.7+dfsg.2-1~bpo10+1.dsc
ce4670649c59d1d64b6f3aafaa04cbee 74936 web optional roundcube_1.4.7+dfsg.2-1~bpo10+1.debian.tar.xz
db468157260109df0c50aaf4ece8edcf 9858 web optional roundcube_1.4.7+dfsg.2-1~bpo10+1_amd64.buildinfo
-----BEGIN PGP SIGNATURE-----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=CM8o
-----END PGP SIGNATURE-----
Reply to: