ubuntu/+source/lintian:ubuntu/bionic-proposed

Last commit made on 2018-04-08
Get this branch:
git clone -b ubuntu/bionic-proposed https://git.launchpad.net/ubuntu/+source/lintian
Members of Ubuntu Server Dev import team can upload to this branch. Log in for directions.

Branch merges

Branch information

Name:
ubuntu/bionic-proposed
Repository:
lp:ubuntu/+source/lintian

Recent commits

5cfc34a... by Jeremy Bicha on 2018-04-08

Import patches-unapplied version 2.5.81ubuntu1 to ubuntu/bionic-proposed

Imported using git-ubuntu import.

Changelog parent: 704ae3b36c1943e65150677fa58489ef8fa7f611

New changelog entries:
  * Sync with Debian. Remaining change:
    - tests/binaries-general: Skip the binary-compiled-with-profiling-enabled
      test since it fails during Ubuntu's armhf autopkgtest

704ae3b... by lamby on 2018-04-07

Import patches-unapplied version 2.5.81 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 70d5a8a6150ef422c871fd6bc25d83cf6976028f

New changelog entries:
  The "Policy 4.1.4" release.
  * Summary of tag changes:
    + Added:
      - debian-rules-contains-unnecessary-get-orig-source-target
      - source-contains-empty-directory
    + Removed:
      - debian-rules-missing-good-practice-target-dfsg
  * checks/control-file.desc:
    + [CL] Correct location of "AutomaticDebugPackages" wiki page in the
      description of the debian-control-has-obsolete-dbg-package tag.
      Thanks to Antonio Ospite for the report. (Closes: #893480)
  * checks/cruft.{desc,pm}:
    + [CL] Add a pedantic warning for upstream tarballs that contain empty
      directories as these can cause problems with git-buildpackage.
      Thanks to Balint Reczey for the idea! (Closes: #894368)
  * checks/gir.{desc,pm}:
    + [CL] Apply a patch series from Simon McVittie to match the Gobject
      Introspection policy and fixing a series of false-positives. Thanks!
      (Closes: #881491)
  * checks/java.{desc,pm}:
    + [CL] Apply patch from Bas Couwenberg to bump the maximum permissible
      bytecode version number now that openjdk-9 is now the default-jdk.
      (Closes: #894397)
    + [CL] Apply patch from Bas Couwenberg to update the description of
      the unknown-java-class-version tag for openjdk-9. (Closes: #894397)
  * checks/files.pm:
    + [CL] Add .ogg files to the list of non-license file extensions to
      avoid a false-positive in extra-license-file. Thanks to Innocent De
      Marchi for the report. (Closes: #894139)
    + [CL] Avoid false-positives in Mallard XML files; <link href="...">
      tags are anchor element and not followed automatically. Thanks to
      Simon McVittie for the report. (Closes: #894690)
  * checks/rules.{desc,pm}:
    + [CL] Stop recommending that packages with repacked tarballs specify a
      get-orig-source target; this was removed in Debian Policy 4.1.4 in
      favour of uscan(1) and debian/watch.
    + [CL] Warn about packages that have apparently unnecessary
      "get-orig-source" targets such as single-line calls to uscan(1).
      Thanks to Mattia Rizzolo for the idea. (Closes: #895036)
  * checks/scripts.pm:
    + [CL] Also include the offending/unknown shebang in the output of
      missing (unversioned) interpreters.
  * checks/source-copyright.desc:
    + [CL] Change the severity from pedantic ("P:") to info ("I:") for the
      missing-explanation-for-repacked-upstream-tarball tag.
  * checks/testsuite.{desc,pm}:
    + [CL] Apply patch from Georg Faerber to add missing "needs-reboot" to
      the list of known autopkgtest restrictions. (Closes: #894817)
    + [CL] Apply patch from Georg Faerber to adjust the autopkgtest
      URIs from Alioth to salsa.debian.org. (Closes: #894820)
  * checks/udev.pm:
    + [CL] Apply patch from Thomas Dallmair to avoid false positives in the
      udev-rule-missing-subsystem tag when SUBSYSTEM GOTO is not the last
      "GOTO" statement. Thanks! (Closes: #894356)
  * checks/upstream-metadata.pm:
    + [CL] Re-enable YAML parsing of upstream metadata which was disabled
      in 2.5.51 (via #861958) to close CVE-2017-8829 as we can now use the
      $LoadBlessed option of YAML::XS if we have version 0.69 or above
      Thanks to Dylan Aïssi for the report. (Closes: #894747)
  * commands/lintian.pm, checks/{fields,patch-systems,python}, ...:
    + [CL] Apply patch from Ville Skyttä correcting many spelling mistakes
      in Lintian itself. Thanks! (Closes: #894834)
  * data/standards-version/release-dates:
    + [CL] Add 4.1.4 as a known Standards-Version.
  * data/spelling/corrections:
    + [PW] Add a number of corrections.
  * lib/Lintian/Check.pm:
    + [CL] Avoid false positives in spelling detection by allowing "(s)"
      suffixes instead of universally stripping all parenthesis. This
      prevents, for example, "directory(s)" from triggering false-positive
      whilst still warning about "directorys". Thanks to Patrick Matthäi
      for the report. (Closes: #894077)
  * lib/Lintian/Util.pm:
    + [NT] Fix a bug in do_fork that could cause lintian to fork bomb.
      (See #890873)

70d5a8a... by lamby on 2018-03-19

Import patches-unapplied version 2.5.80 to debian/sid

Imported using git-ubuntu import.

Changelog parent: e7d5970eef4196756f02fe64e0411aa0adc607d1

New changelog entries:
  * Summary of tag changes:
    + Added:
      - build-depends-on-build-essential-package-without-using-version
    + Removed:
      - apache2-module-depends-on-real-apache2-package
      - depends-on-build-essential-package-without-using-version
  * checks/apache2.{desc,pm}:
    + [CL] Drop apache2-module-depends-on-real-apache2-package tag as there
      are separate tags for missing apache2-api-* dependencies. Thanks to
      Thijs Kinkhorst et al. (Closes: #796285)
  * checks/cruft.{desc,pm}:
    + [CL] Strip \par elements from files prior to license checks to
      avoid false-positives when checking .rtf files. Thanks to Adam
      Borowski for the report and testcase. (Closes: #892967)
    + [CL] Look under all of /usr/share/doc (not just /usr/share/doc/$pkg)
      when looking for installed examples and update tag description to
      match. Thanks to Ferenc Wágner for the report. (Closes: #892905)
  * checks/java.{desc,pm}:
    + [CL] Only emit source-contains-prebuilt-java-object reported for .jar
      files that contain classes. Thanks to Emmanuel Bourg for the report.
      (Closes: #789802)
  * checks/fields.{desc,pm}:
    + [CL] Upgrade vcs-deprecated-in-debian-infrastructure to "W:" from "P"
      due to Alioth becoming read-only from May 1st, as well as
      additionally checking Vcs-Browser fields hosted on Alioth and
      updating the tag description with more details. Thanks to Stuart
      Prescott for his input. (Closes: #886096)
    + [CL] Only check dependency fields in binary packages for
      mail-transport-agent-dependency-does-not-specify-default-mta etc.
      (Closes: #892550)
  * checks/rules.pm:
    + [CL] Don't emit unnecessary-source-date-epoch-assignment if the
      package has explicit Build-Depends on dpkg-dev (>= 1.18.8) or
      debhelper (>= 10.10). Thanks to Andreas Metzler for the report.
      (Closes: #892549)
  * checks/script.pm:
    + [BR] Fix FP with sensible-utils need to depends on sensible-utils.
  * checks/fields.{desc,pm}:
    + [CL] Clarify the meaning of the
      depends-on-build-essential-package-without-using-version tag by
      prefixing it with "build-". Thanks to Sven Joachim and Laurent
      Bigonville. (Closes: #892597)
  * data/debhelper/*, data/common/dh_addons:
    + [CL] Refresh all debhelper data, correcting the entry for dh-scour.
      (Closes: #889016)
  * data/spelling/corrections:
    + [PW] Add a number of corrections.

e7d5970... by lamby on 2018-03-10

Import patches-unapplied version 2.5.79 to debian/sid

Imported using git-ubuntu import.

Changelog parent: ea648293e72b2791d7e5ede400e760f21554c407

New changelog entries:
  * Summary of tag changes:
    + Added:
      - default-mta-dependency-does-not-specify-mail-transport-agent
      - default-mta-dependency-not-listed-first
      - depends-on-mail-transport-agent-without-alternatives
      - mail-transport-agent-dependency-does-not-specify-default-mta
  * checks/changelog-file.{desc,pm}:
    + [CL] Ignore entries that end with ":" to avoid false-positives in the
      debian-changelog-line-too-short. Thanks to Mattia Rizollo for the
      report. (Closes: #892197)
    + [CL] Update the description of improbable-bug-number-in-closes
      removing the specific number as it can get out of sync with the
      actual check.
  * checks/changes-file.pm:
    + [CL] Don't emit orig-tarball-missing-upstream-signature when the
      package provides a "foo.tar.asc" for a "foo.tar.gz". We previously
      only checked for a "foo.tar.gz.asc". Thanks to Uwe Kleine-König for
      the report. (Closes: #892255)
  * checks/cruft.pm:
    + [CL] Check all subdirectories under /usr/share/doc/foo to test
      whether we ship example files, not just /usr/share/doc/foo/examples/.
  * checks/fields.{desc,pm}:
    + [CL] Warn about packages that have either have dependency on
      default-mta but do not specify mail-transport-agent, have a
      mail-transport-agent dependency but do not specify default-mta and
      packages that do not specify default-mta first in their alternatives.
      Thanks to Paul Wise for the report. (Closes: #892143)
    + [CL] Warn about packages that have a relationship with a
      mail-transport-agent but do not specify default-mta and
      mail-transport-agent as alternatives. (Closes: #892144)
  * checks/obsolete-sites.pm:
    + [CL] Emit a warning if a package uses a deprecated FTP package
      download location. (Closes: #892249)
  * data/fields/obsolete-packages:
    + [PW] Add exim and apache, replaced by exim4 and apache2
  * data/spelling/corrections:
    + [PW] Add a number of corrections.

ea64829... by lamby on 2018-03-05

Import patches-unapplied version 2.5.78 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 84ce05fb2ddfffa924d6e4e7b0e7212cf74c811c

New changelog entries:
  * Summary of tag changes:
    + Added:
      - missing-vcs-browser-field
  * checks/fields.{desc,pm}:
    + [CL] Warn about packages that are missing a Vcs-Browser header when
      we know that they have at least one Vcs-* header that has a
      browser-based interface. Thanks to Paul Wise for the report.
      (Closes: #891688)
  * data/spelling/corrections:
    + [CL] Drop the rouge → rogue correction; it's an (admittedly)
      old-fashioned word for red cheek makeup as well as being a
      fairly-common French word. It was causing a false-positive in the
      spelling-error-in-binary tag for osmocom-analog. Thorsten Alteholz
      for the report. (Closes: #891794)
    + [CL] Drop the wil → will correction as Wil is "a rather common
      name in the Netherlands". Thanks to Paul Gevers for the report.
      (Closes: #891935)
  * data/spelling/corrections:
    + [PW] Add a number of corrections.

84ce05f... by lamby on 2018-02-27

Import patches-unapplied version 2.5.77 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 89f1ad5780a51cee6cd64d80d3762cadf6afc662

New changelog entries:
  * Summary of tag changes:
    + Added:
      - built-using-field-on-arch-all-package
      - missing-built-using-field-for-golang-package
      - missing-xs-go-import-path-for-golang-package
  * checks/control-file.{desc,pm}:
    + [CL] Apply a patch from Michael Stapelberg to detect Golang packages
      with invalid or missing Built-Using headers. (Closes: #891072)
    + [CL] Apply patch from Michael Stapelberg to warn when packages do not
      specify a XS-Go-Import-Path. (Closes: #891184)
  * checks/rules.pm:
    + [CL] Allow rel="generator" and others; they do not cause internet
      access by default. Thanks to Raphaël Hertzog for the report.
      (Closes: #891301)
  * checks/version-substvars.pm:
    + [CL] Fix a bug in version-substvar-for-external-package parsing to
      prevent false-positives when the LHS of the binary relation contains
      a substvar. Thanks to Andreas Beckmann. (Closes: #726589)
  * data/common/architectures, etc.:
    + [CL] Update architecture lists to ensure the inclusion of riscv64.
      This will change everything. (Closes: #891387)
  * data/spelling/corrections:
    + [PW] Add a number of corrections.

89f1ad5... by lamby on 2018-02-21

Import patches-unapplied version 2.5.76 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 9970fc186d307648501d38e8be4ff710d910459f

New changelog entries:
  * Summary of tag changes:
    + Added:
      - debhelper-compat-file-contains-multiple-levels
      - debian-changelog-line-too-short
      - unnecessary-source-date-epoch-assignment
      - upstream-metadata-file-is-missing
    + Renamed:
      - co-maintained-package-with-no-vcs-headers ->
        co-maintained-package-with-no-vcs-fields.
      - desktop-contains-deprecated-header ->
        desktop-contains-deprecated-key.
      - xs-testsuite-header-in-debian-control ->
        xs-testsuite-field-in-debian-control.
      - unnecessary-testsuite-autopkgtest-header ->
        unnecessary-testsuite-autopkgtest-field.
      - xs-vcs-header-in-debian-control ->
        xs-vcs-field-in-debian-control.
  * General:
    + [CL] Apply a patch series from Ben Finney to correct inconsistent use
      of "header" terminology (versus "field", etc.) in descriptions and
      tag names. Thanks! (Closes: #890959)
  * checks/changelog-file.{desc,pm}:
    + [CL] Warn about changelog files that are too short. Thanks to Adrian
      Bunk for the suggestion. (Closes: #890920)
  * checks/cruft.pm:
    + [CL] Avoid false-positives in Jush's syntax highlighting definition
      files.
    + [CL] Avoid a false-positive when matching the fake Lena Söderberg
      image in libplacebo. Thanks to Thorsten Alteholz for the report.
      (Closes: #890943)
  * checks/debhelper.{desc,pm}:
    + [CL] Warn if packages define multiple compatibility levels in the
      "compat" file, typically via "echo 11 >> debian/compat" (instead of
      ">").
  * checks/fields.desc:
    + [CL] Correct a grammatical error and tighten up the language of the
      "binary-package-depends-on-toolchain-package" tag's description.
      Thanks to Gregor Herrmann for the report. (Closes: #890530)
  * checks/init.d.pm:
    + [CL] Also check for "RUN=" and "DAEMONRUN=" when evalating lines in
      /etc/default for "init.d-script-should-always-start-service"
      violations. Thanks to Laurent Bigonville. (Closes: #890916)
  * checks/rules.{desc,pm}:
    + [CL] Update override_dh_auto_test-does-not-check-DEB_BUILD_OPTIONS
      to fix a number of false positives. Thanks to Gregor Herrmann for
      the report. (Closes: #890537)
    + [CL] Also check, for example, "override_dh_fixperms-indep" and
      "override_dh_fixperms-arch" targets for
      "override_dh_fixperms-does-not-call-dh_fixperms", etc.
    + [CL] Prevent a large number of false-positives when checking the
      debian-rules-is-dh_make-template tag. Thanks to Evgeni Golov for
      the report. (Closes: #890660)
    + [CL] Check for unnecessary SOURCE_DATE_EPOCH assignments; it is
      either exported by dpkg >= 1.18.8 or one can include pkg-info.pk,
      etc. (Closes: #832099)
  * checks/scripts.pm:
    + [CL] Prevent some false-positives in udevadm-called-without-guard.
  * checks/upstream-metadata.{desc,pm}:
    + [CL] Apply patch from Dylan Aïssi to suggest maintainers add a
      debian/upstream/metadata file, although downgrade the check to
      "experimental" level for the time being. (Closes: #833007)
  * checks/watch-file.pm:
    + [CL] Use our new $PKGREPACK_REGEX to match and capture the suffix
      when looking at potential debian/watch mangling issues.
  * commands/reporting-html-reports.pm:
    + [NT] Stop including the uncompressed lintian log in the website
      as it consumes considerable space for no reason. Consumers
      should migrate to the compressed variant, which has been around
      for years and only consumes ~1/20th of the space.
  * data/files/python-generic-modules:
    + [CL] Detect "core" as an overly-generic module name. Thanks to
      Andreas Beckmann for the report. (Closes: #891027)
  * data/scripts/interpreters:
    + [CL] Add cwl-runner (to cwltool) as an interpreter for CWL scripts.
      Thanks to Michael Crusoe for the report. (Closes: #890667)
  * data/spelling/corrections:
    + [PW] Add a number of corrections.
  * debian/source/lintian-overrides:
    + [CL] Drop all the overrides for Lintian itself now that we use the
      <!nocheck> build profile for the previously-spurious warnings.
  * lib/Lintian/Util.pm:
    + [CL] Factor out the regex that matches "repacked" tarballs based on
      their filename.
  * lib/Lintian/Collect/{Changes,Sources}.pm:
    + [CL] Add repacked subroutines to check whether a package has been
      repacked or not.
  * reporting/templates/maintainer.tmpl:
    + [CL] Link package entries directly to sources.debian.org.
  * t/scripts/changelog-format.t:
    + [CL] Provide some possibly-helpful advice when violating the "entry
      header" changelog test.
  * t/tests/cruft-upstream-binaries:
    + [CL] Add a testcase to check that symlinked missing-sources do the
      right thing (re. #890468).

9970fc1... by lamby on 2018-02-14

Import patches-unapplied version 2.5.75 to debian/sid

Imported using git-ubuntu import.

Changelog parent: cce222bb45a5f391f47685e5d7193740c34d8022

New changelog entries:
  * Summary of tag changes:
    + Added:
      - debian-rules-uses-unnecessary-dh-argument
      - missing-explanation-for-repacked-upstream-tarball
      - udevadm-called-without-guard
  * checks/changelog-file.desc:
    + [CL] When checking latest-debian-changelog-entry-without-new-version
      ignore any change of epoch. (Closes: #889991)
  * checks/debhelper.{desc,pm}:
    + [CL] Warn when specifying --parallel to dh(1) in compat levels >= 10.
      Thanks to Nicolas Braud-Santoni for the idea. (Closes: #890358)
    + [CL] Add a missing verb to the long description of the
      dh-quilt-addon-but-quilt-source-format tag.
  * checks/files.pm:
    + [CL] Tidy logic for detecting allowed rel="" values in <link/>
      HTML tags.
    + [CL] Allow rel="canonical" in <link/> HTML tags; they are used by
      search engines (etc.) and do not cause internet access.
      (Closes: #762753)
  * checks/init.desc:
    + [CL] Improve various parts of the long description for
      init.d-script-should-always-start-service.
  * checks/patch-systems.{desc,pm}:
    + [CL] Avoid false positives when checking for typos by ignoring files
      or patch descriptions that contain the words "typo" or "spelling".
      Thanks to Bas Couwenberg for the report. (Closes: #889964)
    + [CL] Check the first line of the description separately for spelling
      errors to avoid false-positive duplicate checks across a patch
      description's synopsis and its body. (Closes: #890100)
  * checks/python.desc:
    + [CL] Underline that maintainers do not need to override the
      new-package-should-not-package-python2-module tag but rather leave a
      comment in debian/changelog.
  * checks/scripts.{desc,pm}:
    + [CL] Check for maintainer scripts that call udevadm without a guard
      as it can fail within a chroot. (Closes: #890298)
  * checks/source-copyright.{desc,pm}:
    + [CL] Emit a pendatic warning for packages with repacked upstream
      tarballs that lack a Files-Excluded or Comment header in
      debian/copyright.
  * collection/override-file:
    + [CL] Actually pick the first out of debian/source/lintian-overrides
      and debian/source.lintian-overrides. Thanks to Thorsten Glaser for
      the report. (Closes: #890361)
  * commands/reporting-html-reports.html:
    + [NT] Minimize generated SVG files if scour is installed and
      available in PATH.
  * data/spelling/corrections:
    + [PW] Add a number of corrections.

cce222b... by lamby on 2018-02-08

Import patches-unapplied version 2.5.74 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 80eb14cb53ecfc5e5080b8ca890ba02f39004914

New changelog entries:
  * Summary of tag changes:
    + Added:
      - control-tarball-compression-format
      - data-tarball-compression-format
      - debian-rules-is-dh_make-template
      - init.d-script-should-always-start-service
      - jar-contains-source
      - missing-systemd-service-for-init.d-script
      - override_dh_auto_test-does-not-check-DEB_BUILD_OPTIONS
      - source-contains-prebuilt-wasm-binary
      - spelling-error-in-patch-description
      - systemd-service-file-refers-to-unusual-wantedby-target
    + Renamed:
      - systemd-no-service-for-init-script ->
        omitted-systemd-service-for-init.d-script
      - systemd-no-service-for-init-rcS-script ->
        missing-systemd-service-for-init.d-rcS-script
    + Removed:
      - override_dh_auto_test-does-not-check-DEB_BUILD_PROFILES
  * checks/changelog-file.desc:
    + [CL] Improve the long description of epoch-change-without-comment.
      Based on suggestions by Raphael Hertzog and Ian Jackson - thanks!
      (Closes: #889814)
  * checks/cruft.desc:
    + [BR] Check for wasm files. (Closes: #889102)
    + [CL] Factor out call to _ships_examples to avoid excessive looping
      over $sorted_index.
    + [CL] Do not emit package-does-not-install-examples if we don't have
      any binary packages in our laboratory. (Closes: #889591)
    + [CL] Improve the description of package-does-not-install-examples to
      give more debhelper advice.
    + [CL] Assume that if a source package generates a binary ending in
      "-examples" then it does ship examples.
  * checks/deb-format.{desc,pm}:
    + [CL] Add a classification tag for the .deb data tarball compression
      format. (Closes: #738442)
    + [CL] Add a classification tag for the control tarball compression
      format. (Closes: #889856)
  * checks/fields.pm:
    + [CL] Avoid false positives when checking binary packages depending on
      toolchain packages by ignoring packages starting with "dh-" or ending
      with "-source". Thanks to Josh Triplett for the report.
      (Closes: #889486)
  * checks/files.pm:
    + [BR] Add context for privacy breach in order to improve debugging.
  * checks/fields.desc:
    + [CL] Downgrade severity of build-depends-on-obsolete-package from
      error to warning. (Closes: #889638)
  * checks/java.{desc,pm}:
    + [CL] Only warn about bad-jar-name for "public" .jar files.
      (Closes: #889628)
    + [CL] Check for .jar files that embed Foo.java alongside a Foo.class
      file. (Closes: #762113)
  * checks/init.d.{desc,pm}:
    + [CL] Warn about packages that use ENABLED="true" (etc.) in
      /etc/default files.
  * checks/patch-systems.{desc,pm}:
    + [CL] Avoid emitting "Can't use an undefined value as an ARRAY
      reference" warnings when debian/patches is a file, not a directory.
      (Closes: #889535)
    + [CL] Check spelling of patch headers. (Closes: #756130)
  * checks/rules.{desc,pm}:
    + [CL] Fix a number of false-positives when checking the
      "override_dh_auto_test-does-not-check-DEB_BUILD_PROFILES" tag
      (Closes: #889592)
    + [CL] Make a large number of changes suggested by Mattia Rizzolo to
      the override_dh_auto_test-does-not-check-DEB_BUILD_PROFILES tag,
      renaming it to reference DEB_BUILD_OPTIONS throughout, add Debian
      Policy 4.9.1 to the tag's Ref, lower "Certanty" to "wild-guess" and
      mark the tag as experimental, updating the tests to match.
      (Closes: #889746)
    + [CL] Check for debian/rules files that are dh_make templates.
      (Closes: #679124)
  * checks/scripts.desc:
    + [CL] Improve, elaborate and tidy the long description of the
      maintainer-script-should-not-use-recursive-chown-or-chmod tag.
      Heavily based on a patch by Daniel Kahn Gillmor - thanks!
      (Closes: #889489)
  * checks/source-copyright.pm:
    + [CL] Prevent false positives when checking for missing NOTICE.txt
      files by looking inside .jar archives. (Closes: #889760)
  * checks/systemd.{desc,pm}:
    + [CL] Warn about unit files that install to usual WantedBy= targets.
      Thanks to Sam Morris for the initial patch. (Closes: #817170)
    + [CL] Rework the no service detection, improving the (rarely
      overridden) tag names to better match what they detect as well as
      adding a new "missing-systemd-service-for-init.d-script" pedantic tag
      where we do not have an equivalent unit as this implies missing
      bespoke security hardening support, etc. Thanks to Lucas Nussbaum for
      his input. (Closes: #858588)
  * checks/udev.pm:
    + [CL] Add simple GOTO parsing to avoid false positives when checking
      for udev rules for SUBSYSTEM specifiers. (Closes: #869547, #889639)
  * commands/reporting-{html-reports,lintian-harness}.pm:
    + [NT] Register packages that fail during archive wide processing.
  * data/files/privacy-breaker-fragments:
    + [BR] Detect new fragments for Google CSE.
  * data/spelling/corrections:
    + [PW] Add a number of corrections.
  * lib/Lintian/Util.pm:
    + [NT] Give lower processing priority to packages that repeatedly
      trigger errors during archive-wide processing.
  * reporting/templates/index.tmpl:
    + [NT] Display summary of how many groups had errors during their
      last processing.
  * reporting/templates/{lintian.css,maintainer}.tmpl:
    + [NT] Use a distinct error status instead of "Outdated" for
      packages with errors during their last processing.

80eb14c... by lamby on 2018-02-03

Import patches-unapplied version 2.5.73 to debian/sid

Imported using git-ubuntu import.

Changelog parent: 90e077f2288521f8af88422d45811ce0b142fbcd

New changelog entries:
  * Summary of tag changes:
    + Added:
      - bad-jar-name
      - binary-package-depends-on-toolchain-package
      - checksum-count-mismatch-in-changes-file
      - co-maintained-package-with-no-vcs-headers
      - description-mentions-planned-features
      - files-excluded-without-copyright-format-1.0
      - global-files-wildcard-not-first-paragraph-in-dep5-copyright
      - maintainer-script-should-not-use-recursive-chown-or-chmod
      - missing-explanation-for-contrib-or-non-free-package
      - multi-arch-same-package-has-arch-specific-overrides
      - override_dh_auto_test-does-not-check-DEB_BUILD_PROFILES
      - package-does-not-install-examples
      - package-uses-deprecated-dpatch-patch-system
      - package-uses-deprecated-source-override-location
      - unusual-documentation-package-name
  * checks/cruft.{desc,pm}:
    + [CL] When looking for the source of "build/foo/bar.min.js", also
      check "src/foo/bar.js". (Closes: #832027)
    + [CL] Check for upstream tarballs that ship examples but none is
      installed in any binary package. (Closes: #539326)
  * checks/debian-source-dir.desc:
    + [CL] Upgrade severity of missing-debian-source-format from wishlist
      ("I") to normal ("W"). (Closes: #702671)
  * checks/description.{desc.pm}:
    + [CL] Check for packages that mention planned/upcoming features in
      their long description. (Closes: #782990)
    + [CL] Improve the description-synopsis-might-not-be-phrased-properly
      tag also detect multiple sentences and improve the tag description.
      (Closes: #778427)
  * checks/changes-file.{desc.pm}:
    + [CL] Fix an issue where the bad-section-in-changes-file,
      file-size-mismatch-in-changes-file and
      checksum-mismatch-in-changes-file tags were not being checked if a
      package contained an upstream signature.
    + [CL] Check for inconsistencies between "Files" and Checksums-*
      sections in .changes files. (Closes: #658542)
  * checks/cruft.{desc.pm}:
    + [CL] Add pedantic warning for packages using source.lintian-overrides
      instead of debian/source/lintian-overrides.
  * checks/fields.{desc,pm}:
    + [CL] Add a pedantic warning for co-maintained packages that are not
      managed in a revision control system. (Closes: #884497)
    + [CL] Warn about Multi-Arch: same packages that ship
      architecture-specific Lintian overrides. Thanks to Sebastian
      Ramacher for the report. (Closes: #787469)
    + [CL] Check for packages that specify binary dependencies on toolchain
      packages such as cdbs or debhelper. (Closes: #700953)
    + [CL] Emit a warning about documentation packages that end with -docs.
      (Closes: #664520)
    + [CL] Ensure salsa.debian.org Vcs-Git and Vcs-Browser URIs are
      canonical and do not redirect. (Closes: #888809)
  * checks/files.pm:
    + [CL] Support scanning contents of (eg.) data/files/js-libraries.
  * checks/java.{desc,pm}:
    + [CL] Check for .jar files that do not match the Debian Java policy.
      (Closes: #791552)
  * checks/patch-systems.{desc,pm}:
    + [CL] Emit a pedantic warning for packages that are using the dpatch
      patch system. (Closes: #884500)
  * checks/rules.pm:
    + [CL] Check for override_dh_auto_test targets that do not check
      DEB_BUILD_OPTIONS for "nocheck". (Closes: #712394)
  * checks/scripts.desc:
    + [CL] Update the maintainer-script-should-not-use-service tag to
      include advice and Debian Policy reference. (Closes: #889154)
  * checks/source-copyright.{desc,pm}:
    + [CL] Warn about packages that specify a Files-Excluded header without
      a valid Format header as the former will be ignored by uscan(1).
      Thanks to Gunnar Wolf for the initial patch. (Closes: #745743)
    + [CL] Warn when a "Files: *" DEP-5 paragraph exists but it is not the
      first paragraph. Thank to Christoph Biedl for the report and idea.
      (Closes: #879235)
    + [CL] Ask maintainers to add a comment header to debian/copyright if
      their package is in contrib or non-free. (Closes: #773562)
  * commands/reporting-html-reports.pm:
    + [NT] Add a limit to how many instances of a tag is deplayed on a tag
      page as 151 000 instances of unstripped-static-library is hardly
      human readable.
  * data/spelling/corrections:
    + [PW] Add a number of corrections.
  * data/common/dh_addons:
    + [CL] Move/create from data/debhelper/dh_addons as we plan to use
      it elsewhere.
  * data/debhelper/dh_commands:
    + [CL] Update requirement for dh_scour (again!) from python3-scour to
      scour. (Closes: #889016)
  * data/debhelper/dh_commands-manual:
    + [NT] Remove dh_systemd* entries. Debian stable have a recent
      enough version of debhelper that this entry no longer matters.
  * data/files/fnames:
    + [CL] Ensure package-contains-python-doctree-file also warns about
      compressed .doctree files.
  * data/files/js-libraries:
    + [CL] Avoid false-positives when detecting Twitter's bootstrap
      library. (Closes: #888972)
  * data/files/python-generic-modules:
    + [CL] Detect "backports" (and "backport") as overly generic Python
      module names. (Closes: #888559)
  * data/scripts/maintainer-script-bad-command:
    + [CL] Warn if the maintainer scripts include "chown -R" or "chmod -R"
      to prevent hardlink attacks on kernels that do not have
      fs.protected_hardlinks=1. (Closes: #889066)
  * doc/lintian.xml:
    + [CL] Use the debian/source/lintian-overrides location in override
      example.
  * lib/Lintian/*:
    + [CL] Add support for passing .buildinfo files to Lintian.
      (Closes: #853274)
  * reporting/templates/tag.tmpl:
    + [NT] Update template to mention tag limit when not all instances
      are shown.