Here is my monthly update covering a large part of what I have been doing in the free software world (previously):
- Released try.diffoscope.org, a hosted version of the diffoscope in-depth and content aware diff utility. Thanks to Bytemark for sponsoring the hardware.
- Announced travis.debian.net, a hosted script to easily test and build Debian packages on Travis CI.
- Wrote an Chrome extension for the FastMail web interface that reminds you if you neglect to attach a file if you mention one in the body. (Repo)
- Added graphical image comparison using to diffoscope using libcaca. (commit)
- Did further work on a free-software healthcare project.
- Added the ability to hide Zwift activities in my Strava Enhancement Suite Chrome extension. (#40)
- Updated the Django web framework documentation to discourage the use of filenames in /tmp with predictable names. (#5864)
- Corrected a Python 3.5-ism and a double-encoding issue in django-slack.
- Increased the size of the search form on codesearch.debian.net. (#59)
- Added support for filenames—alongside the existing URL support—for book cover images in my media database. (code)
- Corrected a trivial typo in FreeBSD's pkg package management tool. (#1353)
- Attended the 32nd Chaos Communication Congress.
Debian
- Attended the first cross-distribution Reproducible Builds summit in Athens, Greece.
- Gave a talk at skroutz.gr on Reproducible Builds.
- Became an FTP assistant again in an attempt to tame the ever-growing NEW queue.
- Did some initial work on a reproducible mode for debootstrap. (commit)
- Added an explicit note about package ordering on the Reproducible Builds "package notes" pages. (commit)
- Added hyperlink support to dak's NEW queue's Homepage field.
My work in the Reproducible Builds project was also covered in more depth in Lunar's weekly reports (#31, #32, #33, #34).
LTS
This month I have been paid to work 12 hours on Debian Long Term Support (LTS). In that time I did the following:
- Issued DLA 363-1 for libphp-phpmailer fixing a header injection vulnerability.
- Issued DLA 365-1 for foomatic-filters correcting a shell injection vulnerability.
- Issued DLA 369-1 for pygments fixing an issue shell injection vulnerability.
- Issued DLA 374-1 for cacti to fix an SQL injection vulnerability.
- Did some futher investigation of CVE-2011-5325 in busybox.
Uploads
- python-django (1.9) — New upstream release.
- redis (3.0.6) — New upstream stable release. I additionally backported this package to Debian stable.
- redis (3.2~rc1) — Uploaded upstream's "testing/next" branch to experimental for testing.
- gunicorn (19.4.1) — New upstream release.
FTP Team
As a Debian FTP assistant I ACCEPTed 45 packages: apt-show-source, dompurify.js, groonga, haskell-cryptol, initramfs-tools, iprange, jailer, jquery-slugify.js, jquery-ui-touch-punch.js, koji, lazy-object-proxy, libanyevent-termkey-perl, libjs-favico.js, liblwp-useragent-chicaching-perl, librdf-ns-curated-perl, libterm-termkey-perl, libvpx, lua-ansicolors, lwn4chrome, mimeo, node-isstream, onionbalance, osrm, profitbricks-sdk-python, pygeoif, pypi2deb, python-getdns, python-inflect, python-keyutils, python-nmea2, python-pika, qtip2.js, ruby-clockwork, ruby-innertube, ruby-joiner, ruby-middleware, ruby-pundit, ruby-rails-assets-jquery-nicescroll, ruby-rails-tokeninput, sqlacodegen, tails-installer, taskd, typeahead.js, udiskie & webcamoid and REJECTed 4.
Bugs filed
Patches contributed
- glib2.0: Please make the output of glib-mkenums makefile snippets reproducible
- d-shlibs: Please make the order of ${devlibs:Depends} substvar deterministic
- air-quality-sensor: Please make the build reproducible
- breathe: Please make the output reproducible
- buzztrax: Please make the build reproducible
- glance: Please make the build reproducible
- guiqwt: Please make the build reproducible
- hy: Please make the build reproducible
- jacal: Please make the build reproducible
- libjs-jcrop: Please make the build reproducible
- monit: Please make the build reproducible
- python-caja: Please make the build reproducible
- python-genpy: Please make the output reproducible
- pywavelets: Please make the build reproducible
- ruby-ronn: Please make the output reproducible
- seqan: Please make the build reproducible
- suomi-malaga: Please make the build reproducible
- tj3: Please make the build reproducible
- transdecoder: Please make the build reproducible
- visp-images: Please make the build reproducible
- vowpal-wabbit: Please make the build reproducible
I also filed FTBFS bugs against acpid, android-platform-frameworks-base, antlr3, artemis, beignet, bisonc++, bobcat, bustle, cargo, checkbox-ng, code2html, cplay, datanommer.commands, dcmtkpp, debci, diffutils, diod, django-restricted-resource, docker-libkv, doomsday, dvdauthor, dwww, elasticsearch, elki, flask-script, freeipa, fso-frameworkd, funny-manpages, ggcov, ghc-mod, gmpc-plugins, gparted, gs-collections, guacamole-server, guncat, haskell-concrete-typerep, haskell-geniplate, haskell-nats, haskell-x509-util, hawtbuf, heimdal, htsjdk, inspircd, jboss-xnio, jenkins-winstone, jpeginfo, jruby-openssl, kaffeine, kdbg, ktp-accounts-kcm, kuser, libcommons-cli-java, libcommons-openpgp-java, libconfig-model-lcdproc-perl, libdata-faker-perl, libexplain, libgettext-commons-java, libgtk2-ex-printdialog-perl, libmoops-perl, libnet-frame-perl, libsendmail-milter-perl, libupnp, libuv, libvpx, liwc, m4, maven2, meep-mpich2, nagios-plugin-check-multi, natlog, netpipe, ocserv, ogre-1.8, orthanc-dicomweb, perspectives-extension, php-mail, php-pinba, phpseclib, pkg-haskell-tools, plastimatch, plexus-compiler, plexus-compiler-1.0, python-acme, python-crontab, python-cs, python-csscompressor, python-debian, python-distutils-extra, python-django-compressor, python-django-openstack-auth, python-django-tagging, python-pygit2, python-pyramid, python-pywcs, python-releases, python-shade, python-statsd, python-tasklib, python-tasklib, python-webm, python-websockets, regina-normal, rinetd, roboptim-core, rpm2html, rpm2html, ruby-factory-girl, ruby-fogbugz, ruby-i18n-inflector, ruby-loofah, ruby-protected-attributes, ruby-rack-contrib, ruby-rufus-scheduler, ruby-sanitize, ruby-sidetiq, ruby-sinatra, scsh-0.6, shogun, sleekxmpp, slugimage, spatial4j, sqwebmail-de, trac-announcer, ttt, txaws, umbrello, wine-gecko-2.21, xboxdrv, xfonts-wqy, xserver-xorg-video-openchrome, yorick & yoshimi.