2022-12-05 22:11:24 |
Jeremy Bícha |
bug |
|
|
added bug |
2022-12-05 22:11:33 |
Jeremy Bícha |
gnome-sushi (Ubuntu): status |
New |
Incomplete |
|
2022-12-06 15:26:35 |
Jeremy Bícha |
description |
[Availability]
The package gnome-sushi is already in Ubuntu universe.
The package gnome-sushi builds for the architectures it is designed to work on (all Ubuntu architectures except i386 which isn't needed)
https://launchpad.net/ubuntu/+source/editorconfig-core
[Rationale]
Sushi has been a part of GNOME Core since I think GNOME 3.2. It was included in the obsolete Ubuntu GNOME flavor. Although proposed for inclusion in the default Ubuntu install years ago, it just wasn't a high priority before. Generally, we want to include GNOME Core features in Ubuntu Desktop unless we have good reason not to.
Sushi is a quick file previewer that extends the default file browser Nautilus.
https://help.ubuntu.com/stable/ubuntu-help/files-preview.html
It is requested in Ubuntu main no later than February 23 because that's Feature Freeze for Ubuntu 23.04.
[Security]
TODO
- no `suid` or `sgid` binaries
- no executables in `/sbin` and `/usr/sbin`
- Package does install services, timers or recurring jobs
+ a NautilusPreviewer D-Bus service
* Which has the following security feature: webkitgtk sandbox
- Packages does not open privileged ports (ports < 1024)
- Packages does not contain extensions to security-sensitive software
[Quality assurance - function/usage]
- The package works well right after install
[Quality assurance - maintenance]
- The package is maintained well in Debian/Ubuntu and has not too many open Ubuntu bug reports except for this MIR. No open Debian bugs.
- Ubuntu https://bugs.launchpad.net/ubuntu/+source/gnome-sushi
- Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=gnome-sushi
- The package does not deal with exotic hardware we cannot support
[Quality assurance - testing]
- No build tests, no autopkgtest
[Quality assurance - packaging]
debian/watch is present and works
- This package does not yield massive lintian Warnings, Errors
- Please link to a recent build log of the package
- Please attach the full output you have got from `lintian --pedantic` as an extra post to this bug.
- This package has no python2 or GTK2 dependencies
- The package will be installed by default and does not ask debconf questions
- Packaging and build is easy using dh7 style rules
https://salsa.debian.org/gnome-team/gnome-sushi/-/blob/debian/master/debian/rules
[UI standards]
TODO
[Dependencies]
- No further depends or recommends dependencies that are not yet in main
[Standards compliance]
- This package correctly follows FHS and Debian Policy
[Maintenance/Owner]
- Owning Team will be Desktop Packages
- Team is not yet subscribed to the package
- This does not use static builds
- This does not use vendored code
- This package is not rust based
- The package has been built in the archive more recently than the last test rebuild
[Background information]
The upstream project name is "Sushi". The package is named GNOME Sushi in Debian and Ubuntu to avoid potential name conflicts.
Link to upstream code:
https://gitlab.gnome.org/GNOME/sushi |
[Availability]
The package gnome-sushi is already in Ubuntu universe.
The package gnome-sushi builds for the architectures it is designed to work on (all Ubuntu architectures except i386 which isn't needed)
https://launchpad.net/ubuntu/+source/editorconfig-core
[Rationale]
Sushi has been a part of GNOME Core since I think GNOME 3.2. It was included in the obsolete Ubuntu GNOME flavor. Although proposed for inclusion in the default Ubuntu install years ago, it just wasn't a high priority before. Generally, we want to include GNOME Core features in Ubuntu Desktop unless we have good reason not to.
Sushi is a quick file previewer that extends the default file browser Nautilus.
https://help.ubuntu.com/stable/ubuntu-help/files-preview.html
It is requested in Ubuntu main no later than February 23 because that's Feature Freeze for Ubuntu 23.04.
[Security]
- Had 1 security issue in the past
+ CVE-2019-19308 fixed in Ubuntu 22.04 LTS, unfixed in Ubuntu 20.04 LTS
* https://security-tracker.debian.org/tracker/CVE-2019-19308
* https://ubuntu.com/security/CVE-2019-19308 (tracker outdated)
- no `suid` or `sgid` binaries
- no executables in `/sbin` and `/usr/sbin`
- ***Package does install services, timers or recurring jobs***
+ a NautilusPreviewer D-Bus service
* Which has the following security feature: webkitgtk sandbox
- Packages does not open privileged ports (ports < 1024)
- Packages does not contain extensions to security-sensitive software
[Quality assurance - function/usage]
- The package works well right after install
[Quality assurance - maintenance]
- The package is maintained well in Debian/Ubuntu and has not too many open Ubuntu bug reports except for this MIR. No open Debian bugs.
- Ubuntu https://bugs.launchpad.net/ubuntu/+source/gnome-sushi
- Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=gnome-sushi
- The package does not deal with exotic hardware we cannot support
[Quality assurance - testing]
- The package does not run a test at build time because it's basically a graphical app and tests haven't been written.
- The package does not run an autopkgtest because same reason.
- TODO: To make up for that, the Desktop Team will add a manual test plan to https://wiki.ubuntu.com/CategoryDesktopTestPlans
[Quality assurance - packaging]
- debian/watch is present and works
- debian/control defines a correct Maintainer field
- This package does not yield massive lintian Warnings, Errors
- Please link to a recent build log of the package
https://launchpad.net/ubuntu/+source/gnome-sushi/43.0-2/+build/24903326
- Please attach the full output you have got from `lintian --pedantic` as an extra post to this bug.
- This package does not rely on obsolete or about to be demoted packages.
- This package has no python2 or GTK2 dependencies
- The package will be installed by default and does not ask debconf questions
- Packaging and build is easy using dh7 style rules
https://salsa.debian.org/gnome-team/gnome-sushi/-/blob/debian/master/debian/rules
[UI standards]
- Application is end-user facing, Translation is present, via standard
intltool/gettext or similar build and runtime internationalization
- End-user applications without desktop file, not needed because this is basically an extension to Nautilus which does provide a desktop file.
[Dependencies]
- No further depends or recommends dependencies that are not yet in main
[Standards compliance]
- This package correctly follows FHS and Debian Policy
[Maintenance/Owner]
- Owning Team will be Desktop Packages
- Team is not yet not yet, but will subscribe to the package before promotion
- This does not use static builds
- This does not use vendored code
- This package is not rust based
- The package has been built in the archive more recently than the last test rebuild
[Background information]
The upstream project name is "Sushi". The package is named GNOME Sushi in Debian and Ubuntu to avoid potential name conflicts.
Link to upstream code:
https://gitlab.gnome.org/GNOME/sushi
The upstream project is currently without a dedicated maintainer. However, the feature does work.
Because it doesn't have a dedicate maintainer, there was a suggestion to remove it from GNOME Core, but it was decided that there wasn't enough reason to remove it.
https://gitlab.gnome.org/GNOME/gnome-build-meta/-/issues/525 |
|
2022-12-06 15:27:21 |
Jeremy Bícha |
gnome-sushi (Ubuntu): status |
Incomplete |
New |
|
2022-12-06 15:28:39 |
Jeremy Bícha |
description |
[Availability]
The package gnome-sushi is already in Ubuntu universe.
The package gnome-sushi builds for the architectures it is designed to work on (all Ubuntu architectures except i386 which isn't needed)
https://launchpad.net/ubuntu/+source/editorconfig-core
[Rationale]
Sushi has been a part of GNOME Core since I think GNOME 3.2. It was included in the obsolete Ubuntu GNOME flavor. Although proposed for inclusion in the default Ubuntu install years ago, it just wasn't a high priority before. Generally, we want to include GNOME Core features in Ubuntu Desktop unless we have good reason not to.
Sushi is a quick file previewer that extends the default file browser Nautilus.
https://help.ubuntu.com/stable/ubuntu-help/files-preview.html
It is requested in Ubuntu main no later than February 23 because that's Feature Freeze for Ubuntu 23.04.
[Security]
- Had 1 security issue in the past
+ CVE-2019-19308 fixed in Ubuntu 22.04 LTS, unfixed in Ubuntu 20.04 LTS
* https://security-tracker.debian.org/tracker/CVE-2019-19308
* https://ubuntu.com/security/CVE-2019-19308 (tracker outdated)
- no `suid` or `sgid` binaries
- no executables in `/sbin` and `/usr/sbin`
- ***Package does install services, timers or recurring jobs***
+ a NautilusPreviewer D-Bus service
* Which has the following security feature: webkitgtk sandbox
- Packages does not open privileged ports (ports < 1024)
- Packages does not contain extensions to security-sensitive software
[Quality assurance - function/usage]
- The package works well right after install
[Quality assurance - maintenance]
- The package is maintained well in Debian/Ubuntu and has not too many open Ubuntu bug reports except for this MIR. No open Debian bugs.
- Ubuntu https://bugs.launchpad.net/ubuntu/+source/gnome-sushi
- Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=gnome-sushi
- The package does not deal with exotic hardware we cannot support
[Quality assurance - testing]
- The package does not run a test at build time because it's basically a graphical app and tests haven't been written.
- The package does not run an autopkgtest because same reason.
- TODO: To make up for that, the Desktop Team will add a manual test plan to https://wiki.ubuntu.com/CategoryDesktopTestPlans
[Quality assurance - packaging]
- debian/watch is present and works
- debian/control defines a correct Maintainer field
- This package does not yield massive lintian Warnings, Errors
- Please link to a recent build log of the package
https://launchpad.net/ubuntu/+source/gnome-sushi/43.0-2/+build/24903326
- Please attach the full output you have got from `lintian --pedantic` as an extra post to this bug.
- This package does not rely on obsolete or about to be demoted packages.
- This package has no python2 or GTK2 dependencies
- The package will be installed by default and does not ask debconf questions
- Packaging and build is easy using dh7 style rules
https://salsa.debian.org/gnome-team/gnome-sushi/-/blob/debian/master/debian/rules
[UI standards]
- Application is end-user facing, Translation is present, via standard
intltool/gettext or similar build and runtime internationalization
- End-user applications without desktop file, not needed because this is basically an extension to Nautilus which does provide a desktop file.
[Dependencies]
- No further depends or recommends dependencies that are not yet in main
[Standards compliance]
- This package correctly follows FHS and Debian Policy
[Maintenance/Owner]
- Owning Team will be Desktop Packages
- Team is not yet not yet, but will subscribe to the package before promotion
- This does not use static builds
- This does not use vendored code
- This package is not rust based
- The package has been built in the archive more recently than the last test rebuild
[Background information]
The upstream project name is "Sushi". The package is named GNOME Sushi in Debian and Ubuntu to avoid potential name conflicts.
Link to upstream code:
https://gitlab.gnome.org/GNOME/sushi
The upstream project is currently without a dedicated maintainer. However, the feature does work.
Because it doesn't have a dedicate maintainer, there was a suggestion to remove it from GNOME Core, but it was decided that there wasn't enough reason to remove it.
https://gitlab.gnome.org/GNOME/gnome-build-meta/-/issues/525 |
[Availability]
The package gnome-sushi is already in Ubuntu universe.
The package gnome-sushi builds for the architectures it is designed to work on (all Ubuntu architectures except i386 which isn't needed)
https://launchpad.net/ubuntu/+source/editorconfig-core
[Rationale]
Sushi has been a part of GNOME Core since I think GNOME 3.2. It was included in the obsolete Ubuntu GNOME flavor. Although proposed for inclusion in the default Ubuntu install years ago, it just wasn't a high priority before. Generally, we want to include GNOME Core features in Ubuntu Desktop unless we have good reason not to.
Sushi is a quick file previewer that extends the default file browser Nautilus.
https://help.ubuntu.com/stable/ubuntu-help/files-preview.html
It is requested in Ubuntu main no later than February 23 because that's Feature Freeze for Ubuntu 23.04.
[Security]
- Had 1 security issue in the past
+ CVE-2019-19308 fixed in Ubuntu 22.04 LTS, unfixed in Ubuntu 20.04 LTS
* https://security-tracker.debian.org/tracker/CVE-2019-19308
* https://ubuntu.com/security/CVE-2019-19308 (tracker outdated)
- no `suid` or `sgid` binaries
- no executables in `/sbin` and `/usr/sbin`
- ***Package does install services, timers or recurring jobs***
+ a NautilusPreviewer D-Bus service
* Which has the following security feature: webkitgtk sandbox
* Because it's a separate process, a Sushi crash won't also crash Nautilus
- Packages does not open privileged ports (ports < 1024)
- Packages does not contain extensions to security-sensitive software
[Quality assurance - function/usage]
- The package works well right after install
[Quality assurance - maintenance]
- The package is maintained well in Debian/Ubuntu and has not too many open Ubuntu bug reports except for this MIR. No open Debian bugs.
- Ubuntu https://bugs.launchpad.net/ubuntu/+source/gnome-sushi
- Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=gnome-sushi
- The package does not deal with exotic hardware we cannot support
[Quality assurance - testing]
- The package does not run a test at build time because it's basically a graphical app and tests haven't been written.
- The package does not run an autopkgtest because same reason.
- TODO: To make up for that, the Desktop Team will add a manual test plan to https://wiki.ubuntu.com/CategoryDesktopTestPlans
[Quality assurance - packaging]
- debian/watch is present and works
- debian/control defines a correct Maintainer field
- This package does not yield massive lintian Warnings, Errors
- Please link to a recent build log of the package
https://launchpad.net/ubuntu/+source/gnome-sushi/43.0-2/+build/24903326
- Please attach the full output you have got from `lintian --pedantic` as an extra post to this bug.
- This package does not rely on obsolete or about to be demoted packages.
- This package has no python2 or GTK2 dependencies
- The package will be installed by default and does not ask debconf questions
- Packaging and build is easy using dh7 style rules
https://salsa.debian.org/gnome-team/gnome-sushi/-/blob/debian/master/debian/rules
[UI standards]
- Application is end-user facing, Translation is present, via standard
intltool/gettext or similar build and runtime internationalization
- End-user applications without desktop file, not needed because this is basically an extension to Nautilus which does provide a desktop file.
[Dependencies]
- No further depends or recommends dependencies that are not yet in main
[Standards compliance]
- This package correctly follows FHS and Debian Policy
[Maintenance/Owner]
- Owning Team will be Desktop Packages
- Team is not yet not yet, but will subscribe to the package before promotion
- This does not use static builds
- This does not use vendored code
- This package is not rust based
- The package has been built in the archive more recently than the last test rebuild
[Background information]
The upstream project name is "Sushi". The package is named GNOME Sushi in Debian and Ubuntu to avoid potential name conflicts.
Link to upstream code:
https://gitlab.gnome.org/GNOME/sushi
The upstream project is currently without a dedicated maintainer. However, the feature does work.
Because it doesn't have a dedicate maintainer, there was a suggestion to remove it from GNOME Core, but it was decided that there wasn't enough reason to remove it.
https://gitlab.gnome.org/GNOME/gnome-build-meta/-/issues/525 |
|
2022-12-06 15:35:27 |
Jeremy Bícha |
bug |
|
|
added subscriber MIR approval team |
2022-12-06 15:35:52 |
Jeremy Bícha |
description |
[Availability]
The package gnome-sushi is already in Ubuntu universe.
The package gnome-sushi builds for the architectures it is designed to work on (all Ubuntu architectures except i386 which isn't needed)
https://launchpad.net/ubuntu/+source/editorconfig-core
[Rationale]
Sushi has been a part of GNOME Core since I think GNOME 3.2. It was included in the obsolete Ubuntu GNOME flavor. Although proposed for inclusion in the default Ubuntu install years ago, it just wasn't a high priority before. Generally, we want to include GNOME Core features in Ubuntu Desktop unless we have good reason not to.
Sushi is a quick file previewer that extends the default file browser Nautilus.
https://help.ubuntu.com/stable/ubuntu-help/files-preview.html
It is requested in Ubuntu main no later than February 23 because that's Feature Freeze for Ubuntu 23.04.
[Security]
- Had 1 security issue in the past
+ CVE-2019-19308 fixed in Ubuntu 22.04 LTS, unfixed in Ubuntu 20.04 LTS
* https://security-tracker.debian.org/tracker/CVE-2019-19308
* https://ubuntu.com/security/CVE-2019-19308 (tracker outdated)
- no `suid` or `sgid` binaries
- no executables in `/sbin` and `/usr/sbin`
- ***Package does install services, timers or recurring jobs***
+ a NautilusPreviewer D-Bus service
* Which has the following security feature: webkitgtk sandbox
* Because it's a separate process, a Sushi crash won't also crash Nautilus
- Packages does not open privileged ports (ports < 1024)
- Packages does not contain extensions to security-sensitive software
[Quality assurance - function/usage]
- The package works well right after install
[Quality assurance - maintenance]
- The package is maintained well in Debian/Ubuntu and has not too many open Ubuntu bug reports except for this MIR. No open Debian bugs.
- Ubuntu https://bugs.launchpad.net/ubuntu/+source/gnome-sushi
- Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=gnome-sushi
- The package does not deal with exotic hardware we cannot support
[Quality assurance - testing]
- The package does not run a test at build time because it's basically a graphical app and tests haven't been written.
- The package does not run an autopkgtest because same reason.
- TODO: To make up for that, the Desktop Team will add a manual test plan to https://wiki.ubuntu.com/CategoryDesktopTestPlans
[Quality assurance - packaging]
- debian/watch is present and works
- debian/control defines a correct Maintainer field
- This package does not yield massive lintian Warnings, Errors
- Please link to a recent build log of the package
https://launchpad.net/ubuntu/+source/gnome-sushi/43.0-2/+build/24903326
- Please attach the full output you have got from `lintian --pedantic` as an extra post to this bug.
- This package does not rely on obsolete or about to be demoted packages.
- This package has no python2 or GTK2 dependencies
- The package will be installed by default and does not ask debconf questions
- Packaging and build is easy using dh7 style rules
https://salsa.debian.org/gnome-team/gnome-sushi/-/blob/debian/master/debian/rules
[UI standards]
- Application is end-user facing, Translation is present, via standard
intltool/gettext or similar build and runtime internationalization
- End-user applications without desktop file, not needed because this is basically an extension to Nautilus which does provide a desktop file.
[Dependencies]
- No further depends or recommends dependencies that are not yet in main
[Standards compliance]
- This package correctly follows FHS and Debian Policy
[Maintenance/Owner]
- Owning Team will be Desktop Packages
- Team is not yet not yet, but will subscribe to the package before promotion
- This does not use static builds
- This does not use vendored code
- This package is not rust based
- The package has been built in the archive more recently than the last test rebuild
[Background information]
The upstream project name is "Sushi". The package is named GNOME Sushi in Debian and Ubuntu to avoid potential name conflicts.
Link to upstream code:
https://gitlab.gnome.org/GNOME/sushi
The upstream project is currently without a dedicated maintainer. However, the feature does work.
Because it doesn't have a dedicate maintainer, there was a suggestion to remove it from GNOME Core, but it was decided that there wasn't enough reason to remove it.
https://gitlab.gnome.org/GNOME/gnome-build-meta/-/issues/525 |
[Availability]
The package gnome-sushi is already in Ubuntu universe.
The package gnome-sushi builds for the architectures it is designed to work on (all Ubuntu architectures except i386 which isn't needed)
https://launchpad.net/ubuntu/+source/gnome-sushi
[Rationale]
Sushi has been a part of GNOME Core since I think GNOME 3.2. It was included in the obsolete Ubuntu GNOME flavor. Although proposed for inclusion in the default Ubuntu install years ago, it just wasn't a high priority before. Generally, we want to include GNOME Core features in Ubuntu Desktop unless we have good reason not to.
Sushi is a quick file previewer that extends the default file browser Nautilus.
https://help.ubuntu.com/stable/ubuntu-help/files-preview.html
It is requested in Ubuntu main no later than February 23 because that's Feature Freeze for Ubuntu 23.04.
[Security]
- Had 1 security issue in the past
+ CVE-2019-19308 fixed in Ubuntu 22.04 LTS, unfixed in Ubuntu 20.04 LTS
* https://security-tracker.debian.org/tracker/CVE-2019-19308
* https://ubuntu.com/security/CVE-2019-19308 (tracker outdated)
- no `suid` or `sgid` binaries
- no executables in `/sbin` and `/usr/sbin`
- ***Package does install services, timers or recurring jobs***
+ a NautilusPreviewer D-Bus service
* Which has the following security feature: webkitgtk sandbox
* Because it's a separate process, a Sushi crash won't also crash Nautilus
- Packages does not open privileged ports (ports < 1024)
- Packages does not contain extensions to security-sensitive software
[Quality assurance - function/usage]
- The package works well right after install
[Quality assurance - maintenance]
- The package is maintained well in Debian/Ubuntu and has not too many open Ubuntu bug reports except for this MIR. No open Debian bugs.
- Ubuntu https://bugs.launchpad.net/ubuntu/+source/gnome-sushi
- Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=gnome-sushi
- The package does not deal with exotic hardware we cannot support
[Quality assurance - testing]
- The package does not run a test at build time because it's basically a graphical app and tests haven't been written.
- The package does not run an autopkgtest because same reason.
- TODO: To make up for that, the Desktop Team will add a manual test plan to https://wiki.ubuntu.com/CategoryDesktopTestPlans
[Quality assurance - packaging]
- debian/watch is present and works
- debian/control defines a correct Maintainer field
- This package does not yield massive lintian Warnings, Errors
- Please link to a recent build log of the package
https://launchpad.net/ubuntu/+source/gnome-sushi/43.0-2/+build/24903326
- Please attach the full output you have got from `lintian --pedantic` as an extra post to this bug.
- This package does not rely on obsolete or about to be demoted packages.
- This package has no python2 or GTK2 dependencies
- The package will be installed by default and does not ask debconf questions
- Packaging and build is easy using dh7 style rules
https://salsa.debian.org/gnome-team/gnome-sushi/-/blob/debian/master/debian/rules
[UI standards]
- Application is end-user facing, Translation is present, via standard
intltool/gettext or similar build and runtime internationalization
- End-user applications without desktop file, not needed because this is basically an extension to Nautilus which does provide a desktop file.
[Dependencies]
- No further depends or recommends dependencies that are not yet in main
[Standards compliance]
- This package correctly follows FHS and Debian Policy
[Maintenance/Owner]
- Owning Team will be Desktop Packages
- Team is not yet not yet, but will subscribe to the package before promotion
- This does not use static builds
- This does not use vendored code
- This package is not rust based
- The package has been built in the archive more recently than the last test rebuild
[Background information]
The upstream project name is "Sushi". The package is named GNOME Sushi in Debian and Ubuntu to avoid potential name conflicts.
Link to upstream code:
https://gitlab.gnome.org/GNOME/sushi
The upstream project is currently without a dedicated maintainer. However, the feature does work.
Because it doesn't have a dedicate maintainer, there was a suggestion to remove it from GNOME Core, but it was decided that there wasn't enough reason to remove it.
https://gitlab.gnome.org/GNOME/gnome-build-meta/-/issues/525 |
|
2022-12-06 15:41:58 |
Jeremy Bícha |
description |
[Availability]
The package gnome-sushi is already in Ubuntu universe.
The package gnome-sushi builds for the architectures it is designed to work on (all Ubuntu architectures except i386 which isn't needed)
https://launchpad.net/ubuntu/+source/gnome-sushi
[Rationale]
Sushi has been a part of GNOME Core since I think GNOME 3.2. It was included in the obsolete Ubuntu GNOME flavor. Although proposed for inclusion in the default Ubuntu install years ago, it just wasn't a high priority before. Generally, we want to include GNOME Core features in Ubuntu Desktop unless we have good reason not to.
Sushi is a quick file previewer that extends the default file browser Nautilus.
https://help.ubuntu.com/stable/ubuntu-help/files-preview.html
It is requested in Ubuntu main no later than February 23 because that's Feature Freeze for Ubuntu 23.04.
[Security]
- Had 1 security issue in the past
+ CVE-2019-19308 fixed in Ubuntu 22.04 LTS, unfixed in Ubuntu 20.04 LTS
* https://security-tracker.debian.org/tracker/CVE-2019-19308
* https://ubuntu.com/security/CVE-2019-19308 (tracker outdated)
- no `suid` or `sgid` binaries
- no executables in `/sbin` and `/usr/sbin`
- ***Package does install services, timers or recurring jobs***
+ a NautilusPreviewer D-Bus service
* Which has the following security feature: webkitgtk sandbox
* Because it's a separate process, a Sushi crash won't also crash Nautilus
- Packages does not open privileged ports (ports < 1024)
- Packages does not contain extensions to security-sensitive software
[Quality assurance - function/usage]
- The package works well right after install
[Quality assurance - maintenance]
- The package is maintained well in Debian/Ubuntu and has not too many open Ubuntu bug reports except for this MIR. No open Debian bugs.
- Ubuntu https://bugs.launchpad.net/ubuntu/+source/gnome-sushi
- Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=gnome-sushi
- The package does not deal with exotic hardware we cannot support
[Quality assurance - testing]
- The package does not run a test at build time because it's basically a graphical app and tests haven't been written.
- The package does not run an autopkgtest because same reason.
- TODO: To make up for that, the Desktop Team will add a manual test plan to https://wiki.ubuntu.com/CategoryDesktopTestPlans
[Quality assurance - packaging]
- debian/watch is present and works
- debian/control defines a correct Maintainer field
- This package does not yield massive lintian Warnings, Errors
- Please link to a recent build log of the package
https://launchpad.net/ubuntu/+source/gnome-sushi/43.0-2/+build/24903326
- Please attach the full output you have got from `lintian --pedantic` as an extra post to this bug.
- This package does not rely on obsolete or about to be demoted packages.
- This package has no python2 or GTK2 dependencies
- The package will be installed by default and does not ask debconf questions
- Packaging and build is easy using dh7 style rules
https://salsa.debian.org/gnome-team/gnome-sushi/-/blob/debian/master/debian/rules
[UI standards]
- Application is end-user facing, Translation is present, via standard
intltool/gettext or similar build and runtime internationalization
- End-user applications without desktop file, not needed because this is basically an extension to Nautilus which does provide a desktop file.
[Dependencies]
- No further depends or recommends dependencies that are not yet in main
[Standards compliance]
- This package correctly follows FHS and Debian Policy
[Maintenance/Owner]
- Owning Team will be Desktop Packages
- Team is not yet not yet, but will subscribe to the package before promotion
- This does not use static builds
- This does not use vendored code
- This package is not rust based
- The package has been built in the archive more recently than the last test rebuild
[Background information]
The upstream project name is "Sushi". The package is named GNOME Sushi in Debian and Ubuntu to avoid potential name conflicts.
Link to upstream code:
https://gitlab.gnome.org/GNOME/sushi
The upstream project is currently without a dedicated maintainer. However, the feature does work.
Because it doesn't have a dedicate maintainer, there was a suggestion to remove it from GNOME Core, but it was decided that there wasn't enough reason to remove it.
https://gitlab.gnome.org/GNOME/gnome-build-meta/-/issues/525 |
[Availability]
The package gnome-sushi is already in Ubuntu universe.
The package gnome-sushi builds for the architectures it is designed to work on (all Ubuntu architectures except i386 which isn't needed)
https://launchpad.net/ubuntu/+source/gnome-sushi
[Rationale]
Sushi has been a part of GNOME Core since I think GNOME 3.2. It was included in the obsolete Ubuntu GNOME flavor. Although proposed for inclusion in the default Ubuntu install years ago, it just wasn't a high priority before. Generally, we want to include GNOME Core features in Ubuntu Desktop unless we have good reason not to.
Sushi is a quick file previewer that extends the default file browser Nautilus.
https://help.ubuntu.com/stable/ubuntu-help/files-preview.html
https://discourse.ubuntu.com/t/proposal-sushi-installed-by-default-as-file-previewer/28322
It is requested in Ubuntu main no later than February 23 because that's Feature Freeze for Ubuntu 23.04.
[Security]
- Had 1 security issue in the past
+ CVE-2019-19308 fixed in Ubuntu 22.04 LTS, unfixed in Ubuntu 20.04 LTS
* https://security-tracker.debian.org/tracker/CVE-2019-19308
* https://ubuntu.com/security/CVE-2019-19308 (tracker outdated)
- no `suid` or `sgid` binaries
- no executables in `/sbin` and `/usr/sbin`
- ***Package does install services, timers or recurring jobs***
+ a NautilusPreviewer D-Bus service
* Which has the following security feature: webkitgtk sandbox
* Because it's a separate process, a Sushi crash won't also crash Nautilus
- Packages does not open privileged ports (ports < 1024)
- Packages does not contain extensions to security-sensitive software
[Quality assurance - function/usage]
- The package works well right after install
[Quality assurance - maintenance]
- The package is maintained well in Debian/Ubuntu and has not too many open Ubuntu bug reports except for this MIR. No open Debian bugs.
- Ubuntu https://bugs.launchpad.net/ubuntu/+source/gnome-sushi
- Debian https://bugs.debian.org/cgi-bin/pkgreport.cgi?src=gnome-sushi
- The package does not deal with exotic hardware we cannot support
[Quality assurance - testing]
- The package does not run a test at build time because it's basically a graphical app and tests haven't been written.
- The package does not run an autopkgtest because same reason.
- TODO: To make up for that, the Desktop Team will add a manual test plan to https://wiki.ubuntu.com/CategoryDesktopTestPlans
[Quality assurance - packaging]
- debian/watch is present and works
- debian/control defines a correct Maintainer field
- This package does not yield massive lintian Warnings, Errors
- Please link to a recent build log of the package
https://launchpad.net/ubuntu/+source/gnome-sushi/43.0-2/+build/24903326
- Please attach the full output you have got from `lintian --pedantic` as an extra post to this bug.
- This package does not rely on obsolete or about to be demoted packages.
- This package has no python2 or GTK2 dependencies
- The package will be installed by default and does not ask debconf questions
- Packaging and build is easy using dh7 style rules
https://salsa.debian.org/gnome-team/gnome-sushi/-/blob/debian/master/debian/rules
[UI standards]
- Application is end-user facing, Translation is present, via standard
intltool/gettext or similar build and runtime internationalization
- End-user applications without desktop file, not needed because this is basically an extension to Nautilus which does provide a desktop file.
[Dependencies]
- No further depends or recommends dependencies that are not yet in main
[Standards compliance]
- This package correctly follows FHS and Debian Policy
[Maintenance/Owner]
- Owning Team will be Desktop Packages
- Team is not yet not yet, but will subscribe to the package before promotion
- This does not use static builds
- This does not use vendored code
- This package is not rust based
- The package has been built in the archive more recently than the last test rebuild
[Background information]
The upstream project name is "Sushi". The package is named GNOME Sushi in Debian and Ubuntu to avoid potential name conflicts.
Link to upstream code:
https://gitlab.gnome.org/GNOME/sushi
The upstream project is currently without a dedicated maintainer. However, the feature does work.
Because it doesn't have a dedicate maintainer, there was a suggestion to remove it from GNOME Core, but it was decided that there wasn't enough reason to remove it.
https://gitlab.gnome.org/GNOME/gnome-build-meta/-/issues/525 |
|
2022-12-06 15:46:44 |
Lukas Märdian |
gnome-sushi (Ubuntu): assignee |
|
Didier Roche-Tolomelli (didrocks) |
|
2023-01-10 08:40:49 |
Didier Roche-Tolomelli |
gnome-sushi (Ubuntu): status |
New |
Incomplete |
|
2023-01-10 08:40:58 |
Didier Roche-Tolomelli |
gnome-sushi (Ubuntu): assignee |
Didier Roche-Tolomelli (didrocks) |
Jeremy Bicha (jbicha) |
|