Comment 2 for bug 1820238

I reviewed zope.schema 4.4.2-3 as checked into eoan. This shouldn't be
considered a full audit but rather a quick gauge of maintainability.

zope.schema is library to extend interfaces for zope.

- CVE History:
  - None found
- Build-Depends?
  - python-all, dh-python, python3-all, python3-setuptools, python3-zope.event,
    python3-zope.interface, python3.zope.testing.
- pre/post inst/rm scripts?
  - None found
- init scripts?
  - None found
- systemd units?
  - None found
- dbus services?
  - None found
- setuid binaries?
 - None found
- binaries in PATH?
 - None found
- udev rules?
  - None
- unit tests / autopkgtests?
  - It has tests that run while building

- Processes spawned?
 - None, just a boostrap.py with a exec (urlopen(...) script that is not called anywhere
- Memory management?
  - No
- File IO?
 - only that in boostratp.py script
- Logging?
  - not have logs
- Environment variable usage?
  - None, except in bootstrap.py script
   ./bootstrap.py:150:if subprocess.call(cmd, env=dict(os.environ,
PYTHONPATH=setuptools_path)) != 0:

- Use of privileged functions?
 - None
- Use of cryptography / random number sources etc?
 - None
- Use of temp files?
 - None
- Use of networking?
 - None
- Use of WebKit?
 - None
- Use of PolicyKit?
  - None

- Any significant cppcheck results?
 - None

Security team ACK for promoting zope.schema to main.