debusine - trinity-sb - lintian: libtqca-dev, libtqca1, tqca-tls

analysis.json
1{"tags": [{"severity": "classification", "package": "libtqca-dev", "tag": "control-tarball-compression-format", "explanation": "This is the compressor format used for the control.tar tarball.\n\nVisibility: classification\nShow-Always: no\nCheck: deb-format\nThis tag is a classification. There is no issue in your package.", "comment": "", "note": "zst", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "data-tarball-compression-format", "explanation": "This is the compressor format used for the data.tar tarball.\n\nVisibility: classification\nShow-Always: no\nCheck: deb-format\nThis tag is a classification. There is no issue in your package.", "comment": "", "note": "zst", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "mail-contact", "explanation": "", "comment": "", "note": "Maintainer \"TDE Debian Team\" <team-debian@trinitydesktop.org>", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "no-ctrl-scripts", "explanation": "The package does not rely on any maintainer scripts (or other executable\ncontrol files).\n\nVisibility: classification\nShow-Always: no\nCheck: control-files\nThis tag is a classification. There is no issue in your package.", "comment": "", "note": "", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "package-is-maintained-by-individual", "explanation": "", "comment": "", "note": "", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Architecture armhf", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Depends libtqca1 (= 4:14.1.6~pre2-0ubuntu22.04.0+1), libtqtinterface-dev", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Description TQt Cryptographic Architecture (TQCA)\\n libtqca provides TQt interface for security plugins\\n .\\n This is the development package containing header files and link\\n libraries for libtqca.", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Installed-Size 33", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Maintainer TDE Debian Team <team-debian@trinitydesktop.org>", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Package libtqca-dev", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Priority optional", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Section libdevel", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Source tqca", "pointer": ""}, {"severity": "classification", "package": "libtqca-dev", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Version 4:14.1.6~pre2-0ubuntu22.04.0+1", "pointer": ""}, {"severity": "info", "package": "libtqca1", "tag": "extended-description-is-probably-too-short", "explanation": "The extended description (the lines after the first line of the\n\"Description:\" field) is only one or two lines long. The extended\ndescription should provide a user with enough information to decide\nwhether they want to install this package, what it contains, and how it\ncompares to similar packages. One or two lines is normally not enough to\ndo this.\n\nPlease refer to Debian Developer's Reference section 6.2.1 and Debian\nDeveloper's Reference section 6.2.3 for details.\n\nVisibility: info\nShow-Always: no\nCheck: fields/description", "comment": "", "note": "", "pointer": ""}, {"severity": "info", "package": "libtqca1", "tag": "hardening-no-bindnow", "explanation": "This package provides an ELF binary that lacks the \"bindnow\" linker flag.\n\nThis is needed (together with \"relro\") to make the \"Global Offset Table\"\n(GOT) fully read-only. The bindnow feature trades startup time for\nimproved security. Please consider enabling this feature or consider\noverriding the tag (possibly with a comment about why).\n\nIf you use dpkg-buildflags, you may have to add hardening=+bindnow or\nhardening=+all to DEB_BUILD_MAINT_OPTIONS.\n\nThe relevant compiler flags are set in LDFLAGS.\n\nPlease refer to https://wiki.debian.org/Hardening for details.\n\nVisibility: info\nShow-Always: no\nCheck: binaries/hardening", "comment": "", "note": "", "pointer": "usr/lib/arm-linux-gnueabihf/libtqca.so.1.0.0"}, {"severity": "info", "package": "libtqca1", "tag": "no-symbols-control-file", "explanation": "Although the package includes a shared library, the package does not have\na symbols control file.\n\ndpkg can use symbols files in order to generate more accurate library\ndependencies for applications, based on the symbols from the library that\nare actually used by the application.\n\nPlease refer to the dpkg-gensymbols(1) manual page and\nhttps://wiki.debian.org/UsingSymbolsFiles for details.\n\nVisibility: info\nShow-Always: no\nCheck: debian/shlibs", "comment": "", "note": "usr/lib/arm-linux-gnueabihf/libtqca.so.1.0.0", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "control-tarball-compression-format", "explanation": "", "comment": "", "note": "zst", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "data-tarball-compression-format", "explanation": "", "comment": "", "note": "zst", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "mail-contact", "explanation": "", "comment": "", "note": "Maintainer \"TDE Debian Team\" <team-debian@trinitydesktop.org>", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "no-ctrl-scripts", "explanation": "", "comment": "", "note": "", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "package-is-maintained-by-individual", "explanation": "", "comment": "", "note": "", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Architecture armhf", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Conflicts libtqca", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Depends libc6 (>= 2.4), libgcc-s1 (>= 3.5), libstdc++6 (>= 5), libtqt3-mt (>= 4:14.1.6~pre28)", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Description TQt Cryptographic Architecture (TQCA)\\n libtqca provides TQt interface for security plugins", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Installed-Size 60", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Maintainer TDE Debian Team <team-debian@trinitydesktop.org>", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Multi-Arch same", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Package libtqca1", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Priority optional", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Provides libtqca (= 4:14.1.6~pre2-0ubuntu22.04.0+1)", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Replaces libtqca", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Section libs", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Source tqca", "pointer": ""}, {"severity": "classification", "package": "libtqca1", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Version 4:14.1.6~pre2-0ubuntu22.04.0+1", "pointer": ""}, {"severity": "info", "package": "tqca-tls", "tag": "capitalization-error-in-description", "explanation": "Lintian found a possible capitalization error in the package description.\nLintian has a list of common capitalization errors, primarily of upstream\nprojects, that it looks for. It does not have a dictionary like a spelling\nchecker does.\n\nThis is a particularly picky check of capitalization in package\ndescriptions, since they're very visible to end users, but it will have\nfalse positives for project names used in a context where they should be\nlowercase, such as package names or executable names.\n\nVisibility: info\nShow-Always: no\nCheck: fields/description", "comment": "", "note": "debian Debian", "pointer": ""}, {"severity": "info", "package": "tqca-tls", "tag": "hardening-no-bindnow", "explanation": "", "comment": "", "note": "", "pointer": "usr/lib/arm-linux-gnueabihf/tqt3/plugins/crypto/libtqca-tls.so"}, {"severity": "info", "package": "tqca-tls", "tag": "hardening-no-fortify-functions", "explanation": "This package provides an ELF binary that lacks the use of fortified libc\nfunctions. Either there are no potentially unfortified functions called by\nany routines, all unfortified calls have already been fully validated at\ncompile-time, or the package was not built with the default Debian\ncompiler flags defined by dpkg-buildflags. If built using dpkg-buildflags\ndirectly, be sure to import CPPFLAGS.\n\nNB: Due to false-positives, Lintian ignores some unprotected functions\n(e.g. memcpy).\n\nPlease refer to https://wiki.debian.org/Hardening and Bug#673112 for\ndetails.\n\nVisibility: info\nShow-Always: no\nCheck: binaries/hardening", "comment": "", "note": "", "pointer": "usr/lib/arm-linux-gnueabihf/tqt3/plugins/crypto/libtqca-tls.so"}, {"severity": "classification", "package": "tqca-tls", "tag": "control-tarball-compression-format", "explanation": "", "comment": "", "note": "zst", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "data-tarball-compression-format", "explanation": "", "comment": "", "note": "zst", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "mail-contact", "explanation": "", "comment": "", "note": "Maintainer \"TDE Debian Team\" <team-debian@trinitydesktop.org>", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "no-ctrl-scripts", "explanation": "", "comment": "", "note": "", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "package-is-maintained-by-individual", "explanation": "", "comment": "", "note": "", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "possible-gpl-code-linked-with-openssl", "explanation": "This package appears to be covered by the GNU GPL but depends on the\nOpenSSL libssl package and does not mention a license exemption or\nexception for OpenSSL in its copyright file. The GPL (including version 3)\nis incompatible with some terms of the OpenSSL license, and therefore\nDebian does not allow GPL-licensed code linked with OpenSSL libraries\nunless there is a license exception explicitly permitting this.\n\nIf only the Debian packaging, or some other part of the package not linked\nwith OpenSSL, is covered by the GNU GPL, please add a Lintian override for\nthis tag. Lintian currently has no good way of distinguishing between that\ncase and problematic packages.\n\nPlease refer to Bug#972181 and\nhttp://meetbot.debian.net/debian-ftp/2020/debian-ftp.2020-03-13-20.02.html\nfor details.\n\nVisibility: classification\nShow-Always: no\nCheck: debian/copyright\nThis tag is a classification. There is no issue in your package.", "comment": "", "note": "", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Architecture armhf", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Depends libc6 (>= 2.4), libgcc-s1 (>= 3.5), libssl3 (>= 3.0.0~~alpha1), libstdc++6 (>= 5), libtqt3-mt (>= 4:14.1.6~pre28)", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Description TLS plugin for the TQt Cryptographic Architecture (TQCA)\\n This is a plugin to provide SSL/TLS capability to programs that\\n utilize the TQt Cryptographic Architecture (TQCA).\\n .\\n TQCA is a library providing an easy API for several cryptographic algorithms\\n to TQt programs.\\n .\\n At the moment only the tqca-tls plugin is packaged for debian, as it's\\n used by the package 'psi'. The generic library and several other plugins\\n will be packaged when upstream releases them.", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Installed-Size 49", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Maintainer TDE Debian Team <team-debian@trinitydesktop.org>", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Multi-Arch same", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Package tqca-tls", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Priority optional", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Section libs", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Source tqca", "pointer": ""}, {"severity": "classification", "package": "tqca-tls", "tag": "trimmed-field", "explanation": "", "comment": "", "note": "Version 4:14.1.6~pre2-0ubuntu22.04.0+1", "pointer": ""}], "summary": {"tags_count_by_severity": {"error": 0, "warning": 0, "info": 6, "pedantic": 0, "experimental": 0, "overridden": 0, "classification": 51}, "package_filename": {"libtqca-dev": "libtqca-dev_14.1.6~pre2-0ubuntu22.04.0+1_armhf.deb", "libtqca1": "libtqca1_14.1.6~pre2-0ubuntu22.04.0+1_armhf.deb", "tqca-tls": "tqca-tls_14.1.6~pre2-0ubuntu22.04.0+1_armhf.deb"}, "tags_found": ["capitalization-error-in-description", "control-tarball-compression-format", "data-tarball-compression-format", "extended-description-is-probably-too-short", "hardening-no-bindnow", "hardening-no-fortify-functions", "mail-contact", "no-ctrl-scripts", "no-symbols-control-file", "package-is-maintained-by-individual", "possible-gpl-code-linked-with-openssl", "trimmed-field"], "overridden_tags_found": [], "lintian_version": "2.114.0ubuntu1", "distribution": "debian:jammy"}, "version": 1}