Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

rpmlint-strict-2.1+git20210924.ad0cf53-1.1 RPM for noarch

From OpenSuSE Tumbleweed for noarch

Name: rpmlint-strict Distribution: openSUSE Tumbleweed
Version: 2.1+git20210924.ad0cf53 Vendor: openSUSE
Release: 1.1 Build date: Sun Sep 26 21:55:26 2021
Group: Unspecified Build host: goat19
Size: 987 Source RPM: rpmlint-strict-2.1+git20210924.ad0cf53-1.1.src.rpm
Packager: https://bugs.opensuse.org
Url: https://github.com/rpm-software-management/rpmlint
Summary: RPM file correctness checker
rpmlint is a tool to check common errors on RPM packages. Binary and
source packages can be checked.

Provides

Requires

License

GPL-2.0-or-later

Changelog

* Fri Sep 24 2021 Johannes Segitz <jsegitz@suse.com>
  - Update to 2.1+git20210924.ad0cf53
    * Copied additional systemd whitelistings to match systemd-mini
* Thu Sep 23 2021 Johannes Segitz <jsegitz@suse.com>
  - Update to version 2.1+git20210923.5ff1403
    * whitelist pam_systemd.so for systemd-mini
* Thu Sep 23 2021 Johannes Segitz <jsegitz@suse.com>
  - Update to version 2.1+git20210923.a41591b
    * whitelist pam_systemd_home.so for systemd-experimental
* Wed Sep 22 2021 Johannes Segitz <jsegitz@suse.com>
  - Update to version 2.1+git20210922.d20a3f1
    * Added mechanism to add exceptions for %ghost'd files
    * Remove deprecated entries for world-writable entries
    * Remove malcontent whitelisting
    * Remove storeBackup cron whitelisting
    * Some path and package name fixes
* Fri Sep 17 2021 Matthias Gerstner <matthias.gerstner@suse.com>
  - Synchronize security whitelistings with whitelists from old rpmlint 1. This
    should fix some package build errors like in sssd.
  - Use correct camel case package names for packages like NetworkManager in
    whitelists. This should fix some package build errors.
  - Some general cleanup of whitelists.
* Wed Sep 15 2021 Martin Liška <mliska@suse.cz>
  - Bump to tip (various security fixes).
* Sun Sep 05 2021 Martin Liška <mliska@suse.cz>
  - Skip .cargo-checksum.json files in hidden-file-or-dir.
* Thu Sep 02 2021 Martin Liška <mliska@suse.cz>
  - Fix PieExecutables matching.
* Thu Sep 02 2021 Martin Liška <mliska@suse.cz>
  - KMP policy: support legacy 'packageand' directive in Supplements
    (boo#1190103).
* Wed Sep 01 2021 Martin Liška <mliska@suse.cz>
  - Handle empty glibc archives (starting with version 2.34).
* Fri Aug 27 2021 Martin Liška <mliska@suse.cz>
  - Update package name for -M test.
* Thu Aug 26 2021 Martin Liška <mliska@suse.cz>
  - Add test multibuild target and reduce BuildRequirements for rpmlint
    package itself.
* Wed Aug 25 2021 Martin Liška <mliska@suse.cz>
  - Bump to opensuse tip.
* Wed Aug 18 2021 Matthias Gerstner <matthias.gerstner@suse.com>
  - whitelist deepin-api D-Bus services (bsc#1070943)
* Wed Aug 18 2021 Martin Liška <mliska@suse.cz>
  - Bump to version 2.1.
* Fri Aug 06 2021 Martin Liška <mliska@suse.cz>
  - Fix variable description expansion.
* Thu Aug 05 2021 Martin Liška <mliska@suse.cz>
  - Reduce Requirements for rpmlint-strict package.
* Wed Aug 04 2021 Matthias Gerstner <matthias.gerstner@suse.com>
  - whitelist oddjob-gpupdate PAM and D-Bus (bsc#1188680)
* Thu Jul 22 2021 Martin Liška <mliska@suse.cz>
  - Bump to tip (adds --mini-mode argument).
* Thu Jul 01 2021 Martin Liška <mliska@suse.cz>
  - Bump to tip (fix not working -i option).
* Tue Jun 29 2021 Martin Liška <mliska@suse.cz>
  - Bump to tip.
* Tue Jun 29 2021 Martin Liška <mliska@suse.cz>
  - Make rpmlint-strict only a simple package with one config file.
* Tue Jun 29 2021 Martin Liška <mliska@suse.cz>
  - Add Conflicts directive.
* Tue Jun 29 2021 Martin Liška <mliska@suse.cz>
  - Use BuildIgnore: rpmlint-strict in order to fix boo#1187749.
* Fri Jun 25 2021 Martin Liška <mliska@suse.cz>
  - Bump to tip.
  - Rename scoring-strict.toml to scoring-strict.override.toml in order
    to use override mechanism.
* Thu Jun 24 2021 Martin Liška <mliska@suse.cz>
  - Removed legacy patches:
    * extend-suse-conffiles-check.diff
    * docdata-examples.diff
    * devel-provide-is-devel-package.diff
    * fix-diag-sortorder.diff
    * check-for-self-provides.diff
  - Add disable-flake.patch patch.
* Thu Jun 24 2021 Martin Liška <mliska@suse.cz>
  - Add rpmlint-strict sub-package that includes scoring-strict.toml.
* Thu Jun 24 2021 Martin Liška <mliska@suse.cz>
  - Bump to tip: adds scoring-strict.toml config and BlockedFilters.
* Thu Jun 24 2021 Martin Liška <mliska@suse.cz>
  - Bump to tip, includes fix for Rust libraries.
* Thu Jun 17 2021 Martin Liška <mliska@suse.cz>
  - Install configs with 644.
* Thu May 27 2021 Martin Liška <mliska@suse.cz>
  - Update to Rpmlint 2.0:
    * RPMLint now is a "normal" Python application and now supports being imported
      like a standard Python module! This means that all the normal use-cases for
      RPMLint are still supported, but now you can make it a part of larger Python-based
      applications or services.
    * RPMLint uses a declarative TOML-based syntax for configuring RPMLint policy
      instead of Python code.
    * RPMLint now has an override system for the descriptions shown for various checks,
      so that distributions who want to give specific policy information can
      do so without patching the code.
    * RPMLint includes many more checks! Nearly all of the generally useful checks created
      by the openSUSE community have been merged into the tree, so distributions can now
      benefit from a wider offering of checks to implement policy enforcement.
    * RPMLint is Python 3 only and now supports Python 3.6 and newer.
    * RPMLint is now built and installed like a standard Python application using setuptools.
  - Removed legacy patches:
    * invalid-filerequires.diff
    * no-badness-return.diff
    * no-doc-for-lib.diff
    * only-reg-files-are-scripts.diff
    * remove-ghostfile-checks.diff
    * rpm415-workaround.diff
    * rpmgroup-checks.diff
    * rpmlint-suse.diff
    * suse-binarieschecks.diff
    * suse-checks.diff
    * suse-filter-exception.diff
    * suse-filter-more-verbose.diff
    * suse-ignore-specfile-errors.diff
    * suse-pkg-config-check.diff
    * suse-python3-naming-policy.diff
    * suse-shlib-devel-dependency.diff
    * suse-skip-macro-expansion.diff
    * suse-speccheck-utf8.diff
    * suse-url-check.diff
    * suse-version.diff
    * yast-provides.diff
    * 0001-ZipCheck-Also-ignore-RuntimeError.patch
    * accept-licenses-with-plus.patch
    * add-check-for-a-non-zero-.text-segment-in-.a-archive.patch
    * rpmlint-slpp-NUM-NUM.patch
    * rpmlint-tests-sle15.patch
    * suse-rpmlint-all-pie.patch
    * suse-spdx-license-exceptions.patch
    * suse-tests-without-badness.patch
  - Removed config fileS:
    * config
    * licenses.config
    * pie.config
  - Removed misc files: syntax-validator.py, README.packaging.txt,
    rpmlint-1.11.tar.gz, rpmlint-checks-master.tar.xz and
    rpmlint-tests-84.87+git20210226.d6b66e2.tar.xz.
* Fri May 21 2021 Ludwig Nussel <lnussel@suse.de>
  - whitelist setroubleshoot (boo#1186344)
* Wed May 12 2021 Ludwig Nussel <lnussel@suse.de>
  - whitelist systemd-homed (boo#1185285)
* Fri May 07 2021 Matthias Gerstner <matthias.gerstner@suse.com>
  - fix whitelisting for kdiskmark service (bsc#1182521)
* Wed Mar 31 2021 Wolfgang Frisch <wolfgang.frisch@suse.com>
  - whitelist D-Bus Service org.kde.filesharing.samba.service (bsc#1175633)
* Tue Mar 30 2021 Wolfgang Frisch <wolfgang.frisch@suse.com>
  - whitelist D-Bus Service org.jonmagon.kdiskmark.service (bsc#1182521)
* Fri Feb 26 2021 Stephan Kulow <coolo@suse.com>
  - Add accept-licenses-with-plus.patch to accept any license ending
    with a + (as indicated in the SPDX syntax)
* Fri Feb 26 2021 Stephan Kulow <coolo@suse.com>
  - Remove licenses ending with + from valid license array
* Mon Feb 22 2021 Matthias Gerstner <matthias.gerstner@suse.com>
  - whitelist pam_sss_gss.so PAM module (bsc#1182509)
* Wed Feb 03 2021 chris@computersalat.de
  - add 'otobo' group/id
* Mon Feb 01 2021 Stephan Kulow <coolo@suse.com>
  - Update valid spdx license exceptions
  - Allow the + version of all valid licenses (to avoid having to fix
    the parser)
* Fri Jan 15 2021 Christopher Yeleighton <giecrilj@stegny.2a.pl>
  - Fix a typo in suse-branding-wrong-branding-supplement
* Sun Jan 10 2021 Martin Hauke <mardnh@gmx.de>
  - Add user "h2o" and group "h2o" for the h2o webserver
* Tue Nov 17 2020 matthias.gerstner@suse.com
  - Update to version master:
    * Permissions: be robust against variables.conf not existing
    * CheckSUIDPermissions: enhance parser to support new permissions variables
* Wed Nov 04 2020 Malte Kraus <malte.kraus@suse.com>
  - allow pam_faillock.so PAM module (bsc#1171562)
* Fri Oct 30 2020 Matthias Gerstner <matthias.gerstner@suse.com>
  - whitelist malcontent PAM module (bsc#1177974)
* Mon Oct 19 2020 Илья Индиго <ilya@ilya.pp.ua>
  - Add user "fluidsynth" for FluidSynth General Midi daemon.
* Mon Oct 12 2020 Matthias Gerstner <matthias.gerstner@suse.com>
  - whitelist plasma5-disks smartmon helper (bsc#1176742)
* Thu Oct 01 2020 Matthias Gerstner <matthias.gerstner@suse.com>
  - whitelist D-Bus files for powerdevil chargethreshold (bsc#1176474)
* Thu Oct 01 2020 Paolo Stivanin <info@paolostivanin.com>
  - Add 'gerbera' as standard user and group
* Fri Sep 11 2020 Ákos Szőts <szotsaki@gmail.com>
  - Alphabetise StandardGroups and StandardUsers
  - Add 'radicale' as a standard user and group
* Fri Aug 14 2020 Marco Strigl <marco.strigl@suse.com>
  - add user "jvb", "jibri", "jicofo" and group "jitsi" for Jitsi
    videomeeting service
* Fri Jul 31 2020 matthias.gerstner@suse.com
  - Update of rpmlint-checks to version master:
    * Introduce new metadata whitelist type and related checks. Device files and
      world-writeable files will now be covered by new whitelists from
      rpmlint-security-whitelistings.
  - config: Enable new CheckWorldWritable and CheckDeviceFiles
* Fri Jul 24 2020 matthias.gerstner@suse.com
  - whitelist kanidm PAM module (bsc#1173387)
* Wed Jul 15 2020 matthias.gerstner@suse.com
  - whitelist D-Bus files for libvirt-dbus (bsc#1173093)
* Wed Jul 08 2020 Илья Индиго <ilya@ilya.pp.ua>
  - Add user and group "ptokax" for PtokaX DC++ hub.
* Fri Jun 19 2020 Egbert Eich <eich@suse.com>
  - Add user/group 'conman' and 'munge' and group 'warewulf'.
* Fri Jun 12 2020 cunix@mail.de
  - Add 'dnscrypt' to StandardGroups and StandardUsers for package dnscrypt-proxy
* Thu Jun 04 2020 matthias.gerstner@suse.com
  - whitelist pam_setquota (bsc#1171563)
* Wed Jun 03 2020 Martin Hauke <mardnh@gmx.de>
  - Add '_gns3' to StandardGroups and StandardUsers
* Mon May 25 2020 matthias.gerstner@suse.com
  - whitelist pam_usertype (bsc#1171564)
* Wed May 20 2020 Johannes Segitz <jsegitz@suse.de>
  - whitelist cockpit PAM modules (bsc#1169614)
    * pam_cockpit_cert
    * pam_ssh_add
* Wed May 20 2020 Adrian Schröter <adrian@suse.de>
  - Add daapd user and group for new forked-daapd package
* Tue May 19 2020 Thomas Renninger <trenn@suse.de>
  - Add '_cscreen' to StandardGroups and StandardUsers
* Tue May 12 2020 matthias.gerstner@suse.com
  Cleanup of deprecated DBUSServices.WhiteList entries:
  - ca.desrt.dconf.service: this service was changed by upstream from a
    system-wide service to a session based service. The latter doesn't require a
    whitelisting any more.
  - wicked services (network-nanny.conf, wicked-dhcp4.conf, wicked-dhcp6.conf,
    wicked-autoip4.conf, wicked.conf): these have been renamed in August 2013
    to org.opensuse.Network.*.conf. The old names probably never got released.
  - nfs-ganesha.service: A D-Bus file of that name probably never existed,
    there's just a regular systemd unit of that name.
  - org.drbd.drbdmanaged.conf, org.drbd.drbdmanaged.service: drbdmanage was just
    recently removed from Factory via sr#798685, because it is Python2 only and
    unmaintained.
  - org.freedesktop.NetworkManager.service: was removed in 2012, Factory
    revision 118, `Remove dbus system-service for NetworkManager, to prevent
    warnings about it not being running (bnc#738596)`.
  - org.kde.auth.conf: was from kdelibs4, removed from Factory in late 2019 via
    sr#738276 with the rest of kde4.
  - org.kde.kcontrol.kcmkdm.conf, org.kde.kcontrol.kcmkdm.service: was part of
    kdebase4-workspace, got deleted from Factory with the rest of kde4.
  - org.kde.kcontrol.kcmkwallet.conf, org.kde.kcontrol.kcmkwallet.service: they
    got renamed to kcmkwallet5.
  - org.opensuse.openqa.conf: upstream replaced a D-Bus interface with HTTP.
  - org.opensuse.zoneswitcher.service, org.opensuse.zoneswitcher.conf: the fwzs
    package got removed together with SuSEfirewall2 via sr#713580.
  - org.selinux.service: isn't included any more in our packaging of
    policycoreutils.
  - thunderbolt.conf, thunderbolt.service: this service never went live in
    Factory.
  - yum-updatesd.conf: yum was removed from Factory via sr#749200
  - openattic.conf, openattic.service: was part of SES3 but seems to have
    been dropped from SES4 and newer.
    Cleanup of deprecated PAMModules.WhiteList entries:
  - pam_cgroup.so: libcgroup was removed from Factory via sr#589236, due to
    conflicts with systemd and dead upstream.
  - pam_ck_connector.so: ConsoleKit was last used in SLE-11. It's long dead.
  - pam_cryptpass.so: cryptconfig was last shipped in SLE-12:GA and Leap 42.3.
    Got removed via FATE#323541.
  - pam_envoy.so: was removed from Factory because it failed to build for >= 6
    weeks, see sr#737277
  - pam_fprint.so: was replaced by fprintd, see delete sr#220831.
  - pam-modules package (pam_homecheck.so, pam_pwcheck.so, pam_unix2.so): the
    pam-modules package was removed in 2017 from Factory, see sr#540149.
  - pam_mate_keyring.so: was never shipped, the packager switched to a different
    keyring daemon instead.
  - pam_p11_opensc.so, pam_p11_openssh.so: these two have been merged into
    pam_p11.so.
  - pam_rpasswd.so: was part of pwdutils which was replaced by shadow utilities
    in 2012 via sr#139683.
  - pam_smb_auth.so: was last part of SLE-12:GA and Leap 42.3. no upstream
    development, replaced by pam_winbind, see sr#478612
  - pam_smbpass.so: was removed in upstream version 4.4.2, because it loaded
    GPLv3 code into the address space of system services. somewhat replaced by
    pam_winbind. see https://bugzilla.redhat.com/show_bug.cgi?id=952766.
  - pam_tally.so: was removed from the pam package in 2013, replaced by tally2
    obviously, the old one was buggy.
* Mon May 11 2020 matthias.gerstner@suse.com
  - whitelist oddjob D-Bus services and PAM module (bsc#1169494)
* Sun Apr 12 2020 Johannes Weberhofer <jweberhofer@weberhofer.at>
  - Added 'coturn' to StandardGroups and StandardUsers
* Tue Mar 31 2020 matthias.gerstner@suse.com
  - Update to version master:
    * Whitelisting: avoid duplicate checks / error messages for the same files
    * Whitelisting: fix whitelisting checks when files are symbolic links
    * Mention upstream repo in README
* Fri Mar 27 2020 Axel Braun <axel.braun@gmx.de>
  - Bug 1167431 - AUDIT-0: User/group orthanc for rpmlint
* Thu Feb 20 2020 Malte Kraus <malte.kraus@suse.com>
  - config: enable MixedFileOwnerships lint
* Thu Feb 20 2020 Dr. Werner Fink <werner@suse.de>
  - config: add 'mktex' to StandardUsers (boo#1159740)
* Mon Feb 17 2020 matthias.gerstner@suse.com
  - whitelist new mariadb pam module "pam_user_map.so" (bsc#1163362)
* Thu Feb 06 2020 malte.kraus@suse.com
  - Update to version master:
    * CheckSUIDPermissions.py: fix permissions.d checks
    * add a lint to catch insecure mixed file/directory ownership similar to CVE-2019-3689
* Thu Feb 06 2020 malte.kraus@suse.com
  - Update to version 84.87+git20200206.7e2b64f:
    * permissions2: test that allowed permissions.d drop-ins work
    * test for new file-parent-ownership-mismatch lint
* Fri Jan 31 2020 matthias.gerstner@suse.com
  - Whitelist a batch of PAM modules that have been forgotted to be whitelisted
    in the past, or have never been requested to be reviewed before
    (bsc#1150178).
    Since we want to add badness to the PAM warning in rpmlint we need to add
    those entries to avoid build errors of existing packages in Factory.
* Thu Jan 30 2020 James Fehlig <jfehlig@suse.com>
  - config: add 'sanlock' to StandardGroups and StandardUsers
  - config: add 'libvirt' to StandardGroups
* Thu Jan 30 2020 jsegitz@suse.de
  - Update to version master:
    * CheckCronJobs: correct cronjob-unauthorized-file explanation
    * Use named constants to check file modes
    * CheckSUIDPermissions.py: check new permission paths
* Wed Dec 18 2019 matthias.gerstner@suse.com
  - finally enable the new CheckCronJobs, the check is now available and should
    work in rpmlint-mini (bsc#1150175)
* Mon Dec 16 2019 Nathan Cutler <ncutler@suse.com>
  - config: add 'cephadm' to StandardGroups and StandardUsers
* Mon Dec 16 2019 matthias.gerstner@suse.com
  - whitelist pam_cgfs PAM module (bsc#1150519)
* Mon Dec 16 2019 matthias.gerstner@suse.com
  - whitelist pam_pwquality PAM module (bsc#1150520)
* Mon Dec 16 2019 matthias.gerstner@suse.com
  - whitelist pam_cifscreds PAM module (bsc#1150527)
* Tue Dec 10 2019 matthias.gerstner@suse.com
  - Update to version master:
    * new common whitelisting code for CheckPolkitPrivs and CheckCronJobs
* Thu Nov 28 2019 Malte Kraus <malte.kraus@suse.com>
  - whitelist sssd infopipe (bsc#1157663)
  - whitelist sysprof3 D-Bus services (bsc#1151418)
* Tue Oct 15 2019 Ludwig Nussel <lnussel@suse.de>
  - filter install-info warnings. Handled by file triggers now (boo#1152169)
* Mon Oct 07 2019 mls@suse.de
  - backport rpm415 workaround from upstream
    new patch: rpm415-workaround.diff
* Mon Sep 30 2019 Ondřej Súkup <mimi.vx@gmail.com>
  -  update add-check-for-a-non-zero-.text-segment-in-.a-archive.patch
    * fix condition for path
* Fri Sep 20 2019 Malte Kraus <malte.kraus@suse.com>
  - whitelist pam_envoy (bsc#1150525)
* Fri Sep 20 2019 Ondřej Súkup <mimi.vx@gmail.com>
  - update add-check-for-a-non-zero-.text-segment-in-.a-archive.patch
    * dont check empty .text section on GHC libraries
* Tue Sep 17 2019 dmueller@suse.com
  - Update rpmlint-checks to version master:
    * CheckFilelist: Add /usr/libexec to set of good prefixes
* Wed Aug 28 2019 tchvatal@suse.com
  - Update to version 84.87+git20190828.2c92180:
    * Revert "added LTO errors as expected for debug tests"
* Wed Aug 28 2019 tchvatal@suse.com
  - Update to version 84.87+git20190828.8fa8ac5:
    * Do not use -flto for debug tests.
* Wed Aug 28 2019 Tomáš Chvátal <tchvatal@suse.com>
  - Do not validate rpm groups to avoid rpmlint warning as the group
    is not really mandatory (fate#326485)
* Thu Aug 22 2019 Ludwig Nussel <lnussel@suse.de>
  - whitelist systemd-portabled dbus files (boo#1145639)
* Tue Aug 20 2019 kukuk@suse.com
  - Update to version master:
    * Allow /usr/etc as discussed on opensuse-factory and opensuse-packaging
* Wed Aug 14 2019 Marketa Calabkova <mcalabkova@suse.com>
  - Add user/group zabbix and zabbixs (bsc#1144018)
* Fri Aug 09 2019 Martin Liška <mliska@suse.cz>
  - Update add-check-for-a-non-zero-.text-segment-in-.a-archive.patch patch to align with:
    38fc30cafe99d38059ca54b98bc87f5544f0bb4e
* Thu Aug 08 2019 Dominique Leuenberger <dimstar@opensuse.org>
  - Add Development/Languages/Go group.
* Thu Aug 08 2019 Martin Liška <mliska@suse.cz>
  - Update add-check-for-a-non-zero-.text-segment-in-.a-archive.patch patch to align with:
    80126f7c7854d962cc64e54a6ab7e97067bb490d
* Fri Aug 02 2019 Martin Liška <mliska@suse.cz>
  - Update add-check-for-a-non-zero-.text-segment-in-.a-archive.patch patch to align with:
    https://github.com/rpm-software-management/rpmlint/commit/c59324fd68ba86c8382fe09d43f12de32d764354
* Sun Jul 28 2019 Martin Liška <mliska@suse.cz>
  - Update add-check-for-a-non-zero-.text-segment-in-.a-archive.patch patch
    to:
    https://github.com/rpm-software-management/rpmlint/commit/97d6caf9ac3eb011e3f30dbc473f079b20fb56f9
* Mon Jul 22 2019 Martin Liška <mliska@suse.cz>
  - Add add-check-for-a-non-zero-.text-segment-in-.a-archive.patch
    as a backport of:
    https://github.com/rpm-software-management/rpmlint/commit/2c809f34354d6ea690986541b268d47a3ca59092
* Tue May 14 2019 opensuse-packaging@opensuse.org
  - Update to rpmlint-checks to version master:
    * CheckDBUSServices: add additional directory to cover
    * Xinetd check making sure no packages use it wrt fate#323373 (#26)
* Wed May 08 2019 jsegitz@suse.com
  - Too trigger happy, adding back
    * ca.desrt.dconf.service
    * org.freedesktop.ColorManager.conf
* Wed May 08 2019 jsegitz@suse.com
  - Removed whitelisted DBUS files:
    * ConsoleKit.conf
    * NetworkManager-frontend.conf
    * Upstart.conf
    * backup-manager.conf
    * ca.desrt.dconf.service
    * cdemud-dbus.conf
    * com.redhat.storaged.conf
    * com.redhat.storaged.service
    * com.redhat.tuned.service
    * de.berlios.smb4k.mounthelper.conf
    * de.berlios.smb4k.mounthelper.service
    * hal.conf
    * kerneloops.dbus
    * net.hadess.SensorProxy.service
    * nm-avahi-autoipd.conf
    * nm-dhcp-client.conf
    * nm-novellvpn-service.conf
    * openqa-scheduler.service
    * openqa-websockets.service
    * org.blueman.Applet.service
    * org.freedesktop.ColorManager.conf
    * org.freedesktop.ConsoleKit.service
    * org.freedesktop.ModemManager.conf
    * org.freedesktop.ModemManager.service
    * org.freedesktop.PolicyKit.conf
    * org.freedesktop.PolicyKit.service
    * org.freedesktop.UDisks.conf
    * org.freedesktop.UDisks.service
    * org.freedesktop.colord-sane.conf
    * org.freedesktop.colord-sane.service
    * org.gnome.SettingsDaemon.DateTimeMechanism.conf
    * org.gnome.SettingsDaemon.DateTimeMechanism.service
    * org.kde.baloo.filewatch.conf
    * org.kde.baloo.filewatch.service
    * org.kde.kalarmrtcwake.conf
    * org.kde.kalarmrtcwake.service
    * org.kde.kcontrol.k3bsetup.conf
    * org.kde.kcontrol.k3bsetup.service
    * org.kde.kcontrol.kcmlightdm.conf
    * org.kde.kcontrol.kcmlightdm.service
    * org.kde.kcontrol.kcmremotewidgets.conf
    * org.kde.kcontrol.kcmremotewidgets.service
    * org.kde.nepomuk.filewatch.conf
    * org.kde.nepomuk.filewatch.service
    * org.kde.polkitkde1.helper.conf
    * org.kde.polkitkde1.helper.service
    * org.neard.service
    * org.opensuse.BackupManager.service
    * org.opensuse.YaST.modules.conf
    * org.opensuse.YaST.modules.service
    * org.opensuse.usbauth.service
    * org.opensuse.yast.SCR.conf
    * org.opensuse.yast.SCR.service
    * org.selinux.conf
    * org.synce.dccm.conf
    * org.synce.dccm.service
    * os-autoinst-openvswitch.service
    * pam_dbus.service
    * podsleuth.conf
    * rebootmgr.service
    * switcheroo-control.service
    * teamd@.service
    * webyast.permissions.conf
    * webyast.permissions.service.service
    They're not used anymore in current products, were never active or erroneously
    added. For details please see
    https://pes.suse.de/Maintenance-Security/Whitelists/cleanup_dbus/
* Tue May 07 2019 Malte Kraus <malte.kraus@suse.com>
  - Whitelisted certmonger (bsc#1129452)
* Fri Apr 12 2019 Thomas Bechtold <tbechtold@suse.com>
  - Add missing usernames for OpenStack services and drop the old
    names (which had the openstack- prefix)
* Tue Mar 05 2019 mvetter@suse.com
  - Add user/group 'minetest' for Minetest 5.0.0 (bsc#1127911)
* Mon Mar 04 2019 opensuse-packaging@opensuse.org
  - Update to version master:
    * CheckPolkitPrivs: fix new rules.d check to use extracted rpm path
* Wed Feb 27 2019 opensuse-packaging@opensuse.org
  - Update rpmlint-checks to version master (bsc#1125314):
    * coding style: fix indentation to satisfy flake8 travis-ci test
    * CheckPolkitPrivs: implement new check for files put into rules.d dirs
    * CheckPolkitPrivs: separate and refactor check for actions
    * CheckPolkitPrivs: separate and refactor check of polkit-default-privs.d
    * CheckPolkitPrivs: remove oudated PolicyKit path
    * CheckPolkitPrivs: clearer error message for files in /etc/polkit-default-privs.d
* Thu Feb 14 2019 jsegitz@suse.com
  - Whitelisted pam_p11 (bsc#1123916)
* Sat Feb 02 2019 Dirk Mueller <dmueller@suse.com>
  - add 0001-ZipCheck-Also-ignore-RuntimeError.patch (bscs#1124054)
* Fri Feb 01 2019 Axel Braun <axel.braun@gmx.de>
  - added user/group tryton (GNU Health)
* Mon Jan 14 2019 Dirk Mueller <dmueller@suse.com>
  - disable UseVersionInChangelog by default
* Sat Jan 12 2019 Dirk Mueller <dmueller@suse.com>
  - update to 1.11:
    * Avoid exception on inaccessible scripts
    * Print out the error content on UnicodeError to make flake8 happy
    * Fix flake8 warning about missing space around operators
    * Use compressions when checking for backup files
    * Account for arch specific code in /usr/share
    * Check for installed libtool wrapper files
    * Check for missing optional dependencies
    * Consider gnome help for doc files
    * Check for noarch package with files in lib64
    * Verify if description is longer than summary
    * Explicitly tell users how to set URL
    * Ignore pytest_cache directory
    * confusing-invalid-spec-name
    * Ignore orig/rej leftovers after patching
    * Reenable Travis testing against Fedora Rawhide
    * Check all sections that should not use %buildroot in them
    * Put in default buildroot value used by Fedora/openSUSE
    * Stricter interpreter check
    * Use compileall to avoid %buildroot to be in pyc
    * Drop deprecated config file usage, 0.88 is pretty old anyway
    * Adjust Version to not print outdated Copyright
    * Rework Travis checks against latest Centos and Fedora releases
    * Fix exception handling
    * Fix various flake8-import-order test regressions
    * Blacklist newer pycodestyle warnings
    * Fix compatibility with file 5.33+
    * Python 3.7.0b5 magic number is 3394
    * Update TagsCheck.py
    * pyc related tests: DRY
    * Fix getting pyc mtime on Python 3.7
    * Always import XDG desktop files as utf8
    * Fix Flake8 warnings
    * Update Magic values for Python 3.7 (Fixes #123)
    * Improve XDG Menu checks stability
    * Test added.
    * Ignore useless-provides on debuginfo provides (#112)
    * Properly handle the exception on missing files
    * Avoid calling close on undefined fd variable
    * Code formatting fixed to meet the style.
    * Modify FakePkg to let the test.sh pass.
    * _sourcedir macro defined.
    * Avoid summary-not-capitalized warning on digits
    * Avoid catch-all except statements
    * Use ImportError to avoid catch-all except: statements
    * Handle E741: ambiguous identifier
    * Accept python(abi) as a valid versioned python dependency
    * Binariescheck: Check for chroot/chdir on ARM, PPC
    * Avoid false positives on is_elf check
    * Handle %post scripts that contain non-ascii characters
    * Further tweak lib_regex
    * split wrong-script-interpreter into env-script-interpreter
    * Validate Appdata also when appstream-util is unavailable
    * Remove dependency on unicodedata
    * Lower false-positives on summary-not-capitalized
    * Tighten wrong-script-interpreter check to lower false positives
    * Check for unexpanded macros in more Tags
    * Rename local file variable to fname
    * Skip binaryinfo-readelf-failed on non-ELF archives
    * Add check for validating file extensions
    * Do not report error if call positions are unknown
    * Execute chroot tests also on x86 rpms
    * Tighten lib_regex to avoid false positive in python bindings
    * Better details for wrong-script-interpreter
    * Extend scm_regex to capture more SCM system files
    * AppDataCheck: Pass --nonet to appstream-util if NetworkEnabled is False
    * test: Fix cpio location in centos6
    * test: Combine run commands in fedoradev container
    * test: Remove dnf upgrade from fedora containers
    * test: Dockerfile whitespace tweaks
  - drop patches that were upstreamed:
    0001-Accept-python-abi-as-a-valid-versioned-python-depend.patch,
    0001-Always-import-XDG-desktop-files-as-utf8.patch,
    0001-Avoid-calling-close-on-undefined-fd-variable.patch,
    0001-Avoid-false-positives-on-is_elf-check.patch,
    0001-Backport-d8f423b575e8be387d33bc3af176baf978efacbb.patch,
    0001-Binariescheck-Check-for-chroot-chdir-on-ARM-PPC.patch,
    0001-Execute-chroot-tests-also-on-x86-rpms.patch,
    0001-Extend-scm_regex-to-capture-more-SCM-system-files.patch,
    0001-Fix-compatibility-with-file-5.33.patch,
    0001-Handle-post-scripts-that-contain-non-ascii-character.patch,
    0001-Improve-XDG-Menu-checks-stability.patch,
    0001-Tighten-wrong-script-interpreter-check-to-lower-fals.patch,
    0001-split-wrong-script-interpreter-into-env-script-inter.patch,
    0003-Tighten-lib_regex-to-avoid-false-positive-in-python-.patch,
    0007-Validate-Appdata-also-when-appstream-util-is-unavail.patch,
    better-wrong-script.diff, buildroot-doc.diff,
    buildroot-in-scripts.diff, compressed-backup-regex.diff,
    confusing-invalid-spec-name.diff, description-check.diff,
    drop-unicodedata-dep.diff, ignore-readelf-ar-error.diff,
    libtool-wrapper-check.diff, noarch-lib64.diff,
    omit_BUILDROOT_from_pyo_files.patch,
    selfconflicts-provide.diff, stricter-interpreter-check.diff,
    suse-whitelist-opensuse.diff, update-magic-values-python-37.patch,
    usr-arch.diff
* Wed Jan 09 2019 opensuse-packaging@opensuse.org
  - Update to version master:
    * Flake8 fix
* Wed Jan 09 2019 opensuse-packaging@opensuse.org
  - Update rpmlint-checks to version master (bsc#1116686):
    * Ignore decoding errors as we're not sure we know the encoding
    * Use UTF-8 encoding when opening .pc file (#42)
    * whitelist otrs permission file (#41)
    * Relax various flake8 warnings
    * Handle '-n' option for %service_del_preun %service_del_postun
    * There isn't a good standard, whether the directory should be called 'tests/' or 'test/'
* Wed Jan 02 2019 Martin Liška <mliska@suse.cz>
  - Add 0001-Backport-d8f423b575e8be387d33bc3af176baf978efacbb.patch
* Fri Dec 21 2018 matthias.gerstner@suse.com
  - whitelist boltd dbus service (bsc#1119975)
* Wed Dec 12 2018 mardnh@gmx.de
  - Add user/group 'bird' for package bird (network/bird)
* Fri Dec 07 2018 Todd R <toddrme2178@gmail.com>
  - Add xrootd gid and uid whitelist.
    This is needed by the latest versions of xrootd.
* Mon Dec 03 2018 matthias.gerstner@suse.com
  - whitelist pam_slurm_adopt (bsc#1116758)
* Tue Nov 20 2018 eich@suse.com
  - Add group 'singularity', remove user 'singularity' which was
    added mistakenly.
* Tue Nov 20 2018 eich@suse.com
  - Add user/group 'slurm' for package slurm
    (See network:cluster/slurm) (FATE#316379).
* Fri Nov 16 2018 Antonio Larrosa <alarrosa@suse.com>
  - Add mpd user
* Fri Nov 16 2018 Dirk Mueller <dmueller@suse.com>
  - update libtool-wrapper-check.diff to handle inaccessible files
* Thu Nov 08 2018 jsegitz@suse.com
  - whitelist keepalived dbus service (bsc#1015141)
* Tue Oct 23 2018 matthias.gerstner@suse.com
  - remove openswan whitelisting (deleted from Factory, replaced by libreswan,
    boo#1089340)
* Wed Oct 17 2018 jsegitz@suse.com
  - whitelist systemd-timesyncd (bsc#1111254)
* Tue Oct 16 2018 opensuse-packaging@opensuse.org
  - Update rpmlint-checks to version master:
    * Use only one pattern that covers both cases
    * Add support to identify tmpfiles_create used with just a basename
* Mon Oct 08 2018 opensuse-packaging@opensuse.org
  - Update to version master:
    * security checks: add link to openSUSE wiki to error message details
* Fri Oct 05 2018 matthias.gerstner@suse.com
  - whitelist NetworkManager-fortisslvpn (bsc#1109938)
* Mon Sep 24 2018 matthias.gerstner@suse.com
  - whitelist iwd D-Bus service (bsc#1108037)
* Wed Sep 12 2018 mpost@suse.com
  - Add new zkeyadm group
* Mon Sep 03 2018 Markos Chandras <mchandras@suse.de>
  - Add new firejail group
* Mon Aug 20 2018 matthias.gerstner@suse.com
  - whitelist xpra D-Bus service (bsc#1102836)
* Wed Aug 08 2018 lnussel@suse.de
  - adjust maximum valid suse_version to 1550 (boo#1104110)
* Fri Jul 20 2018 matthias.gerstner@suse.com
  - whitelist ratbagd D-Bus service (bsc#1076467)
* Thu Jul 12 2018 dmueller@suse.com
  - remove unnecessary suse-check-optional-dependencies.diff
  - drop CheckBuildDate - does not produce hits and is
    relatively slow
* Wed Jul 11 2018 dmueller@suse.com
  - add suse-rpmlint-all-pie.patch: refresh to handle the pie-executable
    case (rename from rpmlint-all-pie.patch)
* Mon Jul 09 2018 dmueller@suse.com
  - drop obsolete suse-no-run-ldconfig.diff,
    suse-manpages-for-rc-scripts.diff
* Thu Jul 05 2018 matthias.gerstner@suse.com
  - whitelist pam_oath PAM module after audit (bsc#1089114)
* Tue Jul 03 2018 mcepl@suse.com
  - Add update-magic-values-python-37.patch
      Neccessary for update of Python to 3.7
      https://github.com/rpm-software-management/rpmlint/commit/52b715763217
* Tue Jul 03 2018 opensuse-packaging@opensuse.org
  - Update rpmlint-checks to version master:
    * New file 5.33 does identify pie executables now (bsc#1097339)
  - add 0001-Fix-compatibility-with-file-5.33.patch
* Mon Jul 02 2018 c.schweingruber@catatec.ch
  - Add 'sogo' user and group (used in server:SOGo)
* Mon Jun 11 2018 matthias.gerstner@suse.com
  - whitelisting NetworkManager-libreswan plugin (bnc#1089340)
* Mon Jun 04 2018 dmueller@suse.com
  - add Lua/NodeJS related groups to list of valid groups (bsc#1095769)
* Mon Jun 04 2018 opensuse-packaging@opensuse.org
  - Update rpmlint-checks to version master:
    * Blacklist python test folder in python packages
    * Error out on /etc/bash_completion.d in packages
    * Do not use otherproviders() SUSEism
* Wed May 16 2018 andy@onthewings.net
  - Add Development/Languages/OCaml group.
* Fri May 04 2018 okurz@suse.com
  - Add 'synapse' user and group.
* Wed May 02 2018 mchandras@suse.de
  - Add 'openvswitch' user and group.
* Thu Apr 19 2018 matthias.gerstner@suse.com
  - whitelisting pam_yubico module (bsc#1087060)
* Tue Apr 10 2018 matthias.gerstner@suse.com
  - adding new names for kalarm DBUS service (bsc#1087714)
* Sun Apr 01 2018 novell@chromanet.de
  - added bacula user and group.
* Thu Mar 22 2018 sleep_walker@opensuse.org
  - Add tox user and toxcmd group as standard openSUSE GID and UID
* Fri Mar 09 2018 matthias.gerstner@suse.com
  - Corrected tpm2-abrmd (bnc#1049694). The D-Bus activation file is named
    differently than the configuration file.
* Tue Feb 20 2018 dimstar@opensuse.org
  - Add one more deprecated license:
    + GPL-2.0-with-font-exception.
* Tue Feb 20 2018 coolo@suse.com
  - allow more deprecated licenses to unbreak ring1+2
* Sun Feb 18 2018 dmueller@suse.com
  - add 0001-Always-import-XDG-desktop-files-as-utf8.patch
* Thu Feb 15 2018 coolo@suse.com
  - Allow some deprecated licenses that we would replace on commit
    (SPDX 2->SPDX 3 conversion)
* Thu Feb 08 2018 opensuse-packaging@opensuse.org
  - Update rpmlint-checks to version master:
    * polkit: make untracked privileges also an error
* Thu Feb 08 2018 opensuse-packaging@opensuse.org
  - Update rpmlint-checks to version master:
    * Support uppercase tag macros used by RPM 4.14
* Thu Feb 08 2018 opensuse-packaging@opensuse.org
  - Update to version 84.87+git20180202.3df4ae7:
    * Add testcases for MenuXDGCheck.py
* Tue Jan 23 2018 dmueller@suse.com
  - refresh for 0001-Improve-XDG-Menu-checks-stability.patch
    remove xdg-paths-update.diff (merged into other patch)
* Mon Jan 15 2018 krahmer@suse.com
  - whitelisting usbauth (bsc#1066877)
* Sun Jan 14 2018 ngompa13@gmail.com
  - Add Development/{Languages,Libraries}/Rust groups as noted in wiki
* Wed Jan 03 2018 adam.majer@suse.de
  - add missing comma (,) to config file
  - add user/group _nsd for NSD name server

Files

/etc/xdg/rpmlint
/etc/xdg/rpmlint/scoring-strict.override.toml


Generated by rpm2html 1.8.1

Fabrice Bellet, Sat Oct 9 12:02:37 2021