Main Inclusion Report for rhino

Requirements

1. Availability: http://archive.ubuntu.com/ubuntu/pool/universe/r/rhino; available for all architectures.

2. Rationale:

   • Build dependency and dependency of openjdk-6.

3. Security:

   • CVE entries: 4, last one from 2007.

   • Secunia history:

   • No binaries running as root or suid/sgid, no daemons.
   • Network activity: does it open any port ? Does it handle incoming network data ?
   • No source code review performed.

4. Quality assurance:

   • package does work out of the box without configuration.

   • Debian bugs: None.

   • Maintenance in Debian is calm.

   • Upstream is ongoing.

   • Upstream bug tracker: No critical reports.

   • Test suite is included in the upstream source or packaging, not enabled for the build.

5. Standards compliance:

   • FHS, Debian Policy compliant.

   • Packaging system: cdbs. Patch system: simple patch system.

6. Dependencies:

   • java build deps, all in main.

Reviewers

MIR bug: https://launchpad.net/bugs/246484

Initial MIR: Matthias Klose