Bug 388742 - appdata on files.kde.org
Summary: appdata on files.kde.org
Status: RESOLVED FIXED
Alias: None
Product: krita
Classification: Applications
Component: General (other bugs)
Version First Reported In: git master (please specify the git hash!)
Platform: Other Linux
: NOR normal
Target Milestone: ---
Assignee: Krita Bugs
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2018-01-09 17:14 UTC by Harald Sitter
Modified: 2018-01-10 12:08 UTC (History)
0 users

See Also:
Latest Commit: https://commits.kde.org/krita/045a94b4213237e1225674fedc240fbad4678589
Version Fixed/Implemented In:
Sentry Crash Report:

Attachments
Add an attachment

Note You need to log in before you can comment on or make changes to this bug.
Description Harald Sitter 2018-01-09 17:14:31 UTC 
Currently the appstream appdata file points to https://files.kde.org for screenshots. This has the problem that it is backed by the mirror network so the https always gets degraded to http which opens the connection up to MITM attacks which could inject unwanted screenshots into the final data making distributors and us look bad.

Easy fix: move the screenshots to our "new" central location for appdata screenshots

https://phabricator.kde.org/source/websites-product-screenshots/browse/master/README.md
Comment 1 Halla Rempt 2018-01-10 12:08:05 UTC 
Git commit 045a94b4213237e1225674fedc240fbad4678589 by Boudewijn Rempt.
Committed on 10/01/2018 at 12:07.
Pushed by rempt into branch 'master'.

Update screenshot location

M  +4    -4    krita/org.kde.krita.appdata.xml

https://commits.kde.org/krita/045a94b4213237e1225674fedc240fbad4678589