Package: gajim-urlimagepreview Version: 0.9.8-1 Severity: important When the plugin is activated, gajim will make an HTTP request (HEAD or GET, did not check) to any URL it identified in a message.
Upstream agreed to change this behaviour at some time, but until then, this behaviour can be used by others to get e.g. the IP users address. A warning about this possible privacy breach should be in the plugin description, that is visible in the gajim dialog, and maybe also in the Debian package description.
