Comment 9 for bug 1217001

cordova-ubuntu actually doesn't need a security review-- it doesn't ship its own webkit but uses qt5webkit. We will transition it to oxide when oxide is ready and cordova-ubuntu can just use oxide in the same way it uses qt5webkit (this was brought at vUDS 1308: https://blueprints.launchpad.net/ubuntu/+spec/client-1308-oxide).

Things to note:
* not lintian clean:
  - cordova-ubuntu-2.8_2.8.0+13.10.20130904.2-0ubuntu1_amd64.deb:
    W: cordova-ubuntu-2.8: binary-without-manpage usr/bin/cordova-ubuntu-2.8
  - cordova-ubuntu-2.8-examples_2.8.0+13.10.20130904.2-0ubuntu1_all.deb:
    W: cordova-ubuntu-2.8-examples: desktop-command-not-in-package usr/share/applications/CordovaExampleQRCodeScanner.desktop usr/bin/cordova-ubuntu-2.8
  - qtdeclarative5-cordova-2.8-plugin_2.8.0+13.10.20130904.2-0ubuntu1_amd64.deb:
    W: qtdeclarative5-cordova-2.8-plugin: package-has-long-file-name 75 (84) > 80
* needs a team bug subscriber

Conditional ACK provided a team bug subscriber is added. The lintian issues should be fixed but won't block the MIR. Marking 'In Progress' for now-- Once qtmultimedia-opensource-src is handled, feel free to move qtfeedback-opensource-src to 'Fix Committed' (assuming a team bug subscriber is added).