libsForQt5.qt5.qtimageformats: add dependencies jasper, libmng, and libwebp

[obj-obj]

Description of changes

These dependencies are on both qt6-imageformats (in this repo) and the qt5-imageformats Arch Linux package. I noticed a lack of WEBP support in Spectacle, and this will probably fix it.

I haven't tested on my own machine, because I don't have the time right now to recompile a bunch of packages.

Things done

• Built on platform(s)
  • x86_64-linux
  • aarch64-linux
  • x86_64-darwin
  • aarch64-darwin
• For non-Linux: Is sandbox = true set in nix.conf? (See Nix manual)
• Tested, as applicable:
  • NixOS test(s) (look inside nixos/tests)
  • and/or package tests
  • or, for functions and "core" functionality, tests in lib/tests or pkgs/test
  • made sure NixOS tests are linked to the relevant packages
• Tested compilation of all packages that depend on this change using nix-shell -p nixpkgs-review --run "nixpkgs-review rev HEAD". Note: all changes have to be committed, also see nixpkgs-review usage
• Tested basic functionality of all binary files (usually in ./result/bin/)
• 23.11 Release Notes (or backporting 23.05 Release notes)
  • (Package updates) Added a release notes entry if the change is major or breaking
  • (Module updates) Added a release notes entry if the change is significant
  • (Module addition) Added a release notes entry if adding a new NixOS module
• Fits CONTRIBUTING.md.

[nagy]

Can you follow the commit message (and PR title) guidelines at https://github.com/NixOS/nixpkgs/blob/master/CONTRIBUTING.md#commit-conventions ?

[obj-obj]

Oh, didn't see those, sorry

Will do

[vcunat]

I don't think this will make webp available for you, as before this PR the log says

  WEBP ................................... yes
    Using system libwebp ................. no

[vcunat]

However, it would probably help with #254798 right now.

[vcunat]

Log looks good, indicating unvendoring of libwebp (a security fix ATM). This PR is exactly what we do in the qt6 version already, too. I built several reverse dependencies on x86_64 NixOS.

[vcunat]

(squashed in order to improve the commit message)

[obj-obj]

Log looks good, indicating unvendoring of libwebp (a security fix ATM). This PR is exactly what we do in the qt6 version already, too. I built several reverse dependencies on x86_64 NixOS.

Yeah, I actually copy-pasted this from QT6 lol

[obj-obj]

Log looks good, indicating unvendoring of libwebp (a security fix ATM). This PR is exactly what we do in the qt6 version already, too. I built several reverse dependencies on x86_64 NixOS.

Aren't reverse dependencies called "dependents"?

[vcunat]

Maybe, I don't care about terminology too much here, as long as the meaning is clear. nix-store uses --referrers-closure

[delroth]

Can the libwebp part at least get cherry-picked to 23.05 for CVE-2023-4863 remediation?

EDIT: oops, I missed #255432 - thanks for being ahead of me :p