Update to 16.4.0. From the changelog:

Bug Fixes:

- winget: add installer switches (ca0a9c0)
- owm: adjust icons outside of the MD range (dc085ab)
- font: migrate away from material icons (c579759), closes #3818
- image: add background reset sequence (865374a)
- font: install all fonts in zip file (c5feb08)
- windows: respect flag lengths (ddd4eca)

Features:

- image: cache font instead of embedding (0f7c103)
- python: add support for pyvenv.cfg prompt (8f03f41)
- linux: add installation script (221cd7b), closes #3815
- path: respect folder_separator_icon in a colon-trailed root (4b71c2b)

(schmonz)

qtcreator: fix build with llvm 16

(nikita)

doc: Updated security/go-mkcert to 1.4.4nb3

(schmonz)

DEPENDS+=nss for certutil, so mkcert can also update the Firefox trust
store. Bump PKGREVISION.

(schmonz)

Updated net/py-softlayer; Removed textproc/py-ptable

(adam)

py-ptable: removed

(adam)

py-softlayer: updated to 6.1.7

6.1.7

pip prod(deps): bump rich from 13.3.2 to 13.3.3
Added new command - slcli cdn delete
Added new command - slcli cdn create
slcli firewall detail multiVlan:14109 --credentials
add a new option on account orders
Issues with block/file volume-details on some volumes
Need a command for slcli object-storage delete
New Command: slcli user vpn-password
Update slcli user detail to display if user has API key
Fixed an issue with 'slcli event-log get'
pip prod(deps): bump rich from 13.3.3 to 13.3.4
added the slcli file to this repo
Updated date field in command - slcli cdn purge
New command: slcli order quote-delete
pip prod(deps): bump rich from 13.3.4 to 13.3.5
updates for v6.1.7

(adam)

Updated devel/deepstate; Removed math/py-z3solver

(adam)

py-z3solver: removed, use py-z3 from now on

(adam)

deepstate: depends on math/py-z3; bump revision

(adam)

Updated math/py-sympy, devel/py-manticore

(adam)

py-manticore: updated to 0.3.7

0.3.7

Ethereum

Use crytic-compile 0.2.2
Multi-transaction analysis now uses fixed attacker and owner contracts

Native

[Added API] Retrieve list of unimplemented syscalls
Add FXSAVE/FXRSTOR concrete support on x86
Add last_executed_pc property to CPU
Support LD_LIBRARY_PATH
Optional will/did_read_memory events
Fixed base address handling on Linux
Add ENDBR-style NOPs
Support epoll-related syscalls

Other

[Added API] Add fork policy for providing explicit values
Fixed Constant Folding
Add simplifications for subtraction
Parent state ID, last PC now available in state descriptors
States now contain a reference to the current manticore instance
fast_fail config to exit after first state exception
Scaling bugfix for large solver queries
Don't fork when only one solution is found for Concretize

(adam)

doc: Updated sysutils/hexyl to 0.13.0

(pin)

sysutils/hexyl: update to 0.13.0

Features
- Support both little and big Endian dumps using --endianness={little,big},
see #189 and #104 (@RinHizakura)

Changes
- Breaking: Changed the meaning of the short flag -C to be consistent with
hexdump -C. Previously, this would hide the character panel, but now -C shows
the character panel, in case it has been previously (e.g. in an alias)
disabled with --no-characters, see #187 (@sharkdp)

hexyl as a library
- New endianness method for PrinterBuilder

(pin)

py-sympy: updated to 1.12

1.12
https://github.com/sympy/sympy/wiki/release-notes-for-1.12

(adam)

py-rpyc: mark as PYTHON_SELF_CONFLICT

(adam)

py-smt: mark as PYTHON_SELF_CONFLICT=yes

(adam)

tree-sitter-html: add patch to distinfo so it'll get used

(wiz)

Added lang/py-solc-select; Updated finance/py-crytic-compile

(adam)

py-crytic-compile: updated to 0.3.1

0.3.1
This releases adds the support for Sepolia, removes the support for rinkeby, adds solc-select as a direct dependency and contains improvements to support linked libraries (to ease Echidna's integration).

(adam)

py-solc-select: added version 1.0.3

A tool to quickly switch between Solidity compiler versions.

(adam)

Updated devel/py-pyvex, devel/py-ailment, devel/py-archinfo, devel/py-cle, math/py-claripy, devel/py-angr

(adam)

py-angr: updated to 9.2.50

9.2.50
Unknown changes

(adam)

py-claripy: updated to 9.2.50

9.2.50
Unknown changes

(adam)

py-cle: updated to 9.2.50

9.2.50
Unknown changes

(adam)

py-archinfo: updated to 9.2.50

9.2.50
Unknown changes

(adam)

py-ailment: updated to 9.2.50

9.2.50
Unknown changes

(adam)

py-pyvex: updated to 9.2.50

9.2.50
Unknown changes

(adam)

Updated math/z3, math/py-z3, emulators/unicorn, emulators/py-unicorn

(adam)

unicorn py-unicorn: updated to 2.0.1.post1

Version 2.0.1

Features:

- Support building & running on BE hosts.
- Fix and support `clang-cl` on Windows.
- Fix python `sdist` and add aarch64 Linux wheels. Note `pip` can build Unicorn2 on M1 now!
- C# binding is refined and upgraded to .Net 6.

Fix/Improvements:

- Various bindings improvements.
- Improvements for tests.
- Fail explicitly when VEX.L is set.
- Fix endianness when writing PPC32 CR register.
- Fix a bug in `uc_ctl_set_cpu_model` check.
- Fix Tricore PC not updating.
- Fix the mapping not updated if users modify the mappings in the hooks.
- Handle pathological cases consistently.
- Fix memory leaks in PPC target.
- Fix memory leaks in Tricore target.
- Fix MSVC handling in cmake.
- Fix PC sync-ing problems for `UC_HOOK_BLOCK` hooks.
- Fix PC sync-ed twice when users request a soft restart.
- Prevent overflow with pre-allocated RAM blocks.
- Add FPCR and FPSR registers
- Fix ARM CPU state not deep copied.
- Fix PC not sync-ed for memory operation on aarch64.
- Exit invalid store operations early to avoid the target registers being overwritten.
- Improve the support for ARM BE32.

Version 2.0.0

Features:

- TriCore Support

Fixes/Improvements:

- Build both shared library and static archive as unicorn1 does.
- Misc bindings improvements.
- Make sure setjmp-setjmp-wrapper-win32 participates in the build.
- Improve Rust bindings build logic.
- Fix wrong python binding for UC_CTL_TB_REMOVE_CACHE
- Flush translation blocks when the count hook is removed.
- Fix unicorn crash when nested `uc_emu_start` deletes a hook
- Fix CPU not fully resumed when writing PC.
- Don't quit TB if `uc_mem_protect` doesn't change the protection of current TB memory.
- Add type annotations for python bindings.
- Add CPUID hook for python bindings.
- Don't repeat memory hooks if there is already an unhandled error.
- Support reads and writes over all Arm SIMD registers
- Fix wrong registers range in python bindings.
- Fix uc_mem_protect on mmio regions
- Fix a UAF caused by hook cache.
- Fix the value collision between UC_MODE_ARMBE8 and UC_MODE_ARM926

(adam)

z3 py-z3: updated to 4.12.1

Version 4.12.1
==============
- change macos build to use explicit reference to Macos version 11. Hosted builds are migrating to macos-12 and it broke a user

Version 4.12.0
==============
- add clause logging API.
  - The purpose of logging API and self-checking is to enable an array of use cases.
    - proof mining (what instantiations did Z3 use)?
      - A refresh of the AxiomProfiler could use the logging API.
        The (brittle) trace feature should be deprecated.
    - debugging
      - a built-in self certifier implements a custom proof checker for
        the format used by the new solver (sat.euf=true).
    - other potential options:
      - integration into certified tool chains
      - interpolation
  - Z3_register_on_clause (also exposed over C++, Python and .Net)
  - it applies to z3's main CDCL(T) core and a new CDCL(T) core (sat.euf=true).
  - The added API function allows to register a callback for when clauses
    are inferred. More precisely, when clauses are assumed (as part of input),
    deleted, or deduced.
    Clauses that are deduced by the CDCL SAT engine using standard
    inferences are marked as 'rup'.
    Clauses that are deduced by theories are marked by default
    by 'smt', and when more detailed information
    is available with proof hints or proof objects.
    Instantations are considered useful to track so they
    are logged using terms of the form

        (inst (not (forall (x) body)) body[t/x] (bind t)), where

    'inst' is a name of a function that produces a proof term representing
    the instantiation.
- add options for proof logging, trimming, and checking for the new core.
  - sat.smt.proof (symbol) add SMT proof to file (default: )
  - sat.smt.proof.check (bool) check SMT proof while it is created (default: false)
    - it applies a custom self-validator. The self-validator comprises of
      several small checkers and represent a best-effort validation mechanism.
      If there are no custom validators associated with inferences, or the custom
      validators fail to certify inferences, the self-validator falls back to
      invoking z3 (SMT) solving on the lemma.
      - euf - propagations and conflicts from congruence closure
              (theory of equality and uninterpreted functions) are checked
              based on a proof format that tracks uses of congruence closure and
              equalities. It only performs union find operations.
      - tseitin - clausification steps are checked for Boolean operators.
      - farkas, bound, implies_eq - arithmetic inferences that can be justified using
              a combination of Farkas lemma and cuts are checked.
              Note: the arithmetic solver may produce proof hints that the proof
              checker cannot check. It is mainly a limitation
              of the arithmetic solver not pulling relevant information.
              Ensuring a tight coupling with proof hints and the validator
              capabilites is open ended future work and good material for theses.
      - bit-vector inferences - are treated as trusted
        (there is no validation, it always blindly succeeds)
      - arrays, datatypes - there is no custom validation for
        other theories at present. Lemmas are validated using SMT.
  - sat.smt.proof.check_rup (bool) apply forward RUP proof checking (default: true)
    - this option can incur significant runtime overhead.
      Effective proof checking relies on first trimming proofs into a
      format where dependencies are tracked and then checking relevant inferences.
      Turn this option off if you just want to check theory inferences.
- add options to validate proofs offline. It applies to proofs
  saved when sat.smt.proof is set to a valid file name.
  - solver.proof.check (bool) check proof logs (default: true)
    - the option sat.smt.proof_check_rup can be used to control what is checked
  - solver.proof.save (bool) save proof log into a proof object
      that can be extracted using (get-proof) (default: false)
    - experimental: saves a proof log into a term
  - solver.proof.trim (bool) trim the offline proof and print the trimmed proof to the console
    - experimental: performs DRUP trimming to reduce the set of hypotheses
      and inferences relevant to derive the empty clause.
- JS support for Arrays, thanks to Walden Yan
- More portable memory allocation, thanks to Nuno Lopes
  (avoid custom handling to calculate memory usage)

- clause logging and proofs: many open-ended directions.
  Many directions and functionality features remain in an open-ended state,
  subject to fixes, improvements, and contributions.
  We list a few of them here:
  - comprehensive efficient self-validators for arithmetic, and other theories
  - an efficient proof checker when several theory solvers cooperate in a propagation or
    conflict. The theory combination case is currently delegated to the smt solver.
    The proper setup for integrating theory lemmas is in principle not complicated,
    but the implementation requires some changes.
  - external efficient proof validators (based on certified tool chains)
    can be integrated over the API.
  - dampening repeated clauses: A side-effect of conflict resolution is to
    log theory lemmas. It often happens that the theory lemma becomes
    the conflict clause, that is then logged as rup. Thus, two clauses are
    logged.
  - support for online trim so that proofs generated using clause logging can be used for SPACER
    - SPACER also would benefit from more robust proof hints for arithmetic
      lemmas (bounds and implied equalities are sometimes not logged correctly)
  - integration into axiom profiling through online and/or offline interfaces.
    - an online interface attaches a callback with a running solver. This is available.
    - an offline interface saves a clause proof to a file (currently just
      supported for sat.euf) and then reads the file in a separate process
      The separate process attaches a callback on inferred clauses.
      This is currently not available but a relatively small feature.
  - more detailed proof hints for the legacy solver clause logger.
    Other than quantifier instantiations, no detailed information is retained for
    theory clauses.
  - integration of pre-processing proofs with logging proofs. There is
    currently no supported bridge to create a end-to-end proof objects.
- experimental API for accessing E-graphs. Exposed over Python. This API should be considered temporary
and subject to be changed depending on use cases or removed. The functions are `Z3_solver_congruence_root`, `Z3_solver_congruence_next`.

Version 4.11.2
==============
- add error handling to fromString method in JavaScript
- fix regression in default parameters for CDCL, thanks to Nuno Lopes
- fix model evaluation bugs for as-array nested under functions (data-type constructors)
- add rewrite simplifications for datatypes with a single constructor
- add "Global Guidance" capability to SPACER, thanks to Arie Gurfinkel and Hari Gorvind.
  The commit logs related to Global Guidance contain detailed information.
- change proof logging format for the new core to use SMTLIB commands.
  The format was so far an extension of DRAT used by SAT solvers, but not well compatible
  with SMT format that is extensible. The resulting format is a mild extension of SMTLIB with
  three extra commands assume, learn, del. They track input clauses, generated clauses and deleted clauses.
  They are optionally augmented by proof hints. Two proof hints are used in the current version: "rup" and "farkas".
  "rup" is used whent the generated clause can be justified by reverse unit propagation. "farkas" is used when
  the clause can be justified by a combination of Farkas cutting planes. There is a built-in proof checker for the
  format. Quantifier instantiations are also tracked as proof hints.
  Other proof hints are to be added as the feature set is tested and developed. The fallback, buit-in,
  self-checker uses z3 to check that the generated clause is a consequence. Note that this is generally
  insufficient as generated clauses are in principle required to only be satisfiability preserving.
  Proof checking and tranformation operations is overall open ended.
  The log for the first commit introducing this change contains further information on the format.
- fix to re-entrancy bug in user propagator (thanks to Clemens Eisenhofer).
- handle _toExpr for quantified formulas in JS bindings

(adam)

Added devel/py-nampa, sysutils/cargo-cache

(adam)

cargo-cache: added version 0.8.3

Display information on the cargo cache (~/.cargo/ or $CARGO_HOME). Optional
cache pruning.

(adam)

py-nampa: added version 0.1.1

Pure-python implementation of IDA Pro's FLIRT technology. Also Binary Ninja
plugin.

(adam)

doc: Updated net/sniproxy to 0.6.1

(schmonz)

Update to 0.6.1. From the changelog:

* Fix buffer overflow in address module
* Fix tests

(schmonz)

Work around PR pkg/57399.

(schmonz)

TODO: games/adom seems to be at 3.3.3, we have 1.1.1. Also note PR 40725.

(dholland)

games/adom: clarify that it's a binary-only download

(dholland)

mate-utils: add bug report details to the new patch

(gutteridge)

mate-utils: add patch missed in previous commit (build fix)

(gutteridge)

doc: Updated misc/mate-utils to 1.26.1

(gutteridge)

mate-utils: update to 1.26.1

pkgsrc-specifc change: patch out Portuguese language translations in
the search-tool build, as these (once again) trigger a segfault in
itstool, evidently because of continued bugginess with libxml2.

Change log:

### mate-utils 1.26.1

  * Translations update
  * search-tool: enable Portuguese language
  * mate-dictionary: fix memory leak
  * mate-dictionary: fix memory leak
  * gsearchtool: fix memory leak
  * mate-dictionary: fix memory leak
  * mate-disk-image-mounter: fix memory leak
  * mate-screenshot: fix memory leak

(gutteridge)

mate-terminal: fix grammar in DESCR

(Perhaps that sentence shouldn't be there at all.)

(gutteridge)

doc: Updated x11/mate-terminal to 1.26.1

(gutteridge)

mate-terminal: update to 1.26.1

Change log:

### mate-terminal 1.26.1

  * Translations update
  * meson build: drop desktop-file/appdata-file argument
  * Add GTK Style Class to context menu

(gutteridge)

doc: Updated editors/pluma to 1.26.1

(gutteridge)

pluma: update to 1.26.1

Change log:

### pluma 1.26.1

  * Translations update
  * Fix out-of-bounds write
  * Fix double activation of extensions
  * pluma-plugins-engine: fix memory leak

(gutteridge)

add py-rcssmin py-rjsmin

(markd)

www: add py-rcssmin py-rjsmin

(markd)

py-rjsmin: add version 1.2.1

rJSmin is a javascript minifier written in python.

The minifier is based on the semantics of jsmin.c by Douglas Crockford.

The module is a re-implementation aiming for speed, so it can be used
at runtime (rather than during a preprocessing step). Usually it produces
the same results as the original jsmin.c.

(markd)

py-rcssmin: add version 1.1.1

RCSSmin is a CSS minifier written in python.

The minifier is based on the semantics of the YUI compressor, which itself
is based on the rule list by Isaac Schlueter.

This module is a re-implementation aiming for speed instead of maximum
compression, so it can be used at runtime (rather than during a preprocessing
step). RCSSmin does syntactical compression only (removing spaces, comments
and possibly semicolons). It does not provide semantic compression (like
removing empty blocks, collapsing redundant properties etc). It does, however,
support various CSS hacks (by keeping them working as intended).

(markd)

add py-robot-detection

(markd)

py-robot-detection: add version 0.4

robot_detection is a python module to detect if a given HTTP User Agent
is a web crawler. It uses the list of registered robots from
http://www.robotstxt.org: (Robots Database)

(markd)

Conditionalize more fully whether sed.1 is generated. Fixes regular
build on at least FreeBSD 13.x, and confirmed to build (both forks
of the conditional) on NetBSD and macOS.

(schmonz)

libhidapi: add more dependencies.

(nikita)

doc: Updated pkgtools/rc.d-boot to 20230510

(schmonz)

During install, if FileVault is enabled, warn that per-user supervision
trees won't work. Bump version.

(schmonz)

Updated emulators/unicorn, emulators/py-unicorn

(adam)

unicorn py-unicorn: updated to 1.0.3

Version 1.0.3

Fix some building issues
- Fix build with LLVM on Powerpc64(le)
- cmake: enable UNICORN_HAS_ARMEB when ARM is on
- Better support MingW building
- Better support FreeBSD host
- Better support VS2008/VS2010
Fix some issues in the core:
- Fix wrong sync after UC_ERR_[READ, WRITE, FETCH]_[UNMAPPED, PROT]
- Support querying architecture mode besides arm
- Fix pausing within Thumb2 ITE blocks
Arm:
- Support Arm BE8 mode
X86:
- Fix FPIP & FTST instructions
Bindings:
- Java: remove deprecated javah and build with javac
- Python: handle exceptions raised in hook functions
- Rust binding

(adam)

doc: Added sysutils/libudev version 243

(nikita)

libudev: import as sysutils/libudev version 243

packaged in wip by Denys Nykula and tnn@

Device enumeration includes known properties which devices don't report.
Evdev min, max, res, fuzz and flat by axis. Key mapping, hard-coded
layouts, modifier LEDs. Accelerometer mount-matrix and location. Mouse
DPI. Pointingstick sensitivity. Without the rest of systemd.

(nikita)

libnitrokey: fix for new libhidapi. remove patch. might require a new
patch on FreeBSD.

(nikita)

doc: Updated comms/libhidapi to 0.13.1

(nikita)

libhidapi: update to version 0.13.1

Change build-system to cmake, autotools is deprecated upstream.

Changelog (taken from https://github.com/libusb/hidapi/releases):

hidapi-0.13.1

    hidraw: fix invalid read past the UDEV buffer;

hidapi-0.13.0

    general: add hid_get_device_info (#432);
    general: Meson build script (as a wrapper over CMake) (#410);
    general: add HID Bus Type in hid_device_info (#308);
    libusb: primary usage_page/usage is now available with hid_get_device_info regardless of the compilation flags;
    hidraw: Open files with O_CLOEXEC to not leak fds to child processes (#446);
    hidraw: add support for HID over SPI (#486);
    macOS: implement hid_error (#314);
    cmake: libusb: Ensure Iconv is found when provided via CFLAGS/LDFLAGS (#430);
Other various improvements.

hidapi-0.12.0

    Windows: migrate from SetupApi to CfgMgr32 (#362) - as per recommendation from Microsoft;

    Windows: add hid_winapi_get_container_id WinAPI-specific function (#379);

    Windows: improved error messages (#388);

    Windows: fixed out-of-boundary memory access for some of the function (#418);

    windows: Add .rc (#415);

    macOS: add hid_darwin_get_location_id macOS-specific function (#378);

    macOS: add macOS-specific function(s) to open device(s) in non-exclusive mode (#397);

    libusb: improved CMake dependency on Iconv (#405) - as a result, better support for NetBSD;

    general: documentation improvements;

    general: small code cleanups/improvements;

hidapi-0.11.2

    hidraw: hid_get_input_report implementation for kernels that supports it (#351);
    windows: several improvements and bugfixes (#348, #360, #361);
    libusb: fix potential crash when libusb_detach_kernel_driver fails (#363)
    general: documentation improvements;

(nikita)

net/unifi: Catch up with apparent ftp.n.o distfile location churn

(gdt)

doc: Updated www/lighttpd to 1.4.70

(schmonz)

Update to 1.4.70. From the changelog:

* [autotools] chmod u+w configparser.c for lemon
* [build] skip build separate modules for built-ins
* [core] cache format secs for high prec errlog
* [mod_maxminddb] check remote IP each request (fixes #3191)
* [multiple] store ptrs to remote addr in request_st (#3192)
* [mod_extforward] manage remote addr per request (fixes #3192)
* [core] use C23 memset_explicit() were available
* [mod_accesslog] %{mask}a to mask/anonymize IP
* [core] cast to fix compiler error in prior commit
* [scons] fix static build to include builtin_mods
* [core] h2_recv_headers() tweak to reduce code size
* [core] h2_get_stream_req() code reuse
* [core] h2: remove obsolete comment
* [core] h2 mark :status matching lsxpack enum value
* [core] h2 match w/ lsxpack pseudo-header key only
* [core] limit server.max-request-field-size <=65535
* [core] permit shell HERE docs to specify config
* [core] add members to http_header_parse_ctx
* [mod_extforward] typo in comment
* [mod_openssl] SSL_CTX_set_options() takes uint64_t
* [core] reorder enum handler_t
* [core] connection_handle_request_start_state()
* [core] check chunk file open early in mmap viewadj (fixes #3197)
* [core] h2 http_request_parse_header() tweak
* [mod_extforward] recognize unix domain sockets (fixes #3198)
* [mod_magnet] support ./configure --with-lua=luajit (#3199)
* [core] remove instance of devel debug code
* [core] quiet coverity warning
* [core] connection_check_upgrade() h2_upgrade_h2c()
* [core] CON_STATE_REQUEST_END transient state
* [core] expose request_set_state() for internal use
* [core] h2_send_goaway_graceful()
* [core] h2_check_timeout()
* [core] h2_process_streams()
* [core] h2_recv_reqbody()
* [core] HTTP_VERSION_3 enum value
* [core] r->x union w/ structs for r->x.{h1}
* [core] r->x union w/ structs for r->x.{h1,h2}
* [core] http_dispatch[] tables for HTTP proto vers
* [core] hxcon "base class" for h2con
* [mod_h2] HTTP/2 module: mod_h2
* [multiple] optimistic client read only if HTTP/1.x
* [core] use posix_spawn() where available
* [mod_cgi] comment about caching target dirname
* [meson] update comment with build flags
* [meson] check FORCE_{WOLFSSL,MBEDTLS}_CRYPTO
* [mod_auth] warn if auth.require path never matches
* [core] h1.[ch] collect some HTTP/1.x specific code
* [core] noinline connection shutdown, reset
* [TLS] $SERVER["socket"] inherit global ssl.engine
* [mod_proxy] match "map-host-response" "-" w/ Host
* [core] noinline stat_cache_sptree_find()
* [core] rename http_kv funcs, reorder http_versions
* [mod_cgi] move fd count to cgi_create_env()
* [mod_cgi] reduce code size
* [mod_cgi] do not issue trace if CGI closes input
* [mod_cgi] cgi_create_err() cold err handling func
* [core] always decr fd count upon socket close()
* [mod_mbedtls] check MBEDTLS_DEBUG_C for debug func
* [core] return pid_t from fdevent_waitpid()
* [meson] build fix for builtin_mods
* [core] move some shared funcs to call from modules
* [build] move some files to call from modules
* [mod_cgi] doubly-linked list of CGI pids
* [mod_cgi] reuse fd already opened to /dev/null
* [mod_cgi] reset upload_temp_file_size in CGI close
* [tests] copy confs for running tests in alt dir
* [scons] avoid dup mod_h2 module in static build
* [autoconf] include fs_win32.h in hdrs for dpkg
* [mod_openssl] SSL_OP_ENABLE_KTLS_TX_ZEROCOPY_SENDFILE
* [core] quiet coverity warning
* [mod_openssl] FreeBSD: check "kern.ipc.tls.enable"
* [core] fix HTTP/2 use of http_response_loop()
* [mod_openssl] check kernel support for KTLS
* [core] posix_spawnattr_setcwd_np() on QNX
* [core] posix_spawn_file_actions_addclosefrom_np()
* [core] Mac OS POSIX_SPAWN_CLOEXEC_DEFAULT
* [core] modify use of posix_spawnattr_setsigdefault
* [core] fdevent_load_file() check if limit exceeded
* [tests] tests/prepare.sh comment w/ alt build root
* [core] treat mod_h2 as built-in module (for now)

(schmonz)

Updated www/py-scrapy, www/py-flask-jwt-extended

(adam)

py-flask-jwt-extended: updated to 4.4.4

4.4.4
Fix compatibility with flask version 2.3

4.4.3
Documentation improvements
Drop support for python 3.6 (flask no longer supports 3.6, so following suite here)
Add option to include current_user in jinja templates by default
Fix mypy type checks for current_user

4.4.2
Fix mypy explicitly mark exported names
Fix verify_type being set to False by default in verify_jwt_in_request()

4.4.1
Documentation improvements
Fix PEP 561 compatibility

(adam)

py-scrapy: updated to 2.9.0

Scrapy 2.9.0 (2023-05-08)
-------------------------

Highlights:

-  Per-domain download settings.
-  Compatibility with new cryptography_ and new parsel_.
-  JMESPath selectors from the new parsel_.
-  Bug fixes.

Deprecations
~~~~~~~~~~~~

-  :class:`scrapy.extensions.feedexport._FeedSlot` is renamed to
    :class:`scrapy.extensions.feedexport.FeedSlot` and the old name is
    deprecated. (:issue:`5876`)

New features
~~~~~~~~~~~~

-  Settings correponding to :setting:`DOWNLOAD_DELAY`,
    :setting:`CONCURRENT_REQUESTS_PER_DOMAIN` and
    :setting:`RANDOMIZE_DOWNLOAD_DELAY` can now be set on a per-domain basis
    via the new :setting:`DOWNLOAD_SLOTS` setting. (:issue:`5328`)

-  Added :meth:`TextResponse.jmespath`, a shortcut for JMESPath selectors
    available since parsel_ 1.8.1. (:issue:`5894`, :issue:`5915`)

-  Added :signal:`feed_slot_closed` and :signal:`feed_exporter_closed`
    signals. (:issue:`5876`)

-  Added :func:`scrapy.utils.request.request_to_curl`, a function to produce a
    curl command from a :class:`~scrapy.Request` object. (:issue:`5892`)

-  Values of :setting:`FILES_STORE` and :setting:`IMAGES_STORE` can now be
    :class:`pathlib.Path` instances. (:issue:`5801`)

Bug fixes
~~~~~~~~~

-  Fixed a warning with Parsel 1.8.1+. (:issue:`5903`, :issue:`5918`)

-  Fixed an error when using feed postprocessing with S3 storage.
    (:issue:`5500`, :issue:`5581`)

-  Added the missing :meth:`scrapy.settings.BaseSettings.setdefault` method.
    (:issue:`5811`, :issue:`5821`)

-  Fixed an error when using cryptography_ 40.0.0+ and
    :setting:`DOWNLOADER_CLIENT_TLS_VERBOSE_LOGGING` is enabled.
    (:issue:`5857`, :issue:`5858`)

-  The checksums returned by :class:`~scrapy.pipelines.files.FilesPipeline`
    for files on Google Cloud Storage are no longer Base64-encoded.
    (:issue:`5874`, :issue:`5891`)

-  :func:`scrapy.utils.request.request_from_curl` now supports $-prefixed
    string values for the curl ``--data-raw`` argument, which are produced by
    browsers for data that includes certain symbols. (:issue:`5899`,
    :issue:`5901`)

-  The :command:`parse` command now also works with async generator callbacks.
    (:issue:`5819`, :issue:`5824`)

-  The :command:`genspider` command now properly works with HTTPS URLs.
    (:issue:`3553`, :issue:`5808`)

-  Improved handling of asyncio loops. (:issue:`5831`, :issue:`5832`)

-  :class:`LinkExtractor <scrapy.linkextractors.lxmlhtml.LxmlLinkExtractor>`
    now skips certain malformed URLs instead of raising an exception.
    (:issue:`5881`)

-  :func:`scrapy.utils.python.get_func_args` now supports more types of
    callables. (:issue:`5872`, :issue:`5885`)

-  Fixed an error when processing non-UTF8 values of ``Content-Type`` headers.
    (:issue:`5914`, :issue:`5917`)

-  Fixed an error breaking user handling of send failures in
    :meth:`scrapy.mail.MailSender.send()`. (:issue:`1611`, :issue:`5880`)

Documentation
~~~~~~~~~~~~~

-  Expanded contributing docs. (:issue:`5109`, :issue:`5851`)

-  Added blacken-docs_ to pre-commit and reformatted the docs with it.
    (:issue:`5813`, :issue:`5816`)

-  Fixed a JS issue. (:issue:`5875`, :issue:`5877`)

-  Fixed ``make htmlview``. (:issue:`5878`, :issue:`5879`)

-  Fixed typos and other small errors. (:issue:`5827`, :issue:`5839`,
    :issue:`5883`, :issue:`5890`, :issue:`5895`, :issue:`5904`)

Quality assurance
~~~~~~~~~~~~~~~~~

-  Extended typing hints. (:issue:`5805`, :issue:`5889`, :issue:`5896`)

-  Tests for most of the examples in the docs are now run as a part of CI,
    found problems were fixed. (:issue:`5816`, :issue:`5826`, :issue:`5919`)

-  Removed usage of deprecated Python classes. (:issue:`5849`)

-  Silenced ``include-ignored`` warnings from coverage. (:issue:`5820`)

-  Fixed a random failure of the ``test_feedexport.test_batch_path_differ``
    test. (:issue:`5855`, :issue:`5898`)

-  Updated docstrings to match output produced by parsel_ 1.8.1 so that they
    don't cause test failures. (:issue:`5902`, :issue:`5919`)

-  Other CI and pre-commit improvements. (:issue:`5802`, :issue:`5823`,
    :issue:`5908`)

(adam)

Updated www/nghttp2, www/nghttp2-tools

(adam)

nghttp2: updated to 1.53.0

Nghttp2 v1.53.0

lib

libnghttp2 uses ngtcp2/sfparse to parse Structured Field Values.

build

The following dependencies have been updated:

ngtcp2
nghttp3
OpenSSL(quictls)
BoringSSL
third-party

Bumped mruby to 3.2.0.

nghttpx

nghttpx now sends NEW_TOKEN on path change.

This release fixes numeric hostname verification in peer certificate.

When quitting, nghttpx now waits for all worker processes to stop. Previously, we just exit the event loop when the last process exits. But the because of the bug, it does not work as intended.

nghttpx logs a correct PID on fork.

nghttpx now waits for new worker process to be ready before sending graceful shutdown event to the existing worker processes to avoid down time during configuration reload.

Fixes the bug that causes 400 response after HTTP upgrade failure.

(adam)

Updated sysutils/py-ansible-compat, sysutils/ansible-lint

(adam)

ansible-lint: updated to 6.16.0

v6.16.0

Minor Changes

Capture python warnings and report some of them as matches
Capture and hide ansible core warnings by default
Remove progressive mode
Enforce use of lineno variable name inside the library
o
Bugfixes

Add Amazon Linux 2023 as a supported platform
Capture python warnings and report some of them as matches
Fix missing required arguments issue from args rule
Change matchtask to receive a Task instance
Require ruamel.yaml>=0.17.24
Avoid exception when trying to load invalid text files
Fix ansible collection path detection
ruff: Address FBT002
More pathlib adoption
Avoid dropping comments on YAML transformation
Correct docs on navigator schema location
Fix changelog schema for connection plugins
Migrate from os.path to pathlib
Remove resolvelib from requirements lock
Make cwd use pathlib
ruff: Address PGH
ruff: Address A
ruff: Address B
ruff: Address SLF
ruff: Address SIM
ruff: Address EXE
ruff: Address BLE
ruff: Address INP and PLW
Add initial handling of submodules to contribution docs
ruff: Address T and RET
Find "changed" not only in first "when" condition
ruff: fix S rule
Make MatchError a dataclass
Remove EM from ruff ignores
Mock jinja filters to prevent templating errors
Update schema files
Add Fedora 38 to meta.json schema file
Remove RUF from ruff ignores
Remove G from ruff ignores
Remove ISC from ruff ignores
Remove C from ruff ignores
Make linter configuration a dataclass
Remove N from ruff ignores
Remove useless . from additional_dependencies in pre-commit hook

(adam)

py-ansible-compat: updated to 4.0.2

v4.0.2

Bugfixes

Revert to previous behavior for ansible_collections_path

v4.0.1

Major Changes

Rename Runtime.exec to Runtime.run
Introduce use of JSON recursive type
ruff: Make optional arguments keyword-only
Finish pathlib migration
Make Runtime.project_dir use Path
Migrate some functions to use Path
Make Runtime.cache_dir use Path
Remove support for py38

Minor Changes

Monkeypatch ansible core Display.warning

Bugfixes

Use YAML safe loader instead of full loader
Use dataclass sorting for json schema errors
ruff: Address more skips
ruff: address TRY and T201
ruff: Address EM
Convert more code to pathlib

(adam)

doc: Updated editors/tp-note to 1.21.3

(pin)

editors/tp-note: update to 1.21.3

Link docs with new sort-tag shorthand link syntax:

*  Hyperlinks to other Tp-Note documents can now be shortened by referencing
    only the target's sort-tag, e.g. `[my doc](<home/20230510-my note.md>)` is
    equivalent to `[my doc](<home/20230510>)`. Autolinks can be shortened as
    well: `<http:home/20230510-my note.md>` becomes `<http:home/20230510>`

*  New environment variable: `TPNOTE_CONFIG`

*  The prepend_dot filter is replaced by the prepend filter.
    The concerned filename templates have been updated.

(pin)

doc: Updated textproc/inlyne to 0.3.1

(pin)

textproc/inlyne: update to 0.3.1

- Add vim-like bindings (and escape) to the defaults
- Fix --page-width flag
- Update dependencies

(pin)

doc: Updated devel/diffsitter to 0.8.0

(pin)

devel/diffsitter: update to 0.8.0

What's Changed
    chore(Cargo): Update deps by @afnanenayet in #513
    build(deps): bump clap from 4.0.29 to 4.0.32 by @dependabot in #515
    build(deps): bump clap_complete from 4.0.6 to 4.0.7 by @dependabot in #516
    feat(output): Implement modular rendering by @afnanenayet in #446
    Add example usage with git difftool. by @ClashTheBunny in #157
    build(deps): bump serde from 1.0.151 to 1.0.152 by @dependabot in #518
    feat(rendering): Add JSON rendering mode by @afnanenayet in #519
    build(deps): bump console from 0.15.2 to 0.15.3 by @dependabot in #521
    build(deps): bump shadow-rs from 0.19.0 to 0.20.0 by @dependabot in #522
    build(deps): bump enum_dispatch from 0.3.8 to 0.3.9 by @dependabot in #523
    feat(errors): Early error for bad render config by @afnanenayet in #526
    chore(deps): Update deps by @afnanenayet in #524
    build(deps): bump insta from 1.23.0 to 1.24.1 by @dependabot in #528
    chore(grammars): Update grammars by @afnanenayet in #527
    chore(deps): Update deps by @afnanenayet in #529
    chore(clippy): Apply clippy lints by @afnanenayet in #530
    chore(deps): Update lockfile by @afnanenayet in #531
    chore: update deps by @afnanenayet in #534
    chore(deps): Update grammars by @afnanenayet in #535
    chore: Update deps by @afnanenayet in #538
    Allow dynamic-grammar-libs to be found on NetBSD by @0323pin in #537
    chore(deps): Update lockfile by @afnanenayet in #540
    chore(grammars): Update grammars by @afnanenayet in #542
    feat(processing): Filter by TS node type by @afnanenayet in #541
    chore(deps): Update, removed unused deps by @afnanenayet in #543
    Update deps by @afnanenayet in #547
    build(deps): bump cc from 1.0.78 to 1.0.79 by @dependabot in #548
    build(deps): bump human-panic from 1.0.3 to 1.1.0 by @dependabot in #551
    build(deps): bump unicode-segmentation from 1.10.0 to 1.10.1 by @dependabot
  in #550
    build(deps): bump test-case from 2.2.2 to 3.0.0 by @dependabot in #553
    ci: Update checkout action by @afnanenayet in #558
    build: Update grammars by @afnanenayet in #552
    chore: Update deps by @afnanenayet in #559
    chore: Update cargo deps and grammars by @afnanenayet in #560
    ci: Use a newer submodule checkout action by @afnanenayet in #561
    build(deps): bump shadow-rs from 0.20.1 to 0.21.0 by @dependabot in #564
    Add error check to main snapshot test by @afnanenayet in #569
    fix: Use checkout v3 in CD pipeline by @afnanenayet in #571
    fix: Fix logic for handling offsets with graphemes by @afnanenayet in #573
    Update dependencies and grammars by @afnanenayet in #574
    build(deps): bump serde from 1.0.155 to 1.0.156 by @dependabot in #576
    build(deps): bump clap from 4.1.8 to 4.1.9 by @dependabot in #580
    fix: Use a newer cargo deb version by @afnanenayet in #575
    refactor: Split up libraries and binaries by @afnanenayet in #581
    fix: Remove the main.rs file by @afnanenayet in #582
    chore: Address clippy lints by @afnanenayet in #583
    chore: Update cargo deps by @afnanenayet in #584
    ci: Use latest rust-cache action by @afnanenayet in #585
    chore: Update tree-sitter grammars by @afnanenayet in #586
    refactor: Use Write trait, separate term info by @afnanenayet in #549
    build: Add default-run manifest key by @afnanenayet in #588
    build(deps): bump serde from 1.0.157 to 1.0.158 by @dependabot in #589
    build(deps): bump insta from 1.28.0 to 1.29.0 by @dependabot in #590
    chore: Update grammars by @afnanenayet in #597
    chore: Update dependencies by @afnanenayet in #596
    build(deps): bump test-case from 3.0.0 to 3.1.0 by @dependabot in #598
    build(deps): bump tree-sitter from 0.20.9 to 0.20.10 by @dependabot in #599
    chore: Update Cargo dependencies by @afnanenayet in #600
    build(deps): bump libloading from 0.7.4 to 0.8.0 by @dependabot in #602
    chore: Update Cargo deps by @afnanenayet in #607
    build(deps): bump clap_complete from 4.2.0 to 4.2.1 by @dependabot in #608
    feat: Use human_panic only when building with panic = "unwind" by @jirutka
  in #612
    chore: Update grammars by @afnanenayet in #613
    fix: Guard against invalid indices by @afnanenayet in #614
    build(deps): bump clap from 4.2.4 to 4.2.5 by @dependabot in #611
    fix: Don't leak pointer to dylib by @afnanenayet in #616
    build(deps): bump clap from 4.2.5 to 4.2.7 by @dependabot in #618
    afnan/pre commit hooks by @afnanenayet in #619
    Add coverage job to CI by @afnanenayet in #621
    ci: Update Github actions to use more recent APIs by @afnanenayet in #617
    chore: Update treesitter grammars by @afnanenayet in #624
    chore: Update cargo dependencies by @afnanenayet in #623

(pin)

Updated security/py-certifi, devel/py-pygit2, textproc/py-JWT

(adam)

py-JWT: updated to 2.7.0

v2.7.0

Changed
- Changed the error message when the token audience doesn't match the expected audience
- Improve error messages when cryptography isn't installed
- Make `Algorithm` an abstract base class
- ignore invalid keys in a jwks

Fixed
- Add classifier for Python 3.11
- Fix ``_validate_iat`` validation
- fix: use datetime.datetime.timestamp function to have a milliseconds
- docs: correct mistake in the changelog about verify param

Added
- Add ``compute_hash_digest`` as a method of ``Algorithm`` objects, which uses
  the underlying hash algorithm to compute a digest. If there is no appropriate
  hash algorithm, a ``NotImplementedError`` will be raised
- Add optional ``headers`` argument to ``PyJWKClient``. If provided, the headers
  will be included in requests that the client uses when fetching the JWK set
- Add PyJWT._{de,en}code_payload hooks
- Add `sort_headers` parameter to `api_jwt.encode`
- Make mypy configuration stricter and improve typing
- Add more types
- Add a timeout for PyJWKClient requests
- Add client connection error exception
- Add complete types to take all allowed keys into account
- Add `as_dict` option to `Algorithm.to_jwk`

(adam)

py-pygit2: updated to 1.12.1

1.12.1 (2023-05-07)
- Fix segfault in signature when encoding is incorrect
- Typing improvements
- Update wheels to libgit2 v1.6.4

(adam)

py-certifi: updated to 2023.5.7

2023.5.7
Missing release notes

(adam)

mk: Limit Darwin ECHO_N hack to /bin/sh.

(jperkin)

Updated textproc/py-elementpath, www/py-django3, www/py-django-formtools

(adam)

py-django-formtools: updated to 2.4

2.4

- Updated translations from Transifex.
- Any kwarg passed to ``render_goto_step()`` is passed over to ``render``.
- ``WizardView`` is using ``get_form_list()`` instead of directly accessing
  ``form_list``
- Added Python 3.10 to test matrix.
- Dropped testing for Django 3.1.
- Confirmed support for Django 4.0 and 4.1.

(adam)

py-django3: updated to 3.2.19

Django 3.2.19

CVE-2023-31047: Potential bypass of validation when uploading multiple files using one form field

(adam)

py-elementpath: updated to 4.1.2

v4.1.2
* Add support for Python 3.12
* Fix self shortcut operator (adding is_schema_node() to node classes)

(adam)

doc/TODO: + calibre-6.17.0 [requires py-qt6/py-qt6-webengine].

(wiz)

Updated devel/py-xbe, devel/py-ruamel-yaml

(adam)