doc: Added devel/lua-language-server version 3.6.9

(nikita)

Import devel/lua-language-server as lua-language-server version 3.6.9

The Lua Language Server is a comprehensive Lua development
server. It functions as an LSP client, supporting:

* Over 20 supported annotations for documenting your code
* Go to definition
* Dynamic type checking
* Find references
* Diagnostics/Warnings
* Syntax checking
* Element renaming
* Hover to view details on variables, functions, and more
* Autocompletion
* Support for libraries
* Code formatting
* Spell checking
* Custom plugins

(nikita)

doc: Added fonts/gerb version 28

(pin)

Add gerb

(pin)

fonts/gerb: import package

gerb: a font editor in gtk3 and Rust.

gerb is a GUI font editor and IDE. It is not production ready, but all the
basics are implemented.

It uses the UFOv3 format and can import:
- UFOv2 directories
- Glyphs files

and export:
- OpenType files (.otf)
- TrueType files (.ttf)

(pin)

doc: Updated devel/stylua to 0.17.0

(nikita)

doc: Updated graphics/oculante to 0.6.57

(pin)

stylua: update to version 0.17.0

ChangeLog:

0.17.0 - 2023-03-11
Added

    Added support for "sort requires", which sorts top-level statements of the form local NAME = require(EXPR) lexicographically on NAME. We do this by treating a group of consecutive requires as a "block", and then sorting only within the block. Any other statement, or an empty line, between require statements will split the group into two separate blocks (and can be used to separate the sorting). A block of requires will not move around the file. Roblox Luau statements of the form local NAME = game:GetService(EXPR) will also be sorted separately.

This feature is disabled by default. To enable it, add the following to your stylua.toml:

[sort_requires]
enabled = true

Note: we assume that all requires are pure with no side effects. It is not recommended to use this feature if the ordering of your requires matter.

    Added support for EditorConfig, which is taken into account only if no stylua.toml was found.

This feature is enabled by default, it can be disabled using --no-editorconfig.

    Published StyLua to the Docker Hub

0.16.1 - 2023-02-10
Fixed

    Fixed mistransformation of a function argument in a multilined function call when the argument contains a comment, causing a syntax error. We now attempt to hang the expression (#648)
    Fixed verify AST flagging a false positive for parentheses removed around a Luau type (#643)

0.16.0 - 2023-01-15
Added

    Unnecessary parentheses around Luau types will now be removed (#611)
    Collapse a body containing only a goto statement when collapse_simple_statement is set (#618)

Changed

    Update internal parser:
        (lua52) Support Lua 5.2 fractional hexidecimal / hexidecimal with exponents (#621)
        (lua52) Support LuaJIT number suffixes LL/ULL/i (#621)
        (lua52) Support \z escape sequences in strings (#613)
        (luau) Support Luau string interpolation (#607)
    Several optimisations applied to formatting functions to reduce time taken. Files which previously did not terminate (6MB+) now finish in reasonable time. (#591)
    Assignments of the form local name = function will no longer hang at the equals token, and instead force parameters multiline, to reduce unnecessary indentation. (#595)

Fixed

    Fixed an anonymous function assignment local x = function() being unnecessarily indented if the function body contains a comment (#627)
    Fixed malformed formatting when there is a newline between a return token and the expressions (#605)
    Fixed malformed formatting of multi-assignment or multi-returns where there is a comment within the expressions list (#637)

(nikita)

graphics/oculante: update to 0.6.57

- Chore: Remove openssl dependency, re-enable updates
- Chror: update usvg/rsvg
- Chore: Update libwebp-sys and dirs
- Feat: Compare mode can be beound to a hotkey and displays the active compare
  image
- Chore: Font tweaks and readability

(pin)

doc: Updated sysutils/erdtree to 1.6.0

(pin)

sysutils/erdtree: update to 1.6.0

[1.6.0] - 2023-03-20
What's Changed
- Add NetBSD instructions by @0323pin in #77
- Add repology badge by @jubalh in #76
- fix issue where level wasn't being read from config by @solidiquis in #78
- add scoop manifest by @fawni in #80
- default to num logical cpus rather than 4 threads by @solidiquis in #81
- Add support for generating shell completions by @Brezak in #82
- Fix miscoloration of directories that have extension by @fawni in #83
- [Optimization] - Upgraded heap-based tree data structure to an index-tree
  by @solidiquis in #86
- Replace tempdir crate with tempfile crate by @Brezak in #87
- fix issue where ansi escapes were being printed raw on windows
  by @solidiquis in #90

(pin)

doc: Updated audio/spotify-player to 0.13.1

(pin)

audio/spotify-player: update to 0.13.1

0.13.1
What's Changed
- Hot fix for v0.13.0 in #174

0.13.0
What's Changed
- Cleanup viuer's temp files before rendering an image in #157
- Use spotify_player instead of spotify-player in documents in #162
- remove colon from log file name in #168
- Add configuration option for streaming in #169
- Add buffered playback in #171
- Add enable_image_cache config option in #172
- Support selecting an action in action list popup using '0' to '9' in #173

(pin)

qt6-qtbase: use DYLD_LIBRARY_PATH on OSX to find qt6 libs for execs running during build

(nros)

git: Makefile.common also used by git-credential-osxkeychain.

(schmonz)

doc: Added devel/git-credential-osxkeychain version 2.40.0

(schmonz)

Add and enable git-credential-osxkeychain.

(schmonz)

Add git-credential-osxkeychain: Git macOS Keychain credential manager

git-credential-osxkeychain caches credentials in the secure keychain
that's attached to your macOS system account. This method stores the
credentials on disk, and they never expire, but they're encrypted with
the same system that stores HTTPS certificates and Safari auto-fills.

To use with all your repos:

$ git config --global credential.helper osxkeychain

(schmonz)

+ libertinus-ttf

(joerg)

+ libertinus-ttf

(joerg)

Add libertinus-ttf-7.040

The Libertinus Fonts project includes four main type families:

- The Libertinus Serif family:

  6 serif typefaces cover three weights (Regular, Semibold, Bold) in each
  of two styles (Regular, Italic); originally forked from Linux
  Libertine.

- The Libertinus Sans family:

  3 sans-serif typefaces cover Regular, a Bold weight, and an Italic
  style; originally forked from Linux Biolinum.

- The Libertinus Mono family:

  1 monospace typeface derived from the serif family; originally forked
  from Linux Libertine Mono.

- The Libertinus Math family:

  1 OpenType math typeface derived from the serif family with many extra
  glyphs and features for use in OpenType math-capable applications (such
  as LuaTeX, XeTeX, or MS Word 2007+).

Additionally included are 3 special-use families with a single typeface
each:

- Libertinus Serif Display: A derivative of Libertinus Serif Regular
  optimized for display at large sizes.

- Libertinus Serif Initials: A derivative of Libertinus Serif with
  outlined variants of capital letter glyphs suitable for drop-caps or
  other decorations.

- Libertinus Keyboard: A derivative of Libertinus Sans with keyboard key
  outlines around each character suitable for use in technical
  documentation.

(joerg)

+ lua-check

(joerg)

+ lua-check

(joerg)

Add lua-check-0.23.0

Luacheck is a static analyzer and a linter for Lua. Luacheck detects
various issues such as usage of undefined global variables, unused
variables and values, accessing uninitialized variables, unreachable code
and more. Most aspects of checking are configurable: there are options
for defining custom project-related globals, for selecting set of
standard globals (version of Lua standard library), for filtering
warnings by type and name of related variable, etc. The options can be
used on the command line, put into a config or directly into checked
files as Lua comments.

Luacheck supports checking Lua files using syntax of Lua 5.1, Lua 5.2,
Lua 5.3 and LuaJIT. Luacheck itself is written in Lua and runs on all of
mentioned Lua versions.

(joerg)

doc: Updated sysutils/mtools to 4.0.43

(rhialto)

doc: Updated x11/x3270 to 4.2ga6

(rhialto)

x11/x3270: update to version 4.2ga9.

Known issues

    Resizing or maximizing the wc3270 window makes bad things happen.
Please do not do this.

Improvements
4.2ga9

    Modified the ./configure script to be able to find the macOS
installations of OpenSSL from Homebrew and MacPorts.

4.2ga8

    Added the reshort option to the wc3270 Session Wizard to re-create
all desktop shortcuts. This makes deploying the fix for FAQ Why is the
wc3270 window messed up on Windows 11? simpler.

Bug fixes
4.2ga9

    x3270 mouse selections are much more predictable. Double- and
triple-clicks no longer move the cursor.
    x3270 no longer crashes when it is reconfigured (model, font, etc.)
while the floating pop-up keypad is visible.
    The security indicator in x3270 no longer disappears when it is
indicating unverified state and the window is reconfigured.
    The ./configure option to give an alternate location for the OpenSSL
library (--with-openssl=) works correctly again. (Thanks to Sam Mearns
for the bug report.)

4.2ga8

    When pasting in NVT mode and the text wraps to the next line, the
cursor no longer ends up in the wrong location.
    Extended the source tarball generation script mktar.sh to expand
submodules, so the Expat library builds properly for Windows.
    Modified the Session Wizard so that wc3270 doesn't end up running
inside Windows Terminal. (See the FAQ Why is the wc3270 window messed up
on Windows 11? for details.)
    The x3270a script no longer causes a spurious Invalid (empty)
hostname error pop-up when the display's DPI is other than 96. (Bug
report by Devonian Teuchter is here.)

4.2ga7

    The wc3270 Session Wizard no longer exits silently when it
encounters an error.
    x3270 will no longer change fonts unnecessarily when the host code
page is changed. (bug report)
    The background color is now propagated correctly by the RA order.
(courtesy of Sven Schnelle)
    In a resource file, a resource value can now end with a
properly-quoted backslash, without the backslash being interpreted as a
line continuation.
    The Transfer() action, when invoked from within a file read by the
Source() action, now blocks properly -- it returns once the file
transfer is complete.
    If the Source() action is aborted, it will no longer leave the
keyboard locked.
    Typeahead is now processed correctly when the host has negotiated
TN3270E Contention Resolution and the unlockDelay resource is set to
false. (bug report)

(rhialto)

sysutils/mtools: update to 4.0.43

v4_0_43
- Fix root directory test in mattrib
- -b BiosDisk flag for mformat to allow setting physdrive to
          a user-specified value
- Clearer error message in mformat when trying to mformat a
          disk whose total size is not known
- Make recursive copy more consistent
- Trailing slash now always implies target should be a directory
- Code cleanup
v4_0_42
- Added postcmd attribute in drive description to allow to
          execute "device release" code automatically at end of
          command
- Code cleanup (unneeded functions, initializations, added
          comments to unobvious code, obsolete stuff in Makefile)
- signedness cleanup about directory entries
v4_0_41
- Made it possible again to have FAT32 filesystems with less
than 0xfff5 clusters
- Make FAT32 entries 0 and 1 match what windows 10 does
- Misc source code and configure script cleanup

v4_0_40
- Remove libbsd dependency
- Better compatibility with legacy platforms such as AT&T UnixPC
- Upgraded to autoconf 2.71
v4_0_39
- Rename strtoi to strosi (string to signed int). The strtoi
          function on BSD does something else (returns an intmax, not
          an int)

(rhialto)

Updated time/py-dateparser, time/py-pytz, databases/py-redis, databases/py-apsw

(adam)

py-apsw: updated to 3.41.2.0

3.41.2.0

Fixed APSW issue 412 in apsw.ext.make_virtual_module().

Added apsw.connections() to get all connections. (APSW issue 416)

sys.unraisablehook() is called correctly (APSW issue 410)

Be stricter where bool values are expected (eg VTTable.BestIndex()), only accepting int and bool. Previously you could for example supply strings and lists, which were almost certainly unintended errors.

(adam)

py-redis: updated to 4.5.3

4.5.3

Update urgency: HIGH: There is a critical bug that may affect a subset of users. Upgrade!

CWE-404 AsyncIO Race Condition Fix

(adam)

py-pytz: updated to 2023.3

2023.3
Unknown changes

(adam)

py-dateparser: updated to 1.1.8

1.1.8 (2023-03-22)
------------------

Improvements:
- Improved date parsing for Chinese
- Improved date parsing for Czech
- Reorder language by popularity
- Fix leak of memory in cache
- Add support for "\d units later"
- Move modification in CLDR data to yaml
- Add support to use timezone via settings to get PREFER_DATES_FROM result

(adam)

doc: Updated x11/modular-xorg-server to 21.1.7nb1

(wiz)

modular-xorg-server: fix CVE-2023-1393

using upstream patch

Bump PKGREVISION.

(wiz)

doc: Updated finance/gnucash-docs to 5.0

(wiz)

gnucash-docs: update to 5.0.

Update for gnucash 5.0

(wiz)

doc: Updated finance/gnucash to 5.0

(wiz)

gnucash: update to 5.0.

New Features

    A new Stock Transaction Assistant to guide you through entering
    most investment transactions for stocks, bonds, and mutual
    funds. You can access it from Actions>Stock Assistant when the
    focus tab is the Accounts page or a Stock or Fund account
    register.
    A new Investment Lots report showing a graph of capital gains
    and losses in a period by investment lot. Note that if you
    don't use the View Lots dialog to manage capital gains and
    losses this report won't have anything to show you. Use
    Reports>Assets & Liabilities>Investment Lots to see the report.
    The Online Quotes facility has been completely rewritten and
    the old gnc-fq-check, gnc-fq-dump, and gnc-fq-helper programs
    have been replaced with finance-quote-wrapper. The functions
    performed by those programs may now be accomplished by passing
    commands to gnucash-cli -Q, see gnucash-cli --help for specifics.
    The perl module requirements have changed with the rewrite:
    The new version doesn't need Date::Manip but needs JSON::Parse
    instead. gnc-fq-update has been, er, updated to reflect that.
    A new tab on the New/Edit Account dialog called More Properties
    includes entries to set a high and low limit on an account.
    That's coupled to a new column that's available on the Accounts
    Page, Balance Limit. If you set a high or low limit and the
    account balance falls above or below the respective limit an
    indicator will be shown in the Balance Limit column.
    The description field quickfill in the register now displays
    a drop-down list of possible completions instead of just one
    inline completion.
    File import menu items for the MT940, MT942, and DTAUS formats
    is replaced with a single Import from AQBanking that supports
    importing any file format supported by AQBanking, including
    the frequently requested CAMT. (Note that some CAMT profiles
    are under the XML format.)
    The import matcher now permits editing descriptions, notes,
    and memo fields in the matcher window before creating the
    transactions. Right-click and select from the context menu.
    The report generated by the Print Invoice button on the Edit
    Invoice tab can now be configured as a book option at the bottom
    of the Business tab; this permits selecting a saved configuration
    of one of the standard invoice reports. Another option enables
    a delay, during which a dialog box will appear enabling the
    user to select a different report. Note: When saving a
    configuration make sure that the invoice number is not set or
    you'll get that particular invoice instead of the one that you
    pressed the button for.

Report and Book Options

    This major change will affect everyone who has written custom
    reports in Guile Scheme.
    The report and book options code has been completely rewritten
    in C++ with SWIG providing Guile Scheme access for reports.
    The new design requires directly registering options with for
    example gnc-optiondb-register-string-option instead of calling
    gnc:make-string-option to create an option followed by
    gnc:register-option to insert it in the report's options.
    Value access is also changed: Instead of retrieving an option
    and then querying or setting its value with gnc:option-value
    one will query the optiondb with gnc-option-value, the arguments
    to which are the optiondb, the section, and the option name.
    Supporting the new options backend the options dialog code in
    gnc-dialog-options, gnc-business-options, and the new
    gnc-option-gtk-ui have also been rewritten in C++.

Online Price Retrieval

    As noted under New Features the interface to Finance::Quote
    has been completely rewritten in C++ with much of the behavior
    previously coded in external perl scripts moved into GnuCash
    proper. This permits much better access to Finance::Quotes's
    facilities and in particular should provide much richer error
    reporting.

Stability Improvements

    There are hundreds of small changes to prevent memory leaks,
    reduce unnecessary memory allocations, and fix compiler and
    static analyzer warnings.
    Use of deprecated API in C/C++ is now an error (with 3 exceptions),
    including for the minimum required version of GLib and Gtk.
    Extensive changes to the CSV importer, resolving most known
    bugs.
    Remove all unused variables and made an unused variable a
    compile error.
    Move all extern "C" declarations into the respective header
    files and remove extern "C" wrappers around #include statements.
    Separate the scheme financial functions into a separate module
    so that all other scheme code can be banished from libgnucash
    to bindings.

Modernization

    The menus and toolbars now use the GAction and GActionGroup
    actuation functions, replacing the deprecated GtkAction and
    GtkActionGroup APIs.
    The experimental Register2 implementation is removed, as is
    the never-used Jalali calendar code and partly-written option
    code for creating a book currency.

(wiz)

doc/TODO: + libgit2-1.6.3 [wait for https://github.com/rust-lang/git2-rs/issues/936].

(wiz)

doc: Updated multimedia/libva to 2.18.0

(wiz)

libva: update to 2.18.0.

version 2.18.0 - 19.Mar.2022
* doc: Add build and install libva informatio in home page.
* fix: NULL check before calling strncmp.
* ci: add dependabot
* va: fix the codying style of CHECK_DISPLAY
* va: remove dummy isValid() hook
* x11: use LIBVA_DRI3_DISABLE in GetNumCandidates
* win: compat_win32: Add getenv wrapper for WIN32
* win(WSL): va_drm_utils: Map d3d12 gallium driver for Windows Subsytem for Linux
* fix: Add libva.def into distribution package
* x11: allow disabling DRI3 via LIBVA_DRI3_DISABLe env var
* ci: enable Werror across the build
* win: explicitly ignore CloseAdapter return value
* win: use wide string literal where needed
* win: Add vaDisplayIsValid to .def export list
* va: Always build with va-messaging API
* meson: docs: use libva_version over project_version()
* ci: add github pages workflow
* meson: docs: add encoder interface for av1
* va: add VAProfileH264High10
* fix: Remove reference to non-existent symbol
* va: va/sysdeps.h: remove Android section
* va: remove Android pre Jelly Bean workarounds
* va: remove unused drm_sarea.h include & ANDROID references in va_dricommon.h

(wiz)

doc: Updated devel/py-hg-evolve to 11.0.1

(wiz)

py-hg-evolve: update to 11.0.1.

Changes not documented.

(wiz)

doc: Updated devel/py-mercurial to 6.4

(wiz)

py-mercurial: update to 6.4.

New Features

    There is a new internal merge tool called internal:union-other-first.
        It works like internal:union but add other side on top of local.
    Pullbundles are enabled by default
    delta-find: add a way to control the number of bases tested at the same time
    changelog-v2: add a configuration to disable rank computation
    debug: add an option to display statistic about a bundling operation
    debug: add an option to display statistic about a unbundling operation
    delta-find: add a delta-reuse policy that blindly accepts incoming deltas
    debug: add debug-revlog-stats command
    dirstate: add narrow support to verify
    verify: also check dirstate
    commit: add --draft option to use draft phase
    amend: add a --draft option to set phase to draft
    debug: add a config to abort update early
    rhg: implement checkexec to support weird filesystems
    debugshell: allow commands to be specified as a CLI argument
    rhg-files: add support for narrow when specifying a revision
    rust-narrow: enable narrow support for plain rhg files

Bug Fixes

Aside from the following (unordered) commits which made it through a manual filter, there are a bunch of typing improvements and fixes, removal of deprecated code and general code cleanup.

    lfs: improve an exception message for blob corruption detected on transfer
    revlog: use the user facing filename as the display_id for filelogs
    rust-status: query fs traversal metadata lazily
    shelve: add Shelf.changed_files for resolving changed files in a plugin
    demandimport: ensure lazyloaderex sets loader attributes (issue6725)
    typing: fix a syntax error in mercurial/cext/bdiff.pyi
    cffi: fix a bytes vs str issue on macOS when listing directories
    changelog-v2: fix the docket struct
    schemes: fix a broken check for drive letter conflicts
    worker: avoid reading 1 byte at a time from the OS pipe
    rust-narrow: fix loop that never loops
    setup: Ensure target directory exists with building rust extension
    dirstate: invalidate changes when parent-change fails
    dirstate: warn about non-explicitly rolledback parent-change
    dirstate: write dirstate on successful exit of changing_parents context
    largefile: make sure we hold the lock when updating the second dirstate
    dirstate: enforce holding the lock while doing any changes
    run-tests: stop ignoring venv-installed packages
    transaction: run abort callback in all cases
    transaction: quietly rollback if no other changes than temporary files
    debugrebuilddirstate: double check that no transaction is open
    dirstate: do not write an empty dirstate just for backup
    locking: take the wlock for the full hg add duration
    locking: take the wlock for the full hg remove duration
    locking: take the wlock for the full hg forget duration
    locking: take the wlock for the full hg addremove duration
    locking: grab the wlock before touching the dirstate in perfdirstatewrite
    locking: hold the wlock for the full duration of the "keyword demo"
    mq: properly take the wlock during the full qfold operation
    dirstate: invalidate the dirstate change on transaction failure
    status: fix post status writing
    status: fix post status invalidation
    dirstate: avoid transaction backup/restore if we do not hold the lock
    rollback: explicitly skip dirstate rollback when applicable
    dirstate-guard: remove the feature
    dirstate: make restorebackup more robust when it is a noop
    dirstate: generalize the dirstate's invalidation on transaction abort
    dirstate: detect potential fishy transaction patterns while changing
    mq: write the dirstate before stripping
    dirstate: explicitly backup the datafile
    localrepo: enforce a clean dirstate when the transaction open
    localrepo: "blindly" do a dirstate backup at the end of the transaction
    dirstate: remove the dedicated backup logic
    rhg: fix a bug in path_encode
    dirstate: invalidate on all exceptions
    large-files: make sure we write newly initialized standin file early
    dirstate: warn if dirty when starting an edition
    dirstate: track that changes are pending in a transaction
    dirstate: distinct transaction callback from largefile
    automv: lock the repository before searching for renames
    dirstate: only reload the dirstate when it may have changed
    dirstate: cleanup the _map property cache
    status: invalidate dirstate on LockError
    dirstate: check that dirstate is clean at the initial context opening
    dirstate: have running_status write the dirstate when holding the lock
    dirstate: have running_status warn when exiting with a dirty dirstate
    narrow: widden the lock context in tracking
    narrow: enforce that narrow spec is written within a transaction
    transaction: no longer explicitly cache phaseroots
    transaction: no longer explicitly cache bookmarks
    transaction: use the standard transaction mechanism to backup branch
    bundlerepo: handle changegroup induced phase movement in the associated method
    bundlerepo: apply phase data stored in the bundle instead of assuming draft
    config-item: declare undeclared path suboption
    narrow: read pending file when applicable
    rust: fix building on macOS (issue6801)
    run-tests: fix a crash when using the coverage options
    undo-files: also remove the undo.backupfiles
    undo-files: cleanup backup when cleaning undos
    undo-files: clean existing files up before writing new one
    undo-files: cleanup legacy files when applicable
    dirstate-v2: fix an incorrect handling of readdir errors
    rust: update zstd dependency
    rust: upgrade rayon dependency
    dirstate: fix the bug in [status] dealing with committed&ignored directories
    dirstate: fix a potential traceback when in copy and rename
    histedit: fix diff colors
    cext: fix for PyLong refactoring in CPython 3.12
    py3: fix for Python 3.12 emitting SyntaxWarning on invalid escape sequences
    statprof: with Python 3.12, lineno is (more) often None
    transaction: properly clean up backup file outside of .hg/store/
    transaction: raise on backup restoration error
    revlog: improve the robustness of the splitting process
    debugdeltachain: stop summing the same chain over and over
    url: don't ignore timeout for https connections
    py3: fix for Python 3.12 emitting SyntaxWarning on invalid escape sequences
    tests: accept a test output change in [tests/test-serve.t]
    rust: fix thread cap (for real this time)
    dirstate: try refreshing the changelog when parent are unknown
    hooks: invalidate the repo after the hooks

Backwards Compatibility Changes

    rust: upgrade supported Rust toolchain version
    rust: move all crates in the main workspace to edition 2021
    hg-core: upgrade zstd dependency
    hg-core: upgrade clap dependency
    hg-core: upgrade all remaining dependencies
    hg-cpython: upgrade dependencies
    rhg: upgrade clap dependency
    rhg: upgrade the remainder of the dependencies

Internal API Changes

    Many APIs around the dirstate have been made much stricter with regards to
        locking and transaction handling
    Some dirstate APIs have been renamed/removed
    In both cases, you should get loud complaints in your tests if you do
        something wrong.

Miscellaneous

    pullbundle support no longer requires setting a server-side option,
        providing a .hg/pullbundles.manifest according to the syntax specified in 'hg help -e clonebundles' is enough.
    debug-delta-find: add a --source option
    delta-find: add debug information about reuse of cached data
    delta-find: set the default candidate chunk size to 10
    attr: vendor 22.1.0
    configitems: add a default value for "merge-tools.xxx.regappend"
    debugrevlog: display total stored information
    emitrevision: if we need to compute a delta on the fly, try p1 or p2 first
    emitrevision: consider ancestors revision to emit as available base
    find-delta: pass the cache-delta usage policy alongside the cache-delta
    delta-find: use a smarter object for snapshot caching
    delta-find: use sets instead of list in the snapshot cache
    delta-find: make sure we only use newer full snapshot as candidate
    delta-find: use a single snapshot cache when applying a group to an object
    bundleoperation: optionnaly record the remote that produced the bundle
    bundle: when forcing acceptance of incoming delta also accept snapshot
    bundle: emit full snapshot as is, without doing a redelta
    pathutil: slightly faster path audit in the common case
    merge: don't pay for pathconflicts if there are none
    merge: short-circuit the _checkfs loop upon getting ENOENT
    merge: disable the whole filesystem access loop if [_realfs] is false
    merge: cache the fs checks made during [_checkunknownfiles]
    rust: use logging_timer instead of micro_timer
    rust: run cargo clippy
    makefile: add cargo clippy to tests if cargo is available
    heptapod-ci: add clippy to the CI
    convert: use a priority queue for sorting commits, to make sorting faster
    delta-find: adjust the default candidate group chunk size
    delta-find: declare the "paths..*:pulled-delta-reuse-policy option

(wiz)

mk/subst.mk: clean up documentation

(rillig)

Updated net/openvpn, security/py-bandit

(adam)

py-bandit: updated to 1.7.5

1.7.5
-----

* Added a bit more \`project\_urls\`
* Check for github action updates monthly
* Improve handling nosec for multi-line strings
* Improve detecting SQL injections in f-strings
* Correct build status badge in README
* Fix breaking build due to new tox
* DOC: Add explanation on how to use pre-commit with config file
* Add official Python 3.11 support
* remove py2 exec example in docs
* Typo fix
* [docs] Mention \`exclude\_dirs\` option available in TOML and YAML
* Fix AttributeError on detect of tuple assign condition
* Fix json and yaml formatters to respect num lines
* Fixup some invalid pickle testing
* Pass correct number of arguments to match the \`%s\` placeholders.
* Remove python 2 reference in docs
* Fix filename of B202 in docs
* weak\_cryptographic\_key assumes positional arg
* Check for deprecated TLS 1.1
* Adding tarfile.extractall() plugin with examples
* Fix issue: jinja2 template select\_autoescape when using jinja2.select\_autoescape
* Fix a false positive condition yaml\_load
* Add case for global exec
* Docs for request without timeout has dead link
* Blacklist pandas read\_pickle and add functional test for it
* Enhancement Proposal: Plugin "assert\_used" config-skip snippet
* Add end\_col\_offset if available
* Fix reading the number argument from config file
* add jsonpickle deserialization blacklist
* Add some missing curve types
* Remove invalid checking on hashlib
* Avoid redundant message if debug on
* Update version of dependency-review-action
* Add releases link in "Version control integration"
* Add another bad example of yaml load
* Specify semver range for Python 3.11
* Make small fixes in docs
* Test plugin listing incorrectly pointing b612 to plugin ref of b1022
* Close the <b> tag in HTML formatter
* Add dependency review action
* Update action versions in Actions workflows
* Add Discord link to README
* Add myself to sponsor list
* Test against Python 3.11
* Corrected documentation on configuration
* Remove redundant pip line
* Removal of ghugo
* Adding logging.config.listen() plugin with examples
* Add a Discord link to the docs
* Add request for feedback via �汨�
* Remove redundant word Bandit in titles of sections
* Add license and contributing links to docs
* Fix for build breaks in format job
* add check for "requests" calls without timeout
* Fix up B109 and B111 removed plugins docs
* Replace \`toml\` with \`tomli\`
* Make use of rich for the progress bar
* Add doc for hashlib plugin
* Add the httpx module check for verify
* Indiciate hash type in message
* Remove blacklist call check for os.tempnam
* Removal of blacklist call B309 httpsconnection
* Add classifier to indicate Py3 only
* Fix line range using Python 3.8 end\_lineno
* Group location line with code output
* Use a constant for weak hashes
* Bad link to screen shot
* Add an example screen shot of Bandit to README

(adam)

openvpn: updated to 2.6.2

Overview of changes in 2.6.2

New features

implement byte counter statistics for DCO Linux (p2mp server and client)
implement byte counter statistics for DCO Windows (client only)
'--dns server <n> address ...' now permits up to 8 v4 or v6 addresses
fix a few cases of possibly undefined behaviour detected by ASAN
add more unit tests for Windows cryptoapi interface

Bug fixes

sending of AUTH_PENDING and INFO_PRE messages fixed
Windows: do not treat "setting IPv6 interface metric failed" as fatal error on "block-dns" install - this can happen if IPv6 is disabled on the interface and is not harmful in itself
fix '--inactive' if DCO is in use NOTE: on FreeBSD, this is not working yet (missing per-peer stats)
DCO-Linux: do not print errno on netlink errors (errno is not set by NL)
SOCKS client: improve error reporting on server disconnects
DCO-Linux: fix lockups due to netlink buffer overflows on high client connect/disconnect activity. See "User visible changes" for more details of this.
fix some uses of the OpenSSL3 API for non-default providers (enable use of quantum-crypto OpenSSL provider)
fix memory leak of approx. 1600 bytes per incoming initial TLS packet
fix bug when using ECDSA signatures with OpenSSL 3.0.x and pkcs11-helper (data format conversion was not done properly)
fix 'make distcheck' - unexpected side effect of 'subdir-objects'
fix ASSERT() with dynamic tls-crypt and --tls-crypt-v2

User visible changes

print (kernel) DCO version on startup - helpful for getting a more complete picture of the environment in use.
New control packets flow for data channel offloading on Linux. 2.6.2+ changes the way OpenVPN control packets are handled on Linux when DCO is active, fixing the lockups observed with 2.6.0/2.6.1 under high client connect/disconnect activity. This is an INCOMPATIBLE change and therefore an ovpn-dco kernel module older than v0.2.20230323 (commit ID 726fdfe0fa21) will not work anymore and must be upgraded. The kernel module was renamed to "ovpn-dco-v2.ko" in order to highlight this change and ensure that users and userspace software could easily understand which version is loaded. Attempting to use the old ovpn-dco with 2.6.2+ will lead to disabling DCO at runtime.
The client-pending-auth management command now requires also the key id. The management version has been changed to 5 to indicate this change.
A client will now refuse a connection if pushed compression settings will contradict the setting of allow-compression as this almost always results in a non-working connection.

(adam)

doc: Updated print/poppler to 23.03.0

(wiz)

poppler*: update to 23.03.0

Release 23.03.0:
        core:
        * PngWriter: Fix potential uninitialized memory use

(wiz)

doc: Updated lang/algol68g to 3.1.4

(rhialto)

lang/algol68g: update to version 3.1.4.

From the NEWS file:

Version 3.1.1-3.1.4, January/March 2023
* Fix configuration bug preventing building on Cygwin.
* Fix undefined errno upon succesful relpath call on some systems.
* Distribution update.
* Minor bug fixes.

(rhialto)

doc: Updated security/py-pip-audit to 2.5.4

(wiz)

py-pip_audit: update to 2.5.4.

## [2.5.4]

### Changed

* Refactored `index-url` option to not override user pip config by default,
  unless specified ([#565](https://github.com/pypa/pip-audit/pull/565))

### Fixed

* Fixed bug with the `--fix` flag where new requirements were sometimes being
  appended to requirement files instead of patching the existing requirement
  ([#577](https://github.com/pypa/pip-audit/pull/577))

* Fixed a crash caused by auditing requirements files that refer to other
  requirements files ([#568](https://github.com/pypa/pip-audit/pull/568))

## [2.5.3]

### Changed

* Further simplified `pip-audit`'s dependency resolution to remove inconsistent
  behaviour when using hashed requirements or the `--no-deps` flag
  ([#540](https://github.com/pypa/pip-audit/pull/540))

### Fixed

* Fixed a crash caused by invalid UTF-8 sequences in subprocess outputs
  ([#572](https://github.com/pypa/pip-audit/pull/572))

## [2.5.2]

### Fixed

* Fixed a loose dependency constraint for CycloneDX SBOM generation
  ([#558](https://github.com/pypa/pip-audit/pull/558))

(wiz)

doc: Updated shells/fish to 3.6.1

(wiz)

fish: update to 3.6.1.

fish 3.6.1 (released March 25, 2022)
====================================

This release of fish contains a number of fixes for problems identified in fish 3.6.1, as well as some enhancements.

Notable improvements and fixes
------------------------------
- ``abbr --erase`` now also erases the universal variables used by the old abbr function. That means::
    abbr --erase (abbr --list)

  can now be used to clean out all old abbreviations (:issue:`9468`).
- ``abbr --add --universal`` now warns about ``--universal`` being non-functional, to make it easier to detect old-style ``abbr`` calls (:issue:`9475`).

Deprecations and removed features
---------------------------------
- The Web-based configuration for abbreviations has been removed, as it was not functional with the changes abbreviations introduced in 3.6.0 (:issue:`9460`).

Scripting improvements
----------------------
- ``abbr --list`` no longer escapes the abbr name, which is necessary to be able to pass it to ``abbr --erase`` (:issue:`9470`).
- ``read`` will now print an error if told to set a read-only variable, instead of silently doing nothing (:issue:`9346`).
- ``set_color -v`` no longer crashes fish (:issue:`9640`).

Interactive improvements
------------------------
- Using ``fish_vi_key_bindings`` in combination with fish's ``--no-config`` mode works without locking up the shell (:issue:`9443`).
- The history pager now uses more screen space, usually half the screen (:issue:`9458`)
- Variables that were set while the locale was C (the default ASCII-only locale) will now properly be encoded if the locale is switched (:issue:`2613`, :issue:`9473`).
- Escape during history search restores the original command line again (fixing a regression in 3.6.0).
- Using ``--help`` on builtins now respects the ``$MANPAGER`` variable, in preference to ``$PAGER`` (:issue:`9488`).
- :kbd:`Control-G` closes the history pager, like other shells (:issue:`9484`).
- The documentation for the ``:``, ``[`` and ``.`` builtin commands can now be looked up with ``man`` (:issue:`9552`).
- fish no longer crashes when searching history for non-ASCII codepoints case-insensitively (:issue:`9628`).
- The :kbd:`Alt-S` binding will now also use ``please`` if available (:issue:`9635`).
- Themes that don't specify every color option can be installed correctly in the Web-based configuration (:issue:`9590`).
- Compatibility with Midnight Commander's prompt integration has been improved (:issue:`9540`).
- A spurious error, noted when using fish in Google Drive directories under WSL 2, has been silenced (:issue:`9550`).
- Using ``read`` in ``fish_greeting`` or similar functions will not trigger an infinite loop (:issue:`9564`).
- Compatibility when upgrading from old versions of fish (before 3.4.0) has been improved (:issue:`9569`).

Improved prompts
^^^^^^^^^^^^^^^^
- The git prompt will compute the stash count to be used independently of the informative status (:issue:`9572`).

Completions
^^^^^^^^^^^
- Added completions for:
  - ``apkanalyzer`` (:issue:`9558`)
  - ``neovim`` (:issue:`9543`)
  - ``otool``
  - ``pre-commit`` (:issue:`9521`)
  - ``proxychains`` (:issue:`9486`)
  - ``scrypt`` (:issue:`9583`)
  - ``stow`` (:issue:`9571`)
  - ``trash`` and helper utilities ``trash-empty``, ``trash-list``, ``trash-put``, ``trash-restore`` (:issue:`9560`)
  - ``ssh-copy-id`` (:issue:`9675`)
- Improvements to many completions, including the speed of completing directories in WSL 2 (:issue:`9574`).
- Completions using ``__fish_complete_suffix`` are now offered in the correct order, fixing a regression in 3.6.0 (:issue:`8924`).
- ``git`` completions for ``git-foo``-style commands was restored, fixing a regression in 3.6.0 (:issue:`9457`).
- File completion now offers ``../`` and ``./`` again, fixing a regression in 3.6.0 (:issue:`9477`).
- The behaviour of completions using ``__fish_complete_path`` matches standard path completions (:issue:`9285`).

Other improvements
------------------
- Improvements and corrections to the documentation.

For distributors
----------------
- fish 3.6.1 builds correctly on Cygwin (:issue:`9502`).

(wiz)

*: use PYTHON_VERSION instead of _PYTHON_VERSION

(wiz)

*: use PYTHON_VERSION instead of comparing PYPKGPREFIX

(wiz)

eigen3: add upstream bug report URL

(wiz)

doc: Updated wm/ctwm to 4.1.0

(rhialto)

wm/ctwm: update to version 4.1.0.

The major new feature of this release is multi-monitor support via
XRANDR.  It also includes some EWMH improvements and various minor
bugfixes.

It also removes several obsolescent features, major among them being
VirtualScreens.  The multi-monitor support added is far more capable and
less weirdly buggy.  If you're currently using VirtualScreens, however,
be prepared for things to work out rather differently on upgrade.

Further details are available in the CHANGES.md in the tar or on the
website http://www.ctwm.org/CHANGES.html .

(rhialto)

doc: Updated math/eigen3 to 3.4.0

(wiz)

eigen3: update to 3.4.0.

Notice: that 3.4.x will be the last major release series of Eigen
that will support c++03. The master branch will drop c++03 support
after this release.

Changelog -- too long, see
https://eigen.tuxfamily.org/index.php?title=3.4

(wiz)

Updated comms/py-rich, sysutils/ansible

(adam)

ansible: updated to 7.4.0

7.4.0

Major Changes
-------------

community.hrobot
~~~~~~~~~~~~~~~~

- firewall - Hetzner added output rules support to the firewall. This change unfortunately means that using old versions of the firewall module will always set the output rule list to empty, thus disallowing the server to send out packets (https://github.com/ansible-collections/community.hrobot/issues/75, https://github.com/ansible-collections/community.hrobot/pull/76).

community.vmware
~~~~~~~~~~~~~~~~

- Use true/false (lowercase) for boolean values in documentation and examples (https://github.com/ansible-collections/community.vmware/issues/1660).

fortinet.fortios
~~~~~~~~~~~~~~~~

- Add annotations of member operation for every module.
- Update ``fortios.py`` for higher performance;
- supports temporary session key and pre/post login banner;
- update the examples on how to use member operation in Q&A.

purestorage.fusion
~~~~~~~~~~~~~~~~~~

- Patching of resource properties was brought to parity with underlying Python SDK, meaning the collection can create/update/delete all resource properties the SDK can
- fusion_volume - fixed and reorganized, arguments changed

(adam)

py-rich: updated to 13.3.3

13.3.3
Added Style.clear_meta_and_links

(adam)

Updated www/nginx-devel, www/nginx

(adam)

nginx: lua module needs lua-resty-core and lua-resty-lrucache; sort PLIST; bump revision

(adam)

nginx-devel: updated to 1.23.4

Changes with nginx 1.23.4                                        28 Mar 2023

*) Change: now TLSv1.3 protocol is enabled by default.

*) Change: now nginx issues a warning if protocol parameters of a
  listening socket are redefined.

*) Change: now nginx closes connections with lingering if pipelining was
  used by the client.

*) Feature: byte ranges support in the ngx_http_gzip_static_module.

*) Bugfix: port ranges in the "listen" directive did not work; the bug
  had appeared in 1.23.3.
  Thanks to Valentin Bartenev.

*) Bugfix: incorrect location might be chosen to process a request if a
  prefix location longer than 255 characters was used in the
  configuration.

*) Bugfix: non-ASCII characters in file names on Windows were not
  supported by the ngx_http_autoindex_module, the ngx_http_dav_module,
  and the "include" directive.

*) Change: the logging level of the "data length too long", "length too
  short", "bad legacy version", "no shared signature algorithms", "bad
  digest length", "missing sigalgs extension", "encrypted length too
  long", "bad length", "bad key update", "mixed handshake and non
  handshake data", "ccs received early", "data between ccs and
  finished", "packet length too long", "too many warn alerts", "record
  too small", and "got a fin before a ccs" SSL errors has been lowered
  from "crit" to "info".

*) Bugfix: a socket leak might occur when using HTTP/2 and the
  "error_page" directive to redirect errors with code 400.

*) Bugfix: messages about logging to syslog errors did not contain
  information that the errors happened while logging to syslog.
  Thanks to Safar Safarly.

*) Workaround: "gzip filter failed to use preallocated memory" alerts
  appeared in logs when using zlib-ng.

*) Bugfix: in the mail proxy server.

(adam)

doc: Updated textproc/bat to 0.23.0

(wiz)

bat: update to 0.23.0.

# v0.23.0

## Features

- Implemented `-S` and `--chop-long-lines` flags as aliases for `--wrap=never`. See #2309 (@johnmatthiggins)
- Breaking change: Environment variables can now override config file settings (but command-line arguments still have the highest precedence), see #1152, #1281, and #2381 (@aaronkollasch)
- Implemented `--nonprintable-notation=caret` to support showing non-printable characters using caret notation. See #2429 (@einfachIrgendwer0815)

## Bugfixes

- Fix `bat cache --clear` not clearing the `--target` dir if specified. See #2393 (@miles170)

## Other

- Various bash completion improvements, see #2310 (@scop)
- Disable completion of `cache` subcommand, see #2399 (@cyqsimon)
- Signifigantly improve startup performance on macOS, see #2442 (@BlackHoleFox)
- Bump MSRV to 1.62, see #2496 (@Enselic)

## Syntaxes

- Added support for Ada, see #1300 and #2316 (@dkm)
- Added `todo.txt` syntax, see #2375 (@BANOnotIT)
- Improve Manpage.sublime-syntax. See #2364 (@Freed-Wu) and #2461 (@keith-hall)
- Added a new `requirements.txt` syntax, see #2361 (@Freed-Wu)
- Added a new VimHelp syntax, see #2366 (@Freed-Wu)
- Associate `pdm.lock` with `TOML` syntax, see #2410
- `Todo.txt`: Fix highlighting of contexts and projects at beginning of done.txt, see #2411
- `cmd-help`: overhaul scope names (colors) to improve theme support; misc syntax improvements. See #2419 (@victor-gp)
- Added support for Crontab, see #2509 (@keith-hall)

## Themes

## `bat` as a library

- `PrettyPrinter::header` correctly displays a header with the filename, see #2378 and #2406 (@cstyles)

(wiz)

Added www/lua-resty-core, www/lua-resty-lrucache

(adam)

lua-resty-lrucache: added version 0.13

Lua-land LRU cache based on the LuaJIT FFI.

(adam)

lua-resty-core: added version 0.1.26

New FFI-based Lua API for ngx_http_lua_module and/or ngx_stream_lua_module.

(adam)

doc: Updated devel/gmake to 4.4.1

(wiz)

gmake: update to 4.4.1.

Version 4.4.1 (26 Feb 2023)

This release is primarily a bug-fix release.
A complete list of bugs fixed in this version is available here:

https://sv.gnu.org/bugs/index.php?group=make&report_id=111&fix_release_id=110&set=custom

* WARNING: Backward-incompatibility!
  In previous releases it was not well-defined when updates to MAKEFLAGS made
  inside a makefile would be visible.  This release ensures they are visible
  immediately, even when invoking $(shell ...) functions.  Also, command line
  variable assignments are now always present in MAKEFLAGS, even when parsing
  makefiles.
  Implementation provided by Dmitry Goncharov <dgoncharov@users.sf.net>

* New feature: Parallel builds of archives
  Previously it was not possible to use parallel builds with archives.  It is
  still not possible using the built-in rules, however you can now override
  the built-in rules with a slightly different set of rules and use parallel
  builds with archive creation.  See the "Dangers When Using Archives" section
  of the GNU Make manual, and https://savannah.gnu.org/bugs/index.php?14927

* Previously target-specific variables would inherit their "export" capability
  from parent target-specific variables even if they were marked private.  Now
  private parent target-specific variables have no affect.  For more details
  see https://savannah.gnu.org/bugs/index.php?61463

* Disable FIFO jobserver on GNU/Hurd and Cygwin
  Experimentation shows that the new FIFO-based jobserver doesn't work well on
  GNU/Hurd or Cygwin: revert these systems to use the pipe-based jobserver.

* Updates to allow building on OS/2
  Provided by KO Myung-Hun <komh78@gmail.com>

* New platform: GNU Make is supported on z/OS
  Thanks to Igor Todorovski <itodorov@ca.ibm.com> for the patches and testing
  assistance.

(wiz)

doc: Updated print/a2ps to 4.15.2

(wiz)

a2ps: update to 4.15.2.

* Noteworthy changes in release 4.15.2 (2023-03-19) [stable]
* Bug fixes:
  - Fix old crash when using --stdin="".
* Build
  - Make configure stop if libpaper is not found.
  - Enable building the manual for gnu.org.

(wiz)

pkglint: add missing files from previous commit

(rillig)

Updated textproc/py-yamllint, sysutils/ansible-lint

(adam)

ansible-lint: updated to 6.14.3

v6.14.3

Bugfixes

Refactor task iterator (part 2)
Document fix for literal_compare == False
docs: Provide more information about the dangers of run_once
Fix sarif output to use 'match.details' in result object, instead of 'match.message'
Allow templated boolean for any_errors_fatal
Refactor task iterator to return an object
Update SPDX license list
Fix tilde interpolation in PATH
Fix "helpUri" assignment for SARIF output
docs: fix link for rule galaxy[no-runtime]

(adam)

py-yamllint: updated to 1.30.0

1.30.0

Rule anchors: add new rule to detect undeclared or duplicated anchors
Python API: prevent using is_file_ignored() with null filepath
Docs: fix misleading Python API example
Docs: fix plain text code snippet example
Docs: update pre-commit hook example

(adam)

doc: Updated pkgtools/pkglint to 23.1.0

(rillig)

Update pkgtools/pkglint to 23.1.0

Changes since 22.4.1:

In makefiles outside pkgsrc, don't require the first line to contain the
CVS Id.

When simplifying conditions, correctly handle the edge case that a
single-word value may evaluate numerically to zero.

In dependency lines, parse '#' signs correctly.

In error messages about malformed patch files, use the correct plural
form.

(rillig)