misc/ruby-progressbar: update to 1.13.0

1.12.0 (2023-03-01)

Add

* Ability To Swap Out Running Average Calculators
* running_average_rate As Configuration Option
* Wall Clock Time To Completion To The Format Elements

Change

* Rename Running Average Calculator To Smoothed Average Calculator
* Rename smoothing To running_average_rate
* Rename smoothing_factor To rate
* Allow Timer's Elapsed Seconds To Calculate Even If Not Started

1.13.0 (2023-03-04)

Add

* Ability To Allow Different Projectors To Be Used For Time Estimates
* Concept Of A Projector
* Ability To Access Progress Bar Instance Using Enumerator Refinement

Remove

* smoothing Option

Change

* Issue Caused By Ruby Bug

(taca)

doc: Updated devel/ruby-rgl to 0.6.2

(taca)

devel/ruby-rgl: update to 0.6.2

0.6.1 (2023-03-03)

What's Changed

* fix: #84 each_in_neighbor has missing block argument.

0.6.2 (2023-03-05)

What's Changed

* fix: #86 each_in_neighbor() raises exception on unconnected vertices

(taca)

doc: Updated devel/ruby-parser to 3.20.0

(taca)

devel/ruby-parser: update to 3.20.0

3.20.0 (2023-03-04)

1 major enhancement:

* Added tentative 3.2 support.

1 minor enhancement:

* Change minimum ruby version to 2.6. (want higher)

1 bug fix:

* Fix up compare tasks for ruby 3.2 differences.

(taca)

doc: Updated devel/ruby-msgpack to 1.6.1

(taca)

devel/ruby-msgpack: update to 1.6.1

1.6.1 (2023-03-03)

* Undefine #clone and #dup on MessagePack::Buffer, MessagePack::Packer and
  MessagePack::Unpacker.  These methods were never intended, and using them
  could cause leaks or crashes or worse.

* Fix a possible GC crash when GC trigger inside MessagePack::Buffer.new
  (#314).

(taca)

doc: Updated devel/ruby-minitest to 5.18.0

(taca)

devel/ruby-minitest: update to 5.18.0

5.18.0 (2023-03-04)

2 major enhancements:

* Added assert_pattern & refute_pattern for pattern matching. (flavorjones)

* Added matching must_pattern_match & wont_pattern_match to minitest/spec.

1 bug fix:

* Support the new message format of NameError in Ruby 3.3 (mame)

(taca)

doc: Updated devel/ruby-git to 1.16.0

(taca)

devel/ruby-git: update to 1.16.0

1.16.0 (2023-03-03)

Changes since v1.15.0:

* 536d Fix parsing when in detached HEAD state in Git::Lib#branches_all
  (#641)
* 5c68 Fix parsing of symbolic refs in Git::Lib#branches_all (#640)
* 7d88 Remote#branch and #merge should default to current branch instead of
  "master" (#639)
* 3dda0 #branch name should default to current branch instead of master
  (#638)
* d33d #checkout without args should do same as git checkout with no args
  (#637)
* 0c90 #push without args should do same as git push with no args (#636)
* 2b19 Make it easier to run test files from the command line (#635)

(taca)

doc: Updated devel/ruby-async to 2.4.0

(taca)

devel/ruby-async: update to 2.4.0

2.4.0 (2023-03-02)

What's Changed

* Allow assigning to semaphore limit. by @ioquatix in #215

(taca)

doc: Updated databases/ruby-sequel to 5.66.0

(taca)

databases/ruby-sequel: update to 5.66.0

5.66.0 (2023-03-01)

* Recognize SQLite error related to strict tables as a constraint violation
  when using the amalgalite adapter (jeremyevans)
* Make Dataset#count work correctly for datasets using Dataset#values
  (jeremyevans) (#1992)
* Make Dataset#count with no argument/block handle dataset with custom SQL
  using ORDER BY on MSSQL (jeremyevans)
* Make Dataset#empty? correctly handle datasets with custom SQL or using
  Dataset#values where the first value is NULL (andy-k, jeremyevans) (#1990)

(taca)

doc: Updated chat/matrix-synapse to 1.78.0

(js)

Update chat/matrix-synapse to 1.78.0

Synapse 1.78.0 (2023-02-28)
===========================

Bugfixes
--------

- Fix a bug introduced in Synapse 1.76 where 5s delays would occasionally occur in deployments using workers. ([\#15150](https://github.com/matrix-org/synapse/issues/15150))

Synapse 1.78.0rc1 (2023-02-21)
==============================

Features
--------

- Implement the experimental `exact_event_match` push rule condition from [MSC3758](https://github.com/matrix-org/matrix-spec-proposals/pull/3758). ([\#14964](https://github.com/matrix-org/synapse/issues/14964))
- Add account data to the command line [user data export tool](https://matrix-org.github.io/synapse/v1.78/usage/administration/admin_faq.html#how-can-i-export-user-data). ([\#14969](https://github.com/matrix-org/synapse/issues/14969))
- Implement [MSC3873](https://github.com/matrix-org/matrix-spec-proposals/pull/3873) to disambiguate push rule keys with dots in them. ([\#15004](https://github.com/matrix-org/synapse/issues/15004))
- Allow Synapse to use a specific Redis [logical database](https://redis.io/commands/select/) in worker-mode deployments. ([\#15034](https://github.com/matrix-org/synapse/issues/15034))
- Tag opentracing spans for federation requests with the name of the worker serving the request. ([\#15042](https://github.com/matrix-org/synapse/issues/15042))
- Implement the experimental `exact_event_property_contains` push rule condition from [MSC3966](https://github.com/matrix-org/matrix-spec-proposals/pull/3966). ([\#15045](https://github.com/matrix-org/synapse/issues/15045))
- Remove spurious `dont_notify` action from the defaults for the `.m.rule.reaction` pushrule. ([\#15073](https://github.com/matrix-org/synapse/issues/15073))
- Update the error code returned when user sends a duplicate annotation. ([\#15075](https://github.com/matrix-org/synapse/issues/15075))

Bugfixes
--------

- Prevent clients from reporting nonexistent events. ([\#13779](https://github.com/matrix-org/synapse/issues/13779))
- Return spec-compliant JSON errors when unknown endpoints are requested. ([\#14605](https://github.com/matrix-org/synapse/issues/14605))
- Fix a long-standing bug where the room aliases returned could be corrupted. ([\#15038](https://github.com/matrix-org/synapse/issues/15038))
- Fix a bug introduced in Synapse 1.76.0 where partially-joined rooms could not be deleted using the [purge room API](https://matrix-org.github.io/synapse/latest/admin_api/rooms.html#delete-room-api). ([\#15068](https://github.com/matrix-org/synapse/issues/15068))
- Fix a long-standing bug where federated joins would fail if the first server in the list of servers to try is not in the room. ([\#15074](https://github.com/matrix-org/synapse/issues/15074))
- Fix a bug introduced in Synapse v1.74.0 where searching with colons when using ICU for search term tokenisation would fail with an error. ([\#15079](https://github.com/matrix-org/synapse/issues/15079))
- Reduce the likelihood of a rare race condition where rejoining a restricted room over federation would fail. ([\#15080](https://github.com/matrix-org/synapse/issues/15080))
- Fix a bug introduced in Synapse 1.76 where workers would fail to start if the `health` listener was configured. ([\#15096](https://github.com/matrix-org/synapse/issues/15096))
- Fix a bug introduced in Synapse 1.75 where the [portdb script](https://matrix-org.github.io/synapse/release-v1.78/postgres.html#porting-from-sqlite) would fail to run after a room had been faster-joined. ([\#15108](https://github.com/matrix-org/synapse/issues/15108))

Improved Documentation
----------------------

- Document how to start Synapse with Poetry. Contributed by @thezaidbintariq. ([\#14892](https://github.com/matrix-org/synapse/issues/14892), [\#15022](https://github.com/matrix-org/synapse/issues/15022))
- Update delegation documentation to clarify that SRV DNS delegation does not eliminate all needs to serve files from .well-known locations. Contributed by @williamkray. ([\#14959](https://github.com/matrix-org/synapse/issues/14959))
- Fix a mistake in registration_shared_secret_path docs. ([\#15078](https://github.com/matrix-org/synapse/issues/15078))
- Refer to a more recent blog post on the [Database Maintenance Tools](https://matrix-org.github.io/synapse/latest/usage/administration/database_maintenance_tools.html) page. Contributed by @jahway603. ([\#15083](https://github.com/matrix-org/synapse/issues/15083))

Internal Changes
----------------

- Re-type hint some collections as read-only. ([\#13755](https://github.com/matrix-org/synapse/issues/13755))
- Faster joins: don't stall when another user joins during a partial-state room resync. ([\#14606](https://github.com/matrix-org/synapse/issues/14606))
- Add a class `UnpersistedEventContext` to allow for the batching up of storing state groups. ([\#14675](https://github.com/matrix-org/synapse/issues/14675))
- Add a check to ensure that locked dependencies have source distributions available. ([\#14742](https://github.com/matrix-org/synapse/issues/14742))
- Tweak comment on `_is_local_room_accessible` as part of room visibility in `/hierarchy` to clarify the condition for a room being visible. ([\#14834](https://github.com/matrix-org/synapse/issues/14834))
- Prevent `WARNING: there is already a transaction in progress` lines appearing in PostgreSQL's logs on some occasions. ([\#14840](https://github.com/matrix-org/synapse/issues/14840))
- Use `StrCollection` to avoid potential bugs with `Collection[str]`. ([\#14929](https://github.com/matrix-org/synapse/issues/14929))
- Improve performance of `/sync` in a few situations. ([\#14973](https://github.com/matrix-org/synapse/issues/14973))
- Limit concurrent event creation for a room to avoid state resolution when sending bursts of events to a local room. ([\#14977](https://github.com/matrix-org/synapse/issues/14977))
- Skip calculating unread push actions in /sync when enable_push is false. ([\#14980](https://github.com/matrix-org/synapse/issues/14980))
- Add a schema dump symlinks inside `contrib`, to make it easier for IDEs to interrogate Synapse's database schema. ([\#14982](https://github.com/matrix-org/synapse/issues/14982))
- Improve type hints. ([\#15008](https://github.com/matrix-org/synapse/issues/15008), [\#15026](https://github.com/matrix-org/synapse/issues/15026), [\#15027](https://github.com/matrix-org/synapse/issues/15027), [\#15028](https://github.com/matrix-org/synapse/issues/15028), [\#15031](https://github.com/matrix-org/synapse/issues/15031), [\#15035](https://github.com/matrix-org/synapse/issues/15035), [\#15052](https://github.com/matrix-org/synapse/issues/15052), [\#15072](https://github.com/matrix-org/synapse/issues/15072), [\#15084](https://github.com/matrix-org/synapse/issues/15084))
- Update [MSC3952](https://github.com/matrix-org/matrix-spec-proposals/pull/3952) support based on changes to the MSC. ([\#15037](https://github.com/matrix-org/synapse/issues/15037))
- Avoid mutating a cached value in `get_user_devices_from_cache`. ([\#15040](https://github.com/matrix-org/synapse/issues/15040))
- Fix a rare exception in logs on start up. ([\#15041](https://github.com/matrix-org/synapse/issues/15041))
- Update pyo3-log to v0.8.1. ([\#15043](https://github.com/matrix-org/synapse/issues/15043))
- Avoid mutating cached values in `_generate_sync_entry_for_account_data`. ([\#15047](https://github.com/matrix-org/synapse/issues/15047))
- Refactor arguments of `try_unbind_threepid` and `_try_unbind_threepid_with_id_server` to not use dictionaries. ([\#15053](https://github.com/matrix-org/synapse/issues/15053))
- Merge debug logging from the hotfixes branch. ([\#15054](https://github.com/matrix-org/synapse/issues/15054))
- Faster joins: omit device list updates originating from partial state rooms in /sync responses without lazy loading of members enabled. ([\#15069](https://github.com/matrix-org/synapse/issues/15069))
- Fix clashing database transaction name. ([\#15070](https://github.com/matrix-org/synapse/issues/15070))
- Upper-bound frozendict dependency. This works around us being unable to test installing our wheels against Python 3.11 in CI. ([\#15114](https://github.com/matrix-org/synapse/issues/15114))
- Tweak logging for when a worker waits for its view of a replication stream to catch up. ([\#15120](https://github.com/matrix-org/synapse/issues/15120))

<details><summary>Locked dependency updates</summary>

- Bump bleach from 5.0.1 to 6.0.0. ([\#15059](https://github.com/matrix-org/synapse/issues/15059))
- Bump cryptography from 38.0.4 to 39.0.1. ([\#15020](https://github.com/matrix-org/synapse/issues/15020))
- Bump ruff version from 0.0.230 to 0.0.237. ([\#15033](https://github.com/matrix-org/synapse/issues/15033))
- Bump dtolnay/rust-toolchain from 9cd00a88a73addc8617065438eff914dd08d0955 to 25dc93b901a87e864900a8aec6c12e9aa794c0c3. ([\#15060](https://github.com/matrix-org/synapse/issues/15060))
- Bump systemd-python from 234 to 235. ([\#15061](https://github.com/matrix-org/synapse/issues/15061))
- Bump serde_json from 1.0.92 to 1.0.93. ([\#15062](https://github.com/matrix-org/synapse/issues/15062))
- Bump types-requests from 2.28.11.8 to 2.28.11.12. ([\#15063](https://github.com/matrix-org/synapse/issues/15063))
- Bump types-pillow from 9.4.0.5 to 9.4.0.10. ([\#15064](https://github.com/matrix-org/synapse/issues/15064))
- Bump sentry-sdk from 1.13.0 to 1.15.0. ([\#15065](https://github.com/matrix-org/synapse/issues/15065))
- Bump types-jsonschema from 4.17.0.3 to 4.17.0.5. ([\#15099](https://github.com/matrix-org/synapse/issues/15099))
- Bump types-bleach from 5.0.3.1 to 6.0.0.0. ([\#15100](https://github.com/matrix-org/synapse/issues/15100))
- Bump dtolnay/rust-toolchain from 25dc93b901a87e864900a8aec6c12e9aa794c0c3 to e12eda571dc9a5ee5d58eecf4738ec291c66f295. ([\#15101](https://github.com/matrix-org/synapse/issues/15101))
- Bump dawidd6/action-download-artifact from 2.24.3 to 2.25.0. ([\#15102](https://github.com/matrix-org/synapse/issues/15102))
- Bump types-pillow from 9.4.0.10 to 9.4.0.13. ([\#15104](https://github.com/matrix-org/synapse/issues/15104))
- Bump types-setuptools from 67.1.0.0 to 67.3.0.1. ([\#15105](https://github.com/matrix-org/synapse/issues/15105))

</details>

(js)

doc: Updated shells/elvish to 0.19.1

(pin)

shells/elvish: update to 0.19.1

Note: The 0.19.0 version was tagged prematurely by mistake, but it has been
picked up by some package managers. As a result, the 0.19.0 version is
considered to be "skipped" officially. If your package manager provides a
0.19.0 version, it is probably identical to 0.19.1 in functionalities.

Packagers who have already packaged 0.19.0 are still advised to "upgrade" to
0.19.1.

Notable new features
- A new doc module provides access to the documentation of builtin modules.
- A new conj command ���appends��� values to a list, and has a guaranteed time
  complexity independent of the size of the list.
- A new inexact-num converts its argument to an inexact number.
- It is functionally identical to the now deprecated float64 command since the
  Go float64 type is the only underlying inexact number type for now. Its
  behavior may change in future if there are more underlying types for inexact
  numbers.
- A new type of interactive abbreviation: edit:command-abbr (#1472).
- The order and compare commands now support boolean values (#1585).
- A new path:join command and path:separator and path:list-separator variables
  (#1562).
- A new runtime: module that contains paths important for the Elvish runtime
  (#1385, #1423).
- A new compact command that replaces consecutive runs of equal values with a
  single copy, similar to the Unix uniq command.
- The order command has a new &key option (#1570).
- A new benchmark command has been added (#1586).
- When checking compilation errors, Elvish no longer stops after the first
  error found. For example, if $a and $b are both not defined, echo $a $b now
  yields two errors. This applies to both the interactive REPL and
  elvish -compile-only.
- When using an unimported builtin modules from the REPL, the REPL now shows
  the use command needed to import it, which can be executed from a key
  binding. This functionality is bound to Ctrl-A by default.
- New variables exposing the terminal and null device in an OS-agnostic
  fashion: $path:dev-tty and $path:dev-null. They are /dev/tty and /dev/null
  on Unix, and CON and NUL on Windows (#1633).

Breaking changes
- When a styled or styled-segment is printed to terminal, the resulting
  sequence will now always ignore any existing SGR state.
- Symbolic links are now always treated as ordinary files by the global
  modifiers type:dir and type:regular in wildcard expansions.
- Support for shared vars has been removed, along with its API
  (store:shared-var, store:set-shared-var and store:del-shared-var).
- The try command no longer supports the except keyword. It has been
  superseded by the catch keyword.

Deprecated features
Deprecated features will be removed in 0.20.0.

The following deprecated features trigger a warning whenever the code is parsed
and compiled, even if it is not executed:
- The float64 command is now deprecated. Use num for constructing a typed
  number, or inexact-num for constructing an inexact number.
- The documentation has advertised it as deprecated since the 0.16.0 release,
  but deprecation warnings were never added.

Notable bugfixes
- Temporary assignment on an unset environment variables no longer leave it
  set to an empty string (#1448).
- Broken symbolic links no longer terminate a wildcard expansion prematurely
  (#1240).
- On Windows, command completion for executables now also works for local
  files.

(pin)

doc: Updated www/libreddit to 0.29.4

(pin)

www/libreddit: update to 0.29.4

What's Changed
- Reuse hyper client. by @wsy2220 in #727
- Mark search query as safe on Prev/Next button by @wsy2220 in #731
- Make gated subreddits accessible by treating them as quarantined by @domve in #722
- Add NetBSD install by @0323pin in #720
- Update tempfile to v3.4.0. d3b4f4e

(pin)

doc: Updated audio/termusic to 0.7.9

(pin)

audio/termusic: update to 0.7.9

[v0.7.9]
- Released on: February 16, 2023.
- Fix: don't panic if XDG_MUSIC_DIR is not set.
- Fix: bump lofty to v0.11 and solve build error caused by lofty v0.10 not
  found.
- Fix: don't create music dir.

(pin)

doc: Updated misc/wthrr to 0.9.0

(pin)

misc/wthrr: update to 0.9.0

What's Changed
- fix: add min length to language code in #68
- perf: translate concurrently in #69
- refact: update structure before rc in #70
- perf: use less taxing data types where possible in #71
- feat: add max/min stats to hourly forecast in #72
- docs: add platform locations for config file
- fix border displacement when checking weather between 23:00-23:20

(pin)

Updated devel/py-jaraco.path, comms/py-rich, textproc/py-markdown-it-py, security/py-google-auth

(adam)

py-rich: bump py-markdown-it-py requiremnt

(adam)

py-google-auth: updated to 2.16.2

2.16.2 (2023-03-02)

Bug Fixes

Call gcloud config get project to get project for user cred
Do not use hardcoded string 'python', when you mean sys.executable.
Don't retry if error or error_description is not string
Improve ADC related errors and warnings

(adam)

py-markdown-it-py: updated to 2.2.0

2.2.0 - 2023-02-22

What's Changed

* 筮��ｸ� UPGRADE: Allow linkify-it-py v2
* �汾� FIX: CVE-2023-26303
* �汾� FIX: CLI crash on non-utf8 character
* �沒� DOCS: Update the example
* �沒� DOCS: Add section about markdown renderer
* �沐ｧ Create SECURITY.md
* �沐ｧ MAINTAIN: Update mypy's additional dependencies
* Fix typo
* �沐ｧ Bump GH actions
* �沐ｧ Update benchmark pkg versions

(adam)

py-rich: updated to 13.3.2

13.3.2

Fixed

Reversed pre and code tags in base HTML format
Fix syntax error when building with nuitka
Fixed pretty printing of empty dataclass
Use Console(stderr=True) in rich.traceback.install to support io redirection.
Fixes superfluous spaces in html output
Fixed duplicate output in Jupyter https://github.com/Textualize/rich/pulls/2804
Filter ANSI character-encoding-change codes in Text.from_ansi parser
Fixes traceback failing when a frame filename is unreadable
Fix for live update rendering console markup

Added

Added Polish README

Changed

rich.progress.track() will now show the elapsed time after finishing the task

(adam)

py-jaraco.path: updated to 3.4.1

v3.4.1
Fixed EncodingWarnings and ResourceWarnings.

(adam)

Updated graphics/py-matplotlib, graphics/py-matplotlib-venn

(adam)

py-matplotlib-venn: updated to 0.11.9

Version 0.11.9
- Minor update to metadata (mark Development Status as Stable).

Version 0.11.8
- Added pyproject.toml

(adam)

py-matplotlib: updated to 3.7.1

v3.7.1

Ensure Qhull license is included in binary wheels
Fix application of rcParams on Axes labels
Fix compatibility with Pandas datetime unit converter
Fix compatibility with latest GTK4
Fix import of styles with relative path
Fix Lasso unresponsiveness when clicking and immediately releasing
Fix pickling of draggable legends
Fix RangeSlider.set_val when new value is outside existing value
Fix size of Tk spacers when changing display DPI
Fix wrapped text in constrained layout
Improve compatibility with third-party backends
Improve error if animation save path does not exist

v3.7.0

Plotting and Annotation improvements
hatch parameter for pie
Polar plot errors drawn in polar coordinates
Additional format string options in ~matplotlib.axes.Axes.bar_label
ellipse boxstyle option for annotations
The extent of imshow can now be expressed with units
Reversed order of legend entries
pcolormesh accepts RGB(A) colors
View current appearance settings for ticks, tick labels, and gridlines
Style files can be imported from third-party packages
Improvements to 3D Plotting
3D plot pan and zoom buttons
adjustable keyword argument for setting equal aspect ratios in 3D
Poly3DCollection supports shading
rcParam for 3D pane color
Figure and Axes Layout
colorbar now has a location keyword argument
Figure legends can be placed outside figures using constrained_layout
Per-subplot keyword arguments in subplot_mosaic
subplot_mosaic no longer provisional
Widget Improvements
Custom styling of button widgets
Blitting in Button widgets
Other Improvements
Source links can be shown or hidden for each Sphinx plot directive
Figure hooks
New & Improved Narrative Documentation
Brand new :doc:Animations </tutorials/introductory/animation_tutorial> tutorial.
New grouped and stacked bar chart <../../gallery/index.html#lines_bars_and_markers>_ examples.
New section for new contributors and reorganized git instructions in the :ref:contributing guide<contributing>.
Restructured :doc:/tutorials/text/annotations tutorial.

(adam)

doc/TODO: add some

+ blender-lts-3.3, filezilla-3.63.2.1, gmake-4.4.1, gstreamer1-1.22.1,
  libv4l-1.24.1, poppler-23.03.0, proj-9.2.0, py-mercurial-6.3.3,
  py-vdirsyncer-0.19.1, qgis-3.30.0, raptor2-2.0.16.

(wiz)

doc: Removed devel/ruby-dep

(taca)

devel/ruby-dep: remove package

This package was added for sysutils/ruby-listen package but it dose not
require ruby-dep any more.  No other package depdends on ruby-dep.

(taca)

devel/Makefile: remove ruby-dep

(taca)

doc: Removed devel/ruby-metaclass

(taca)

devel/ruby-metaclass: remove package

This package was added for devel/ruby-mocha.  ruby-mocha dose not require
this package and no other package depends on this.

(taca)

devel/Makefile: remove ruby-metaclass

(taca)

doc: Removed devel/ruby-racc

(taca)

devel/ruby-racc: remove package

racc is default gem on all ruby*-base packages and no package depends on
it now.

(taca)

devel/Makefile: remove ruby-racc

(taca)

doc: Updated textproc/ruby-csv to 3.2.6

(taca)

textproc/ruby-csv: update to 3.2.6

pkgsrc change:

* Add note that this package is mainly for redmine50 on Ruby 2.7 and 3.0.
* Not for Ruby 3.2 since ruby32-base has the same version as default gem.

3.2.6 (2022-12-08)

Improvements

* CSV#read consumes the same lines with other methods like CSV#shift.
  [GitHub#258] [Reported by Lhoussaine Ghallou]
* All Enumerable based methods consume the same lines with other methods.
  This may have a performance penalty.  [GitHub#260] [Reported by Lhoussaine
  Ghallou]
* Simplify some implementations.  [GitHub#262] [GitHub#263] [Patch by Mau
  Magnaguagno]

Fixes

* Fixed CSV.generate_lines document. [GitHub#257] [Patch by Sampat Badhe]

Thanks

* Sampat Badhe
* Lhoussaine Ghallou
* Mau Magnaguagno

(taca)

doc: Updated x11/xfce4-notifyd to 0.8.2

(gutteridge)

xfce4-notifyd: update to 0.8.2

Change log:

0.8.2 (2023-02-27)
=====
- Remove WM_TAKE_FOCUS from WM_PROTOCOLS for notification windows
- Add pref to change what fields are shown in notifications
- Fix a use-after-free with a notification's app ID
- Fix plural forms missing from translatable strings
- Fix weird formatting mistake in configure.ac
- Remove support for xfce4-panel 4.12.
- Reduce gettext requirement to 0.20.
- Simplify notification placement code
- Add assertion to ensure no window with new ID exists in the tree
- Fix possible index out of bounds issue
- Don't compare uints like char pointers
- Support default actions
- Add option to allow gauge notifications to ignore DnD
- Don't move notifications on mouse-over
- If urgency updated, start/stop expiration
- Close all non-urgent notifications when DnD is activated
- Add a missing $(AM_V_GEN)
- Remove intltool in favor of plain gettext
- Use pkg-config to find gdbus-codegen
- Don't hide glib-genmarshal behind MAINTAINER_MODE
- Use glib-compile-resources instead of xdt-csource
- Don't require xdt-csource for dist tarball builds
- Translation Updates:
  Albanian, Armenian (Armenia), Basque, Belarusian, Bulgarian, Catalan,
  Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish, Dutch,
  Eastern Armenian, English (Australia), Estonian, Finnish, French,
  Galician, Georgian, German, Greek, Hebrew, Hungarian, Icelandic,
  Indonesian, Interlingue, Italian, Japanese, Kazakh, Korean,
  Lithuanian, Malay, Norwegian Bokm奪l, Polish, Portuguese, Portuguese
  (Brazil), Russian, Serbian, Slovak, Slovenian, Spanish, Thai,
  Turkish, Ukrainian

0.8.1 (2023-02-16)
=====
- Set 1.5s timeouts for the log dbus proxy
- Move log dbus server to its own object/file
- Wrap queue item struct creation with a function
- Improve old log migration error reporting
- Delete old log file if it was empty
- Clean up old log action parsing loop
- Print a message if log db is busy or locked
- Plug memleak when not sending log changed signal
- Use GStrvBuilder instead of constructing one manually
- Handle empty strings from DBus
- Limit notification body to 2 lines in plugin menu
- Remove old legacy support options from configure
- Ensure gdbus-codegen doesn't generate too-new code
- Clean up generate code and deprecate Quit method
- Make all notification log access go through dbus
- Drop old gtk 3.0 themes (3.20 themes are always used)
- Clean up build system
- Add hidden setting to restore override-redirect behavior
- Remove ChangeLog make target
- Markdownify and update the readme
- Disconnect from GtkIconTheme::changed when plugin destroyed
- Load main panel icon with _load_symbolic() variant
- Restore log viewer's scrolled window shadow-type
- Update icon when icon-theme changes
- Fix incorrect signal handler connections in settings dialog
- Translation Updates:
  Albanian, Bulgarian, Chinese (Taiwan), Dutch, French, German,
  Japanese, Lithuanian, Polish, Portuguese, Portuguese (Brazil),
  Serbian, Spanish

(gutteridge)

doc: Updated sysutils/xfburn to 0.7.0

(gutteridge)

xfburn: update to 0.7.0

Change log:

xfburn 0.7.0 (2023-03-03)
============-------------
- Add MIME types to open blank and audio CDs
- Automatically update burner list as burners are plugged and unplugged
- Change default temporary directory to /var/tmp
- Improve text of write modes
- Replace some icons with symbolic versions that better respect light/dark mode
- Support delete key in audio compositions
- Fix adding progress dialog not appearing after dragging files
- Fix adding progress dialog cancel button not working
- Fix adding progress dialog not being modal
- Fix assertion failure when burner not present
- Fix composition term not being used consistently
- Fix crash when adding files to a data composition
- Fix dragged audio composition tracks being copied instead of moved
- Fix excessive minimum width of main window
- Fix icons not appearing on dialogs
- Fix intltool lock file bug in `make distcheck`
- Fix multiple selection being instantly deselected upon right click
- Fix multithreading issue when initializing an audio composition
- Fix out-of-date address in COPYING
- Fix project homepage URL
- Fix removed audio composition tracks not reducing total composition length
- Fix some compilation warnings
- Fix typo in burn failure dialog
- Fix XSLT processor warnings
- Add basic GitLab pipeline
- Add Markdown version of the README
- Add more translatable content to the AppStream/AppData
- Bump GLib minimum required to 2.38
- Modernize build system
- Resolve AppStream warnings from Debian
- Strip trailing whitespace like as in Debian's build process
- Update bug tracker links in readme
- Update information on how to build xfburn
- Translation Updates:
  Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian,
  Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish,
  Dutch, Eastern Armenian, English (Australia), English (United
  Kingdom), Estonian, Finnish, French, Galician, German, Greek, Hebrew,
  Hungarian, Icelandic, Indonesian, Interlingue, Italian, Japanese,
  Kazakh, Korean, Lithuanian, Malay, Norwegian Bokm奪l, Norwegian
  Nynorsk, Occitan (post 1500), Polish, Portuguese, Portuguese
  (Brazil), Russian, Serbian, Sinhala, Slovak, Slovenian, Spanish,
  Swedish, Telugu, Thai, Turkish, Ukrainian, Uyghur

(gutteridge)

mk/tools: replace '!empty' conditions with '==' or '!='

Main work done by running 'pkglint -F --only "simpler" --only
"simplified" *.mk', with manual improvements afterwards:

* Removed several redundant ':U' modifiers, as pkglint doesn't know the
  exact order in which the infrastructure files include each other.

* Removed redundant 'defined(X11_TYPE)' and the corresponding comment.

(rillig)

mk/check-wrkref: unclutter the documentation

(rillig)

Updated sysutils/nabud to 1.2.1.

(thorpej)

Update to nabud-1.2.1.  Upstream changes:

### nabud-1.2.1
* Experimental support for Cygwin (64-bit).
* Support command history / editing in nabuctl in Docker builds,
  plus some additional Docker fixes.  From Christopher Masto.
* Added a FlowControl property to Connection objects.  This allows users
  who have modified their NABU HCCA port to support RTS/CTS flow control
  to enable it.
* nabuctl now displays the serial connection properties (baud rate,
  stop bits, and flow control) when viewing connection details.
* nabuctl now displays the file that the NABU will receive as the default
  boot image (image 000001) even if this is not specified in the config
  file or selected with nabuctl.  Suggested by jefferystone on Discord.

(thorpej)

doc: Updated security/paperkey to 1.6

(fcambus)

paperkey: update to 1.6.

2017-11-17  David Shaw  <dshaw@jabberwocky.com>

* checks: Various improvements to allow running the selftests in
parallel (Debian bug 881792).  Reported by Daniel Kahn Gillmor.

2017-10-23  David Shaw  <dshaw@jabberwocky.com>

* extract.c (extract): Properly fail if we cannot parse a secret
subkey packet.  Reported by Osamu Aoki and Peter Palfrader.

* parse.c (extract_secrets): Add support for EdDSA as per
https://tools.ietf.org/html/draft-koch-eddsa-for-openpgp-04.  Note
that this is an expired draft, but GnuPG is using algorithm 22 for
it.

2016-09-05  David Shaw  <dshaw@jabberwocky.com>

* NEWS, configure.ac: Post-release commit.

* NEWS, configure.ac: Preparing 1.4 release.

* NEWS, output.h, output.c, paperkey.c (set_binary_mode): Fix
binary vs text output mismatch when using "--output-type raw" on
Windows platforms.  Does not affect any non-Windows platforms.
Found by Thierry Ambrus.

* README: Clarify output-width a bit.

* paperkey.spec.in: Use %license for the COPYING file and run the
self checks during build.

2016-09-04  David Shaw  <dshaw@jabberwocky.com>

* README: PowerPC Macs are basically gone, so remove the OSX
(sorry: macOS!) universal binary stuff.

(fcambus)

doc: Updated audio/spotify-player to 0.12.1

(pin)

audio/spotify-player: update to 0.12.1

What's Changed
- Support customizable formats in #147
- Fixed duplicate keys on Windows in #151
- Add more UI customizations and refactor UI codes in #152

What's new
- New config options: playback_format, notify_format, border_type,
  progress_bar_type
- New theme's component style: playback_artists

(pin)

doc: Updated graphics/oculante to 0.6.53

(pin)

graphics/oculante: update to 0.6.53

0.6.53 (2023-03-04)
Bug Fixes
- Prevent freezing when window resizes (91424bac)
- update jpegxl (8779d04b)

笨ｨFeatures
- Allow window title to be configured (000a34db)
- Keep track of recently opened images (77857a8f)

�沚修hore
- update dependencies (2dad8909)
- Update dependencies (8c78fa9f)

(pin)

doc: Updated devel/lazygit to 0.37.0

(pin)

devel/lazygit: update to 0.37.0

v0.37.0
- (#2288) quote remoteName before compiling regex by @nils-a in #2290
- Resolve the prompt just before using it by @mark2185 in #2296
- [#2279] defaultFgColor entry in theme config by @arnaudperalta in #2284
- bump gocui by @Ryooooooga in #2276
- fix ignore file keybinding by @jesseduffield in #2303
- Commit in staged/unstaged menu by @arnaudperalta in #2298
- updated rebase confirmation message by @navazjm in #2315
- migrate branch reset integration test by @jesseduffield in #2320
- Add credential prompts for U2F-backed SSH keys by @bdach in #2239
- migrate more tests by @jesseduffield in #2323
- more integration test migrating by @jesseduffield in #2325
- Yet more test migrations by @jesseduffield in #2329
- fix diff scroll #2309 by @Ryooooooga in #2326
- more integration test refactoring by @jesseduffield in #2330
- more integration test refactoring by @jesseduffield in #2334
- rename from asserter to driver by @jesseduffield in #2335
- remove unused config by @Ryooooooga in #2331
- Add the return alternative key to return in the input box by @wakaka6 in #2311
- migrate some more tests by @jesseduffield in #2336
- Add easter egg by @jesseduffield in #2338
- add support for git push --force-if-includes by @Ryooooooga in #2333
- more integration test migrations by @jesseduffield in #2339
- support for older Git versions by @Ryooooooga in #2340
- Add option to allow --verbose commit in editor commits by @knutwalker in #2341
- fix goroutine leaks by @Ryooooooga in #2345
- docs(Config.md): add missing keybindings by @Ryooooooga in #2356
- change git.commit.verbose to accept "default" by @Ryooooooga in #2343
- feat: create environment for every PR using Uffizzi by @daramayis in #2262
- fix installation scripts for Ubuntu by @Ryooooooga in #2372
- fix ReplacePlaceholderString by @Ryooooooga in #2376
- remove unused texts by @Ryooooooga in #2388
- Add option to disable the "reword in editor" prompt by @stefanhaller in #2384
- allow to disable git.log.order by @Ryooooooga in #2401
- fix RefName of detached HEAD to works in Chinese by @Ryooooooga in #2398
- Ensure trailing LF when copying diff lines to clipboard by @stefanhaller in #2395
- Added copy to clipboard option to the patch options by @phanithinks in #2373
- Added new gui.screenMode key to config by @phanithinks in #2358

v0.36.0
We've got a whole lot of stuff in this release: improvements to the editor,
better custom commands support, snappier staging of files, a tonne of bug
fixes, and lots more.

One particularly cool thing that we've added is Github codespaces support
(in the repo, not within the Lazygit program itself), so if you've got your eye
on an open issue and want to move things along, consider spinning up the lazygit
codebase in a code_space_ and having a go at adding a feature / fixing a bug all
from the comfort of your browser! See here for more info.

As you can see @Ryooooooga and @mark2185 continue to kick goals with a heap of
features and bug fixes in this release, but we also have a whole host of new
contributors too. If you want to get involved in contributing, you can peruse
the issues board for issues with the good-first-issue label, or jump into the
Fortress of Laziness, our new discord server
What's Changed
Features:
Editor stuff
- add support for excluding files by @gozes in #2016
- add support for emacs keybindings in editor by @Ryooooooga in #2183
- allow emacs character navigation in the commit editor (jump word left/right).
  by @LiamKearn in #2104
- navigate by word in the editor by @Ryooooooga in #2204

Custom commands stuff
- Add showOutput option to custom commands (fixes #1163) by @sportshead in
  #2059
- Improve custom commands interface by @Mihai22125 in #2109
- Allow OSCommand.Quote to be invoked within a custom command by @Ryooooooga
  in #2193
- add SelectedPath to the list of placeholder values by @mark2185 in #2070

Other stuff
- add stash option to include untracked files by @ajhynes7 in #1980
- add optimistic rendering for staging and unstaging files by @jesseduffield
  in #2072
- rename stash by @Ryooooooga in #2220
- Show active branch for recent repo by @mark2185 in #2005
- Support custom SSH usernames on BitBucket by @xxdavid in #2087
- Preserve trailing newline setting when adding to gitignore by @mark2185 in
  #2004
- Add notARepository: quit config option to exit Lazygit if run from outside a
  git repo by @Ryooooooga in #2098
- add stash icon by @Ryooooooga in #2219
- allow null in keybindings by @Ryooooooga in #2222

Bug fixes:
- Fix rewording a merge commit with editor by @mark2185 in #2065
- Improved mouse behaviour with international text @mark2185 in #2064
- No more 'unversioned' in the bottom right: add build info when building from
  source by @jesseduffield in #2076
- fix initial origin of commit message panel by @Ryooooooga in #2221
- fix issue caused by opening a menu over a prompt by @jesseduffield in #2079
- fix hidden suggestions by @jesseduffield in #2093
- Gracefully error on bare repositories by @nullishamy in #2067
- Fix open commit in browser for some Gitlab repos by @jtraub in #2132
- fix initial scroll position of edit box by @Ryooooooga in #2123
- fix initial origin of editor box by @Ryooooooga in #2146
- Validate --path argument when starting lazygit by @mark2185 in #2092
- Ignore stderr when loading git status by @Ryooooooga in #2081
- fix: read one line before resuming TUI to prevent unintentional operations
  by @kawaemon in #1636
- allow amending merge commits by @mark2185 in #2164
- various improvements to text rendering by @Ryooooooga in #2195
- fix glitchy render of stale data by @jesseduffield in #2196
- fix stash with empty message by @Ryooooooga in #2218
- fix could-not-access error by @jesseduffield in #2260
- use better colour defaults (note: theme.lightTheme is no longer a thing) by
  @jesseduffield in #2257
- Update go-git to handle negative refspecs by @lukaspiatkowski in #2232
- Fix/show loading state when bottomline disabled by @artvi in #2273
- fix ambiguous branch name by @Ryooooooga in #2224

Docs:
- docs(readme): Added lazygit install method on ubuntu #2125 by @yofreee in
  #2126
- fix: document link by @eetann in #2108
- fix typo in README.md by @luzpaz in #2086
- fix: how to change the config dir for MacOS by @0123takaokeita in #2169

Maintenance:
- Fix github linter errors by @mark2185 in #2069
- Add better support for OpensMenu option when creating a menu by
  @jesseduffield in #2071
- Update bug_report.md by @mark2185 in #2062
- refactor to use generics for file nodes by @jesseduffield in #2075
- handle nil properly with file nodes by @jesseduffield in #2077
- Refactor: one context per view by @jesseduffield in #2023
- refactor merge conflicts code by @jesseduffield in #2088
- allow rendering to main panels from anywhere by @jesseduffield in #2089
- Add new integration test pattern by @jesseduffield in #2094
- even better structure by @jesseduffield in #2113
- give menu formatting to ignore-or-exclude keybinding option by @mark2185 in
  #2110
- add more integration tests by @jesseduffield in #2114
- fail on vendor directory mismatch by @jesseduffield in #2116
- improve integration test portability by @Ryooooooga in #2124
- chore: remove duplicate word in comments by @Abirdcfly in #2143
- Migrate some more integration tests by @jesseduffield in #2137
- remove deprecated function calls by @xiaoliwang in #2167
- strip NUL bytes instead of replacing with space by @jesseduffield in #2197
- Replace regex for retrieving latest version by @TomBaxter in #2199
- use boxlayout from lazycore by @jesseduffield in #2210
- Use lazycore utils: Clamp and GetLazyRootDirectory by @gusandrioli in #2223
- add devcontainer folder by @jesseduffield in #2266
- disable underscores in vscode by @jesseduffield in #2269
- use tempdir in tests to prevent polluting worktree by @jesseduffield in
  #2271
- stop switching focus to commits view when resetting by @jesseduffield in
  #2272
- added gitVersion to version flag by @nitinmewar in #2265
- Merge loaders package into git_commands package by @sudoburt in #2261

v0.35
Features
- Nerd fonts now supported! (@Ryooooooga)
- Scrollbars! (non-interactive but cool nonetheless)
- Diff hunks can now be edited directly (via a subprocess) (@Ryooooooga)
- You can open lazygit to the panel that you care about e.g. run lazygit log
  to open lazygit to the commits panel. (@HiromasaNojima)
- Most menus now have their own keybindings for each menu item, which should
  speed things up for power users.
- You can now easily set/unset the upstream of a branch (@mark2185)
- You can now select to stash exclusively unstaged/staged files (@mark2185)
- Improved update flow (@moha-gh)
- Fixed issue where we duplicated line breaks when parsing a commit message
  Don't duplicate line breaks when retrieving commit message (@moha-gh)
- Some hard-to-reverse actions now have confirmation popups given it's easy to
  accidentally press the wrong key.
- 'Gone' branches are now marked as such
- More commit attributes can be copied with the 'y' key (@mark2185)
- Custom commit author colours can now be specified with regular names (e.g.
  'red') instead of only hex codes. (@Ryooooooga)
- Commit author can now be set to another author or reset to the current git
  user (thanks @JensPfeifle)
- Auto-refresh of files can be disabled with the git.autoRefresh config option
  (@moha-gh)
- We now (again) honour push.default config value. In general we want to err
  on the side of having git commands do the same thing that would happen if
  you ran them directly from the terminal.
- Files can now be opened from the merge conflicts panel (thanks @Ryooooooga)
- You can now configure to always show the unstaged and staged changes panels,
  regardless of whether the selected file has both unstaged and staged changes.
  This can be done via gui.splitDiff: 'always' (@HiromasaNojima)
- Commit time format can now be customised via the gui.timeFormat config key
  (@Ryooooooga)
- We now record the current directory on switch instead of exit (@davdroman)
- We now support Bitbucket server PRs (thanks @TheBlob42)
- Bottom line (containing some keybindings help) can now be hidden via
  gui.showBottomLine: false in your config.
- You can now show the whole git graph in the commits panel by default via
  git.log.showWholeGitGraph: true
- Some UI tweaks.

Bug fixes
- Various fixes to bugs relating to double-width characters (@Ryooooooga)
- Typo fixes (@casswedson)
- LOTS of other bug fixes (thanks to the glorious @Ryooooooga and @mark2185)

Translation updates:
- Chinese translated updated (@Crystal-RainSlide)
- Japanese translation added (@Ryooooooga)
- Korean translation added (@Shin-JaeHeon)

HUGE thankyou to all the contributors who've helped bring about this release.
As you can see @mark2185 and @Ryooooooga are behind many of the the changes so
a special thankyou to the both of you!

Maintenance stuff:
We've now on go1.18 meaning we can use generics. The lo package is our main
generics helper package. I've also rolled my own, called 'generics', but I'll
probably end up just committing to using lo only.

Integration tests in CI are now run in parallel, and windows builds are now
properly cached, so CI runs much faster and you'll sooner know if you've broken
a test.

Note from maintainer:

I'm working on some tricky features like the ability to filter the contents of
a list panel, some of which I've recorded on youtube. As part of that work I've
had to make a detour to do some yak shaving and refactoring (which is happening
in #2023)

I've also made a video showing how to add a basic feature to Lazygit for
aspiring contributors. If you would like to see similar videos/docs covering
other topics to make life easier for new/existing contributors, lemme know!

At some point I want to take time off work to go full-time on Lazygit (e.g. for
a few months). If you have any ideas how I could raise money to do that, let me
know! And of course for all those currently sponsoring, thankyou so much, it's
a big motivator for me finding the time to work on this project.

Some more rambling thoughts:

The integration test suite has some good coverage but the mechanism behind it
(recording a Lazygit session and having the test replay that session) is hard
to maintain. I want to switch to having integration tests be built by calling
a bunch of commands in sequence, similar to Cypress if anybody's used that.

I was holding off this release for the sake of a better in-app release notes
feature but that can wait for a future release.

v0.34
Features:
- You can now customise the colour of unstaged files via the
  gui.theme.unstagedChangesColor config key (thanks @snorrwe )
- Editing a file will now open your editor at the currently selected line for
  most major editors (thanks @mark2185 )
- Support for opening Azure DevOps repos (thanks @tiwood )
- You can now skip the confirmation prompt after running a subprocess with the
  promptToReturnFromSubprocess config key (thanks @rambhosale )

Bug Fixes:
- Fixed issue where mouse handling was not properly restored after leaving the
  application (thanks @tmatz )
- Fixed bug where files could not be edited at particular lines for certain
  editors (thanks @fsmiamoto )

Other:
- Some cleaning up of the docs (thanks @moha-gh )
- NL translation fixups (thanks @Alpakash )
- Fixed an issue with the cheatsheet generator that caused the user's own
  language to appear in each output translation file.

Note from maintainer:

I'm going to merge in quite a large refactor PR to the master branch. The
refactor is about 90% done but the 10% might take some time and it's tricky to
have to re-implement all PRs from contributors to the new branch. At any rate
this refactor should make the code easier to work with compared to the previous
god struct (the Gui struct) that was being used for everything. The new
structure no doubt will have its own flaws that I'll need to work through over
time. I've been using the refactor PR myself for a while and haven't run into
any bugs, and I've added some more integration tests to capture more of the
expected behaviour. Don't hesitate to raise an issue for any bug you find.

v0.33
Features:
- Git bisect support (press 'b' on a commit to start the process)
- On windows we now set the window title to the name of the opened repo
  (thanks @birgersp)
- You can now set custom branch colours in your config (see here)
  (thanks @matt-cles )

Bug Fixes:
- We now always specify the upstream when pushing/pulling so you'll never
  accidentally push to an unexpected remote branch
- Fixed bug that prevented quitting with a confirm popup
- Fixed issue with scrolling in the merge panel
- We no longer show the branch graph when filtering by path because it didn't
  make sense to show it
- Fixed a bug where a custom git hosting service wasn't given precedent over a
  default hosting service (thanks @bin101)
- Added Mouse support for crostini (thanks @tmatz)
- Proper URL encoding for pull request URLs (thanks @MikaelElkiaer)

Other:
- Performance improvements
- We now ask for confirmation upon reverting a commit (thanks @glendsoza)
- Resetting a submodule can now only be done from within the files panel
- Documentation updates (thanks @jm33-m0, @mark2185)
- Chinese translation update (thanks @bnoctis)

For Contributors:
You can now run an integration test in 'sandbox' mode meaning you get to
control what happens during the session but no snapshot is saved. It's a
convenient way of testing a feature with a given pre-built example repo.
I've replaced the contributor code of conduct with a very stripped down
version that basically says 'be nice'. The original was a little intense and
didn't reflect the natural level of charity and positivity in the issues board.
If people have an issue with that let me know.
I've added some extra sections to the contributing guide including:
        how the codebase (intentionally) diverges from some Go idioms
        i18n
        testing
        debugging

Note from maintainer:

Still working on this gui package refactor. I expect the health of the codebase
to increase quite a bit with the change. I regret not trying to slice it up
into smaller pieces but hopefully I'll have learnt my lesson next time.
We might need to rethink how integration tests are done. Right now it's a
direct recording which can make the tests difficult to update.

v0.32.2
Changelog
- 8ca71ee add git bisect run script
- d3a3c8d add integration test for merge conflicts resolved externally
- ee622d0 add integration test for staging view
- 2691477 allow sandbox mode with integration tests
- 1c84f77 always specify upstream when pushing/pulling
- 7a690f9 appease CI
- 8d8bdb9 avoid deadlock in merge panel
- ae98797 do not show branch graph when in filtering mode
- befa356 fix bug which prevented quitting with confirm
- 0092c9d fix bug with subprocess
- 9903595 fix merge scroll bug
- 595aca2 make integration test pass
- dafac52 see if this fixes CI linting
- cdcfeb3 stop refreshing the screen so much

v0.32.1
Changelog
- f5b9ad8 add complex custom command integration test
- 8263d15 fix issue where custom command would not open a menu

v0.32
Features:
- You can now press 'o' on a commit to open it in your browser
- We now retain the commit message you typed in the event that the commit
  command failed (thanks @jakobkogler)
- You can now reword old commits from within lazygit
- You can now create annotated tags (press 'n' in the tags panel) (thanks
  @fsmiamoto)
- You can now add a signoff to your commits via the git.commit.signoff key in
  your config (thanks @sagikazarmark)
- You can now specify a single colour to apply to all commit authors (thanks
  @Cokile)

Bug Fixes:
- Better highlighting of lines for various terminals (thanks @Kavantix)
- Fixed bug where we couldn't go to the bottom of the reflog panel (thanks
  @fsmiamoto)
- Better support for --path arg (thanks @TicClick)
- Fixed a bug where you couldn't create a pull request when the repo's url
  scheme was ssh (thanks @kawaemon)
- We now make fewer assumptions that your main remote is named 'origin'
  (thanks @mbrgm)
- Fixed some copy inconsistencies (thanks @justinsb)
- Fixed bug where branches would appear twice in the branches panel
  (@escrafford)

Other:
- Added installation instructions for funtoo linux (thanks @invakid404)

For Contributors:
CI now checks that the cheatsheet files are up-to-date. If it hasn't you'll
need to run go run scripts/cheatsheet/main.go generate

Note from maintainer:

The codebase has grown quite a bit since its inception and it's in need of some
refactoring to make future growth easier. I've wrapped up some refactoring to
the internal commands package so that we've got better namespacing and
separation of concerns, and I'll be shifting my gaze to the GUI package next.
Once I'm happy with the structure of the code I'll start producing some
documentation so that new contributors can easily get started on features and
bug fixes. Many changes to the app are trivial to make but it can take a new
contributor time to work out where everything lives in the code.

(pin)

doc: Updated devel/difftastic to 0.45.0

(pin)

devel/difftastic: update to 0.45.0

0.45 (released 3rd March 2023)
Diffing
- Racket and Newick are now treated as lisps for the purposes for parenthesis
  heuristics.

Parsing
- Fixed an issue where parse errors were undercounted, particularly in YAML
  files.
- Improved parsing for Makefiles.

(pin)

Pullups #6729 #6732 #6733 #6734 #6737 #6738 #6739

(spz)

cad/kicad: Require gcc 9

While <charconv> works with 8, std::filesystem doesn't, and does build
with 9.

(gdt)

Pullup ticket #6738 - requested by taca
www/ruby-rack: security update

Revisions pulled up:
pkgsrc/www/ruby-rack/Makefile by patch
pkgsrc/www/ruby-rack/distinfo by patch

-------------------------------------------------------------------

  Log Message:
  www/ruby-rack2: update to 2.2.6.2

  2.2.6 (2022-01-17)

  * Extend Rack::MethodOverride to handle QueryParser::ParamsTooDeepError
    error.  (#2011, @byroot)

  2.2.6.1 (2022-01-17)

  * [CVE-2022-44571] Fix ReDoS vulnerability in multipart parser
  * [CVE-2022-44570] Fix ReDoS in Rack::Utils.get_byte_ranges
  * [CVE-2022-44572] Forbid control characters in attributes (also ReDoS)

  2.2.6.2 (2022-01-17)

  * [CVE-2022-44570] Fix ReDoS in Rack::Utils.get_byte_ranges

(spz)

Pullup ticket #6734 - requested by taca
databases/ruby-activerecord70: security update
devel/ruby-activejob70: distinfo update
devel/ruby-activemodel70: distinfo update
devel/ruby-activestorage70: distinfo update
devel/ruby-activesupport70: security update
devel/ruby-railties70: distinfo update
mail/ruby-actionmailbox70: distinfo update
mail/ruby-actionmailer70: distinfo update
textproc/ruby-actiontext70: distinfo update
www/ruby-actioncable70: distinfo update
www/ruby-actionpack70: security update
www/ruby-actionview70: distinfo update
www/ruby-rails70: distinfo update

Revisions pulled up:
- databases/ruby-activerecord70/distinfo                        1.9-1.10
- devel/ruby-activejob70/distinfo                              1.9-1.10
- devel/ruby-activemodel70/distinfo                            1.9-1.10
- devel/ruby-activestorage70/distinfo                          1.9-1.10
- devel/ruby-activesupport70/distinfo                          1.9-1.10
- devel/ruby-railties70/distinfo                                1.9-1.10
- lang/ruby/rails.mk                                            1.140,1.142
- mail/ruby-actionmailbox70/distinfo                            1.9-1.10
- mail/ruby-actionmailer70/distinfo                            1.9-1.10
- textproc/ruby-actiontext70/distinfo                          1.9-1.10
- www/ruby-actioncable70/distinfo                              1.9-1.10
- www/ruby-actionpack70/distinfo                                1.9-1.10
- www/ruby-actionview70/distinfo                                1.9-1.10
- www/ruby-rails70/distinfo                                    1.9-1.10

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: taca
  Date: Thu Jan 19 14:34:27 UTC 2023

  Modified Files:
  pkgsrc/databases/ruby-activerecord70: distinfo
  pkgsrc/devel/ruby-activejob70: distinfo
  pkgsrc/devel/ruby-activemodel70: distinfo
  pkgsrc/devel/ruby-activestorage70: distinfo
  pkgsrc/devel/ruby-activesupport70: distinfo
  pkgsrc/devel/ruby-railties70: distinfo
  pkgsrc/lang/ruby: rails.mk
  pkgsrc/mail/ruby-actionmailbox70: distinfo
  pkgsrc/mail/ruby-actionmailer70: distinfo
  pkgsrc/textproc/ruby-actiontext70: distinfo
  pkgsrc/www/ruby-actioncable70: distinfo
  pkgsrc/www/ruby-actionpack70: Makefile distinfo
  pkgsrc/www/ruby-actionview70: distinfo
  pkgsrc/www/ruby-rails70: distinfo

  Log Message:
  www/ruby-rails70: update to 7.0.4.1

  Rails 7.0.4.1 (2023-01-17)

  devel/ruby-activesupport70

  * Avoid regex backtracking in Inflector.underscore

    [CVE-2023-22796]

  www/ruby-actionpack70

  * Fix sec issue with _url_host_allowed?

    Disallow certain strings from `_url_host_allowed?` to avoid a redirect
    to malicious sites.

    [CVE-2023-22797]

  * Avoid regex backtracking on If-None-Match header

    [CVE-2023-22795]

  * Use string#split instead of regex for domain parts

    [CVE-2023-22792]

  databases/ruby-activerecord70

  * Make sanitize_as_sql_comment more strict

    Though this method was likely never meant to take user input, it was
    attempting sanitization. That sanitization could be bypassed with
    carefully crafted input.

    This commit makes the sanitization more robust by replacing any
    occurrances of "/*" or "*/" with "/ *" or "* /". It also performs a
    first pass to remove one surrounding comment to avoid compatibility
    issues for users relying on the existing removal.

    This also clarifies in the documentation of annotate that it should not
    be provided user input.

    [CVE-2023-22794]

  * Added integer width check to PostgreSQL::Quoting

    Given a value outside the range for a 64bit signed integer type
    PostgreSQL will treat the column type as numeric. Comparing
    integer values against numeric values can result in a slow
    sequential scan.

    This behavior is configurable via
    ActiveRecord::Base.raise_int_wider_than_64bit which defaults to true.

    [CVE-2022-44566]

  To generate a diff of this commit:
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/databases/ruby-activerecord70/distinfo
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/devel/ruby-activejob70/distinfo
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/devel/ruby-activemodel70/distinfo
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/devel/ruby-activestorage70/distinfo
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/devel/ruby-activesupport70/distinfo
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/devel/ruby-railties70/distinfo
  cvs rdiff -u -r1.139 -r1.140 pkgsrc/lang/ruby/rails.mk
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/mail/ruby-actionmailbox70/distinfo
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/mail/ruby-actionmailer70/distinfo
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/textproc/ruby-actiontext70/distinfo
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/www/ruby-actioncable70/distinfo
  cvs rdiff -u -r1.5 -r1.6 pkgsrc/www/ruby-actionpack70/Makefile
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/www/ruby-actionpack70/distinfo
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/www/ruby-actionview70/distinfo
  cvs rdiff -u -r1.8 -r1.9 pkgsrc/www/ruby-rails70/distinfo

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: taca
  Date: Wed Jan 25 13:31:17 UTC 2023

  Modified Files:
  pkgsrc/databases/ruby-activerecord70: distinfo
  pkgsrc/devel/ruby-activejob70: distinfo
  pkgsrc/devel/ruby-activemodel70: distinfo
  pkgsrc/devel/ruby-activestorage70: distinfo
  pkgsrc/devel/ruby-activesupport70: distinfo
  pkgsrc/devel/ruby-railties70: distinfo
  pkgsrc/lang/ruby: rails.mk
  pkgsrc/mail/ruby-actionmailbox70: distinfo
  pkgsrc/mail/ruby-actionmailer70: distinfo
  pkgsrc/textproc/ruby-actiontext70: distinfo
  pkgsrc/www/ruby-actioncable70: distinfo
  pkgsrc/www/ruby-actionpack70: distinfo
  pkgsrc/www/ruby-actionview70: distinfo
  pkgsrc/www/ruby-rails70: distinfo

  Log Message:
  www/ruby-rails70: update to 7.0.4.2

  Rails 7.0.4.2 (2023-01-24)

  *  Fix `domain: :all` for two letter TLD

      This fixes a compatibility issue introduced in our previous security
      release when using `domain: :all` with a two letter but single level top
      level domain domain (like `.ca`, rather than `.co.uk`).

  To generate a diff of this commit:
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/databases/ruby-activerecord70/distinfo
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/devel/ruby-activejob70/distinfo
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/devel/ruby-activemodel70/distinfo
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/devel/ruby-activestorage70/distinfo
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/devel/ruby-activesupport70/distinfo
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/devel/ruby-railties70/distinfo
  cvs rdiff -u -r1.141 -r1.142 pkgsrc/lang/ruby/rails.mk
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/mail/ruby-actionmailbox70/distinfo
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/mail/ruby-actionmailer70/distinfo
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/textproc/ruby-actiontext70/distinfo
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/www/ruby-actioncable70/distinfo
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/www/ruby-actionpack70/distinfo
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/www/ruby-actionview70/distinfo
  cvs rdiff -u -r1.9 -r1.10 pkgsrc/www/ruby-rails70/distinfo

(spz)

Pullup ticket #6733 - requested by taca
databases/ruby-activerecord61: security update
devel/ruby-activejob61: distinfo update
devel/ruby-activemodel61: distinfo update
devel/ruby-activestorage61: distinfo update
devel/ruby-activesupport61: security update
devel/ruby-railties61: distinfo update
mail/ruby-actionmailbox61: distinfo update
mail/ruby-actionmailer61: distinfo update
textproc/ruby-actiontext61: sdistinfo update
www/ruby-actioncable61: distinfo update
www/ruby-actionpack61: security update
www/ruby-actionview61: distinfo update
www/ruby-rails61: distinfo update

Revisions pulled up:
- databases/ruby-activerecord61/distinfo                        1.16-1.17
- devel/ruby-activejob61/distinfo                              1.16-1.17
- devel/ruby-activemodel61/distinfo                            1.16-1.17
- devel/ruby-activestorage61/distinfo                          1.16-1.17
- devel/ruby-activesupport61/distinfo                          1.16-1.17
- devel/ruby-railties61/distinfo                                1.16-1.17
- lang/ruby/rails.mk                                            1.139,1.141
- mail/ruby-actionmailbox61/distinfo                            1.16-1.17
- mail/ruby-actionmailer61/distinfo                            1.16-1.17
- textproc/ruby-actiontext61/distinfo                          1.16-1.17
- www/ruby-actioncable61/distinfo                              1.16-1.17
- www/ruby-actionpack61/Makefile                                1.4
- www/ruby-actionpack61/distinfo                                1.16-1.17
- www/ruby-actionview61/distinfo                                1.16-1.17
- www/ruby-rails61/distinfo                                    1.16-1.17

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: taca
  Date: Thu Jan 19 14:31:11 UTC 2023

  Modified Files:
  pkgsrc/databases/ruby-activerecord61: distinfo
  pkgsrc/devel/ruby-activejob61: distinfo
  pkgsrc/devel/ruby-activemodel61: distinfo
  pkgsrc/devel/ruby-activestorage61: distinfo
  pkgsrc/devel/ruby-activesupport61: distinfo
  pkgsrc/devel/ruby-railties61: distinfo
  pkgsrc/lang/ruby: rails.mk
  pkgsrc/mail/ruby-actionmailbox61: distinfo
  pkgsrc/mail/ruby-actionmailer61: distinfo
  pkgsrc/textproc/ruby-actiontext61: distinfo
  pkgsrc/www/ruby-actioncable61: distinfo
  pkgsrc/www/ruby-actionpack61: Makefile distinfo
  pkgsrc/www/ruby-actionview61: distinfo
  pkgsrc/www/ruby-rails61: distinfo

  Log Message:
  www/ruby-rails61: update to 6.1.7.1

  Rails 6.1.7.1 (2023-01-17)

  devel/ruby-activesupport61

  * Avoid regex backtracking in Inflector.underscore

      [CVE-2023-22796]

  www/ruby-actionpack61

  * Avoid regex backtracking on If-None-Match header

    [CVE-2023-22795]

  * Use string#split instead of regex for domain parts

    [CVE-2023-22792]

  databases/ruby-activerecord61

  * Make sanitize_as_sql_comment more strict

    Though this method was likely never meant to take user input, it was
    attempting sanitization. That sanitization could be bypassed with
    carefully crafted input.

    This commit makes the sanitization more robust by replacing any
    occurrances of "/*" or "*/" with "/ *" or "* /". It also performs a
    first pass to remove one surrounding comment to avoid compatibility
    issues for users relying on the existing removal.

    This also clarifies in the documentation of annotate that it should not
    be provided user input.

    [CVE-2023-22794]

  * Added integer width check to PostgreSQL::Quoting

    Given a value outside the range for a 64bit signed integer type
    PostgreSQL will treat the column type as numeric. Comparing
    integer values against numeric values can result in a slow
    sequential scan.

    This behavior is configurable via
    ActiveRecord::Base.raise_int_wider_than_64bit which defaults to true.

    [CVE-2022-44566]

  To generate a diff of this commit:
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/databases/ruby-activerecord61/distinfo
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/devel/ruby-activejob61/distinfo
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/devel/ruby-activemodel61/distinfo
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/devel/ruby-activestorage61/distinfo
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/devel/ruby-activesupport61/distinfo
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/devel/ruby-railties61/distinfo
  cvs rdiff -u -r1.138 -r1.139 pkgsrc/lang/ruby/rails.mk
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/mail/ruby-actionmailbox61/distinfo
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/mail/ruby-actionmailer61/distinfo
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/textproc/ruby-actiontext61/distinfo
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/www/ruby-actioncable61/distinfo
  cvs rdiff -u -r1.3 -r1.4 pkgsrc/www/ruby-actionpack61/Makefile
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/www/ruby-actionpack61/distinfo
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/www/ruby-actionview61/distinfo
  cvs rdiff -u -r1.15 -r1.16 pkgsrc/www/ruby-rails61/distinfo

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: taca
  Date: Wed Jan 25 13:27:10 UTC 2023

  Modified Files:
  pkgsrc/databases/ruby-activerecord61: distinfo
  pkgsrc/devel/ruby-activejob61: distinfo
  pkgsrc/devel/ruby-activemodel61: distinfo
  pkgsrc/devel/ruby-activestorage61: distinfo
  pkgsrc/devel/ruby-activesupport61: distinfo
  pkgsrc/devel/ruby-railties61: distinfo
  pkgsrc/lang/ruby: rails.mk
  pkgsrc/mail/ruby-actionmailbox61: distinfo
  pkgsrc/mail/ruby-actionmailer61: distinfo
  pkgsrc/textproc/ruby-actiontext61: distinfo
  pkgsrc/www/ruby-actioncable61: distinfo
  pkgsrc/www/ruby-actionpack61: distinfo
  pkgsrc/www/ruby-actionview61: distinfo
  pkgsrc/www/ruby-rails61: distinfo

  Log Message:
  www/ruby-rails61: update to 6.1.7.2

  Rails 6.1.7.2 (2023-01-24)

  www/ruby-actionpack61

  *  Fix `domain: :all` for two letter TLD

      This fixes a compatibility issue introduced in our previous security
      release when using `domain: :all` with a two letter but single level top
      level domain domain (like `.ca`, rather than `.co.uk`).

  To generate a diff of this commit:
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/databases/ruby-activerecord61/distinfo
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-activejob61/distinfo
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-activemodel61/distinfo
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-activestorage61/distinfo
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-activesupport61/distinfo
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/devel/ruby-railties61/distinfo
  cvs rdiff -u -r1.140 -r1.141 pkgsrc/lang/ruby/rails.mk
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/mail/ruby-actionmailbox61/distinfo
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/mail/ruby-actionmailer61/distinfo
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/textproc/ruby-actiontext61/distinfo
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/ruby-actioncable61/distinfo
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/ruby-actionpack61/distinfo
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/ruby-actionview61/distinfo
  cvs rdiff -u -r1.16 -r1.17 pkgsrc/www/ruby-rails61/distinfo

(spz)

Pullup ticket #6732 - requested by taca
databases/ruby-activerecord60: security update
devel/ruby-activejob60: distinfo update
devel/ruby-activemodel60: distinfo update
devel/ruby-activestorage60: distinfo update
devel/ruby-activesupport60: distinfo update
devel/ruby-railties60: distinfo update
mail/ruby-actionmailbox60: distinfo update
mail/ruby-actionmailer60: distinfo update
textproc/ruby-actiontext60: distinfo update
www/ruby-actioncable60: distinfo update
www/ruby-actionpack60: distinfo update
www/ruby-actionpack60: distinfo update
www/ruby-actionview60: distinfo update
www/ruby-rails60: distinfo update

Revisions pulled up:
- databases/ruby-activerecord60/distinfo                        1.21
- devel/ruby-activejob60/distinfo                              1.21
- devel/ruby-activemodel60/distinfo                            1.21
- devel/ruby-activestorage60/distinfo                          1.21
- devel/ruby-activesupport60/distinfo                          1.21
- devel/ruby-railties60/distinfo                                1.21
- lang/ruby/rails.mk                                            1.138
- mail/ruby-actionmailbox60/distinfo                            1.21
- mail/ruby-actionmailer60/distinfo                            1.21
- textproc/ruby-actiontext60/distinfo                          1.21
- www/ruby-actioncable60/distinfo                              1.21
- www/ruby-actionpack60/Makefile                                1.5
- www/ruby-actionpack60/distinfo                                1.21
- www/ruby-actionview60/distinfo                                1.21
- www/ruby-rails60/distinfo                                    1.21

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: taca
  Date: Thu Jan 19 14:27:26 UTC 2023

  Modified Files:
  pkgsrc/databases/ruby-activerecord60: distinfo
  pkgsrc/devel/ruby-activejob60: distinfo
  pkgsrc/devel/ruby-activemodel60: distinfo
  pkgsrc/devel/ruby-activestorage60: distinfo
  pkgsrc/devel/ruby-activesupport60: distinfo
  pkgsrc/devel/ruby-railties60: distinfo
  pkgsrc/lang/ruby: rails.mk
  pkgsrc/mail/ruby-actionmailbox60: distinfo
  pkgsrc/mail/ruby-actionmailer60: distinfo
  pkgsrc/textproc/ruby-actiontext60: distinfo
  pkgsrc/www/ruby-actioncable60: distinfo
  pkgsrc/www/ruby-actionpack60: Makefile distinfo
  pkgsrc/www/ruby-actionview60: distinfo
  pkgsrc/www/ruby-rails60: distinfo

  Log Message:
  www/ruby-rails60: update to 6.0.6.1

  Only databases/ruby-activerecord61 has updated.

  Rails 6.0.6.1 (2023-01-17)

  * Make `sanitize_as_sql_comment` more strict

    Though this method was likely never meant to take user input, it was
    attempting sanitization. That sanitization could be bypassed with
    carefully crafted input.

    This commit makes the sanitization more robust by replacing any
    occurrances of "/*" or "*/" with "/ *" or "* /". It also performs a
    first pass to remove one surrounding comment to avoid compatibility
    issues for users relying on the existing removal.

    This also clarifies in the documentation of annotate that it should not
    be provided user input.

    [CVE-2023-22794]

  To generate a diff of this commit:
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/databases/ruby-activerecord60/distinfo
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/devel/ruby-activejob60/distinfo
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/devel/ruby-activemodel60/distinfo
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/devel/ruby-activestorage60/distinfo
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/devel/ruby-activesupport60/distinfo
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/devel/ruby-railties60/distinfo
  cvs rdiff -u -r1.137 -r1.138 pkgsrc/lang/ruby/rails.mk
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/mail/ruby-actionmailbox60/distinfo
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/mail/ruby-actionmailer60/distinfo
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/textproc/ruby-actiontext60/distinfo
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/ruby-actioncable60/distinfo
  cvs rdiff -u -r1.4 -r1.5 pkgsrc/www/ruby-actionpack60/Makefile
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/ruby-actionpack60/distinfo
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/ruby-actionview60/distinfo
  cvs rdiff -u -r1.20 -r1.21 pkgsrc/www/ruby-rails60/distinfo

(spz)

Pullup ticket #6729 - requested by taca
devel/ruby-globalid: security update

Revisions pulled up:
- devel/ruby-globalid/Makefile                                  1.14
- devel/ruby-globalid/distinfo                                  1.8

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: taca
  Date: Thu Jan 19 13:58:19 UTC 2023

  Modified Files:
  pkgsrc/devel/ruby-globalid: Makefile distinfo

  Log Message:
  devel/ruby-globalid: update to 1.0.1

  1.0.1 (2023-01-17)

  Possible ReDoS based DoS vulnerability in GlobalID

  There is a ReDoS based DoS vulnerability in the GlobalID gem.  This
  vulnerability has been assigned the CVE identifier CVE-2023-22799.

  Versions Affected: >= 0.2.1
  Not affected: NOTAFFECTED
  Fixed Versions: 1.0.1

  Impact

  There is a possible DoS vulnerability in the model name parsing section of
  the GlobalID gem.  Carefully crafted input can cause the regular expression
  engine to take an unexpected amount of time.  All users running an affected
  release should either upgrade or use one of the workarounds immediately.

  Releases

  The FIXED releases are available at the normal locations.

  Workarounds

  There are no feasible workarounds for this issue.

  Credits

  Thank you ooooooo_k for reporting this!

  To generate a diff of this commit:
  cvs rdiff -u -r1.13 -r1.14 pkgsrc/devel/ruby-globalid/Makefile
  cvs rdiff -u -r1.7 -r1.8 pkgsrc/devel/ruby-globalid/distinfo

(spz)