(devel/R-cli) Updated 3.5.0 to 3.6.0

# cli 3.6.0

* The progressr progress handler now reports progress correctly
  (@HenrikBengtsson, #558).

* New `hash_*sha1()` functions to calculate the SHA-1 hash of strings,
  objects, files.

* cli now shows progress bars after one second by default, if they
  are less than half way at the point. (Or after two seconds,
  unconditionally, as before.) See the the `cli.progress_show_after`
  option in `?cli-config` for details (#542).

* `format_inline()` now has a new argument `keep_whitespace`, and it keeps
  whitespace, including newline and form feed characters by default.

(mef)

doc: Updated databases/R-dbplyr to 2.3.0

(mef)

(databases/R-dbplyr) Updated 2.2.1 to 2.3.0

# dbplyr 2.3.0

* Compatibility with purrr 1.0.0 (@mgirlich, #1085).

## New features

* `stringr::str_like()` (new in 1.5.0) is translated to the closest `LIKE`
  equivalent (@rjpat, #509)

* In preparation for dplyr 1.1.0:

  * The `.by` argument is supported (@mgirlich, #1051).
  * Passing `...` to `across()` is deprecated because the evaluation timing
    of `...` is ambiguous. Now instead of (e.g.)
    `across(a:b, mean, na.rm = TRUE)` use
  * `pick()` is translated (@mgirlich, #1044).
  * `case_match()` is translated (@mgirlich, #1020).
  * `case_when()` now supports the `.default` argument (@mgirlich, #1017).

* Variables that aren't found in either the data or in the environment now
  produce an error (@mgirlich, #907).

## SQL optimisation

* dbplyr now produces fewer subqueries resulting in shorter, more readable, and,
  in some cases, faster SQL. The following combination of verbs now avoids a
  subquery if possible:

  * `*_join()` + `select()` (@mgirlich, #876).
  * `select()` + `*_join()` (@mgirlich, #875).
  * `mutate()` + `filter()` and `filter()` + `filter()` (@mgirlich, #792).
  * `distinct()` (@mgirlich, #880).
  * `summarise()` + `filter()` now translates to `HAVING` (@mgirlich, #877).
  * `left/inner_join()` + `left/inner_join()` (@mgirlich, #865).

* dbplyr now uses `SELECT *` after a join instead of explicitly selecting every
  column, where possible (@mgirlich, #898).

* Joins only use the table aliases ("LHS" and "RHS") if necessary (@mgirlich).

* When using common table expressions, the results of joins and set operations
  are now reused (@mgirlich, #978).

## Improved error messages

* Many errors have been improved and now show the function where the error
  happened instead of a helper function (@mgirlich, #907).

* Errors produced by the database, e.g. in `collect()` or `rows_*()`, now show
  the verb where the error happened (@mgirlich).

* `window_order()` now produces a better error message when applied to a data
  frame (@mgirlich, #947).

* Using a named `across()` now gives a clear error message (@mgirlich, #761).

## Minor improvements and bug fixes

* Keyword highlighting can now be customised via the option `dbplyr_highlight`.
  Turn it off via `options(dbplyr_highlight = FALSE)` or pass a custom ansi
  style, e.g. `options(dbplyr_highlight = cli::combine_ansi_styles("bold", "cyan"))`
  (@mgirlich, #974).

* The rank functions (`row_number()`, `min_rank()`, `rank()`, `dense_rank()`,
  `percent_rank()`, and `cume_dist()`) now give missing values the rank NA to
  match the behaviour of dplyr (@mgirlich, #991).

* `NA`s in `blob()`s are correctly translated to `NULL` (#983).

* `copy_inline()` gains a `types` argument to specify the SQL column types
  (@mgirlich, #963).

* `cur_column()` is now supported (@mgirlich, #951).

* `distinct()` returns columns ordered the way you request, not the same
  as the input data (@mgirlich).

* `fill()` can now fill "downup" and "updown" (@mgirlich, #1057), and
  now order by non-numeric columns also in the up direction (@mgirlich, #1057).

* `filter()` now works when using a window function and an external vector
  (#1048).

* `group_by()` + renamed columns works once again (@mgirlich, #928).

* `last()` is correctly translated when no window frame is specified
  (@mgirlich, #1063).

* `setOldClass()` uses a namespace, fixing an installation issue (@mgirlich, #927).

* `sql()` is now translated differently. The `...` are now evaluated locally
  instead of being translated with `translate_sql()` (@mgirlich, #952).

## Backend specific improvements

* HANA:
  * Correctly translates `as.character()` (#1027).
  * `copy_inline()` now works for Hana (#950)

* MySQL:
  * `str_flatten()` uses `collapse = ""` by default (@fh-afrachioni, #993)

* Oracle:
  * `slice_sample()` now works for Oracle (@mgirlich, #986).
  * `copy_inline()` now works for Oracle (#972)

* PostgreSQL:
  * Generates correct literals for Dates (#727).
  * `str_flatten()` uses `collapse = ""` by default (@fh-afrachioni, #993)
  * `rows_*()` use the column types of `x` when auto copying (@mgirlich, #909).

* Redshift:
  * `round()` now respects the `digits` argument (@owenjonesuob, #1033).
  * No longer tries to use named windows anymore (@owenjonesuob, #1035).
  * `copy_inline()` now works for Redshift (#949, thanks to @ejneer for an
    initial implementation).
  * `str_flatten()` uses `collapse = ""` by default (@fh-afrachioni, #993)

*  Snowflake:
  * numeric functions: `all()`, `any()`, `log10()`, `round()`, `cor()`, `cov()`
    and `sd()`.
  * date functions: `day()`, `mday()`, `wday()`, `yday()`, `week()`,
    `isoweek()`, `month()`, `quarter()`, `isoyear()`, `seconds()`, `minutes()`,
    `hours()`, `days()`, `weeks()`, `months()`, `years()` and `floor_date()`.
  * string functions: `grepl()`, `paste()`, `paste0()`, `str_c()`, `str_locate()`,
    `str_detect()`, `str_replace()`, `str_replace_all()`, `str_remove()`,
    `str_remove_all()`, `str_trim()`, `str_squish()` and `str_flatten()`
    (@fh-afrachioni, #860).
  * `str_flatten()` uses `collapse = ""` by default (@fh-afrachioni, #993)

* SQLite:
  * `quantile()` gives a better error saying that it is not supported
    (@mgirlich, #1000).

* SQL server:
  * `as.POSIXct()` now translated correctly (@krlmlr, #1011).
  * `median()` now translated correctly (#1008).
  * `pivot_wider()` works again for MS SQL (@mgirlich, #929).
  * Always use 1 and 0 as literals for logicals (@krlmlr, #934).

* Teradata:
  * Querying works again. Unfortunately, the fix requires every column to
    once again by explicitly selected (@mgirlich, #966).
  * New translations for `as.Date()`, `week()`, `quarter()`, `paste()`,
    `startsWith()`, `row_number()`, `weighted.mean()`, `lead()`, `lag()`, and
    `cumsum()` (@overmar, #913).

(mef)

(devel/R-covr) Remove not updated comments. Test needs R-covr installed (?)

(mef)

doc: Updated security/R-sodium to 1.2.1

(mef)

(security/R-sodium) Updated 1.2.0 to 1.2.1, no explicit NEWS for this release

(mef)

doc: Updated chat/swirc to 3.4.1

(fcambus)

swirc: update to 3.4.1.

## [3.4.1] - 2023-02-18 ##
- **Changed** the requirements for checking if a connection is lost. (The
  change avoids flooding the server with PING commands better.)
- **Improved** algorithms.
- **Optimized** commonly used functions for speed.
- **Replaced** C-style casts in C++.

(fcambus)

doc/TODO: + ncdu-1.18.1, proj-9.1.1, protobuf-22.0.

(wiz)

doc: Updated textproc/ruby-nokogiri to 1.14.2

(tsutsui)

ruby-nokogiri: update to 1.14.2.

Upstream changes:
https://github.com/sparklemotion/nokogiri/releases/tag/v1.14.2

1.14.2 / 2023-02-13

Fixed

  * Calling NodeSet#to_html on an empty node set no longer raises an
    encoding-related exception. This bug was introduced in v1.14.0 while
    fixing #2649. [#2784]

(tsutsui)

doc: Updated graphics/R-ragg to 1.2.5

(mef)

(graphics/R-ragg) Updated 1.2.4 to 1.2.5

# ragg 1.2.5

* Fix a bug when rendering glyphs from a colour font that also provide greyscale
  glyphs (#105)
* Move `sprintf()` to `snprintf()` in the AGG source code to comply with Arm64
  deprecation
* Better guard against bad input (#116)

(mef)

(fonts/R-systemfonts) Two TEST_DEPENDS+= added, but fails yet

(mef)

doc: Updated cad/py-gdstk to 0.9.37

(mef)

(cad/py-gdstk) Updated 0.9.35 to 0.9.37

# Changelog
## 0.9.37 - 2023002-12
### Changed
- Build system changes for lower numpy version requirements

## 0.9.36 - 2023-02-10
### Changed
- Downgrade the zlib version dependency to support manylinux2014
- Minor documentation improvements

(mef)

doc: Updated graphics/R-png to 0.1.8

(mef)

(graphics/R-png) Updated 0.1.7 to 0.1.8

NEWS/Changelog

0.1-8 2022-11-29
    o minor change to avoid protect and registration warnings

(mef)

doc: Updated graphics/R-Cairo to 1.6.0

(mef)

(graphics/R-Cairo) Updated 1.15.2 to 1.6.0

NEWS/Changelog

1.6-0 (2022-07-05)
    o Added text drawing using Harfbuzz and ICU. This significantly
improves the quality of text rendeded by Cairo and enables
support for right-to-left and bi-directional text. (#23)
It also enables the use of ligatures. (#18)
This feature is only enabled if `pkg-config` is present and
knows how to use the `harfbuzz-icu` module.

    o The `family=` argument in text drawing is now honored also for
FreeType and Harfbuzz back-ends.

    o configure gains two arguments: `--with-freetype` and
`--with-harfbuzz`. They both default to `auto` which means
FreeType and Harfbuzz will be used if present. If set to `yes`
then the support is required. If set to `no` (or the
`--without` form is used) then the corresponding support is
explicitly disabled. Note that Harfbuzz requires FreeType.

    o added `--enable-debug` argument to configure which will make
Cairo extremely chatty on the console.

    o By default `cairo-ft` will be ignored on Windows, becasue it
it does not work without associated FontConfig configuration
files and font cache. (#37)
This behavior can be changed by using `-DUSE_CAIRO_FT=1` to
force the use of `cairo-ft` unconditionally.

    o Cairo.capabilities() now also reports two capabilities
which are not format-related: "freetype" and "harfbuzz". The
former indicates whether `cairo-ft` is used and the later
indicates whether the newly introduced Harfbuzz + ICU
bi-directional rendering support is present.

1.5-15 (2022-03-16)
    o CairoX11 (xlib back-end): install an X11 I/O error handler
while processing events such that broken connections are
detected and don't kill R.

    o added the option to license under GPL v3. All original
authors explicitly agreed and included code based on R is
licensed under GPL-2+ allowing this.

1.5-14 (2021-12-21)
    o update configure/autoconf, some dependencies such as libtiff
are now also detected using pkg-config. Tests are now correctly
using CPPFLAGS from R.

    o add entry points for GE version 13 (needed for R 4.1.0)
Note that this is just a port of CRAN NMU which was posted as
version 1.15-12.2 on CRAN, but was not an actual Cairo version.

1.5-13 (2020-04-15)
    o add support for CairoFont(usePUA=FALSE) to support regular
fonts without Adobe Symbol Encoding as symbol fonts in
R 4.0.0 and higher. Setting usePUA=FALSE in older versions of
R will issue a warning.

(mef)

Updated devel/java-jna to 5.13.0

(abs)

Updated devel/java-jna to 5.13.0

Release (5.13.0)
Features

    #1454: Add c.s.j.p.win32.Psapi.QueryWorkingSetEx and associated Types - @crain-32.
    #1459: Add VirtualLock and VirtualUnlock in c.s.j.p.win32.Kernel32 - @matthiasblaesing.
    #1471: Add c.s.j.p.win32.Advapi32Util#isCurrentProcessElevated and associated Types - @dbwiddis.
    #1474: Add c.s.j.p.win32.WbemCli#IWbemClassObject.IWbemQualifierSet, IWbemServices.GetObject, IWbemContext.SetValue and associated methods - @rchateauneu.
    #1482: Add multilingual support of Kernel32Util.formatMessage - @overpathz.
    #1490: Adds support for a custom SymbolProvider in NativeLibrary & Library - @soywiz.
    #1491: Update libffi to v3.4.4 - @matthiasblaesing.
    #1487: Add 'uses' information to OSGI metadata in MANIFEST.MF to improve stability of package resolution - @sratz.

Bug Fixes

    #1452: Fix memory allocation/handling for error message generation in native library code (dispatch.c) - @matthiasblaesing.
    #1460: Fix win32 variant date conversion in DST offest window and with millisecond values - @eranl.
    #1472: Fix incorrect bitmask in c.s.j.Pointer#createConstant(int) - @dbwiddis.
    #1481: Fix NPE in NativeLibrary when unpacking from classpath is disabled - @trespasserw.
    #1489: Fixes typo in OpenGL32Util#wglGetProcAddress, instead of parameter procName the hardcoded value wglEnumGpusNV was used - @soywiz.

Release 5.12.1
Bug Fixes

    #1447: Null-check cleanable in c.s.j.Memory#close - @dbwiddis.

Release 5.12.0
Features

    #1433: Add CFEqual, CFDictionaryRef.ByReference, CFStringRef.ByReference to c.s.j.p.mac.CoreFoundation - @shalupov
    #978: Remove use of finalizers in JNA and improve concurrency for Memory, CallbackReference and NativeLibrary - @matthiasblaesing.
    #1440: Support for LoongArch64 - @Panxuefeng-loongson.
    #1444: Update embedded libffi to 1f14b3fa92d4442a60233e9596ddec428a985e3c and rebuild native libraries - @matthiasblaesing.

Bug Fixes

    #1438: Handle arrays in structures with differing size - @matthiasblaesing.
    #1442: Handle race condition in c.s.j.p.win32.PdhUtil#PdhEnumObjectItems - @dbwiddis.

Important Changes

    Memory#dispose, CallbackReference#dispose and NativeLibrary#dispose were called by the Object#finalize override. These calls were replaced by the use of a cleaner. It is not guaranteed anymore, that dispose is called on subclasses on finalization.

Release 5.11.0
Features

    #1398: Increase c.s.j.p.win32.Sspi#MAX_TOKEN_SIZE on Windows 8/Server 2012 and later - @dbwiddis.
    #1403: Rebuild AIX binaries with libffi 3.4.2 (other architectures were part of 5.10) - @matthiasblaesing.
    #1404: Added Solaris Kstat2 library - @dbwiddis.
    #1416: Add CFDictionaryGetCount to c.s.j.p.mac.CoreFoundation - @shalupov
    #1418: Add CertOpenStore to c.s.j.p.win32.Crypt32 - @shalupov

Bug Fixes

    #1411: Do not throw Win32Exception on success for empty section in Kernel32Util#getPrivateProfileSection - @mkarg.
    #1414: Fix definition of c.s.j.p.unix.X11.XK_Shift_R - @matthiasblaesing.
    #1323. Fix crashes in direct callbacks on mac OS aarch64 - @matthiasblaesing.
    #1422: Load jawt library relative to sun.boot.library.path system on unix OSes - @matthiasblaesing.
    #1427: Rebuild all binaries with fix from #1422 and #1323 - @matthiasblaesing.

Release 5.10.0
Features

    #1377: Add RegLoadAppKey to c.s.j.p.win32.Advapi32 and registryLoadAppKey to c.s.j.p.win32.Advapi32Util - @mfilippov.
    #1093: Add OpenFileMapping to c.s.j.p.win32.Kernel32 - @lmitusinski.
    #1388: Map the arch zarch_64 as reported by SAPJVM8 to s390x - @MBaesken.
    #1381: Update embedded libffi to 3.4.2 - @matthiasblaesing.
    #1393: Update native encoding detection for JEP400 / JDK 18 (file.encoding now defaults to UTF-8) - @matthiasblaesing.

Bug Fixes

    #1378: Handle failure in ffi_closure_alloc - @davecturner.

Release 5.9.0
Features

    #1336: Add HKEY_CURRENT_USER_LOCAL_SETTINGS to c.s.j.p.win32.WinReg - @Dani-Hub.
    #1337: Add REG_NOTIFY_THREAD_AGNOSTIC to c.s.j.p.win32.WinNet and update REG_LEGAL_CHANGE_FILTER - @Dani-Hub.
    #1338: Add RegNotifyChangeKeyValue to c.s.j.p.win32.Advapi32 - @Dani-Hub.
    #1340: Add CM_Get_DevNode_Registry_Property to c.s.j.p.win32.Cfgmgr32 and corresponding util in c.s.j.p.win32.Cfgmgr32Util - @dbwiddis.
    #1352: Add BringWindowToTop to c.s.j.p.win32.User32 - @kahgoh.
    #1354: Add GetParent to c.s.j.p.win32.User32 - @kahgoh.
    #1360: Add CommandLineToArgvW to c.s.j.p.win32.Shell32 and corresponding util in c.s.j.p.win32.Shell32Util - @dbwiddis.
    #1363: Update NUMA_NODE_RELATIONSHIP in c.s.j.p.win32.WinNT to new version of the structure and improve support for future values of c.s.j.p.win32.WinNT.LOGICAL_PROCESSOR_RELATIONSHIP - @dbwiddis.

Bug Fixes

    #1343: c.s.j.p.mac.CoreFoundation.CFStringRef#stringValue buffer needs space for a null byte - @dbwiddis.
    #1351: Define c.s.j.p.unix.size_t.ByReference and fix macOS sysctl size_t * parameters - @dbwiddis.
    #1362: Clear security sensitive data after usage in c.s.j.p.win32.Crypt32Util#cryptProtectData and #cryptUnprotectData - @dmytro-sheyko.
    #1361: Make c.s.j.p.win32.Crypt32Util#cryptProtectData and #cryptUnprotectData properly handle 0-length array as input - @dmytro-sheyko.

Release 5.8.0
Features

    #1313: Normalize RESOURCE_PREFIX for darwin to darwin-$arch and split jnidispatch library per architecture - @matthiasblaesing.
    #1318: Add support for linux-riscv64 - @thentschel.
    #1327: Add partial support for future values of c.s.j.p.win32.WinNT.LOGICAL_PROCESSOR_RELATIONSHIP enum present in Windows Insider builds - @dbwiddis.

Bug Fixes

    #1317: Change the maven coordinates of the JPMS artifacts from classifier jpms to custom artifact ids jna-jpms and jna-platform-jpms - @matthiasblaesing.
    #1322: Handle 0-length domain names in c.s.j.p.win32.Advapi32Util#getAccountBySid - @dbwiddis.
    #1326: Ensure pointers indirected from Memory and pointing into Memory retain originating object - @matthiasblaesing.

Important Changes

    The maven coordinates of the experimental JPMS (java module system) artifacts were moved from using the classifier jpms to custom artifact ids jna-jpms and jna-platform-jpms, without an classifier. The reason for this is, that the platform artifacts depend on the jna artifacts and need to pull in the right variant. This is not possible if the classifier is used.

    RESOURCE_PREFIX for darwin (mac OS) was changed from darwin to darwin-$arch as the fat binaries on mac OS causes various problems: It was reported, that binaries were rejected from the appstore because x86 binaries were found in the application (jnidispatch for mac OS x86) and that builds needed to be special cased so that the native library can be assembled. The latter is also true for JNA.
    While the prefix is changed, the old prefix is still searched as a fallback location, so if only a fat binary is present, it can still be loaded.

Release 5.7.0
Features

    #1301: Improve bindings of the printer notification functions (FindFirstPrinterChangeNotification, FindNextPrinterChangeNotification) in c.s.j.p.w.Winspool - @ianjoneill.
    #1238: Add macOS aarch64 architecture to universal darwin target. Cherry pick libffi/libffi#577. - @fkistner, @Vzor-, @tresf.
    #1264: Update libffi to v3.3; Add Windows aarch64 target. - @tresf.
    #1293: Bind part of Windows Application Recovery and Restart API: RegisterApplicationRestart, UnregisterApplicationRestart and GetApplicationRestartSettings in c.s.j.p.w.Kernel32 - @matthiasblaesing.
    #1217: Add mappings for AIX Perfstat library to c.s.j.p.unix.aix - @dbwiddis.
    #1231: The test suite can now be executed on Windows using either ANSI or UNICODE win32 API by passing -Dw32.ascii=true/false to ant. Previously, UNICODE was always used. - @T-Svensson
    #1237: Experimental: Add artifacts that make jna and jna-platform named modules (provide module-info.class). The new artifacts are named jna-jpms.jar and jna-platform-jpms.jar - @matthiasblaesing.
    #1242: Add CallWindowProc to User32 - @heldplayer.
    #1239: Improve performance of allocation of c.s.j.Memory objects - @joerg1985.
    #1246: Improve performance of c.s.j.Structure#read and c.s.j.Structure#write - @joerg1985.
    #1260: Add mapping for X11 generic events - @lafoletc.
    #1263: Add LowLevelMouseProc - @nordiakt.
    #1265: Add mapping for XQueryExtension - @lafoletc.
    #1299: Add c.s.j.p.win32.IPHlpApi#GetExtendedTcpTable, c.s.j.p.win32.IPHlpApi#GetExtendedUdpTable, and supporting structures. - @dbwiddis.

Bug Fixes

    #1286: Fix bindings of c.s.j.p.win32.DBT - @matthiasblaesing.
    #326: Fix loading library that re-uses pointers for different callbacks - @fpapai.
    #1244: Fix building on GCC 10 - @matthiasblaesing.
    #1252: - Fix bindings of CTL_ENTRY#getRgAttribute, CTL_INFO#getRgCTLEntry, CTL_INFO#getRgExtension, CERT_EXTENSIONS#getRgExtension, CERT_INFO#getRgExtension, CRL_INFO#getRgCRLEntry, CRL_INFO#getRgExtension, CRL_ENTRY#getRgExtension. Add bindings for CertEnumCertificatesInStore, CertEnumCTLsInStore, CertEnumCRLsInStore and CryptQueryObject in c.s.j.p.win32.Crypt32.
    WARNING: The signatures for CTL_INFO#getRgCTLEntry and CTL_INFO#getRgExtension were changed - as the original signatures were obviously wrong and read the wrong attributes, it is not considered an API break - @matthiasblaesing.
    #1275: Fix CFStringRef#stringValue for empty Strings - @dyorgio.
    #1279: Remove DLLCallback import from CallbackReference - @dyorgio.
    #1278: Improve compatibility of c.s.j.p.WindowUtils#getProcessFilePath and fix unittests for windows 32bit intel - @matthiasblaesing.
    #1284: Fix illegal access exceptions, when retrieving options for private library interfaces with an instance field - @fkistner.
    #1300: Deprecate c.s.j.p.win32.WTypes.BSTR String constructor and setValue method, as BSTR allocation should be managed by COM, Automation, and Interop functions - @dbwiddis.

Breaking Changes

    Prebuild native library for darwin x86 (32bit java on mac OS) was removed

Release 5.6.0
Features

    #1160: Make FileUtils#moveToTrash a varargs method - @matthiasblaesing.
    #1167: Add c.s.j.p.win32.Kernel32#GetProcessAffinityMask - @dbwiddis.
    #1168: Add c.s.j.p.win32.Kernel32#SetProcessAffinityMask - @dbwiddis.
    #1169: Wait for process in getLinuxLdPaths - @rdesgroppes.
    #1178: Add c.s.j.p.win32.IPHlpAPI#GetTcpStatistics, c.s.j.p.win32.IPHlpAPI#GetUdpStatistics, c.s.j.p.win32.IPHlpAPI#GetTcpStatisticsEx and c.s.j.p.win32.IPHlpAPI#GetUdpStatisticsEx - @dbwiddis.
    #1182: Add toString to classes extending c.s.j.ptr.ByReference - @dbwiddis.
    #1191: Add c.s.j.p.win32.Advapi32Util#getTokenPrimaryGroup - @dbwiddis.
    #1194: Add GetConsoleScreenBufferInfo, ReadConsoleInput and WriteConsole with associated structures to c.s.j.p.win32.Wincon - @rednoah.
    #1198: Add NetSessionEnum to c.s.j.p.win32.Netapi32 and WTSEnumerateSessions, WTSQuerySessionInformation, and WTSFreeMemory to c.s.j.p.win32.Wtsapi32 - @dbwiddis.
    #1200: Add mappings for libudev to c.s.j.p.linux.Udev - @dbwiddis.
    #1202: Add mappings supporting shared memory including c.s.j.p.unix.LibCAPI types size_t and ssize_t, c.s.j.p.linux.LibC methods munmap(), msync(), and close(), c.s.j.p.unix.LibCUtil mapping mmap() and ftruncate(), and c.s.j.p.linux.LibRT methods shm_open() and shm_unlink() - @dbwiddis.
    #1209: Add mappings for Thread32First and Thread32Next to c.s.j.p.win32.Kernel32 - @dbwiddis.
    #1214: Add mapping for EnumProcesses to c.s.j.p.win32.Psapi and c.s.j.p.win32.PsapiUtil - @T-Svensson.

Bug Fixes

    #1183: c.s.j.p.win32.WinDef.CHARByReference#getValue should only read one byte - @dbwiddis.
    #1184: c.s.j.p.win32.WinDef.ULONGLONG should always be 8 bytes - @dbwiddis.
    #1196: c.s.j.p.win32.WinNT.LARGE_INTEGER needs to populate both union fields - @dbwiddis.
    #1216: Failure loading frameworks on macOS 11 - @dkocher.

Release 5.5.0
Features

    #1131: Add CoreFoundation, IOKit, and DiskArbitration mappings in c.s.j.p.mac. @dbwiddis.
    #1143: c.s.j.p.mac.SystemB now extends c.s.j.p.unix.LibCAPI. @dbwiddis.
    #1147: Add additional OSGi headers for the JNA bundle to support 32bit ARM (hardfloat) @mattixtech.
    #1148/#1096: Include Win32 COM utils (c.s.j.p.win32.com.util and c.s.j.p.win32.com.annotation) in OSGI bundle @dbwiddis.

Bug Fixes

    #1115: Fix signature for c.s.j.p.win32.Kernel32#CreateRemoteThread and bind VirtualAllocEx, VirtualFreeEx, GetExitCodeThread in c.s.j.p.win32.Kernel32 - @apangin, @matthiasblaesing.
    #1127: Windows needs a wide string in c.s.j.p.win32.COM.IShellFolder#ParseDisplayName - @dbwiddis.
    #1128: KEY_ALL_ACCESS value is incorrect in c.s.j.p.win32.WinNT.java - @trevormaggs.
    #1133: Ensure JARs created from the build system don't contain invalid Info-ZIP Unicode Path extra info - @matthiasblaesing.
    #1134: Read correct member of WinBase.SYSTEM_INFO.processorArchitecture union - @dbwiddis.
    #1118: Fix passing unions containing integer and floating point members as parameters by value - @matthiasblaesing.

Release 5.4.0
Features

    #1105: Deprecate c.s.j.p.win32.Advapi32Util.EventLogRecord#getEventId in favor of #getInstanceId - @dbwiddis.
    #1097: Allow .ocx as extension of native libraries on windows - @dmigowski.
    #1108: Improve performance of c.s.j.Structure#newInstance by iteration available constructors instead of exception handling @bjorndarri.

Bug Fixes

    #1095 Align behaviour of com.sun.jna.platform.macXAttrUtil#setXattr and #getXAttr with CLI tool - @jrobhoward, @matthiasblaesing.
    #1091: Check target number to be greater than zero, before calling Structure#toArray in c.s.j.p.win32.Netapi32Util - @trevormagg, @matthiasblaesing.
    #1103: On big endian architecture IntegerType based values are incorrectly decoded when using direct binding - @matthiasblaesing.

Release 5.3.1
Bug Fixes

    #1089: c.s.j.internal.ReflectionUtils accesses java.lang.invoke.MethodType without reflection, causing java.lang.NoClassDefFoundError on android API level < 26 - @matthiasblaesing.
    #1087: Fix wrong calls to Structure#toArray with zero sized arrays - @matthiasblaesing.

Release 5.3.0
Features

    #1058: Add selectable timeout to stopService() and improve timeout handling - @keithharp.
    #1050: Add c.s.j.p.win32.VersionHelpers and supporting functions - @dbwiddis.
    #1061: replace toArray(new T[size]) with toArray(new T[0]) for better performance - @hc-codersatlas.
    #1064: Add c.s.j.p.win32.Kernel32.GetLogicalProcessorInformationEx function, convenience Util method and supporting structures - @dbwiddis.
    #1065: Add c.s.j.p.win32.PowrProf#CallNTPowerInformation and supporting structures - @dbwiddis.
    #1063: Enhance c.s.j.p.win32.User32 and associated classes to support keyboard related functionality. - @kevemueller.
    #1068: c.s.j.p.win32.Advapi32Util.getAccountBySid(String systemName, PSID sid) ignored parameter instead of passing it to the native function - @nirud.
    #813: Support for default methods on interfaces (experimental) - @matthiasblaesing.
    #1073: Support COM setters with multiple parameters using c.s.j.p.win32.COM.util.ProxyObject - @matthiasblaesing.
    #1083: Prevent access to unsupported values in c.s.j.p.win32.COM.WbemcliUtil#enumerateProperties and bind c.s.j.p.win32.COM.Wbemcli.IWbemClassObject.GetNames - @matthiasblaesing.

Bug Fixes

    #1052, #1053: WinXP compatibility for c.s.j.p.win32.PdhUtil - @dbwiddis.
    #1055: Include c.s.j.p.linux in OSGi bundle. - @dbwiddis.
    #1066: On AIX OpenJDK differs from IBM J9 in the mapping of library names. While J9 maps jnidispatch to libjnidispatch.a, OpenJDK maps to libjnidispatch.so, which causes the native library extractor to fail. AIX is now hard-coded to libjnidispatch.a - @matthiasblaesing.
    #1079: Fix maximum structure alignment for Android i386 - @BugsBeGone.

(abs)

doc: Updated devel/diffutils to 3.9

(fcambus)

diffutils: update to 3.9.

* Noteworthy changes in release 3.9 (2023-01-15) [stable]

** Bug fixes

  diff -c and -u no longer output incorrect timezones in headers
  on platforms like Solaris where struct tm lacks tm_gmtoff.
  [bug#51228 introduced in 3.4]

(fcambus)

Updated audio/py-soundfile, devel/py-pydantic

(adam)

py-pydantic: updated to 1.10.5

v1.10.5

* Fix broken parametrized bases handling with `GenericModel`s with complex sets of models
* Invalidate mypy cache if plugin config changes
* Fix `RecursionError` when deep-copying dataclass types wrapped by pydantic
* Fix `X | Y` union syntax breaking `GenericModel`
* Switch coverage badge to show coverage for this branch/release

(adam)

py-soundfile: updated to 0.12.1

0.12.1
Fixes a bug in the library discover on Linux, if no system library and no packaged library could be found.

(adam)

Updated net/iperf3, devel/py-pydispatcher

(adam)

py-pydispatcher: updated to 2.0.7

v2.0.7
PACKAGING Further fixes to pyproject.toml for release

(adam)

iperf3: updated to 3.13

iperf-3.13 2023-02-16
---------------------

* Notable user-visible changes

  * fq-rate, and bidirectional flag were added to the JSON output.

  * Added support for OpenBSD including cleaning up endian handling
    and support for TCP_INFO on systems where it was implemented.

  * Fixed bug in how TOS is set in mapped v4.

  * Corrected documentation, such as updating binary download links and text,
    updating version on iperf3 websites, and fixing an incorrect error message.

  * Fixed crash on rcv-timeout with JSON logfile.

  * Fixed a bug that prevented TOS/DSCP from getting set correctly for reverse
    tests.

* Developer-visible changes

  * Getter and setter are now available for bind_dev.

  * Added missing getter for bidirectional tests.

  * Added minor changes to clean up .gitignore and error messages.

  * Made sure configure scripts are runnable with /bin/sh.

  * Cleaned up RPM spec, such as adding missing RPM build dependencies, dropping
    EL5 and removing outdated %changelog to make.

  * Added a fix for a resource leak bug in function iperf_create_pidfile.

(adam)

doc: Updated print/R-tinytex to 0.44

(mef)

(print/R-tinytex) Updated 0.43 to 0.44

(w3m -dump -T text https://github.com/rstudio/tinytex/releases/tag/v0.44)
tinytex 0.44

  * For the TinyTeX-2 bundle, its file format has been changed from .gz to .xz
    on Linux and macOS (#394), and from .zip to .exe on Windows (#398).

  * The installation script install-unx.sh no longer changes the working
    directory (#386).

(mef)

doc/TODO: + nethack-3.6.7.

(wiz)

doc: Updated net/R-pingr to 2.0.2

(mef)

(net/R-pingr) Updated 2.0.1 to 2.0.2

# pingr 2.0.2

* `pingr::ping()` now works better in a non-English locale (#18).

(mef)

doc: Updated misc/R-Hmisc to 4.8.0

(mef)

(misc/R-Hmisc) Updated 4.7.0 to 4.8 0

Changes in version 4.8-0 (2023-02-08)
  * rendHTML: new function to render HTML, sensing if knitr is
    running and if so using knitr::asis_output, otherwise htmltools

  * contents, describe: added the use of rendHTML so that HTML can be
    rendered from the console, and made it so that if
    options(prType='html') is in effect the html method will be
    invoked automatically when printing

(mef)

doc: Updated lang/R-cpp11 to 0.4.3

(mef)

(lang/R-cpp11) Updated 0.4.2 to 0.4.3

# cpp11 0.4.3

* Modernized the GitHub Actions workflows and updated some internal tests to
  better align with changes in those workflows and the latest version of R
  (#279)

* `cpp_source()` errors on non-existent file (#261).

* `cpp_register()` is quiet by default when R is non interactive (#289).

* updated test to adapt to changes in R 4.2.1 (#290).

(mef)

blackbox: add a comment to a patch

(gutteridge)

py-cmudict: add a comment about minimum dependencies

(gutteridge)

doc: Updated devel/py-approvaltests to 8.2.0

(schmonz)

Update to 8.2.0. From the changelog:

- updated assert_equal_with_reporter(expected, actual) to take options
  matching current patterns of approvaltests

(schmonz)

doc: Updated devel/py-approval-utilities to 8.2.0

(schmonz)

Update to 8.2.0. From the changelog:

- Add optional file-extension parameter to write_to_temporary_file()

(schmonz)

doc: Updated print/lilypond to 2.24.1

(schmonz)

Update to 2.24.1. From the changelog:

- This version includes a number of fixes since the release of the
  previous stable version in December 2022, and we recommend all users
  to update. Scores converted to or written for 2.24.0 will continue to
  work with this release.

(schmonz)

doc: Updated sysutils/open-vm-tools to 12.1.5

(khorben)

open-vm-tools: update to 12.1.5

From the release notes, this addresses:

* Premature reboots in the guest VM from the deployPkg plugin before cloud-init
  has completed user data setup
* A possible SIGSEGV when a non-quiescing snapshot times out.
* A number of issues reported by Coverity.

(khorben)

doc: Updated sysutils/open-vm-tools to 12.1.0

(khorben)

open-vm-tools: update to 12.1.0

From the release notes, this:

* resolves CVE-2022-31676
* includes pull request #588
* includes pull request #387

While there, use SYSCONFBASE in the RC script.

(khorben)

doc: Updated sysutils/open-vm-tools to 12.0.5

(khorben)

open-vm-tools: update to 12.0.5

From the release notes, resolved issues:

* glibc 2.35 and GCC 11 & 12 reporting possible array bounds overflow -
  bora/lib/asyncsocket/asyncksocket.c: AsyncTCPSocketPollWork()
* ContainerInfo Plugin: compilation warnings with a newer version of GCC

(khorben)

libnbcompat: sort the README file by most recent test first

While there, replace e-mail addresses of former developers by
pkgsrc-users@; otherwise NFCI.

Bumps PKGREVISION.

Tested on NetBSD/amd64.

(khorben)

Updated sysutils/ansible-lint, textproc/py-markdown2

(adam)

py-markdown2: updated to 2.4.8

python-markdown2 2.4.8

* Fix images not being procesed correctly

python-markdown2 2.4.7

* Fix hashing nested HTML blocks
* Fix backslash being unable to escape raw HTML tags
* Add support for telegram spoiler in extras
* mermaid support
* Fix escaping ampersands in hrefs
* Fix indented codeblocks inside fences
* Remove code-color extra

python-markdown2 2.4.6

* Feature wavedrom support
* Fix mixing ordered and un-ordered lists combining into single list type

python-markdown2 2.4.5

* Add optional dependencies to setup.py

python-markdown2 2.4.4

* Fix TypeError if html-classes extra is None
* Remove Python2 support
* Replace <strike> with <s> in strike extra
* Fix link patterns extra applying within links
* create proper entry point
* Codespans inside link text issue344
* Underline and HTML comments
* Links with brackets
* Fix emacs local variable one-liners
* Example of the current mixed-paragraph mode behavior in lists
* Fix code block indentation in lists
* Fix filter bypass leading to XSS
* Fix html-classes extra not applying to code spans
* Fix pygments block matching
* Fix pyshell blocks in blockquotes
* Fix multilevel lists
* Remove _uniform_outdent_limit function
* Add support for ordered lists that don't start at 1.
* Fix AssertionError with lazy numbered lists
* Add <ul> and <ol> tags to html-classes extra
* XSS test and fix

python-markdown2 2.4.3

* Fix meta indentation
* Fix code surrounded by blank lines inside blockquote fenced code blocks
* Fix inline code pipe symbol within tables
* Fix code block parsing error
* Fix hr block created when not supposed to
* Fix backslashes removed by adjacent code blocks
* Fix md5-* in resulting HTML when several code blocks follow one by one
* Fix excessive <br> tags in lists using break-on-newline extra
* Standardize key and value definitions for metadata extra
* Fix fenced code blocks breaking lists
* Fix catastrophic backtracking (Regex DoS) in pyshell blocks.
* Fix incorrect indentation of fenced code blocks within lists
* RST admonitions
* Improve error message if link_patterns forgotten
* fix compatibility with pygments 2.12

python-markdown2 2.4.2

* Fix for fenced code blocks issue
* Be more strict on auto linking urls, RE DOS fix

python-markdown2 2.4.1

* Tables extra: allow whitespace at the end of the underline row
* Pyshell extra: enable syntax highlighting if fenced-code-blocks is loaded.
* Regex DOS bandaid fix

python-markdown2 2.4.0

* Fixed bug breaking strings elements in metadata lists
* When rendering fenced code blocks, also add the language-LANG class
* Regex DoS fixes

(adam)

ansible-lint: updated to 6.13.1

v6.13.1
Bugfixes

Improve no-changed-when rule
Fix ignore file generation

(adam)

doc: Updated www/caddy to 2.6.4

(bsiegert)

caddy: update to 2.6.4

v2.6.4

This release contains a hotfix for a regression in v2.6.3 related to proxying
chunked requests. We recommend that all users who do so upgrade to v2.6.4.

v2.6.3

This release brings a number of bug fixes and minor features. We recommend that
all users check the release notes/commits, then test and upgrade.

Notable changes:

- New trusted_proxies global option (within servers) can be used to specify
  trusted proxy IP ranges globally. This is important if relying on headers for
  client IP addresses.
- Unix sockets on Windows now supported as proxy upstreams.
- Proxied WebSocket connections are now logged with correct status code and
  "size" (bytes read + bytes written).
- The quic-go package has received significant optimizations, so HTTP/3 should
  be more efficient now.

(bsiegert)

php81: revbump, upstream re-released the tarball.

https://news-web.php.net/php.announce/349
https://github.com/php/php-src/issues/10595

(nikita)

doc: Updated net/yt-dlp to 2023.2.17

(bsiegert)

yt-dlp: update to 2023.02.17

Merge youtube-dl
Fix --concat-playlist
Imply --no-progress when --print
Improve default subtitle language selection
Make title completely non-fatal
Sanitize formats before sorting
Support module level __bool__ and property

Bugfixes in various extractor modules

(bsiegert)

smake: use gm4

(nikita)

doc: Updated www/gotosocial to 0.7.0

(nikita)

gotosocial: update to version 0.7.0

ChangeLog (taken from https://github.com/superseriousbusiness/gotosocial/releases/tag/v0.7.0)

v0.7.0 Stormy Sloth

Hello everyone! After much testing and prodding and poking, we're ready to release v0.7.0 Stormy Sloth into the world!

This is the umpteenth alpha release of GoToSocial (we stopped counting), and it brings a massive amount of new stuff, fixes, and tweaks.

Thank you for your continued support, and enjoy the release!
Release Highlights

    Basic video support (mp4 only). You can finally upload videos, and view videos from remote instances too. Not all mp4 files work, currently -- this is something we'll investigate for next release most likely.
    Support for federating reports in and out of GoToSocial, and viewing reports via the admin settings panel (this feature was sponsored by NLnet).
    Support for webp attachments, avatars, and headers.
    Users can now create, remove, and view status bookmarks!
    Domain blocks now apply on a wildcard basis, so you can block a second level domain (like example.org) and it will apply to subdomains too (like poop.example.org etc).
    HTTP request throttling -- only a certain number of http requests are served at a time now. This should vastly improve responsiveness under load on small instances.
    Much better logic for pruning old avatars + headers, leading to gb of disk space savings.
    So many bug fixes and performance improvements.

Migration notes
Upgrading

To upgrade to 0.7.0 from a previous release:
Binary/tar

    Stop GoToSocial
    Untar the new release, including the web assets and html templates.
    Edit your config.yaml file as necessary (see below).
    Start GoToSocial

Docker

    Stop GoToSocial.
    Pull the new docker container (superseriousbusiness/gotosocial:0.7.0 or superseriousbusiness/gotosocial:latest)
    Start GoToSocial.

config.yaml

The configuration file has changed since the previous release. We recommend copying the new file from example/config.yaml and pasting values into it from your previous config.yaml. You can see a diff of the config file here: v0.6.0...v0.7.0#diff-c071e03510b2c57e193a44503fd9528a785f0f411497cc75841a9f8d0b1ac622
Database migrations

This release contains several database migrations which will run the first time you start up this new version. Be sure not to interrupt this migration process. It will take anywhere between a couple seconds and a couple minutes. Please be patient.
Sqlite format changes

0.7.0 now uses SQLite's WAL journal mode by default. This means there will be some new SQLite related files in your GoToSocial directory:

    sqlite.db-shm
    sqlite.db-wal

When you do SQLite backups, you should back these files up too (you do have backups, right?).

If you use Postgres rather than SQLite, you can ignore this.
Updating from 0.7.0-rc2

0.7.0-rc2 was slightly broken. If you're getting lots of 'not found' errors for avatars and headers, after running 0.7.0-rc2, see here for steps to fix it: #1505

If you skipped over rc2, ignore this :)
Detailed Changelog
Features

    83b522a [feature/Frogend] basic report admin interface (#1424)
    a59dc85 [feature/frogend] (Mastodon) domain block CSV import (#1390)
    382512a [feature] Implement /api/v2/instance endpoint (#1409)
    3283900 [feature] Federate reports to remote instance as Flag (if desired) (#1386)
    08f8fea [feature/frontend] filterable local emoji list (#1385)
    17eecfb [feature] Public list of suspended domains (#1362)
    993aae5 [feature] Accept incoming federated Flag activity (#1382)
    faeb7de [feature] Implement reports admin API so admins can view + close reports (#1378)
    e974724 [feature] Implement /api/v1/reports endpoints on client API (#1330)
    73be244 [feature] Add RSS autodiscovery on profiles that enable RSS (#1373)
    acc333c [feature] Inherit resource limits from cgroups (#1336)
    627b8ee [feature] Tune sqlite pragmas (#1349)
    3512325 [feature] Add local user and post count to nodeinfo responses (#1325)
    d648793 [feature] Implement Report database model and utility functions (#1310)
    90a14ab [feature] HTTP request throttling middleware (#1297)
    1659f75 [feature] For video attachments, store + return fps, bitrate, duration (#1282)
    2bbc64b [feature] Enable basic video support (mp4 only) (#1274)
    d10388c [feature] support Sec-Websocket-Protocol in streaming API (#1254)
    69dd5fe [feature] domain block wildcarding (#1178)
    58c87bd [feature] allow uncaching of other media types (#1234)
    4b8d7bd [feature/frogend] Emoji copy "Steal this look" (#1222)
    cb2b2fd [feature] support configuring database caches (#1246)
    5e060d0 [feature] Start implementing refetch of lost media files via /api/v1/admin/media_refetch (#1221)
    477ae50 [feature] Allow users to create + delete bookbarks, and view bookmarked statuses (#1168)
    199b685 [feature] overhaul the oidc system (#961)
    1a3f26f [feature] media: add webp support (#1155)

Bugfixes

    b599309 [bugfix] Set 'discoverable' properly on API accounts (#1511)
    6ee0dc8 [bugfix] Set cache-control max-age dynamically for s3 (#1510)
    40b584c [bugfix] Fix 410 Gone race on account deletes (#1507)
    b8e1ab3 [bugfix] use woff(2) fonts for Noto Sans (#1509)
    6c6f042 [bugfix] Return empty result rather than 500 error when searching for blocked domains (#1498)
    561ad71 [bugfix] Fix up error getting account avatar/header errors, other small fixes (#1496)
    c223c75 [bugfix] Set appropriate cache-control when using presigned s3 links (#1480)
    e5e257c [bugfix] Fix error on searching for account w/accountDomain by host (#1465)
    52fbb3e [bugfix] fix 'steal this look' form, uncheck entries after processing (#1454)
    4e4da19 [bugfix] Use SignatureCheck middleware for web profile endpoints too (#1451)
    ad6ab03 [bugfix] don't trash emoji in profile fields on edit (#1440)
    ac2bdbb [bugfix] fix file range length calculation being off by 1 (#1448)
    6a6647d [bugfix] Ignore missing files when cleaning up media (#1435)
    75e1b9c [bugfix] fix old password hash staying in cache (#1432)
    80c26d6 [bugfix] Allow instance thumbnail description to be set separately from image (#1417)
    04ac3f8 [bugfix] Fix password change keys (#1416)
    abe9447 [bugfix] fix cache startup (#1414)
    271da01 [bugfix] Read Bookwyrm Articles more thoroughly (#1410)
    d4cddf4 [bugfix] Parse video metadata more accurately; allow Range in fileserver (#1342)
    132c738 [bugfix] Mount bookmarks endpoint correctly (#1338)
    1bda6a2 [bugfix] return early in websocket upgrade handler (#1315)
    2bf9bfa [bugfix] fix panic during status delete loop by breaking out early on len(statuses) == 0 (#1317)
    de74cc6 [bugfix/frogend] replace ch units to prevent layout shift on page load (#1301)
    eabb906 [bugfix] fix media create error not being checked (#1283)
    6ebdc30 [bugfix] Close reader gracefully when streaming recache of remote media to fileserver api caller (#1281)
    2b0342b [bugfix] use match-sorter for filtering domain blocks (#1270)
    1d24c1c [bugfix] Use null for empty api status language (#1268)
    8703933 [bugfix] fix unordered favorites (#1245)
    04636a3 [bugfix] attach bookmarks module to api (#1238)
    199672e [bugfix] fix unordered favorites (#1236)

Performance

    acc9592 [performance] processing media and scheduled jobs improvements (#1482)
    40bc03e [chore/performance] Update media prune logic, add extra CLI command (#1474)
    70739d3 [performance] remove throttling timers (#1466)
    95715f9 [performance] Don't fetch avatar + header if uri hasn't changed (#1463)
    02767bf [performance] remove local copying of file for satisfying range headers (#1421)
    5318054 [performance] media processing improvements (#1288)

Chores

    4cba90c [chore] Split the bug template in two (#1500)
    700ed77 [chore] Webkit frontend fixes (#1492)
    041c8e6 [chore] Do cache-control in a less silly way to avoid writing header twice (#1481)
    efbc5da [chore]: Bump github.com/minio/minio-go/v7 from 7.0.47 to 7.0.48 (#1486)
    33b77b3 [chore]: Bump golang.org/x/image from 0.3.0 to 0.4.0 (#1485)
    7231752 [chore]: Bump modernc.org/sqlite from 1.20.3 to 1.20.4 (#1484)
    6ac1dda [chore] small changes missed in previous dereferencer.GetAccount() PRs (#1467)
    65b1941 [chore] Fix report username wrapping (#1464)
    27e95fd [chore/bugfix] Serve + throttle publickey separately from rest of ActivityPub API (#1461)
    0ed50c1 [chore/frogend] domain blocklist layout on smaller screens (#1436)
    b63b1b6 [chore] Update bug report template (#1437)
    47daddc [chore/frogend] Restructure form data default values / update from Query data (#1422)
    0a98743 [chore]: Bump codeberg.org/gruf/go-runners from 1.4.0 to 1.5.1 (#1428)
    1df25a3 [chore]: Bump github.com/yuin/goldmark from 1.5.3 to 1.5.4 (#1427)
    dae14cc [chore]: Bump github.com/ulule/limiter/v3 from 3.10.0 to 3.11.0 (#1429)
    7f32457 [chore] stub /api/v1/featured_tags endpoint (#1420)
    33aee1b [chore] reformat GetAccount() functionality, support updating accounts based on last_fetch (#1411)
    49beb17 [chore] Text formatting overhaul (#1406)
    4ee4cd2 [chore/performance] use only 1 sqlite db connection regardless of multiplier (#1408)
    b80be48 [chore] Use 'immediate' lock for sqlite transactions (#1404)
    eccb380 [chore] Silence maxprocs logging (#1402)
    356e238 [chore]: Bump github.com/go-playground/validator/v10 (#1400)
    7bcdf35 [chore]: Bump github.com/microcosm-cc/bluemonday from 1.0.21 to 1.0.22 (#1399)
    782169d [chore] set max open / idle conns + conn max lifetime for both postgres and sqlite (#1369)
    27d4e36 [chore] Settings refactor fix4 (#1383)
    36f62d6 [chore] remove funky duplicate attachment in testrig (#1379)
    605dfca [chore] bump go version to 1.19.5 (#1377)
    98a09b5 [chore]: Bump github.com/spf13/viper from 1.14.0 to 1.15.0 (#1375)
    3e4dc6b [chore]: Bump github.com/abema/go-mp4 from 0.9.0 to 0.10.0 (#1374)
    13ec15d [chore] extending maximumPasswordLength to 256 (#1372)
    0ceacd7 [chore] bump db dependencies (#1366)
    b375d3b [chore] Add name to instance field for autosuggestion (#1359)
    747683b [chore] Settings refactor fix 2 (#1357)
    13e3aaa [chore] Fix new emoji preview title/alt text (#1354)
    9b139b6 [chore/frogend] Settings refactor (#1318)
    974ec80 [chore] Change default sqlite busy timeout to 5m (#1352)
    a6c6bdb [chore]: Bump codeberg.org/gruf/go-errors/v2 from 2.0.2 to 2.1.1 (#1346)
    fe3e9ed [chore]: Bump github.com/minio/minio-go/v7 from 7.0.44 to 7.0.47 (#1348)
    2a46980 [chore]: Bump golang.org/x/oauth2 from 0.3.0 to 0.4.0 (#1347)
    eafd73c [chore] Remove omitempty on account source; refactor tests to use prettyprint json (#1337)
    36aa685 [chore] Bump json5 from 1.0.1 to 1.0.2 in /web/source (#1308)
    ac562fa [chore]: Bump github.com/coreos/go-oidc/v3 from 3.4.0 to 3.5.0 (#1322)
    0ca6a9d [chore]: Bump golang.org/x/image from 0.2.0 to 0.3.0 (#1320)
    86ae0b1 [chore]: Bump golang.org/x/text from 0.5.0 to 0.6.0 (#1321)
    345b765 [chore]: Bump golang.org/x/net from 0.4.0 to 0.5.0 (#1319)
    6791920 [chore/frogend] update status blockquote css (#1302)
    adbc877 [chore] pull in latest go-cache, go-runners versions (#1306)
    0dbe6c5 [chore] Update/add license headers for 2023 (#1304)
    ff46dd4 [chore] Fix emoji notnull constraint on initial gtsmodel (#1303)
    71dfea7 [chore] shuffle middleware to split rate limitting into client/s2s/fileserver, share gzip middleware globally (#1290)
    941893a [chore] The Big Middleware and API Refactor (tm) (#1250)
    560ff12 [chore]: Bump github.com/abema/go-mp4 from 0.8.0 to 0.9.0 (#1287)
    b966d3b [chore]: Bump github.com/gin-gonic/gin from 1.8.1 to 1.8.2 (#1286)
    abd594b [chore]: Bump codeberg.org/gruf/go-bytesize from 1.0.0 to 1.0.2 (#1285)
    0871f5d [chore] note broken go v1.19.4 in contributing.md (#1278)
    0f38e7c [chore] fix some little config whoopsies (#1272)
    da751c0 update go-cache to v3.2.0 with support for ignoring errors (#1273)
    eb08529 [chore/bugfix] Switch markdown from blackfriday to goldmark (#1267)
    0f8d938 [chore] Add svg version of sloth logo as logo.svg (#1265)
    a7e71d7 [chore]: Bump golang.org/x/image from 0.1.0 to 0.2.0 (#1252)
    24b4f9b [chore] make single pull request template (#1239)
    e58d2d8 [chore] move caches to a separate State{} structure (#1078)
    dd1a4cd [chore] Remove deprecated linters (#1228)

Documentation

    674646b [docs] Update config.yaml (#1499)
    f3eb28a [docs] Suggest confirming host option in config (#1502)
    fd62847 [docs] Fix nginx fileserver caching example (#1506)
    76d1b48 [docs] move federating with gotosocial documentation into single file (#1494)
    eeca198 [docs] Update user/admin settings docs (#1491)
    dc766f9 [docs] Add an example on how to setup redirect with Traefik (#1395)
    43cbe3b [docs] Simplify Apache httpd proxy documentation (#1396)
    c59ec6f [docs] Add Flag documentation to federation docs (#1393)
    1fa574f [docs] Tidy up federation docs into 'federating with gotosocial' section (#1392)
    8d18888 [chore/docs] add instance-expose-suspended-web to instance docs (#1391)
    6b15b83 [docs] Remove videos from the list of missing features in the FAQ. (#1344)
    98edd75 [docs] Rewrite sponsorship + funding section, add NLnet (#1305)
    9859a43 [docs] Add s3 ssl variable to storage docs (#1294)
    2a1205a [docs] AWS S3 config details added (#1300)
    0b8eafe [docs] Fix documentation edit link (#1298)
    9ecb1c8 [docs] Add troubleshooting section for Apache (#1291)
    bae7398 [docs] Update Apache docs to use 127.0.0.1 instead of localhost (#1266)
    418bfbf [docs] Update nginx docs to use 127.0.0.1 instead of localhost (#1264)
    ce615b5 [docs] Serve static assets with nginx (#1251)
    d2a09c1 [docs] Caching webfinger with nginx (#1242)
    610c270 [docs] Update CONTRIBUTING.md, add pull request templates (#1216)
    aea16bb [docs] Update README.md (#1126)
    923d333 [docs] encourage using loopback bind address (#1166)

(nikita)

Updated lang/nodejs, lang/nodejs18, lang/nodejs16, lang/nodejs14

(adam)

nodejs14: updated to 14.21.3

Version 14.21.3 'Fermium' (LTS)

This is a security release.

Notable Changes

The following CVEs are fixed in this release:

* CVE-2023-23918: Node.js Permissions policies can be bypassed via process.mainModule (High)
* CVE-2023-23920: Node.js insecure loading of ICU data through ICU\_DATA environment variable (Low)

(adam)

nodejs16: updated to 16.19.1

Version 16.19.1 'Gallium' (LTS)

This is a security release.

Notable Changes

The following CVEs are fixed in this release:

* CVE-2023-23918: Node.js Permissions policies can be bypassed via process.mainModule (High)
* CVE-2023-23919: Node.js OpenSSL error handling issues in nodejs crypto library (Medium)
* CVE-2023-23920: Node.js insecure loading of ICU data through ICU\_DATA environment variable (Low)

(adam)

nodejs18: updated to 18.14.1

Version 18.14.1 'Hydrogen' (LTS)

This is a security release.

Notable Changes

The following CVEs are fixed in this release:

CVE-2023-23918: Node.js Permissions policies can be bypassed via process.mainModule (High)
CVE-2023-23919: Node.js OpenSSL error handling issues in nodejs crypto library (Medium)
CVE-2023-23936: Fetch API in Node.js did not protect against CRLF injection in host headers (Medium)
CVE-2023-24807: Regular Expression Denial of Service in Headers in Node.js fetch API (Low)
CVE-2023-23920: Node.js insecure loading of ICU data through ICU_DATA environment variable (Low)

(adam)

nodejs: updated to 19.6.1

Version 19.6.1 (Current)

This is a security release.

Notable Changes

The following CVEs are fixed in this release:

CVE-2023-23919: OpenSSL errors not cleared in error stack (Medium)
CVE-2023-23918: Experimental Policies bypass via process.mainModule.require(High)
CVE-2023-23920: Insecure loading of ICU data through ICU_DATA environment variable (Low)

(adam)

Updated sysutils/py-ansible-compat, sysutils/ansible-lint

(adam)

ansible-lint: updated to 6.13.0

v6.13.0

Minor Changes

Removed experimental flag from multiple rules
Allow only use of quoted octals
Load rule ignores from external text file

Bugfixes

Improve jinja error line number identification
profiles: include all rules when listing all rules or tags
Improve documentation on var-naming
Improve loop-var-prefix checking
Ignore known problematic modules from args rule
Improve jinja2 rule error handling
Enable syntax-check on roles
Recognize role-name[path] also inside roles block
Allow {% in schema full-jinja check
Update ansible-compat
Recognize systemctl kill as a valid command
Mark syntax-check as unskippable
Fixes no-tabs issue with fqcn actions
Move empty-playbook to syntax-check
Ensure that rule import failures are not ignored
Increase the test coverage

(adam)

py-ansible-compat: updated to 3.0.1

v3.0.1

Bugfixes

Avoid double initialization of ansible runtime
Update README.md for 3.0.0 release

v3.0.0

Major Changes

Require ansible-core 2.12 or newer

Minor Changes

Address ansible 2.15 compatibility related to AnsibleCollectionConfig

Bugfixes

Required subprocess-tee>=0.4.1

(adam)

felix: add missing file to PLIST

(wiz)

doc: Added www/p5-Net-OAuth2-AuthorizationServer version 0.28

(nikita)

Import www/p5-Net-OAuth2-AuthorizationServer as p5-Net-OAuth2-AuthorizationServer version 0.28

Imported from wip/p5-Net-OAuth2-AuthorizationServer

This module is the gateway to the various OAuth2 grant flows, as
documented at https://tools.ietf.org/html/rfc6749. Each module
implements a specific grant flow and is designed to "just work"
with minimal detail and effort.

Please see Net::OAuth2::AuthorizationServer::Manual for more
information on how to use this module and the various grant types.
You should use the manual in conjunction with the grant type module
you are using to understand how to override the defaults if the
"just work" mode isn't good enough for you.

(nikita)

openafs: bring the ability to build & install to NetBSD/macppc 10.0_BETA.

I see fertile ground for similar fixes for other archs in this
package.  The 10.0-specific files were copied from the 9.0 files
and minimally modified (actually, the ppc_nbsd100 file was from
the ppc_nbsd20 file).  New ID assigned for NetBSD/macppc 10.0.

No functional testing done: "it builds; ship it!" :)

(he)

thunderbird-l10n: update to version 102.8.0 to sync with thunderbird.

(he)

thunderbird: also update PLIST...

(he)

smake: fix failure to build, add m4 dependency

(nikita)

mail/thunderbird: Update to version 102.8.0.

Pkgsrc changes:
* Checksum changes.
* Minor adjustment to patches.

Upstream changes:

102.8.0:

New:
- Added option to build RNP library with OpenSSL backend (use
  "--with-librnp-backend=openssl" configure option)

Changes:
- Thunderbird now warns user that OpenPGP is disabled if RNP
  library is outdated or missing

Fixes:
- "Get Messages" did not retrieve messages from Gmail accounts
  using a local folder as a deferred inbox
- Various visual and UX improvements

Security fixes:
CVE-2023-0616: User Interface lockup with messages combining S/MIME and OpenPGP
CVE-2023-25728: Content security policy leak in violation reports using iframes
CVE-2023-25730: Screen hijack via browser fullscreen mode
CVE-2023-0767: Arbitrary memory write via PKCS 12 in NSS
CVE-2023-25735: Potential use-after-free from compartment mismatch in SpiderMonkey
CVE-2023-25737: Invalid downcast in SVGUtils::SetupStrokeGeometry
CVE-2023-25738: Printing on Windows could potentially crash Thunderbird with some device drivers
CVE-2023-25739: Use-after-free in mozilla::dom::ScriptLoadContext::~ScriptLoadContext
CVE-2023-25729: Extensions could have opened external schemes withotu user knowledge
CVE-2023-25732: Out of bounds memory write from EncodeInputStream
CVE-2023-25734: Opening local.url files could cause unexpected network loads
CVE-2023-25742: Web Crypto ImportKey crashes tab
CVE-2023-25746: Memory safety bugs fixed in Thunderbird 102.8

102.7.2:

Fixes:
- Various crash fixes

102.7.1:

Fixes:
- Microsoft Office 365 accounts were unable to authenticate
- Switching identities caused remote images in HTML signatures to
  not be shown
- Thunderbird failed to import vCards that contained "\r\r\n" line endings
- Contribution button for add-ons opened Contribution page in a
  Thunderbird tab, instead of the external browser
- XMPP did not respond to unrecognized IQ queries, causing some
  servers to close the connection
- Window titlebar buttons (minimize/maximize/close) were not
  displayed in Windows 10 "Dark" color mode

Security fixes:
CVE-2023-0430: Revocations tatus of S/Mime signature certificates was not checked

102.7.0:

New:
- Enterprise policies now support Thunderbird-specific preferences.

Fixes:
- Localized builds and langpacks now use "comm-l10n" repository;
  downstream builds using official langpacks should not need to make
  changes
- Having too many folders open at startup caused loss of MSF files
- Copying an email from one local folder to another local folder
  sometimes caused "Another Operation is using the folder" error on
  Windows 7
- Email address pill allowed for incorrectly formatted email addresses
- Creating security exceptions for messages sent using a self-signed
  certificate failed if hostname contained uppercase letters
- S/MIME certificate verification was prohibitively slow
- OpenPGP key import failed for key blocks with comments that
  contain Unicode characters
- Chat conversation sidebar was too wide under certain circumstances,
  making scrollbar unusable
- On Mac, deleting events from Today Pane with "Backspace" key
  deleted selected messages instead

Security fixes:
CVE-2022-46871: libusrsctp library out of date
CVE-2023-23598: Arbitrary file read from GTK drag and drop on Linux
CVE-2023-23599: Malicious command could be hidden in devtools output on Windows
CVE-2023-23601: URL being dragged from cross-origin iframe into same tab triggers navigation
CVE-2023-23602: Content Security Policy wasn't being correctly applied to WebSockets in WebWorkers
CVE-2022-46877: Fullscreen notification bypass
CVE-2023-23603: Calls to console.log allowed bypassing Content Security Policy via format directive
CVE-2023-23605: Memory safety bugs fixed in Thunderbird 102.7

Known issues:
- OAuth2 authentication not working for Microsoft 365 Enterprise
  accounts. See the Blog post
  (https://blog.thunderbird.net/2023/01/important-message-for-microsoft-office-365-enterprise-users/)
  for additional information. Bug 1810760

(he)

mpd: make this build on NetBSD/powerpc 10.0_BETA.

Seldom have I seen a program so crusty, e.g. wanting to declare
standard library functions on its own(!)  There are still *lots*
of warnings produced during the build.

"make test" has lots of tests failing for NetBSD/macppc, but at
least quite a few succeed as well.  That's at least something...

(he)

doc: Updated audio/openal-soft to 1.23.0

(wiz)

openal-soft: update to 1.23.0.

openal-soft-1.23.0:

    Fixed CoreAudio capture support.

    Fixed handling per-version EAX properties.

    Fixed interpolating changes to the Super Stereo width source property.

    Fixed detection of the update and buffer size from PipeWire.

    Fixed resuming playback devices with OpenSL.

    Fixed support for certain OpenAL implementations with the router.

    Improved reverb environment transitions.

    Improved performance of convolution reverb.

    Improved quality and performance of the pitch shifter effect slightly.

    Improved sub-sample precision for resampled sources.

    Improved blending spatialized multi-channel sources that use the source
    radius property.

    Improved mixing 2D ambisonic sources for higher-order 3D ambisonic mixing.

    Improved quadraphonic and 7.1 surround sound output slightly.

    Added config options for UHJ encoding/decoding quality. Including Super
    Stereo processing.

    Added a config option for specifying the speaker distance.

    Added a compatibility config option for specifying the NFC distance
    scaling.

    Added a config option for mixing on PipeWire's non-real-time thread.

    Added support for virtual source nodes with PipeWire capture.

    Added the ability for the WASAPI backend to use different playback rates.

    Added support for SOFA files that define per-response delays in makemhr.

    Changed the default fallback playback sample rate to 48khz. This doesn't
    affect most backends, which can detect a default rate from the system.

    Changed the default resampler to cubic.

    Changed the default HRTF size from 32 to 64 points.

(wiz)

doc: Updated devel/mob to 4.3.0

(schmonz)

Update to 4.3.0. From the changelog:

- Feature: Adds `MOB_START_COMMIT_MESSAGE` config property for changing
  the commit message on `mob start` empty commit introduced in 4.2.0.
  This should help overcome problems with pre-receive git hooks.

(schmonz)

Revbump all Go packages after go119 update

(bsiegert)

doc: Updated lang/go119 to 1.19.6

(bsiegert)

go119: update to 1.19.6 (security)

This minor release includes 4 security fixes following the security policy:

- path/filepath: path traversal in filepath.Clean on Windows

  On Windows, the filepath.Clean function could transform an invalid path such
  as a/../c:/b into the valid path c:\b. This transformation of a relative (if
  invalid) path into an absolute path could enable a directory traversal
  attack.  The filepath.Clean function will now transform this path into the
  relative (but still invalid) path .\c:\b.

  Thanks to RyotaK (https://ryotak.net) for reporting this issue.

  This is CVE-2022-41722 and Go issue https://go.dev/issue/57274.

- net/http, mime/multipart: denial of service from excessive resource
  consumption

  Multipart form parsing with mime/multipart.Reader.ReadForm can consume
  largely unlimited amounts of memory and disk files. This also affects form
  parsing in the net/http package with the Request methods FormFile, FormValue,
  ParseMultipartForm, and PostFormValue.

  ReadForm takes a maxMemory parameter, and is documented as storing "up to
  maxMemory bytes +10MB (reserved for non-file parts) in memory". File parts
  which cannot be stored in memory are stored on disk in temporary files. The
  unconfigurable 10MB reserved for non-file parts is excessively large and can
  potentially open a denial of service vector on its own. However, ReadForm did
  not properly account for all memory consumed by a parsed form, such as map
  entry overhead, part names, and MIME headers, permitting a maliciously
  crafted form to consume well over 10MB. In addition, ReadForm contained no
  limit on the number of disk files created, permitting a relatively small
  request body to create a large number of disk temporary files.

  ReadForm now properly accounts for various forms of memory overhead, and
  should now stay within its documented limit of 10MB + maxMemory bytes of
  memory consumption. Users should still be aware that this limit is high and
  may still be hazardous.

  ReadForm now creates at most one on-disk temporary file, combining multiple
  form parts into a single temporary file. The mime/multipart.File interface
  type's documentation states, "If stored on disk, the File's underlying
  concrete type will be an *os.File.". This is no longer the case when a form
  contains more than one file part, due to this coalescing of parts into a
  single file. The previous behavior of using distinct files for each form part
  may be reenabled with the environment variable
  GODEBUG=multipartfiles=distinct.

  Users should be aware that multipart.ReadForm and the http.Request methods
  that call it do not limit the amount of disk consumed by temporary files.
  Callers can limit the size of form data with http.MaxBytesReader.

  Thanks to Arpad Ryszka and Jakob Ackermann (@das7pad) for reporting this
  issue.

  This is CVE-2022-41725 and Go issue https://go.dev/issue/58006.

- crypto/tls: large handshake records may cause panics

  Both clients and servers may send large TLS handshake records which cause
  servers and clients, respectively, to panic when attempting to construct
  responses.

  This affects all TLS 1.3 clients, TLS 1.2 clients which explicitly enable
  session resumption (by setting Config.ClientSessionCache to a non-nil value),
  and TLS 1.3 servers which request client certificates (by setting
  Config.ClientAuth >= RequestClientCert).

  Thanks to Marten Seemann for reporting this issue.

  This is CVE-2022-41724 and Go issue https://go.dev/issue/58001.

- net/http: avoid quadratic complexity in HPACK decoding

  A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in
  the HPACK decoder, sufficient to cause a denial of service from a small
  number of small requests.

  This issue is also fixed in golang.org/x/net/http2 v0.7.0, for users manually
  configuring HTTP/2.

  Thanks to Philippe Antoine (Catena cyber) for reporting this issue.

  This is CVE-2022-41723 and Go issue https://go.dev/issue/57855.

(bsiegert)