doc: note pkgconf downgrade

(wiz)

pkgconf: revert update

PR 57217 and reports of coredumps on NetBSD 9

(wiz)

doc: Updated textproc/ruby-nokogiri to 1.14.1

(tsutsui)

ruby-nokogiri: update to 1.14.1.

Upstream changes (from CHANGELOG.md)

1.14.1 / 2023-01-30

Fixed

  * Serializing documents now works again with pseudo-IO objects that don't
    support IO's encoding API (like rubyzip's Zip::OutputStream). This was a
    regression in v1.14.0 due to the fix for #752 in #2434, and was not
    completely fixed by #2753. [#2773]
  * [CRuby] Address compiler warnings about void* casting and old-style C
    function definitions.

1.14.0 / 2023-01-12

Notable Changes

Ruby

This release introduces native gem support for Ruby 3.2. (Also see "Technical
note" under "Changed" below.)

This release ends support for:

  * Ruby 2.6, for which upstream support ended 2022-04-12.
  * JRuby 9.3, which is not fully compatible with Ruby 2.7+

Faster, more reliable installation: Native Gem for aarch64-linux (aka linux/
arm64/v8)

This version of Nokogiri ships official native gem support for the
aarch64-linux platform, which should support AWS Graviton and other ARM64 Linux
platforms. Please note that glibc >= 2.29 is required for aarch64-linux
systems, see Supported Platforms for more information.

Faster, more reliable installation: Native Gem for arm-linux (aka linux/arm/
v7)

This version of Nokogiri ships experimental native gem support for the
arm-linux platform. Please note that glibc >= 2.29 is required for arm-linux
systems, see Supported Platforms for more information.

Pattern matching

This version introduces an experimental pattern matching API for XML::Attr,
XML::Document, XML::DocumentFragment, XML::Namespace, XML::Node, and
XML::NodeSet (and their subclasses).

Some documentation on what can be matched:

  * XML::Attr#deconstruct_keys
  * XML::Document#deconstruct_keys
  * XML::Namespace#deconstruct_keys
  * XML::Node#deconstruct_keys
  * XML::DocumentFragment#deconstruct
  * XML::NodeSet#deconstruct

We welcome feedback on this API at #2360.

Dependencies

CRuby

  * Vendored libiconv is updated to v1.17

JRuby

  * This version of Nokogiri uses jar-dependencies to manage most of the
    vendored Java dependencies. nokogiri -v now outputs maven metadata for all
    Java dependencies, and Nokogiri::VERSION_INFO also contains this metadata.
    [#2432]
  * HTML parsing is now provided by
    net.sourceforge.htmlunit:neko-htmlunit:2.61.0 (previously Nokogiri used a
    fork of org.cyberneko.html:nekohtml)
  * Vendored Jing is updated from com.thaiopensource:jing:20091111 to
    nu.validator:jing:20200702VNU.
  * New dependency on net.sf.saxon:Saxon-HE:9.6.0-4 (via
    nu.validator:jing:20200702VNU).

Added

  * Node#wrap and NodeSet#wrap now also accept a Node type argument, which will
    be duped for each wrapper. For cases where many nodes are being wrapped,
    creating a Node once using Document#create_element and passing that Node
    multiple times is significantly faster than re-parsing markup on each call.
    [#2657]
  * [CRuby] Invocation of custom XPath or CSS handler functions may now use the
    nokogiri namespace prefix. Historically, the JRuby implementation required
    this namespace but the CRuby implementation did not support it. It's
    recommended that all XPath and CSS queries use the nokogiri namespace going
    forward. Invocation without the namespace is planned for deprecation in
    v1.15.0 and removal in a future release. [#2147]
  * HTML5::Document#quirks_mode and HTML5::DocumentFragment#quirks_mode expose
    the quirks mode used by the parser.

Improved

Functional

  * HTML5 parser update to reflect changes to the living specification:
      + Add the <search> element by domenic - whatwg/html
      + Remove parse error for <template><tr></tr> </template> by zcorpan -
        whatwg/html

Performance

  * Serialization of HTML5 documents and fragments has been re-implemented and
    is ~10x faster than previous versions. [#2596, #2569]
  * Parsing of HTML5 documents is ~90% faster thanks to additional compiler
    optimizations being applied. [#2639]
  * Compare Encoding objects rather than compare their names. This is a slight
    performance improvement and is future-proof. [#2454] (Thanks, @casperisfine
    !)

Error handling

  * Document#canonicalize now raises an exception if inclusive_namespaces is
    non-nil and the mode is inclusive, i.e. XML_C14N_1_0 or XML_C14N_1_1.
    inclusive_namespaces can only be passed with exclusive modes, and
    previously this silently failed.
  * Empty CSS selectors now raise a clearer Nokogiri::CSS::SyntaxError message,
    "empty CSS selector". Previously the exception raised from the bowels of
    racc was "unexpected '$' after ''". [#2700]
  * [CRuby] XML::Reader parsing errors encountered during Reader#attribute_hash
    and Reader#namespaces now raise an XML::SyntaxError. Previously these
    methods would return nil and users would generally experience
    NoMethodErrors from elsewhere in the code.
  * Prefer ruby_xmalloc to malloc within the C extension. [#2480] (Thanks,
    @Garfield96!)

Installation

  * Avoid compile-time conflict with system-installed gumbo.h on OpenBSD. [#
    2464]
  * Remove calls to vasprintf in favor of platform-independent rb_vsprintf
  * Installation from source on systems missing libiconv will once again
    generate a helpful error message (broken since v1.11.0). [#2505]
  * [CRuby+OSX] Compiling from source on MacOS will use the clang option
    -Wno-unknown-warning-option to avoid errors when Ruby injects options that
    clang doesn't know about. [#2689]

Fixed

  * SAX::Parser's encoding attribute will not be clobbered when an alternative
    encoding is passed into SAX::Parser#parse_io. [#1942] (Thanks, @kp666!)
  * Serialized HTML4::DocumentFragment will now be properly encoded. Previously
    this empty string was encoded as US-ASCII. [#2649]
  * Node#wrap now uses the parent as the context node for parsing wrapper
    markup, falling back to the document for unparented nodes. Previously the
    document was always used.
  * [CRuby] UTF-16-encoded documents longer than ~4000 code points now
    serialize properly. Previously the serialized document was corrupted when
    it exceeded the length of libxml2's internal string buffer. [#752]
  * [CRuby] The HTML5 parser now correctly handles text at the end of form
    elements.
  * [CRuby] HTML5::Document#fragment now always uses body as the parsing
    context. Previously, fragments were parsed in the context of the associated
    document's root node, which allowed for inconsistent parsing. [#2553]
  * [CRuby] Nokogiri::HTML5::Document#url now correctly returns the URL passed
    to the constructor method. Previously it always returned nil. [#2583]
  * [CRuby] HTML5 encoding detection is now case-insensitive with respect to
    meta tag charset declaration. [#2693]
  * [CRuby] HTML5 fragment parsing in context of an annotation-xml node now
    works. Previously this rarely-used path invoked rb_funcall with incorrect
    parameters, resulting in an exception, a fatal error, or potentially a
    segfault. [#2692]
  * [CRuby] HTML5 quirks mode during fragment parsing more closely matches
    document parsing. [#2646]
  * [JRuby] Fixed a bug with adding the same namespace to multiple nodes via #
    add_namespace_definition. [#1247]
  * [JRuby] NodeSet#[] now raises a TypeError if passed an invalid parameter
    type. [#2211]

Deprecated

  * Nokogiri.install_default_aliases is deprecated in favor of
    Nokogiri::EncodingHandler.install_default_aliases. This is part of a
    private API and is probably not called by anybody, but we'll go through a
    deprecation cycle before removal anyway. [#2643, #2446]

Changed

  * [CRuby+OSX] Technical note: On MacOS Ruby 3.2, the symbols from libxml2 and
    libxslt are no longer exported. Ruby 3.2 adopted new features from the
    Darwin toolchain that make it challenging to continue to support this
    rarely-used binary API. A future minor release of Nokogiri may remove these
    symbols (and others) entirely. Feedback from downstream gem maintainers is
    welcome at #2746, where you'll also be able to read deeper context on this
    decision.

Thank you!

The following people and organizations were kind enough to sponsor @flavorjones
or the Nokogiri project during the development of v1.14.0:

  * Gotz Gorisch @GoetzGoerisch
  * Airbnb @airbnb
  * Kyohei Nanba @kyo-nanba
  * Maxime Gauthier @biximilien
  * @renuo
  * @dbootyfvrt
  * YOSHIDA Katsuhiko @kyoshidajp
  * Homebrew @Homebrew
  * David Vrensk @dvrensk
  * Alex Daragiu @daragiu
  * Github @github
  * Julian Joseph @Julian88Tex
  * Charles Simon-Meunier @csimonmeunier
  * Ben Slaughter @benSlaughter
  * Garen Torikian @gjtorikian
  * Frank Groeneveld @frenkel
  * Hiroshi SHIBATA @hsbt

(tsutsui)

doc: Updated textproc/zet to 0.2.6

(pin)

textproc/zet: update to 0.2.6

[0.2.6] - 2023-02-02

- Abandon trying to have a Minimum Supported Rust Version
  (maybe once we're 1.0?)
- Use cargo-dist to create the release
- Move `for_byte_lines` from `NextOperand` to a trait
  (thanks to [ysthakur] for the suggestion)

(pin)

doc: Updated sysutils/broot to 1.20.0

(pin)

sysutils/broot: update to 1.20.0

v1.20.0 - 2023-02-03
- unless overriden, /proc is now no-enter, which solves freezes when searchin
  on / in some system - See #639
- SVG files now rendered as images in the preview panel
- new version of the nushell function. You should be prompted for an update -
  Fix #656 - Thanks @FrancescElies and @mediumrarez
- no-hide special paths - Thanks @Avlllo
- preview can now be opened on directories, showing their first level -
  Fix #405
- better determine whether the terminal is white or dark in some (probably
  rare) cases - See Canop/terminal-light#2

(pin)

doc: Updated editors/tp-note to 1.20.1nb2

(pin)

editors/tp-note: fix build

Upstream update of the release notes generated a new hash that was commited
into the release tag causing a checksum missmatch at our end.

Regression fix of the viewer feature (under Window only)

This commit fixes some bugs introduced since v1.19.1. These regressions
only appear when compiling for Windows:

* Fix 70b615f: "Bug fix: path method not appropriate for URLs"
  (bug introduced in commit 97d2be7)
* Erroneous path handling when compiling for Windows:
  - The `.is_absolute()` path method acts differently under Windows.
    Fix in: c648342
  - Under Windows the `std::path::Component`s `Prefix()` and `RoodDir`
    need special care. Fixes in: 632e31a and 3ea8de2
  - Rust's Windows Paths optionally have `\` as path separator:
    Fix in: 0b61979

As mentioned above, these fixes only concern the proper function of
the viewer when compiled for Windows. None of the bugs have security
implications.  Nevertheless, I decided to yank the whole v1.19 series
because for a good user experience the viewer is expected to work.

(pin)

doc: Updated devel/difftastic to 0.43.0

(pin)

Updated ham/uhd, multimedia/libde265

(adam)

libde265: updated to 1.0.11

v1.0.11 - maintenance release
fixed generation of pkgconfig file with autotools
fixed crashes recently detected by fuzzing

(adam)

devel/difftastic: update to 0.43.0

Parsing
- Added support for R.
- Difftastic now considers gzipped files to be binary, even if they happen
  to be valid UTF-16.

Diffing
- Fixed a rare crash when one file had repeated lists that partially matched
  the other side.

Display
- Fixed an issue with single-column display when colour is disabled, where
  newlines were missing from the output.

Command Line Interface
- --help now shows the default value for all arguments (it was previously
  missing --color and --display).
- --color can now be configured with the environment variable DFT_COLOR.
- Fixed an issue where git on Windows would fail with an error about
  /dev/null.

(pin)

uhd: updated to 4.4.0.0

The UHD 4.4.0.0 release adds:

Raw UDP Traffic to Remote Destination for RFNoC-enabled devices.
Bug fixes and improvements for USRP devices. See the changelog.

(adam)

libsamplerate: Fix building failure for PREFER_PKGSRC=yes

pkgsrc changes:
---------------
  * Add blk3 of terminfo to fix a linking error about ncurses.
  * Remove reference of WRKSRC in PKGCONFIG_OVERRIDE to make pkglint fine.
  * Bump revision.

(triaxx)

doc: Updated ruby-gnome packages to 4.1.0

(tsutsui)

ruby-gnome: update to 4.1.0.

Upstream changes:
https://github.com/ruby-gnome/ruby-gnome/releases/tag/4.1.0
https://github.com/ruby-gnome/ruby-gnome/releases/tag/4.0.9
https://github.com/ruby-gnome/ruby-gnome/releases/tag/4.0.8
https://github.com/ruby-gnome/ruby-gnome/releases/tag/4.0.7
https://github.com/ruby-gnome/ruby-gnome/releases/tag/4.0.6

Ruby-GNOME 4.1.0: 2023-01-31

This is a bug fix release of 4.0.9.

Changes

Ruby/GLib2

  * Fixes

      + Fixed a memory leak introduced in 4.0.9.

Ruby/Handy

  * Improvements

      + Renamed gem name to libhandy from handy because handy gem
        already exists.

Ruby-GNOME 4.0.9: 2023-01-31

This is a bug fix release of 4.0.8.

Changes

Ruby/GLib2

  * Fixes

      + Fixed a crash bug that is related to closure and GC.

Ruby-GNOME 4.0.8: 2023-01-15

This is a bug fix release of 4.0.7.

Changes

Ruby/GLib2

  * Fixes

      + Fixed a bug that gems that depend on glib2 gem can't find
        glib-enum-types.h.

Ruby-GNOME 4.0.7: 2023-01-15

This is a release for Ruby 3.2 on Windows again.

Changes

Ruby/GLib2

  * Improvements

      + Really added support for Ruby 3.2 on Windows.
        [GH-1535]
        [Reported by dsisnero]

Thanks

  * dsisnero

Ruby-GNOME 4.0.6: 2023-01-08

This is a release for Ruby 3.2 on Windows.

Changes

Ruby/GLib2

  * Improvements

      + Added support for Ruby 3.2 on Windows.
        [GH-1533]
        [Reported by dsisnero]

Thanks

  * dsisnero

(tsutsui)

doc: Updated lang/php81 to 8.1.15

(taca)

lang/php81: update to 8.1.15

02 Feb 2023, PHP 8.1.15

- Apache:
  . Fixed bug GH-9949 (Partial content on incomplete POST request). (cmb)

- Core:
  . Fixed bug GH-10072 (PHP crashes when execute_ex is overridden and a __call
    trampoline is used from internal code). (Derick)
  . Fix GH-10251 (Assertion `(flag & (1<<3)) == 0' failed). (nielsdos)
  . Fix wrong comparison in block optimisation pass after opcode update. (nieldsdos)

- Date:
  . Fixed bug GH-9891 (DateTime modify with unixtimestamp (@) must work like
    setTimestamp). (Derick)
  . Fixed bug GH-10218 (DateTimeZone fails to parse time zones that contain the
    "+" character). (Derick)

- Fiber:
  . Fix assertion on stack allocation size. (nielsdos)

- FPM:
  . Fixed bug GH-9981 (FPM does not reset fastcgi.error_header).
    (Jakub Zelenka)
  . Fixed bug #67244 (Wrong owner:group for listening unix socket).
    (Jakub Zelenka)

- Hash:
  . Handle exceptions from __toString in XXH3's initialization (nielsdos)

- LDAP:
  . Fixed bug GH-10112 (LDAP\Connection::__construct() refers to ldap_create()).
    (cmb)

- MBString:
  . Fixed: mb_strlen (and a couple of other mbstring functions) would wrongly treat 0x80, 0xFD, 0xFE, 0xFF, and certain other byte values as the first byte of a 2-byte SJIS character. (Alex Dowad)

- Opcache:
  . Fix inverted bailout value in zend_runtime_jit() (Max Kellermann).
  . Fix access to uninitialized variable in accel_preload(). (nielsdos)
  . Fix zend_jit_find_trace() crashes. (Max Kellermann)
  . Added missing lock for EXIT_INVALIDATE in zend_jit_trace_exit. (Max Kellermann)

- Phar:
  . Fix wrong flags check for compression method in phar_object.c (nielsdos)

- PHPDBG:
  . Fix undefined behaviour in phpdbg_load_module_or_extension(). (nielsdos)
  . Fix NULL pointer dereference in phpdbg_create_conditional_breal(). (nielsdos)
  . Fix GH-9710: phpdbg memory leaks by option "-h" (nielsdos)
  . Fix phpdbg segmentation fault in case of malformed input (nielsdos)

- Posix:
  . Fix memory leak in posix_ttyname() (girgias)

- Standard:
  . Fix GH-10187 (Segfault in stripslashes() with arm64). (nielsdos)
  . Fix substr_replace with slots in repl_ht being UNDEF. (nielsdos)

- TSRM:
  . Fixed Windows shmget() wrt. IPC_PRIVATE. (Tyson Andre)

- XMLWriter
  . Fix missing check for xmlTextWriterEndElement (nielsdos)

(taca)

doc: Updated lang/php82 to 8.2.2

(taca)

lang/php82: update to 8.2.2

02 Feb 2023, PHP 8.2.2

- Core:
  . Fixed bug GH-10200 (zif_get_object_vars:
    Assertion `!(((__ht)->u.flags & (1<<2)) != 0)' failed). (nielsdos)
  . Fix GH-10251 (Assertion `(flag & (1<<3)) == 0' failed). (nielsdos)
  . Fix GH-10240 (Assertion failure when adding more than 2**30 elements to an
    unpacked array). (Arnaud)
  . Fix GH-9735 (Fiber stack variables do not participate in cycle collector).
    (Arnaud)
  . Fix GH-9675 (Broken run_time_cache init for internal enum methods).
    (Petar Obradović, Bob)

- FPM:
  . Fixed bug #77106 (Missing separator in FPM FastCGI errors). (Jakub Zelenka)
  . Fixed bug GH-9981 (FPM does not reset fastcgi.error_header).
    (Jakub Zelenka)
  . Fixed bug #68591 (Configuration test does not perform UID lookups).
    (Jakub Zelenka)
  . Fixed memory leak when running FPM config test. (Jakub Zelenka)
  . Fixed bug #67244 (Wrong owner:group for listening unix socket).
    (Jakub Zelenka)

- Hash:
  . Handle exceptions from __toString in XXH3's initialization (nielsdos)

- LDAP:
  . Fixed bug GH-10112 (LDAP\Connection::__construct() refers to ldap_create()).
    (cmb)

- Opcache:
  . Fix inverted bailout value in zend_runtime_jit() (Max Kellermann).
  . Fix access to uninitialized variable in accel_preload(). (nielsdos)
  . Fix zend_jit_find_trace() crashes. (Max Kellermann)
  . Added missing lock for EXIT_INVALIDATE in zend_jit_trace_exit. (Max Kellermann)

- Phar:
  . Fix wrong flags check for compression method in phar_object.c (nielsdos)

- PHPDBG:
  . Fix undefined behaviour in phpdbg_load_module_or_extension(). (nielsdos)
  . Fix NULL pointer dereference in phpdbg_create_conditional_breal(). (nielsdos)
  . Fix GH-9710: phpdbg memory leaks by option "-h" (nielsdos)
  . Fix phpdbg segmentation fault in case of malformed input (nielsdos)

- Posix:
  . Fix memory leak in posix_ttyname() (girgias)

- Random:
  . Fixed bug GH-10247 (Theoretical file descriptor leak for /dev/urandom). (timwolla)

- Standard:
  . Fix GH-10187 (Segfault in stripslashes() with arm64). (nielsdos)
  . Fixed bug GH-10214 (Incomplete validation of object syntax during
    unserialize()). (timwolla)
  . Fix substr_replace with slots in repl_ht being UNDEF. (nielsdos)

- XMLWriter
  . Fix missing check for xmlTextWriterEndElement (nielsdos)

(taca)

+sqlc

(bsiegert)

doc: Added databases/sqlc version 1.16.0

(bsiegert)

New package for sqlc-1.16.0.

sqlc generates type-safe code from SQL. Here's how it works:

1. You write queries in SQL.
2. You run sqlc to generate code with type-safe interfaces to those queries.
3. You write application code that calls the generated code.

sqlc generates idiomatic code like you would write yourself.

(bsiegert)

gnunet: add forogotten plist file

(nikita)

Updated ham/gnuradio-doxygen, devel/py-pylint

(adam)

py-pylint: updated to 2.16.1

2.16.1
Fix a crash happening for python interpreter < 3.9 following a failed typing
update.

(adam)

gnuradio-doxygen: fix TOOL_DEPENDS; auto-generate PLIST

(adam)

options: add latex-generate

(nikita)

gnunet: fix build, move perl plist files

(nikita)

ruby-youplot: add ALTERNATIVES file

(wiz)

Updated lang/nodejs, lang/nodejs18

(adam)

nodejs18: updated to 18.14.0

Version 18.14.0 'Hydrogen' (LTS)

Notable changes

Updated npm to 9.3.1

Based on the list of guidelines we've established on integrating npm and node, here is a grouped list of the breaking changes with the reasoning as to why they fit within the guidelines linked above. Note that all the breaking changes were made in 9.0.0. All subsequent minor and patch releases after npm@9.0.0 do not contain any breaking changes.

Engines

Explanation: the node engines supported by npm@9 make it safe to allow npm@9 as the default in any LTS version of 14 or 16, as well as anything later than or including 18.0.0
npm is now compatible with the following semver range for node: ^14.17.0 || ^16.13.0 || >=18.0.0
Filesystem

Explanation: when run as root previous versions of npm attempted to manage file ownership automatically on the user's behalf. this behavior was problematic in many cases and has been removed in favor of allowing users to manage their own filesystem permissions
npm will no longer attempt to modify ownership of files it creates.
Auth

Explanation: any errors thrown from users having unsupported auth configurations will show npm config fix in the remediation instructions, which will allow the user to automatically have their auth config fixed.
The presence of auth related settings that are not scoped to a specific registry found in a config file is no longer supported and will throw errors.
Login

Explanation: the default auth-type has changed and users can opt back into the old behavior with npm config set auth-type=legacy. login and adduser have also been seperated making each command more closely match it's name instead of being aliases for each other.
Legacy auth types sso, saml & legacy have been consolidated into "legacy".
auth-type defaults to "web"
login and adduser are now separate commands that send different data to the registry.
auth-type config values web and legacy only try their respective methods, npm no longer tries them all and waits to see which one doesn't fail.
Tarball Packing

Explanation: previously using multiple ignore/allow lists when packing was an undefined behavior, and now the order of operations is strictly defined when packing a tarball making it easier to follow and should only affect users relying on the previously undefined behavior.
npm pack now follows a strict order of operations when applying ignore rules. If a files array is present in the package.json, then rules in .gitignore and .npmignore files from the root will be ignored.
Display/Debug/Timing Info

Explanation: these changes center around the display of information to the terminal including timing and debug log info. We do not anticipate these changes breaking any existing workflows.
Links generated from git urls will now use HEAD instead of master as the default ref.
timing has been removed as a value for --loglevel.
--timing will show timing information regardless of --loglevel, except when --silent.
When run with the --timing flag, npm now writes timing data to a file alongside the debug log data, respecting the logs-dir option and falling back to <CACHE>/_logs/ dir, instead of directly inside the cache directory.
The timing file data is no longer newline delimited JSON, and instead each run will create a uniquely named <ID>-timing.json file, with the <ID> portion being the same as the debug log.
npm now outputs some json errors on stdout. Previously npm would output all json formatted errors on stderr, making it difficult to parse as the stderr stream usually has logs already written to it.
Config/Command Deprecations or Removals

Explanation: install-links is the only config or command in the list that has an effect on package installs. We fixed a number of issues that came up during prereleases with this change. It will also only be applied to new package trees created without a package-lock.json file. Any install with an existing lock file will not be changed.
Deprecate boolean install flags in favor of --install-strategy.
npm config set will no longer accept deprecated or invalid config options.
install-links config defaults to "true".
node-version config has been removed.
npm-version config has been removed.
npm access subcommands have been renamed.
npm birthday has been removed.
npm set-script has been removed.
npm bin has been removed (use npx or npm exec to execute binaries).

(adam)

nodejs: updated to 19.6.0

Version 19.6.0 (Current)

Notable changes

ESM: Leverage loaders when resolving subsequent loaders

Loaders now apply to subsequent loaders, for example: --experimental-loader ts-node --experimental-loader loader-written-in-typescript.

Upgrade npm to 9.4.0

Added --install-strategy=linked option for installations similar to pnpm.

Other notable changes

(SEMVER-MINOR) fs: add statfs() functions (Colin Ihrig)
(SEMVER-MINOR) vm: expose cachedDataRejected for vm.compileFunction (Anna Henningsen)
(SEMVER-MINOR) v8: support gc profile (theanarkh)
(SEMVER-MINOR) src,lib: add constrainedMemory API for process (theanarkh)
(SEMVER-MINOR) buffer: add isAscii method (Yagiz Nizipli)
(SEMVER-MINOR) test_runner: add reporters (Moshe Atlow)

(adam)

doc/TODO: + libreoffice-7.5.

(wiz)

devel/Makefile: + hasktags

(pho)

doc: Added devel/hasktags version 0.72.0

(pho)

devel/hasktags: import hasktags-0.72.0

Produces ctags "tags" and etags "TAGS" files for Haskell programs.

(pho)

converters/Makefile: + hs-json

(pho)

doc: Added converters/hs-json version 0.10

(pho)

converters/hs-json: import hs-json-0.10

This library provides a parser and pretty printer for converting between
Haskell values and JSON.

(pho)

gnunet: add missing tool

move post-configure steps to post-install since it installs
files into ${DESTDIR}

(wiz)

Add proper entry for OSX_SDK_MAP for latest Big Sur update (11.7.x).

(jklos)

updated editors/nano to 7.2

changes from 7.1 according to ChangeLog:
Benno Schulenberg (11):
      bindings: let ^/ toggle between the 'search' and 'gotoline' menus
      bump version numbers and add a news item for the 7.2 release
      copyright: update the years for the FSF
      docs: give ^K and ^U some useful function in the alternative bindings
      docs: put the binding of ^Y after its unbinding, for it to be effective
      gnulib: update to its current upstream state
      input: disallow bracketed pastes when in view mode
      syntax: html: colorize specially the other two emphasizing tags too
      tweaks: avoid warnings when compiling with -Wpedantic
      tweaks: rewrap an old news item
      tweaks: separate a special thanks from the preceding ones

(schwarz)

mk/platform/Darwin.mk: add OSX_SDK_MAP for 13.2

(tnn)

inkscape: remove unintentionally commited BUILDLINK_TRANSFORM, not needed

(tnn)

doc: Updated graphics/inkscape to 1.2.2

(tnn)

inkscape: update to 1.2.2

Maintenance and bugfix release, which brings 4 crash fixes, over 25 bug
fixes, 5 fixes for extension bugs and 13 improved UI translations.

(tnn)

mongodb3: fix build failure, probably introduced by boost update

(tnn)

doc: Updated misc/libreoffice to 7.4.5.1

(ryoon)

libreoffice: Update to 7.4.5.1

CHangelog:
7.4.5.1:
Bugs fixed compared to 7.4.4 RC2:

    tdf#153059 CRASH: Clicking on the header/footer button after scrolling [Caol叩n McNamara]

(ryoon)

doc: Updated security/openssh to 9.2p1

(wiz)

Changes since OpenSSH 9.1
=========================

This release fixes a number of security bugs.

Security
========

This release contains fixes for two security problems and a memory
safety problem. The memory safety problem is not believed to be
exploitable, but we report most network-reachable memory faults as
security bugs.

* sshd(8): fix a pre-authentication double-free memory fault
  introduced in OpenSSH 9.1. This is not believed to be exploitable,
  and it occurs in the unprivileged pre-auth process that is
  subject to chroot(2) and is further sandboxed on most major
  platforms.

* ssh(8): in OpenSSH releases after 8.7, the PermitRemoteOpen option
  would ignore its first argument unless it was one of the special
  keywords "any" or "none", causing the permission list to fail open
  if only one permission was specified. bz3515

* ssh(1): if the CanonicalizeHostname and CanonicalizePermittedCNAMEs
  options were enabled, and the system/libc resolver did not check
  that names in DNS responses were valid, then use of these options
  could allow an attacker with control of DNS to include invalid
  characters (possibly including wildcards) in names added to
  known_hosts files when they were updated. These names would still
  have to match the CanonicalizePermittedCNAMEs allow-list, so
  practical exploitation appears unlikely.

Potentially-incompatible changes
--------------------------------

* ssh(1): add a new EnableEscapeCommandline ssh_config(5) option that
  controls whether the client-side ~C escape sequence that provides a
  command-line is available. Among other things, the ~C command-line
  could be used to add additional port-forwards at runtime.

  This option defaults to "no", disabling the ~C command-line that
  was previously enabled by default. Turning off the command-line
  allows platforms that support sandboxing of the ssh(1) client
  (currently only OpenBSD) to use a stricter default sandbox policy.

New features
------------

* sshd(8): add support for channel inactivity timeouts via a new
  sshd_config(5) ChannelTimeout directive. This allows channels that
  have not seen traffic in a configurable interval to be
  automatically closed. Different timeouts may be applied to session,
  X11, agent and TCP forwarding channels.

* sshd(8): add a sshd_config UnusedConnectionTimeout option to
  terminate client connections that have no open channels for a
  length of time. This complements the ChannelTimeout option above.

* sshd(8): add a -V (version) option to sshd like the ssh client has.

* ssh(1): add a "Host" line to the output of ssh -G showing the
  original hostname argument. bz3343

* scp(1), sftp(1): add a -X option to both scp(1) and sftp(1) to
  allow control over some SFTP protocol parameters: the copy buffer
  length and the number of in-flight requests, both of which are used
  during upload/download. Previously these could be controlled in
  sftp(1) only. This makes them available in both SFTP protocol
  clients using the same option character sequence.

* ssh-keyscan(1): allow scanning of complete CIDR address ranges,
  e.g.  "ssh-keyscan 192.168.0.0/24". If a CIDR range is passed, then
  it will be expanded to all possible addresses in the range
  including the all-0s and all-1s addresses. bz#976

* ssh(1): support dynamic remote port forwarding in escape
  command-line's -R processing. bz#3499

Bugfixes
--------

* ssh(1): when restoring non-blocking mode to stdio fds, restore
  exactly the flags that ssh started with and don't just clobber them
  with zero, as this could also remove the append flag from the set.
  bz3523

* ssh(1): avoid printf("%s", NULL) if using UserKnownHostsFile=none
  and a hostkey in one of the system known hosts file changes.

* scp(1): switch scp from using pipes to a socket-pair for
  communication with its ssh sub-processes, matching how sftp(1)
  operates.

* sshd(8): clear signal mask early in main(); sshd may have been
  started with one or more signals masked (sigprocmask(2) is not
  cleared on fork/exec) and this could interfere with various things,
  e.g. the login grace timer. Execution environments that fail to
  clear the signal mask before running sshd are clearly broken, but
  apparently they do exist.

* ssh(1): warn if no host keys for hostbased auth can be loaded.

* sshd(8): Add server debugging for hostbased auth that is queued and
  sent to the client after successful authentication, but also logged
  to assist in diagnosis of HostbasedAuthentication problems. bz3507

* ssh(1): document use of the IdentityFile option as being usable to
  list public keys as well as private keys. GHPR352

* sshd(8): check for and disallow MaxStartups values less than or
  equal to zero during config parsing, rather than failing later at
  runtime.  bz3489

* ssh-keygen(1): fix parsing of hex cert expiry times specified on
  the command-line when acting as a CA.

* scp(1): when scp(1) is using the SFTP protocol for transport (the
  default), better match scp/rcp's handling of globs that don't match
  the globbed characters but do match literally (e.g. trying to
  transfer a file named "foo.[1]"). Previously scp(1) in SFTP mode
  would not match these pathnames but legacy scp/rcp mode would.
  bz3488

* ssh-agent(1): document the "-O no-restrict-websafe" command-line
  option.

* ssh(1): honour user's umask(2) if it is more restrictive then the
  ssh default (022).

Portability
-----------

* sshd(8): allow writev(2) in the Linux seccomp sandbox. This seems
  to be used by recent glibcs at least in some configurations during
  error conditions. bz3512.

* sshd(8): simply handling of SSH_CONNECTION PAM env var, removing
  global variable and checking the return value from pam_putenv.
  bz3508

* sshd(8): disable SANDBOX_SECCOMP_FILTER_DEBUG that was mistakenly
  enabled during the OpenSSH 9.1 release cycle.

* misc: update autotools and regenerate the config files using the
  latest autotools

* all: use -fzero-call-used-regs=used on clang 15 instead of
  -fzero-call-used-reg=all, as some versions of clang 15 have
  miscompile code when it was enabled. bz3475

* sshd(8): defer PRNG seeding until after the initial closefrom(2)
  call. PRNG seeding will initialize OpenSSL, and some engine
  providers (e.g. Intel's QAT) will open descriptors for their own
  use that closefrom(2) could clobber. bz3483

* misc: in the poll(2)/ppoll(2) compatibility code, avoid assuming
  the layout of fd_set.

* sftp-server(8), ssh-agent(1): fix ptrace(2) disabling on older
  FreeBSD kernels. Some versions do not support using id 0 to refer
  to the current PID for procctl, so try again with getpid()
  explicitly before failing.

* configure.ac: fix -Wstrict-prototypes in configure test code.
  Clang 16 now warns on this and legacy prototypes will be removed
  in C23. GHPR355

* configure.ac: fix setres*id checks to work with clang-16. glibc
  has the prototypes for setresuid behind _GNU_SOURCE, and clang 16
  will error out on implicit function definitions. bz3497

(wiz)

Updated net/rabbitmq-c, devel/bpython

(adam)

bpython: updated to 0.24

0.24
----

General information:
* This release is focused on Python 3.11 support.

New features:
* Add more keywords to trigger auto-deindent.
  Thanks to Eric Burgess

Fixes:
* Improve inspection of builtin functions.

Changes to dependencies:
* wheel is no required as part of pyproject.toml's build dependencies

Support for Python 3.11 has been added.

(adam)

rabbitmq-c: updated to 0.12.0

rabbitmq-c v0.12.0

rabbitmq-c now compiles as C99
CMake 3.12 is new minimum required version
CMake -DBUILD_TESTS renamed to -DBUILD_TESTING
CMake -DBUILD_EXAMPLES now defaults to OFF
CMake -DBUILD_TOOLS now defaults to OFF
Unix library version now matches the release version, SONAME remains the same.
Modernized CMake scripts to better adopt modern standards
Public headers have moved to rabbitmq-c/ directory
Dropped support for MSVC older than VS 2010
Dropped support for OpenSSL v1.1.0 and older
Minimum SSL version set to TLSv1.2
Updated to RabbitMQ framing to v3.8.19

(adam)

doc: Updated devel/pkgconf to 1.9.4

(wiz)

pkgconf: update to 1.9.4.

Changes from 1.9.3 to 1.9.4:
----------------------------

* Fix a buffer overflow vulnerability involving very large variable expansions.
  CVE-2023-24056

* Fix a bunch of minor regressions with the solver.

* Create separate solutions for `--cflags` and `--libs` when `--static` is not
  used.

* Remove final trailing whitespace in pkgconf_fragment_render_buf().

* Revert broken pkg.m4 change involving querying module versions in
  PKG_CHECK_MODULES.

* Fix handling of tildes in version strings.

* Various C99 formatting string fixes involving SIZE_FMT_SPECIFIER.

Changes from 1.9.2 to 1.9.3:
----------------------------

* Fix a bunch of minor code issues pointed out using Clang static analyzer.

* New API: pkgconf_solution_free(), which frees a compiled solution graph.

* Fix behavior when overriding global variables with `--define-variable`.

Changes from 1.9.1 to 1.9.2:
----------------------------

* Do not try to break dependency cycles across dependency lists.  This causes
  the solved graph to sometimes miss required dependency nodes because the
  solver detected an incorrect dependency cycle.

* New API: pkgconf_queue_solve(), which replaces pkgconf_queue_apply().
  pkgconf_queue_apply is now deprecated and should not be used in new code.

Changes from 1.9.0 to 1.9.1:
----------------------------

* Skip graph flattening and traversal for query types which only make sense
  for a single pkg-config module.

  The old solver walked these graphs with --maximum-traverse-depth=1 in
  these cases, but this is no longer helpful because the graph is flattened
  by the new solver.

Changes from 1.8.0 to 1.9.0:
----------------------------

* pkgconf 1.9.0 is the first testing release in the pkgconf 2.0 development
  series.  While it is believed to be suitable for production, there may be
  bugs due to the overall redesign of the solver and other initiatives.
  Additionally, a future release of pkgconf plans will have additional ABI
  breaks for the libpkgconf library before the pkgconf 2.0 release is cut.

* There is now a new solver that is designed to provide higher performance
  with complicated graphs, which works by flattening the dependency graph
  into a smaller set of dependencies.  This graph can then be evaluated
  instead of the original dependency graph without having to visit every
  edge in the graph.

  NOTE: This solver, while providing significant performance improvements,
  does so, at the cost of changed behavior for some edge cases (such as
  circular dependencies).

* Bug fixes:
  - Resolved several memory leaks with edge cases when using libpkgconf
    directly.
  - pkgconf CLI now consistently frees libpkgconf resources under all
    circumstances.
  - SYSROOT rules are no longer applied to `-uninstalled` packages by
    default.  Use `PKG_CONFIG_PKGCONF1_SYSROOT_RULES` for legacy behavior.

* A new `--license` selector has been added to the pkgconf CLI.  This uses
  SPDX expressions which can be set as the `License` field in `.pc` files.
  See the `pc(5)` manpage for more information.

* The canonical location for pkgconf maintenance going forward is
  <https://gitea.treehouse.systems/ariadne/pkgconf>.  This is presently
  mirrored to GitHub for user convenience, but that mirroring will
  be terminated at some point (due to GitHub Copilot).

(wiz)

go/bootstrap.mk: support setting GO_BOOTSTRAP_REQD=118

for wip/go120

(tnn)

Updated devel/py-astroid, devel/py-pylint

(adam)

py-pylint: updated to 2.16.0

What's new in Pylint 2.16.0?
----------------------------
Release date: 2023-02-01

Changes requiring user actions
------------------------------

- The ``accept-no-raise-doc`` option related to ``missing-raises-doc`` will now
  be correctly taken into account all the time.

  Pylint will no longer raise missing-raises-doc (W9006) when no exceptions are
  documented and accept-no-raise-doc is true (issue 7208).
  If you were expecting missing-raises-doc errors to be raised in that case,
  you
  will now have to add ``accept-no-raise-doc=no`` in your configuration to keep
  the same behavior.

New Features
------------

- Added the ``no-header`` output format. If enabled with
  ``--output-format=no-header``, it will not include the module name in the
  output.

- Added configuration option ``clear-cache-post-run`` to support server-like
  usage.
  Use this flag if you expect the linted files to be altered between runs.

- Add ``--allow-reexport-from-package`` option to configure the
  ``useless-import-alias`` check not to emit a warning if a name
  is reexported from a package.

- Update ``pyreverse`` to differentiate between aggregations and compositions.
  ``pyreverse`` checks if it's an Instance or a Call of an object via method
  parameters (via type hints)
  to decide if it's a composition or an aggregation.

New Checks
----------

- Adds a ``pointless-exception-statement`` check that emits a warning when an
  Exception is created and not assigned, raised or returned.

- Add a ``shadowed-import`` message for aliased imports.

- Add new check called ``unbalanced-dict-unpacking`` to check for unbalanced
  dict unpacking
  in assignment and for loops.

- Add new checker ``positional-only-arguments-expected`` to check for cases
  when
  positional-only arguments have been passed as keyword arguments.

- Added ``singledispatch-method`` which informs that ``@singledispatch`` should
  decorate functions and not class/instance methods.
  Added ``singledispatchmethod-function`` which informs that
  ``@singledispatchmethod`` should decorate class/instance methods and not
  functions.

- Rename ``broad-except`` to ``broad-exception-caught`` and add new checker
  ``broad-exception-raised``
  which will warn if general exceptions ``BaseException`` or ``Exception`` are
  raised.

- Added ``nested-min-max`` which flags ``min(1, min(2, 3))`` to simplify to
  ``min(1, 2, 3)``.

- Extended ``use-dict-literal`` to also warn about call to ``dict()`` when
  passing keyword arguments.

- Add ``named-expr-without-context`` check to emit a warning if a named
  expression is used outside a context like ``if``, ``for``, ``while``, or
  a comprehension.

- Add ``invalid-slice-step`` check to warn about a slice step value of ``0``
  for common builtin sequences.

- Add ``consider-refactoring-into-while-condition`` check to recommend
  refactoring when
  a while loop is defined with a constant condition with an immediate ``if``
  statement to check for ``break`` condition as a first statement.

Extensions
----------

- Add new extension checker ``dict-init-mutate`` that flags mutating a
  dictionary immediately
  after the dictionary was created.

- Added ``bad-dunder-name`` extension check, which flags bad or misspelled
  dunder methods.
  You can use the ``good-dunder-names`` option to allow specific dunder names.

- Added ``consider-using-augmented-assign`` check for ``CodeStyle`` extension
  which flags ``x = x + 1`` to simplify to ``x += 1``.
  This check is disabled by default. To use it, load the code style extension
  with ``load-plugins=pylint.extensions.code_style`` and add
  ``consider-using-augmented-assign`` in the ``enable`` option.

- Add ``magic-number`` plugin checker for comparison with constants instead of
  named constants or enums.
  You can use it with ``--load-plugins=pylint.extensions.magic_value``.

- Add ``redundant-typehint-argument`` message for `typing` plugin for duplicate
  assign typehints.
  Enable the plugin to enable the message with:
  ``--load-plugins=pylint.extensions.typing``.

False Positives Fixed
---------------------

- Fix false positive for ``unused-variable`` and ``unused-import`` when a name
  is only used in a string literal type annotation.

- Document a known false positive for ``useless-suppression`` when disabling
  ``line-too-long`` in a module with only comments and no code.

- ``trailing-whitespaces`` is no longer reported within strings.

- Fix false positive for ``global-variable-not-assigned`` when a global
  variable is re-assigned via an ``ImportFrom`` node.

- Fix false positive for ``use-maxsplit-arg`` with custom split method.

- Fix ``logging-fstring-interpolation`` false positive raised when logging and
  f-string with ``%s`` formatting.

- Fix false-positive for ``used-before-assignment`` in pattern matching
  with a guard.

- Fix ``use-sequence-for-iteration`` when unpacking a set with ``*``.

- Fix ``deprecated-method`` false positive when alias for method is similar to
  name of deprecated method.

- Fix false positive ``assigning-non-slot`` when a class attribute is
  re-assigned.

- Fix false positive for ``too-many-function-args`` when a function call is
  assigned to a class attribute inside the class where the function is defined.

- Fixes false positive ``abstract-method`` on Protocol classes.

- Pylint now understands the ``kw_only`` keyword argument for ``dataclass``.

- Fix false positive for ``undefined-loop-variable`` in ``for-else`` loops that
  use a function
  having a return type annotation of ``NoReturn`` or ``Never``.

- Fix ``used-before-assignment`` for functions/classes defined in type checking
  guard.

- Fix false positive for ``unhashable-member`` when subclassing ``dict`` and
  using the subclass as a dictionary key.

- Fix the message for ``unnecessary-dunder-call`` for ``__aiter__`` and
  ``__aneext__``. Also
  only emit the warning when ``py-version`` >= 3.10.

- Fix ``used-before-assignment`` false positive when else branch calls
  ``sys.exit`` or similar terminating functions.

- Fix a false positive for ``used-before-assignment`` for imports guarded by
  ``typing.TYPE_CHECKING`` later used in variable annotations.

- Fix a false positive for ``simplify-boolean-expression`` when multiple values
  are inferred for a constant.

- ``unnecessary-list-index-lookup`` will not be wrongly emitted if
  ``enumerate`` is called with ``start``.

- Don't warn about ``stop-iteration-return`` when using ``next()`` over
  ``itertools.cycle``.

- Fixes ``used-before-assignment`` false positive when the walrus operator
  is used in a ternary operator.

- Fix ``missing-param-doc`` false positive when function parameter has an
  escaped underscore.

- Fixes ``method-cache-max-size-none`` false positive for methods inheriting
  from ``Enum``.

- ``multiple-statements`` no longer triggers for function stubs using inlined
  ``...``.

- Fix a false positive for ``used-before-assignment`` when a name guarded by
  ``if TYPE_CHECKING:`` is used as a type annotation in a function body and
  later re-imported in the same scope.

- Prevent ``used-before-assignment`` when imports guarded by ``if
  TYPE_CHECKING``
  are guarded again when used.

- Fixes false positive for ``try-except-raise`` with multiple exceptions in one
  except statement if exception are in different namespace.

- Fix ``invalid-name`` errors for ``typing_extension.TypeVar``.

- Fix ``no-kwoa`` false positive for context managers.

- Fix a false positive for ``redefined-variable-type`` when ``async`` methods
  are present.

False Negatives Fixed
---------------------

- Code following a call to  ``quit``,  ``exit``, ``sys.exit`` or ``os._exit``
  will be marked as `unreachable`.

- Emit ``used-before-assignment`` when function arguments are redefined inside
  an inner function and accessed there before assignment.

- Fix a false negative for ``unused-import`` when one module used an import in
  a type annotation that was also used in another module.

- Flag ``superfluous-parens`` if parentheses are used during string
  concatenation.

- Emit ``used-before-assignment`` when relying on names only defined under
  conditions always testing false.

- ``consider-using-join`` can now be emitted for non-empty string separators.

- Emit ``used-before-assignment`` for further imports guarded by
  ``TYPE_CHECKING``

  Previously, this message was only emitted for imports guarded directly under
  ``TYPE_CHECKING``, not guarded two if-branches deep, nor when
  ``TYPE_CHECKING``
  was imported from ``typing`` under an alias.

- Fix a false negative for ``unused-import`` when a constant inside
  ``typing.Annotated`` was treated as a reference to an import.

- ``consider-using-any-or-all`` message will now be raised in cases when
  boolean is initialized, reassigned during loop, and immediately returned.

- Extend ``invalid-slice-index`` to emit an warning for invalid slice indices
  used with string and byte sequences, and range objects.

- Fixes ``unnecessary-list-index-lookup`` false negative when ``enumerate`` is
  called with ``iterable`` as a kwarg.

- ``no-else-return`` or ``no-else-raise`` will be emitted if ``except`` block
  always returns or raises.

- Fix ``dangerous-default-value`` false negative when ``*`` is used.

- ``consider-using-with`` now triggers for ``pathlib.Path.open``.

Other Bug Fixes
---------------

- Fix bug in detecting ``unused-variable`` when iterating on variable.

- Fix bug in scanning of names inside arguments to ``typing.Literal``.
  See https://peps.python.org/pep-0586/#literals-enums-and-forward-references
  for details.

- Update ``disallowed-name`` check to flag module-level variables.

- Pylint will no longer deadlock if a parallel job is killed but fail
  immediately instead.

- Fix ignored files being linted when passed on stdin.

- Fix ``no-member`` false negative when augmented assign is done manually,
  without ``+=``.

- Any assertion on a populated tuple will now receive a ``assert-on-tuple``
  warning.

- ``missing-return-doc``, ``missing-raises-doc`` and ``missing-yields-doc`` now
  respect
  the ``no-docstring-rgx`` option.

- Update ``reimported`` help message for clarity.

- ``consider-iterating-dictionary`` will no longer be raised if bitwise
  operations are used.

- Using custom braces in ``msg-template`` will now work properly.

- Pylint will now filter duplicates given to it before linting. The output
  should
  be the same whether a file is given/discovered multiple times or not.

- Remove ``__index__`` dunder method call from ``unnecessary-dunder-call``
  check.

- Fixed handling of ``--`` as separator between positional arguments and flags.
  This was not actually fixed in 2.14.5.

- Don't crash on ``OSError`` in config file discovery.

- Messages sent to reporter are now copied so a reporter cannot modify the
  message sent to other reporters.

- Fixed a case where custom plugins specified by command line could silently
  fail.

  Specifically, if a plugin relies on the ``init-hook`` option changing
  ``sys.path`` before
  it can be imported, this will now emit a ``bad-plugin-value`` message. Before
  this
  change, it would silently fail to register the plugin for use, but would load
  any configuration, which could have unintended effects.

- Update ``modified_iterating`` checker to fix a crash with ``for`` loops on
  empty list.

- Update wording for ``arguments-differ`` and ``arguments-renamed`` to clarify
  overriding object.

- ``disable-next`` is now correctly scoped to only the succeeding line.

- Fixed a crash in the ``unhashable-member`` checker when using a ``lambda`` as
  a dict key.

- Add ``mailcap`` to deprecated modules list.

- Fix a crash in the ``modified-iterating-dict`` checker involving instance
  attributes.

- ``invalid-class-object`` does not crash anymore when ``__class__`` is
  assigned alongside another variable.

- ``--help-msg`` now accepts a comma-separated list of message IDs again.

- Allow specifying non-builtin exceptions in the ``overgeneral-exception``
  option
  using an exception's qualified name.

- Report ``no-self-argument`` rather than ``no-method-argument`` for methods
  with variadic arguments.

- Fixed an issue where ``syntax-error`` couldn't be raised on files with
  invalid encodings.

- Fix false positive for ``redefined-outer-name`` when aliasing ``typing``
  e.g. as ``t`` and guarding imports under ``t.TYPE_CHECKING``.

- Fixed a crash of the ``modified_iterating`` checker when iterating on a set
  defined as a class attribute.

- Use ``py-version`` to determine if a message should be emitted for messages
  defined with ``max-version`` or ``min-version``.

- Improve ``bad-thread-instantiation`` check to warn if ``target`` is not
  passed in as a keyword argument
  or as a second argument.

- Fixes edge case of custom method named ``next`` raised an astroid error.

- Fixed a multi-processing crash that prevents using any more than 1 thread on
  MacOS.

  The returned module objects and errors that were cached by the linter plugin
  loader
  cannot be reliably pickled. This means that ``dill`` would throw an error
  when
  attempting to serialise the linter object for multi-processing use.

- Fix crash that happened when parsing files with unexpected encoding starting
  with 'utf' like ``utf13``.

- Fix a crash when a child class with an ``__init__`` method inherits from a
  parent class with an ``__init__`` class attribute.

- Fix ``valid-metaclass-classmethod-first-arg`` default config value from "cls"
  to "mcs"
  which would cause both a false-positive and false-negative.

- Fixes a crash in the ``unnecessary_list_index_lookup`` check when using
  ``enumerate`` with ``start`` and a class attribute.

- Fixes a crash in ``stop-iteration-return`` when the ``next`` builtin is
  called without arguments.

- When pylint exit due to bad arguments being provided the exit code will now
  be the expected ``32``.

- Fixes a ``ModuleNotFound`` exception when running pylint on a Django project
  with the ``pylint_django`` plugin enabled.

- Fixed a crash when inferring a value and using its qname on a slice that was
  being incorrectly called.

- Use better regex to check for private attributes.

- Fix issue with new typing Union syntax in runtime context for Python 3.10+.

Other Changes
-------------

- Pylint now provides basic support for Python 3.11.

- Update message for ``abstract-method`` to include child class name.

- Update Pyreverse's dot and plantuml printers to detect when class methods are
  abstract and show them with italic font.
  For the dot printer update the label to use html-like syntax.

- The ``docparams`` extension now considers typing in Numpy style docstrings
  as "documentation" for the ``missing-param-doc`` message.

- Relevant ``DeprecationWarnings`` are now raised with ``stacklevel=2``, so
  they have the callsite attached in the message.

- Add a ``minimal`` option to ``pylint-config`` and its toml generator.

- Add method name to the error messages of ``no-method-argument`` and
  ``no-self-argument``.

- Prevent leaving the pip install cache in the Docker image.

- Add a keyword-only ``compare_constants`` argument to ``safe_infer``.

- Add ``default_enabled`` option to optional message dict. Provides an option
  to disable a checker message by default.
  To use a disabled message, the user must enable it explicitly by adding the
  message to the ``enable`` option.

- Sort ``--generated-rcfile`` output.

- epylint is now deprecated and will be removed in pylint 3.0.0. All emacs and
  flymake related
  files were removed and their support will now happen in an external
  repository :
  https://github.com/emacsorphanage/pylint.

- Adds test for existing preferred-modules configuration functionality.

(adam)

py-astroid: updated to 2.14.1

What's New in astroid 2.14.1?
=============================
* Revert ``CallContext`` change as it caused a ``RecursionError`` regression.

What's New in astroid 2.14.0?
=============================
* Add support for inferring binary union types added in Python 3.10.
* Capture and log messages emitted when inspecting a module for astroid.

(adam)

qt6-qtquick3d: add upstream bug report URL

(wiz)

doc: Updated sysutils/felix to 2.2.4

(pin)

sysutils/felix: update to 2.2.4

v2.2.4 (2023-02-01)

Fixed
- Disable remove_and_yank in the trash dir.
- Clear selection in the select mode if something fails.
- Cursor move after deleting multiple items in select mode.

(pin)

doc: Updated shells/nushell to 0.75.0

(pin)

shells/nushell: update to 0.75.0

Themes of this release/New features
- Changed Unicode escapes in strings (bobhy)
  WARNING
  Breaking Change: You need to update escapes like "\u0043" to "\u{0043}"

  This format allows you to insert any Unicode code point into a string by
  specifying its value as 1 through 6 hex digits (with or without leading
  zeros, upper or lower case). The maximum value is \u{10ffff}, which is the
  largest Unicode code point defined.

  We've simply dropped support for the old format since we're pre-1.0 and
  didn't want to carry forward redundant syntax. You will have to change any
  unicode escapes in your scripts to the new format.

  Why change? The old 4-digit syntax could not natively address recent
  extensions to Unicode standard, such as emoji, CJK extension and traditional
  scripts. There is a cumbersome workaround in the form of surrogate pairs,
  but this is not intuitive.

  Why this change? The new format allows you to specify any Unicode code point
  with a single, predictable syntax. Rust and ECMAScript 6 support the same
  syntax. (Full disclosure: C++, Python and Java don't.)

- -g grapheme cluster flags for str length, str substring, str index-of, split
  words and split chars (webbedspace)

  As you know, str length, str substring, str index-of and split words measure
  the length of strings and substrings in UTF-8 bytes, which is often very
  unintuitive - all non-ASCII characters are of length 2 or more, and splitting
  a non-ASCII character can create garbage characters as a result.
  A much better alternative is to measure the length in extended grapheme
  clusters. In Unicode, a "grapheme cluster" tries to map as closely as
  possible to a single visible character. This means, among many other things:
    - Non-ASCII characters, such as 繧�, are considered single units of length 1,
      no matter how many UTF-8 bytes they use.
    - Combined characters, such as e and 笳故� being combined to produce ﾃｩ, are
      considered single units of length 1.
    - Emojis, including combined emojis such as �汞ｯ�汞ｵ, which is made of the �汞ｯand
      emojis plus a zero-width joiner, are considered single units of length 1.
      (This is a property of "extended" grapheme clusters.)
    - "\r\n" is considered a single unit of length 1.

  The new --graphemes/-g flag can be used with str length, str substring, str
  index-of and split words to enable these length/indexing measurements.

  In addition, the flag has been added to split chars. Notably, this command
  splits on Unicode code points rather than UTF-8 bytes, so it doesn't have
  the issue of turning non-ASCII characters into garbage characters.
  However, combining emoji and combining characters do not correspond to
  single code points, and are split by split chars. The -g flag keeps those
  characters intact.

  These commands also have --utf-8-bytes/-b flags which enable the legacy
  behavior (and split chars has --code-points/-c). These currently do not do
  anything and need not strictly be used, since UTF-8 byte lengths are still
  the default behaviour. However, if this default someday changes, then these
  flags will guarantee that the legacy behaviour is used.

- New enumerate command (JT)
  A new enumerate command will enumerate the input, and add an index and item
  record for each item. The index is the number of the item in the input
  stream, and item is the original value of the item.

  Rather than relying on the --numbered flags of commands like each, with the
  enumerate command we take more modular and composable approach than
  hard-coding flags to our commands. (Note: The --numbered flags have not
  been removed yet.)

- Breaking changes to the web-related commands (Kazuki-Ya,VincenzoCarlino)
  We decided to move some of the important commmand for interacting with HTTP
  under their own http subcommands for better discoverability. The common
  fetch command is now http get.

- main command exported from module defines top-level module command (kubouch)
  Defining and exporting a maincommand from a module allows creating a command
  with the same name as the module.
  The same thing works overlay use as well. Note that the main command
  continues to work the same way as before when running a script.
  Combined with a recent bugfix, this feature allows for nicer way of defining
  known externals and custom completions.
  It is also a stepping stone towards being able to handle directories which
  in turn is a stepping stone towards having proper Nushell packages.

- Progress bar for save command (Xoffio)
  To watch the progress when saving large files you can now pass the
  --progress flag to save. It gives information about the throughput and an
  interactive progress bar if available.

Breaking changes
  - Unicode escapes in strings now use and extended format \u{X...}, any
    scripts using the old syntax \uXXXX will have to be updated. See also #7883.
  - The to url command has been renamed and moved to url build-query as this
    better reflects is role as a nushell specific url command compared to a
    conversion. (#7702)
  - fetch has been renamed to http get (#7796)
  - post has been renamed to http post (#7796)
  - Quotes are trimmed when escaping to cmd.exe (#7740)
  - parse -r now uses zero-indexed rows and uncapitalized columns (#7897)
  - last, skip, drop, take until, take while, skip until, skip while, where,
    reverse, shuffle, append, prepend and sort-by raise error when given
    non-lists (#7623)
  - to csv and to tsv now throw error on unsupported inputs (7850)

(pin)

kid3: add missing file

(wiz)

kid3: add upstream bug report URL

(wiz)

kid3: update HOMEPAGE

(wiz)

doc: Updated audio/kid3 to 3.9.3

(wiz)

kid3: update to 3.9.3.

Switch to Qt6 by default, leave Qt5 as an option.

Thu Jan 12 12:15:43 CET 2023  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.9.3

* New:
  + User action script to fix ID3v2 standard violations.

* Improved:
  + Accept letters in track numbers when setting tags from filename.
  + Embed lyrics: Use letras.com instead of lyrics.wikia.com.

* Fixed:
  + Crash upon termination when qml and qmlview actions have been used.
  + Abort when invalid keys are used for FLAC Vorbis comments.
  + Use of non-BMP Unicode characters with TagLib.
  + Error description when saving files fails.
  + Discogs import.
  + Building with Musl libc.
  + Windows: Handling of common path in multiple command line arguments.

Sat Aug  6 07:14:23 CEST 2022  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.9.2

* New:
  + Support DSDIFF (DFF) files.
  + MP4: Support for audio book chapters, only with Mp4v2Metadata plugin.
  + Norwegian Nynorsk translation.

* Improved:
  + Allow playlist file name formats to be edited.
  + URLs with search results from web browser can be entered in the import
    dialogs (Amazon, Discogs, gnudb.org, MusicBrainz).
  + New style for macOS icon.
  + kid3-cli: Encoding detection for text file import and export.
  + kid3-cli: Set rating as star count with 'set ratingstars'.
  + Build with latest mp4v2 library.

* Fixed:
  + Wrong frames are changed if track number is changed when importing.
  + MP4: Editing of free form atoms with four letter names.
  + Amazon import.

Sat Jan 15 09:01:43 CET 2022  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.9.1

* New:
  + Slovenian translation.

* Fixed:
  + Crash when tags are displayed in the file list, a tag is removed
    and then saved or when the tag is reverted.
  + With "Filename Format/Use for playlist and folder names" it is not
    possible to rename a folder to multiple path components when a
    string replacement for "/" is configured.
  + With "Filename Format/Use for playlist and folder names", when path
    components in folders or playlists contain a ".", the part after
    the dot is not formatted.
  + Discogs import.
  + MP4: "No Tag" is not displayed in file list for files without
    metadata.
  + MP4: Metadata is not stripped from files when tag is removed
    (requires new TagLib).
  + Android: Import with HTTPS (Discogs, MusicBrainz) fails with
    "Error: TLS initialization failed".

Sat Dec 18 09:22:30 CET 2021  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.9.0

* New:
  + Support for custom quick access frames.
  + Support standard tags as columns in the file list.
  + Option to use file format for playlist and folder names.
  + Basque and Icelandic translations.
  + kid3-cli: Command 'execute' to run QML scripts.
  + QML: Scripts to export and import in JSON format.

* Improved:
  + KDE: Separate state config from settings config.
  + kid3-cli: Allow setting frame values from a file and storing to a file.

* Fixed:
  + Discogs import.
  + Get tags from file names with spaces before the extension.
  + QML: Added support for Tag 3 where it was missing.
  + Android: Quick access frames configuration.

Sun Jun 20 11:18:51 CEST 2021  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.8.7

* New:
  + Russian handbook.

* Fixed:
  + ID3v2: Wrong numeric strings for genres Fast Fusion, Folk, Folk Rock,
    Folklore, Funk, Fusion.
  + ID3v1: Genres Avant-Garde, Beat Music, Bebop, Britpop, Dancehall,
    Dark Wave, Euro House, Eurotechno, Fast Fusion, Folk Rock, Hip Hop,
    Jazz-Funk, Pop-Funk, Synth-Pop, Worldbeat cannot be set with TagLib
    version < 1.12.
  + Memory leak in the rare case where the file type is detected not by
    the extension but by the contents.
  + kid3-cli: Fields (sub-elements of a frame) with a non-string value
    cannot be set with id3lib.

Thu Mar 18 08:21:47 CET 2021  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.8.6

* Improved:
  + Support Qt 6.
  + Windows: Provide nicer default style.

* Fixed:
  + Windows 64-bit binary: Crash when using id3lib.
  + Discogs import.
  + Amazon import.
  + Removed TrackType.org import.

Sun Jan 31 08:55:52 CET 2021  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.8.5

* New:
  + Language can be configured in "Appearance" tab of settings.
  + New action "Edit/Invert Selection".
  + kid3-cli: Command "config" to query and set configuration options.
  + Script to rewrite all tags of the selected files.

* Improved:
  + Import multiple genres from Discogs and MusicBrainz.
  + Support import from Discogs JSON API when token is provided.
  + Snapshot builds can download the current translations.
  + Mac: Allow code signing.

* Fixed:
  + Crash when adding Chapter frame.
  + Support ID3v2 Podcast Category (TCAT) and Podcast Keywords (TKWD).
  + Support for multiple genres with ID3v2.3.0.
  + Support MP4 values with multiple strings with TagLib.

Sat Sep 26 16:36:24 CEST 2020  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.8.4

* New:
  + Section and file list shortcuts can be customized.
  + Activate parent/current folder with Ctrl-Up/Down (Command-Up/Down).
  + Go to parent item in file list when left arrow key is pressed.
  + Header context menu options for custom or automatic column widths.
  + Add flatpak support.
  + Brazilian Portuguese translation.

* Improved:
  + Support detection of tagged file types from contents when matching by
    extension does not succeed.
  + Show more details (type, bits, bitrate) for M4A, FLAC, AIFF, WAV.
  + Discogs import: Show year and format in album list.
  + Dialogs: Store window position and size in settings.
  + Mac: Enter key can activate entries in directory list.
  + Android: Only navigate between tagged files with [<], [>] buttons.

* Fixed:
  + Do not duplicate pictures when pasting tags.
  + Discogs import: Get year when language is not English.
  + Keyboard shortcuts settings: Display correctly depending on language
    and operating system.
  + Android: Accept genre changes when focus lost and Enter not pressed.
  + Android: Fix translation.
  + Mac: Unlock files when changing permissions.
  + Flatpak: Move to trash works in KDE version.

Sun May 10 08:47:03 CEST 2020  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.8.3

* New:
  + Keyboard shortcuts to navigate between the file and tag sections.
  + Script to apply English title capitalization to tags.
  + Script to transliterate ID3v1 tags to ASCII.
  + Korean and Swedish translations.
  + Catalan, Dutch, Italian, Swedish and Ukrainian handbooks.

* Improved:
  + Better compatibility with dark mode and custom themes.
  + Support dragging multiple header rows in import table.
  + User interface strings follow KDE HIG vocabulary.
  + Support renaming read-only files.

* Fixed:
  + File filter reset when file is opened.
  + Crash when dragging row in import table.
  + Blocking when jumping to vanished previous or next file.
  + Support languages with code or modifier.
  + Hide text fragments visible in header of frame table columns.
  + English plural forms.
  + Add missing license files.
  + Support large files on Windows (64-bit).

Thu Jan 23 12:18:05 CET 2020  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.8.2

* New:
  + Catalan, Portuguese and Ukrainian translations.

* Fixed:
  + Crash when removing M4A atoms.

Mon Dec 23 17:38:53 CET 2019  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.8.1

* New:
  + Show number of files in status bar.
  + Support regular expressions in string replacements.

* Improved:
  + Support format codes in "Filename for cover" in "Extract Album Art"
    script.
  + The order of string replacements is respected.
  + Show RVA2 identifier in frame table.
  + Show UFID owner in frame table.
  + Support setting file name with "Import from Tags".

* Fixed:
  + Android: Accept changes when focus is lost and Enter not pressed.
  + Self-contained Linux package: Correctly change RPATH in plugins.
  + Self-contained Linux package: Support composed accented characters.
  + QML scripts: Skip "--" argument, which is used when passing
    parameters from qml tool.
  + Show UFID values in frame table.

Sat Aug 24 15:57:41 CEST 2019  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.8.0

* New:
  + kid3-cli: Support JSON output.
  + Format codes %{modificationdate} and %{creationdate}.
  + Support ID3v2 GRP1 frame introduced with iTunes 12.5.4.
  + Import from Tags function which operates on selected files.
  + Explicit frame names can be used by prepending a '!' character.

* Improved:
  + Adapt unified frame type mapping for better iTunes compatibility.
  + Support multiple covers in M4A files.
  + kid3-cli: Remove dependencies to GUI libraries.
  + Android: Show info how to write to SD card.
  + Android: Support Qt 5.12.

* Fixed:
  + Use file settings to replace illegal characters when renaming
    directories.
  + Self-contained Linux package: Provide libraries to run QML
    console.

Mon Mar 18 16:19:08 CET 2019  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.7.1

* New:
  + Support max-, min-, unq- aggregation when renaming directories.
  + Android: Support dark and light themes.
  + Android: Support opening files with Kid3 from other apps.
  + Android: Settings for formats, character replacements and import
    profiles.

* Improved:
  + Support format codes in file name for cover.
  + Support WMV extension.
  + Android: Better file select dialog.

* Fixed:
  + Support setting of ID3v2 version for DSF files.
  + Avoid jumping around frames while deleting.
  + Removal of multiple tags where not all tags are removed.
  + Setting of a simple string as value for IPLS frame with TagLib.
  + Adapted to Discogs server update.
  + Windows: Avoid insert disk dialog.
  + Android: Save settings when app is suspended.
  + Android: GUI updates on changes.

Sun Dec 23 12:05:20 CET 2018  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.7.0

* New:
  + Add and reorder playlist items using drag'n'drop.
  + Edit tags from files referenced in playlist.
  + Play songs from playlist.
  + Drag image files from file list to embed them in audio files.
  + Drag files from file list into other applications.
  + Reload action to refresh file list.
  + Completions with different values when selecting multiple files.
  + Option "--dbus" to have a D-Bus interface with kid3-cli.
  + Code "%{dirname}" to use current directory name when renaming.
  + Code "%{disk}" as alias for "%{disc number}".
  + Edit list of availble formats to set file and directory names
    from the tags and vice versa.

* Improved:
  + Reduce number of open file handles.
  + Allow user to resize file and directory list columns.
  + Modernize code base, support only Qt 5, C++11, CMake 3.

* Fixed:
  + Add a number if a file is renamed with an existing name.
  + Avoid losing changes when a directory is renamed.
  + Change notifications for files in renamed directory.

Fri Aug 24 12:15:09 CEST 2018  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.6.2

* Improved:
  + Format from tags with custom strings prepended/appended when
    replaced format code is not empty %{"t1"code"t2"}.

* Fixed:
  + MP4 free form names longer than 4 characters with TagLib.
  + Support DOS line endings with "Import CSV".
  + Set CTOC and CHAP element ID from values in the frame table.
  + Correctly add frame when "Edit" is clicked on non existing frame.
  + Show correct icon in Wayland session.
  + Improve editing of ISO date/time values with validation enabled.
  + Bundle OpenSSL libraries with self-contained Linux package.

Mon Apr 23 11:26:19 CEST 2018  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.6.1

* Improved:
  + Faster saving when many files are unchanged.
  + Do not change file extension when creating file name from tags.
  + Support for cross building.

* Fixed:
  + Parsing of xid atom with Mp4v2Metadata plugin.
  + Scroll to opened file after sorting file list.
  + Avoid recursion when automatically applying format.

Sun Mar 18 16:49:46 CET 2018  Urs Fleisch  <ufleisch@users.sourceforge.net>

* Release 3.6.0

* New:
  + New look for Android app using Qt Quick Controls 2.
  + Editor for star ratings, configurable mapping between rating
    values and number of stars.
  + Option to restrict length of file names.
  + Option to show hidden files in file and directory lists.

* Improved:
  + Support adding unknown 4 letter atoms to M4A files.
  + Allow Camelot wheel value 1A-12A, 1B-12B for initial key.

* Fixed:
  + Windows: Renaming directories which contain subfolders.
  + Adding and finding unified frames by their frame ID.
  + Deletion of M4A atoms which are not known or which have an
    unofficial free form prefix.
  + Support files with m4v extension.

(wiz)