Update devel/objfw to 1.1.1

ObjFW 1.1 -> ObjFW 1.1.1, 2024-04-14
* Fixes missing ${DESTDIR} in some Makefiles.

(js)

Updated devel/catch2, graphics/gexiv2, net/glib-networking

(adam)

glib-networking: updated to 2.80.0

2.80.0 - March 14, 2024
=======================

- Mark plugin functions as exports on Windows
- Updated translations

2.80.rc - February 29, 2024
===========================

- GnuTLS: fix improper use of IP address in SNI extension
- GnuTLS: major performance improvement: reduce unnecessary trust list creation
- OpenSSL: properly handle BIO_CTRL_EOF
- Updated translations

2.80.alpha - January 5, 2024
============================

- GnuTLS: Add warning when system has no trusted certificates
- OpenSSL: Fix bug when populating trust store
- Fix license on dtls-connection.c test
- Updated translations

2.78.0 - September 14, 2023
===========================

- Respect root certificates added to macOS system keychain by users
- Disable PKCS #11 tests when GnuTLS is built without PKCS #11 support
- Fix connection tests on 32-bit systems with 64-bit time_t
- Updated translations

(adam)

gexiv2: updated to 0.14.2

gexiv2 0.14.2 - 24 Jul 2023 (stable)

* Make compatible with exiv2 0.28 or later
* Fix double free if creation of meta-data fails
* Fix floating point compare in tests

(adam)

catch2: updated to 3.5.4

3.5.4

Fixes
* Fixed potential compilation error when asked to generate random integers whose type did not match `std::(u)int*_t`.
* This manifested itself when generating random `size_t`s on MacOS
* Added missing outlined destructor causing `Wdelete-incomplete` when compiling against libstdc++ in C++23 mode
* Fixed regression where decomposing assertion with const instance of `std::foo_ordering` would not compile

Improvements
* Reintroduced support for GCC 5 and 6
* As with VS2017, if they start causing trouble again, they will be dropped again.
* Added workaround for targetting newest MacOS (Sonoma) using GCC
* `CATCH_CONFIG_DEFAULT_REPORTER` can now be an arbitrary reporter spec
* Previously it could only be a plain reporter name, so it was impossible to compile in custom arguments to the reporter.
* Improved performance of generating 64bit random integers by 20+%

Miscellaneous
* Significantly improved Conan in-tree recipe
* `DL_PATHS` in `catch_discover_tests` now supports multiple arguments
* Fixed preprocessor logic for checking whether we expect reproducible floating point results in tests.
* Improved the floating point tests structure to avoid `Wunused` when the reproducibility tests are disabled

(adam)

Updated devel/appstream, devel/libadwaita, graphics/librsvg

(adam)

librsvg: updated to 2.58.0

Version 2.58.0

librsvg crate version 2.58.0

The most significant change in this release is that librsvg no longer
uses gdk-pixbuf for loading raster images (for eample, when there is
an element <image href="foo.jpg"/>.  All image loading uses Rust
codecs now.  Please see the release notes for 2.57.90 below for more
details.

Librsvg's gdk-pixbuf loader for SVG documents is unchanged; you can
still load SVG files from gdk-pixbuf with it as usual.

New features since 2.57.0 (for fine-grained bug fixes, please see the
release notes for development releases):

- Add basic support for "ch" length units in CSS (Mackenzie Morgan).

- Support "var(--foo, #aabbcc)" just for colors.  This is the
  minimum required to render color SVG emoji fonts that provide color
  fallbacks, but it is not yet full support for CSS var().

Fixes since the last development release:

- Limit numOctaves in feTurbulence to avoid unbounded CPU consumption.

- Don't panic when a :lang selector has an argument that is
  not a language-range (Luk叩邸 Tyrychtr).

Special thanks for this release cycle:

- Thanks to correctmost for doing several rounds of fuzzing, and then
  found some interesting bugs!

- Thanks to Jordan Petridis for adding CI jobs for testing on
  gnome-os's regular builds.

- As usual, thanks to Chun-wei Fan for keeping the Windows builds
  going, and Bilal Elmoussaoui for updating gtk-rs crates.

(adam)

libadwaita: updated to 1.4.4

Version 1.4.4

- Fix layout with GtkSettings:gtk-xft-dpi == 0
- AdwNavigationView
  - Fix signal mentions in push() docs
- AdwStatusPage
  - Fix property notification in set_child()
- AdwToolbarView
  - Fix a typo in docs
- Translation updates
  - British English

Version 1.4.3

- AdwAboutWindow
  - Don't pre-select the first section on the Legal page
- AdwHeaderBar
  - Fix visibility after changing :show-back-button
- AdwPreferencesWindow
  - Fix :visible-page and :visible-page-name docs
- AdwViewSwitcherBar
  - Fix a warning when empty
- Translation updates
  - French
  - Greek
  - Norwegian Bokm奪l

Version 1.4.2

- Really fix build with libappstream 1.0

Version 1.4.1

- Fix build with MSVC
- Fix build with libappstream 1.0
- AdwCarousel
  - Fix carousel scroll behavior with page reordering
- AdwComboRow
  - Fix focus when opening the popover
  - Set the correct state on the selected checkmark
- AdwNavigationView
  - Fix a warning message
- AdwTabOverview
  - Allow child focus on out animations
- AdwTabView
  - Keep view alive during ::page-detached
  - Fix crashes when using :pages
- Docs
  - Fix erroneous <child> use in breakpoints migration guide
- Translation updates
  - Russian
  - Serbian

(adam)

appstream: updated to 1.0.2

Version 1.0.2
~~~~~~~~~~~~~~
Released: 2024-02-24

Features:
* qt: Allow building for multiple Qt major versions at once
* Improve low-quality category check and extend its blacklist
* validator: Add some limited developer-ID validation
* validator: Emit an overridable warning if homepage URL was omitted
* compose: Allow rendering vector graphics to HiDPI bitmaps unconditionally
* compose: Allow setting a custom icon-policy on the command-line

Specification:
* docs: Mention that <summary/> tag can be translated
* docs: Generate validation issue tag documentation from code
* docs: Add information on how to exclude elements from translation
* spec: Recommend using rDNS strings or Fediverse handles as developer-ID
* spec: Make launchable requirement for desktop-apps more strict

Bugfixes:
* qt: Component::customValue should be const
* validator: Remove mention of shorthands from relation-display-length-value-invalid
* sysinfo: Swap arguments of g_pattern_match_simple
* qt: Add missing screenshot sorting function
* qt: pool: Add missing Q_EMIT keyword
* validator: Improve error message if no valid categories were found
* validator: Make some length limitations more strict
* validator: Only emit developer-name-tag-deprecated once
* validator: Ensure filename is properly included in location info again
* validator: Improve error reporting on images with missing/bad locales
* compose: Don't accidentally set icon scale to 0 in some cases
* compose: Add heuristics to show out-of-scope errors if filters were set
* Don't prematurely abort URL validity check during semi-large redirects
* docs: Update supported hashsums to reflect reality
* docs: Describe version comparison letters special case
* docs: Clarify release descriptions *must not* contain embedded URL
* docs: Explicitly mention /var/cache/swcatalog is a valid catalog data location
* tests: Fix tests with old & new FontConfig
* its: Allow untranslatable developer/name and agreement sections

Miscellaneous:
* compose: Clarify that "no valid category" can mean bad ones were ignored
* news-convert: Don't strip out the last text in brackets

Version 1.0.1
~~~~~~~~~~~~~~
Released: 2023-12-16

Bugfixes:
* Fix lib name for Qt5 link target
* meson: Pass -D_DARWIN_C_SOURCE on darwin
* Fix macOS build
* stemmer: Resolve potential issue where stemmer may never be initialized
* cli: Don't fail what-provides if components were found
* Fix query element order for what-provides queries
* validator: Demote developer-name-tag-deprecated to info severity for now
* content-rating: Fix missing or wrong value descriptions for rating IDs
* curl: Add transfer speed timeouts for HTTP downloads
* curl: Retry operations on potentially transient errors

Miscellaneous:
* validator: Improve hint for content-attribute-value-invalid
* Allow building without zstd temporarily

Version 1.0.0
~~~~~~~~~~~~~~
Released: 2023-11-11

Notes:
* This version breaks API and bumps the SONAME of libappstream!
  Applications using AppStream will have to be ported to the new API.
  The 1.0 release is coinstallable with the stable 0.16.x series.

Features:
* Autoformat C and C++ sources
* Remove all deprecated symbols
* Drop support for many deprecated AppStream XML features
* Use GPtrArray to expose keywords list
* Add length argument to raw metadata parsing functions
* Add component array container class
* Remove named values for display_length relations
* Make AsPool only accept/return component boxes
* Port all API away from per-entity locale overrides
* Reduce appstream.conf to its essentials, make it work on stateless systems
* Hide search engine details from public API
* Wrap release entries in AsReleaseList container class
* Make AsMetadata handle AsReleaseList objects
* Refactor is_satisfied result into new RelationCheckResult class
* Add a method to check all relations of a component and get the result
* Add algorithm to score compatibility with a system, add chassis templates
* ascli: Add new check-syscompat command to check chassis compatibility
* Implement environment property for component screenshots
* Autogenerate translatable DE and gui-environment-style C arrays
* Expose more advanced markup conversion function, update function names
* Allow BLAKE3 and SHA512 checksums for release artifacts
* Stop supporting mailto: URLs in <url/> tags
* validator: Improve API and simplify it
* validator: Parse XML in pedantic mode when validating
* validator: Check screenshot environment property
* validator: Only apply summary-has-dot-suffix check to untranslated strings
* compose: Allow creating metadata with complete URLs and no base URL
* spdx: Add API to retrieve a translated license name from an SPDX ID
* qt: Switch to building with Qt6
* qt: Make it possible to iterate ComponentBox
* qt: Implement AppStream::ComponentBox::erase
* qt: Allow concatenating two ComponentBoxes
* qt: Allow loading Pool asynchronously
* qt: Use ComponentBox/Releases in Qt bindings as well
* qt: Add support for the new API to check relation satisfaction
* qt: Maintenance and namespace fixes, use cPtr() to get C pointers everywhere
* bundle: Add linglong as a new type of bundle
* Add GUI environment IDs for macOS and Microsoft Windows
* validator: Check if Release Description is inside description tag
* validator: Add validation for content_rating
* Add support for building on Win32
* win32: change some file/path-related code for portability
* Implement the developer element for unique developer IDs
* Implement scaling factor for screenshots
* component-box: Allow removal of components by-index
* Implement support for external references and citations
* Implement usertags for release data as well
* Move ValueFlags to the context, instead of tieing them to components
* pool: search: Add additional weight for exact substring matches on names
* sysinfo: Add memory size detection support for macOS
* Add support for Zstd for on-disk data compression
* utils: Make tar unpacker independent of zstd binary presence
* Drop Python2 provided tag support
* data: Add ���Endless��� to the list of desktops
* Add NetBSD support

Specification:
* Drop (most) deprecated information
* docs: Clarify environment-based screenshot ordering
* Add new  'snapshot' release kind
* docs: Build all API documentation with gi-docgen
* spec: Document the new "developer" element
* spec: Document the "reference" tag for registry references
* docs: Add example of YAML for references elements
* Allow hyphens in the last segment of a component-ID
* docs: Drop outdated information from l10n quickstart guide

Bugfixes:
* meson: check for docbook xsl stylesheets
* Fix tweaking of appstream.pc when building as subproject
* Fix crash in asc_l10n_search_translations_qt()
* qt: Make Qt6 dependency a system dependency.
* meson: do not rely on an exe wrapper
* meson: do not -I/usr/include when !stemmer
* meson: Prevent building attempts with MSVC
* meson: Use an SPDX license indentifier in project(license:)
* Add meson overrides
* compose: Set lower-cased CID for synthesized components again
* compose: Set lower-cased CID in desktop-entry parse function
* compose: Honor prefix in font search
* compose: Select the correct default icon glyphs for fonts
* Don't crash when non-YAML documents are read as YAML
* Do not override default-priority when parsing multiple metadata files
* Ensure stemmer always has the right locale and token-search works
* Require a more recent libxmlb to avoid crashes
* Rename component get_releases to indicate that releases may not be loaded from the web
* Prevent string-id validation functions from matching source comments
* Don't define _POSIX_C_SOURCE when building for NetBSD

Miscellaneous:
* Explain metainfo-ancient error in more detail
* Make sed invocation more portable
* Add FreeBSD CI
* Allow variable shadowing in C++ code
* Drop the catchall as-enums unit
* vapi: Drop unneeded metadata
* Make AsMetadata return a component box for multiple components
* apt: Make item descriptions more human-friendly
* Streamline README

(adam)

riemann-client: remove unused patch

(wiz)

doc: Updated devel/objfw to 1.1

(js)

Update devel/objfw to 1.1

ObjFW 1.0.12 -> ObjFW 1.1, 2024-04-14
* ObjFW is now licensed under LGPLv3.0-only.
+ Adds a new framework for writing tests called ObjFWTest.
* All tests were migrated to ObjFWTest.
+ The runtime now supports associated objects.
+ OFDNSResolver now caches responses.
+ OFDNSResolver now supports URI and LOC DNS resource records.
+ Adds methods to handle path extension to OFIRI.
+ Adds support for Mbed TLS.
+ Adds more methods to OFSystemInfo to check for CPU features.
* OFSystemInfo now only indicates CPU features as supported if the OS also
  supports them.
+ OFLHAArchive now supports extracting and creating files > 4 GB.
+ OFLHAArchive now supports header level 3.
+ OFLHAArchive now supports extracting -lhx-, -lz4- and -pm0- files.
* OFLHAArchive no longer defaults to ISO 8859-1.
+ New class OFZooArchive for extracting and creating Zoo files.
* The schemes for archive IRI handlers have been renamed.
* The schemes for archive IRI handlers now look for the rightmost `!`,
  which allows for chaining with less quoting.
* Fixes -[OFMutableArray replaceObjectIdenticalTo:withObject:] being
  inconsistent with -[OFMutableArray replaceObject:withObject:].
* Fixes getting non-existent xattrs in OFFileManager.
* Objects on Windows, MS-DOS and 32 bit Solaris now get properly aligned so
  that SIMD can be used on ivars.
* Fixes parsing of signed numbers in MessagePack.
* Fixes a memory leak in OFTarArchive.
+ Adds support for typed extended file attributes (only on Haiku).
+ Adds support for extended file attributes on Haiku, NetBSD and FreeBSD.
+ OFStdIOStream now supports cursor movement and colors on MS-DOS.
* All headers are now compatible with -masm=intel.
+ OFMatrix4x4 can now transform multiple vectors at once.
+ OFMatrix4x4 has a 3DNow! implementation for multiplication and vector
  transformations now.
+ OFMatrix4x4 has an SSE implementation for vector transformations now.
* Updates Unicode support to 15.1.
* Fixes compatibility with LibreSSL.
* Fixes two linker warnings on macOS.
* Fixes compiling on QNX.
* OFLocale now supports automatic initialization.
+ ofarc now supports extracting and creating Zoo archives.
+ ofarc now has an --iri option to directly work on local and remote IRIs.
+ ofarc now prints the archive comment with -lv.
+ ofarc can now add an archive comment with --archive-comment=.
+ ofarc now propagates the quarantine xattr on macOS when extracting an
  archive.

(js)

Updated devel/libgee, devel/ninja-build

(adam)

ninja-build: updated to 1.12.0

v1.12.0
I've wrote a summary as an announcement to the ninja-build mailing list, but it seems to be stuck in the moderation queue - thank you Google Groups �沽�. I'll update this if the mail ever sees the light of day.

https://github.com/ninja-build/ninja/milestone/6?closed=1

(adam)

libgee: updated to 0.20.6

libgee 0.20.6
* Fixes for newer valac
* Keep the original exception in Future.map/flat_map

libgee 0.20.5
* Fixes for newer valac
* Use Makefile.introspection instead of custom rule

libgee 0.20.4
* Fixes for newer valac

(adam)

py-sphinx-automodapi: fix PLIST

(wiz)

dunst: use more portable find operators

(wiz)

doc: Updated devel/fq to 0.11.0

(wiz)

fq: update to 0.11.0.

# 0.11.0

New iNES/NES 2.0 ROM decoder (thanks @mlofjard) and basic JPEG 2000
format support. jq language improvements and fixes from gojq. And
as always various decoder improvements and fixes.

## Changes

- Add `string_truncate` option to configure how to truncate long strings when displaying a decode value tree. `dd`, `dv` etc set truncate length to zero to not truncate. #919
- gojq updates from upstream:
  - Implement `ltrim`, `rtrim`, and `trim` functions
  - Fix object construction with duplicate keys (`{x:0,y:1} | {a:.x,a:.y}`)
  - Fix `halt` and `halt_error` functions to stop the command execution immediately
  - Fix variable scope of binding syntax (`"a" as $v | def f: $v; "b" as $v | f`)
  - Fix `ltrimstr` and `rtrimstr` functions to emit error on non-string input
  - Fix `nearbyint` and `rint` functions to round ties to even
  - Improve parser to allow `reduce`, `foreach`, `if`, `try`-`catch` syntax as object values
  - Remove `pow10` in favor of `exp10`, define `scalbn` and `scalbln` by `ldexp`
- Fix issue using decode value with `ltrimstr`/`rtrimstr`.

## Format changes

- `fit`
  - Skip array fields on pre read messages. #878
  - Fixed subfield referencing fields below self in message. #877
- `jp2c` New JPEG 2000 codestream decoder. #928
- `icc_profile` Strip whitespace in header and tag strings. #912
- `mp4`
  - Add `jp2c`, `jp2h`, `ihdr` `jP` JPEG 2000 related boxes support. #928
  - Add `thmb` box support. #897
  - Turns out for qt brand `hdlr` component name might be zero bytes. #896
- `nes` New iNES/NES 2.0 ROM decoder (thanks @mlofjard). #893

(wiz)

Updated audio/gsound, x11/gtk4, games/gnome-nibbles, graphics/vulkan-headers

(adam)

vulkan-headers: updated to 1.3.282

v1.3.282
Update for Vulkan-Docs 1.3.282

(adam)

gnome-nibbles: updated to 4.0.3

4.0.3 - March 15, 2024

- Updated translations (Hungarian & Basque).

4.0.2 - February 9, 2024

- Updated translations (German, Indonesian & Lithuanian).
- Fixes for compatibility with gcc >= 14.0 & clang >= 16 when compiling with a version of vala < 0.56.15
- Note:
  If you have still have issues compiling this or other vala source code try the following compiler options:
  For gcc >= 14
    "-Wno-incompatible-pointer-types"
  For clang >= 16
    "-Wno-incompatible-function-pointer-types" & "-Wno-incompatible-pointer-types"
- Thanks:
  Gnome Nibbles has recently been packaged for pkgsrc.org, many thanks to Thomas Klausner.
  For those of you who don't know pkgsrc it is an impressive package system that works on multiple platforms.

(adam)

gtk4: updated to 4.14.2

Overview of Changes in 4.14.2, 03-04-2024
=========================================

* GtkScale:
- Improve positioning of values in some cases

* Theme:
- Make progress in entries visible

* Accessibility:
- Fix text insertion handling

* GDK:
- dnd: Use the default cursor durion motion
- dnd: Use a better cursor for indicating the move action

* GSK:
- gl: Handle offloads in offscreen context better
- Fix text rendering problems with some fonts

* Wayland:
- Tighten up some protocol version checks
- Use the presentation time protocol
- Fix a crash with subsurfaces
- Improve settings portal handling

* macOS:
- Fix up the app menu support

* Windows:
- Fix problems with minimization
- Fix build without fontconfig

* Debugging:
- Add font settings in the inspector

* Demos:
- Clean up the application demo
- Update cursor images for the cursor demo

* Translation updates:
Catalan
Czech
French
Georgian
Hebrew
Persian
Slovenian
Turkish
Ukrainian

Overview of Changes in 4.14.1, 16-03-2024
=========================================

* GtkTextView:
- Fix a mixup of cursor and anchor when retrieving surrounding text
  in input methods

* Printing:
- Avoid accessing freed printers

* Accessibility:
- Fix memory leaks

* GDK:
- Rename the GDK_VULKAN_SKIP environment variable to GDK_VULKAN_DISABLE
- Add a GDK_GL_DISABLE environment variable

* GSK:
- Rename the GSK_GPU_SKIP environment variable to GSK_GPU_DISABLE
- Speed up handling of repeated ops, which should help for text
- Speed up the inner loop of text node conversion
- Drop the glyph-align optimization flag
- ngl: Avoid reusing frames while they are in use
- Fix flickering thumbnails in nautilus
- Speed up buffer handling in both ngl and Vulkan

* Demos:
- Skip demos using gl shaders when we're not using the gl renderer

* Build:
- Fix some ubsan warnings
- Avoid zink in ci since it spams stderr

* Translation updates:
Czech
German
Korean
Russian

Overview of Changes in 4.14.0, 12-03-2024
=========================================

Note: The new renderers and dmabuf support are using graphics drivers
in different ways than the old gl renderer, and trigger new driver bugs,
(see for example https://gitlab.gnome.org/GNOME/gtk/-/issues/6418 and
https://gitlab.gnome.org/GNOME/gtk/-/issues/6388). Therefore, it is
recommended to use the latest mesa release (24.x) with the new renderers.

* GtkTextView:
- Don't snapshot children twice
- Don't blink the cursor when hidden

* GtkEmojiChooser:
- Fix presentation selector handling

* GtkSnapshot:
- Fix wrong nodes with transformed shadows

* GtkIMContext:
- Make gtk_im_context_activate_osk public

* Accessibility:
- Implement get_contents_at for all our text widgets
- Add GtkAccessibleText.get_default_attributes

* GSK:
- Don't fall back to cairo for software rendering. gl+llvmpipe is better
- Round vertical glyph position to a device pixel position if the font is hinted
- Fix problems with clip handling
- Make vulkan and ngl match their font handling
- Fix some corner-cases with offloading and clips
- Fix problem with rendering of missing glyphs in hinted fonts

* MacOs:
- Implement cursor-from-texture

* Translation updates:
Basque
British English
French
Indonesian
Kazakh
Latvian
Lithuanian
Norwegian Bokm奪l
Slovenian
Spanish
Turkish

(adam)

gsound: updated to 1.0.3

1.0.3
Unknown changes

(adam)

security/pkcs11-helper: Drop MAINTAINERship

I no longer use this, and I don't want to add any friction to others
updating it.

(gdt)

doc: Updated security/pkcs11-helper to 1.30.0

(gdt)

security/pkcs11-helper: Update to 1.30.0

2023-12-01 - Version 1.30.0
* core: add dynamic loader provider attribute, thanks to Marc Becker.
* openssl: support DSA in libressl-3.5.0, thanks to Fabrice Fontaine.
* openssl: fix openssl_ex_data_dup prototype, thanks to Sam James for
  reporting.

2022-04-21 - Version 1.29.0

* build: do not fail if slot evnets are disabled, thanks to Fabrice Fontaine.
* core: do not assume standard objects supported by provider.
* openssl: set back key into EVP for openssl-3 to work, thanks to apollo13.

2021-12-31 - Version 1.28

* build: openssl: remove RSA_SSLV23_PADDING constant usage due to openssl-3
  compatibility, thanks to t0b3.
* build: nss: use nss pkcs11.h, thanks to Fabrice Fontaine.
* build: windows: checksum in PE, thanks to Simon Rozman.
* build: windows: support openssl-1.1.1, thanks to Lev Stipakov.
* mbed: require >=mbedtls-2, mbed dropped polarssl compatibility,
  thanks to Uipko Berghuis
* certificate: add methods accept full mechanism, thanks to Selva Nair.
* core: load provider library as private.
* core: add pkcs11h_getProperty, pkcs11h_setProperty to support adding
  properties without breaking API.
* core: add pkcs11h_initializeProvider, pkcs11h_registerProvider,
  pkcs11h_setProviderProperty, pkcs11h_setProviderPropertyByName to
  support adding properties without breaking API thanks to Михалицын Петр.
* core: add initialization arguments property, thanks for Михалицын Петр.
* core: add PKCS11H_PROVIDER_PROPERTY_PROVIDER_DESTRUCT_HOOK.
* session: respect login required token flag.
* certificate: respect always authenticate flag.

(gdt)

webkit-gtk: Pull upstream fixes for Ruby 3.2.

https://bugs.webkit.org/show_bug.cgi?id=246743
>> webkitgtk 2.38.0 fails to build with upcoming ruby 3.2 due to
>> removed File.exists?

https://github.com/WebKit/WebKit/commit/b7ac5d
>> File.exists has been declared deprecated since Ruby 2.1 (2013)
>> and with Ruby 3.2 gets removed for good.

Bump PKGREVISION.

(tsutsui)

collectd-riemann: bump for riemann-client API bump

(wiz)

doc: Updated sysutils/riemann-client to 2.2.0

(wiz)

riemann-client: update to 2.2.0.

Bump API depends.

riemann-c-client 2.2.0
======================
Released on 2023-03-30

License
-------

From version 2.2.0 onwards, the library is licensed under the [European Union
Public License][eupl], version 1.2. The license is compatible with the
previously used [GNU Lesser General Public License][lgpl].

  [eupl]: https://eupl.eu/1.2/en
  [lgpl]: https://www.gnu.org/licenses/lgpl-3.0.en.html

Documentation
-------------

Updated the `riemann-client(1)` documentation, with a section about caveats,
thanks to Fabien Wernli.

Bugfixes
--------

Fixed `make dist`, so it includes all the files needed to build the library, for
all backing TLS libraries.

riemann-c-client 2.1.1
======================
Released on 2023-07-18

Bugfixes
--------

TLS communication when using GnuTLS has been fixed, thanks to Romain Tarti竪re.
In previous versions, when sending or receiving data over TLS with GnuTLS, there
were scenarios where riemann-c-client prematurely ended communication. The fixed
code properly retries sending/receiving the remaining data.

Miscellaneous
-------------

Minor code cleanups have been made, so that the library uses `calloc()`, rather than a `malloc()` immediately followed by a `memset()` to zeros.

riemann-c-client 2.1.0
======================
Released on 2022-07-20

New features
------------

### OpenSSL is now supported as a backing TLS library

The library now supports OpenSSL as a backing TLS library, along with the
existing GnuTLS and wolfSSL support.

### New methods

The library now provides a `riemann_client_check_version()` function, which can
be used - by different language bindings, usually - to check whether the linked
library satisfies a version requirement.

Similarly, aimed at non-C language bindings, the library now provides a
`riemann_message_create_with_events_n()` method, to create a new message with
events set up front.

Built on top of `riemann_message_create_with_events_n()` is the new
`riemann_communicate_events_n()` function. Primarily intended for language
bindings, but can be useful in any situation where we have the list of events
precomputed, and do not wish to serialize them into a message ourselves.

Related to the above two, `riemann_event_create_full()` allows us to create an
event in a way where we can set all fields at once, if need be, without going
through hoops. The function is trivially bindable too.

Staying near events, the `riemann_event_set_tags()`,
`riemann_event_set_tags_va()`, and `riemann_event_set_tags_n()` trio of
functions are now also available, allowing us to efficiently replace the set of
tags within an event.

Still in the events area, like for tags, we have new functions for attributes
too: `riemann_event_set_attributes()`, `riemann_event_set_attributes_va()`, and
`riemann_event_set_attributes_n()`, for similar purposes as their tag
counterparts. In addition to these, `riemann_event_set_string_attributes_n()`
was also introduced, to set a known number of attributes, via strings.

### Miscellaneous

The `<riemann/simple.h>` header is no longer necessary, the functions formerly
provided by this header are now available by default when using the
`<riemann/riemann-client.h>` header. Using the old header will emit a helpful
deprecation warning.

Bugfixes
--------

The library no longer requires WolfSSL to be compiled with OpenSSL compatibility
support when compiling against said TLS library.

riemann-c-client 2.0.1
======================
Released on 2022-06-12

Bugfixes
--------

Fixed an issue where we were shadowing the `stdin` stream, which in turn
resulted in a compile-time error on at least OpenBSD and NetBSD.

Also updated the build system to allow compilation on the three major BSDs out
of the box, without patches.

riemann-c-client 2.0.0
======================
Released on 2022-03-26

New features
------------

### Multiple backing TLS libraries

The library now supports being compiled with either [GnuTLS][gnutls] or
[wolfSSL][wolfssl] as a backing TLS library.

[gnutls]: https://gnutls.org/
[wolfssl]: https://www.wolfssl.com/

### New methods

Added a new method, `riemann_client_get_tls_library()` to query the backing TLS
library at run-time. While most differences are transparently handled, there are
a few (namely, cipher priorities) that aren't. This new function makes it
possible for code building upon this library to conditionally handle them.

Breaking changes
----------------

The library is no longer ABI-compatible with riemann-c-client 1.x.y. API
compatibility has been preserved, but binaries will have to be recompiled.

Additionally, the SONAME of the library now depends on the backing TLS library.
This is transparent when using `pkg-config`, because that'll pull in the
appropriate file. But for packaging purposes, this is something to keep in mind.

riemann-c-client 1.10.5
=======================
Released on 2021-09-25

Bugfixes
--------

Despite the documentation saying so, TLS options were _not_ copied. While in
practice this should not have caused any issues, because the options were used
and never touched again before returning from the function that should've copied
them, it still went against the documentation and against best practices. All
options are properly copied now, and the copies free'd when they're no longer in
use.

(wiz)

doc: Updated devel/protobuf-c to 1.5.0nb4

(wiz)

protobuf-c: fix protobuf 26 compatibility

Bump PKGREVISION.

(wiz)

riemann-client: moved off github

fix some pkglint while here

(wiz)

x11/modular-xorg-server: Work around kern/58149 on NetBSD/aarch64 9.* and 10.0

See also
http://mail-index.netbsd.org/netbsd-users/2024/04/12/msg030915.html

(pho)

net/tigervnc: Correct the name of a variable in my previous commit. NFCI

(pho)

net/tigervnc: Work around kern/58149 on NetBSD/aarch64 9.* and 10.0

See also
http://mail-index.netbsd.org/netbsd-users/2024/04/12/msg030915.html

(pho)

*: allow eupl-v1.2 by default, OSI approved

(wiz)

mk: add European Union Public Licence v. 1.2

(wiz)

doc: Updated textproc/py-pdf to 4.2.0nb1

(wiz)

py-pdf: fix depends for Python 3.10

Also needs py-typing-extensions there.

Bump PKGREVISION.

(wiz)

softether: insists in readline

Bump PKGREVISION

(wiz)

gst-rtsp-server: finish update

(wiz)

xfmail: remove

No upstream, doesn't build in any bulk build I can find.

(wiz)

openrct2: fix build

avoid including alloca.h except on Linux

(wiz)

cromagrally: requires c++20

(wiz)

bugdom2: requires c++20

(wiz)

zug: add missing catch2 dependency to fix build

Only needed for tests.

(wiz)

mise: add missing openssl bits to fix build

(wiz)

doc: Updated devel/immer to 0.8.1nb1

(wiz)

mmer: pull in catch2 to fix build.

Only used for tests afaict, so don't change bl3.mk.

Bump PKGREVISION.

(wiz)

doc: Updated chat/psybnc to 2.4.3

(wiz)

psybnc: update to 2.4.3.

Version 2.4.3:
-------------------------------------------------------------------
08-04-21  - minor fixes

(wiz)

doc: Updated net/libcares to 1.28.1nb1

(wiz)

libcares: fix pkg-config file

Bump PKGREVISION.

(wiz)

doc/TODO: add some

+ ast-grep-0.20.5, erlang-26.2.4, grafana-10.4.2, libwildmidi-0.4.6,
  llvm-18.1.3, ninja-build-1.12.0, ocp-0.2.109, prometheus-2.51.2,
  py-cyclonedx-python-lib-7.1.0, py-docutils-0.21.1, py-mako-1.3.3,
  py-sphinx-autodoc-typehints-2.0.1, py-uwsgi-2.0.25, tree-sitter-0.22.4,
  tree-sitter-cli-0.22.4, tree-sitter-elixir-0.2.0,
  tree-sitter-json-0.21.0.

(wiz)

Updated devel/py-setuptools, devel/py-zope.interface

(adam)

py-zope.interface: updated to 6.3

6.3 (2024-04-12)

- Add preliminary support for Python 3.13 as of 3.13a6.

(adam)

py-setuptools: updated to 69.5.1

v69.5.1

No significant changes.

v69.5.0

Features

Refresh unpinned vendored dependencies.
Updated vendored packaging to version 24.0.

v69.4.0

Features

Merged with pypa/distutils@55982565e, including interoperability improvements for rfc822_escape, dynamic resolution of config_h_filename for Python 3.13 compatibility, added support for the z/OS compiler, modernized compiler options in unixcompiler, fixed accumulating flags bug after compile/link, fixed enconding warnings, and general quality improvements.

(adam)

Updated security/pcsc-lite, net/tor

(adam)

tor: updated to 0.4.8.11

Changes in version 0.4.8.11 - 2024-04-10
  This is a minor release mostly to upgrade the fallbackdir list. Worth noting
  also that directory authority running this version will now automatically
  reject relays running the end of life 0.4.7.x version.

  o Minor feature (authority):
    - Reject 0.4.7.x series at the authority level. Closes ticket 40896.

  o Minor feature (dirauth, tor26):
    - New IP address and keys.

  o Minor feature (directory authority):
    - Allow BandwidthFiles "node_id" KeyValue without the dollar sign at
      the start of the hexdigit, in order to easier database queries
      combining Tor documents in which the relays fingerprint does not
      include it. Fixes bug 40891; bugfix on 0.4.7 (all supported
      versions of Tor).

  o Minor features (fallbackdir):
    - Regenerate fallback directories generated on April 10, 2024.

  o Minor features (geoip data):
    - Update the geoip files to match the IPFire Location Database, as
      retrieved on 2024/04/10.

  o Minor bugfixes (directory authorities):
    - Add a warning when publishing a vote or signatures to another
      directory authority fails. Fixes bug 40910; bugfix
      on 0.2.0.3-alpha.

(adam)

pcsc-lite: updated to 2.1.0

2.1.0

- LIBPCSCLITE_DELEGATE is used to redirect to another libpcsclite library
- setup_spy.sh displays the LIBPCSCLITE_DELEGATE value to use for spying
- provides libfake.c as a sample source code
- Some other minor improvements

(adam)

doc: Updated devel/p5-Test2-Plugin-NoWarnings to 0.10

(wiz)

p5-Test2-Plugin-NoWarnings: update to 0.10.

0.10    2024-04-07

- Previous, when tests were run via prove without the verbose flag and there
  was a warning that caused a test failure, there was no output indicating
  that a warning caused the failure. This has now been corrected and you'll
  see output that includes "Unexpected warning". Reported by @janlimpens.

(wiz)

doc: weasyprint0 removal in 2021 was reverted

(wiz)

Updated devel/cmake, devel/cmake-gui

(adam)

cmake cmake-gui: updated to 3.29.2

CMake 3.29.2
* Tests/RunCMake/CompilerChange: Simplify test cases
* Fix regression on reconfigure with unnormalized -DCMAKE_<LANG>_COMPILER=
* CMakePackageConfigHelpers: Restore undocumented PACKAGE_PREFIX_DIR variable
* Swift: Ninja: Remove module dependency for executables
* FindJasper: Fix Jasper::Jasper IMPORTED_CONFIGURATIONS
* FindOpenSSL: Update layout for Shining Light Productions 32-bit package
* FindOpenSSL: Update layout for Shining Light Productions debug libraries

(adam)

doc: Updated misc/libreoffice to 24.2.2.2

(ryoon)

libreoffice: Update to 24.2.2.2

Changelog:
24.2.2.2:
Bugs fixed compared to 24.2.2 RC1:

1. tdf#152524 macOS: LibreOffice crashes (gpgme / gpgmeio) on macOS 13 Ventura
    [Patrick Luby]
2. tdf#157241 Freeze when removing table [Michael Stahl]
3. tdf#158783 editing alphabetical index crashes Writer [Armin Le Grand
    (allotropia)]
4. tdf#159373 Crash in: ScTable::HasAttrib(short,long,short,long,HasAttrFlags)
    [Julien Nabet]
5. tdf#159730 RTF table split document layout [Oliver Specht]
6. tdf#159915 LibreOffice scaled incorrectly when running with KF6 or Qt6 VCL
    on Wayland [Michael Weghorn]
7. tdf#159931 Exported pptx cannot be opened in PowerPoint because a
    referenced part does not exist [Sarper Akdemir]
8. tdf#159996 Dialogs editor don't show controls correctly [Patrick Luby]
9. tdf#160036 Selection invisible in a11y High Contrast modes with SKIA/
    Raster, Skia/Vulkan unaffected [Patrick Luby]
10. tdf#160095 CRASH: using ALT+RETURN twice [Julien Nabet]
11. tdf#160117 Conditional formatting handling bug in Calc 24.2 with different
    but overlapping ranges [Mike Kaganski]
12. tdf#160149 CRASH: undoing conditional format [Mike Kaganski]
13. tdf#160180 About box for 24.2 has out of date copyright year [Julien Nabet]

24.2.2.1:
Bugs fixed compared to 24.2.1 RC2:

1. cid#1592908 dereference null return value [Caol??n McNamara]
2. tdf#55004 backup copy fails when using share / samba (if nobrl cifs mount
    option not used) [Kevin Ottens]
3. tdf#63259 It should be possible to use shift + F3 case change (cycle case),
    when cursor is at the beginning or end of a word and not only in the middle
    [Oliver Specht]
4. tdf#83720 PIVOTTABLE: Wrong date format in column field [Toma? Vajngerl]
5. tdf#92389 Writer: Comment text not accessible with screen reader [Michael
    Weghorn]
6. tdf#99969 COPYING cells containing a chart and pasting as embedded
    spreadsheet doesn't copy the data chart (comment 14) [Mike Kaganski]
7. tdf#124591 Update Noto Fonts to latest releases [Khaled Hosny]
8. tdf#125934 No application icon on Wayland with the qt5 / kf5 backend
    [Michael Weghorn]
9. tdf#126638 macOS: Can't paste, copy, cut or ?A (select all) using keyboard
    shortcuts in Save-As field (workaround: comment 38) [Patrick Luby]
10. tdf#129701 Skip empty cells option does not work for the last column in
    Calc Text Import dialog [Laurent Balland]
11. tdf#131550 Notifications bloating the UI [Heiko Tietze]
12. tdf#136905 NB Layout tab 'Page Size' drop list UX is poor [Justin Luth]
13. tdf#146356 ODT: No easy way to create an empty paragraph before Table of
    Content if document starts with table of content [Oliver Specht]
14. tdf#147731 Crash in SwFrameFormat::~SwFrameFormat() [Michael Stahl]
15. tdf#150408 "Legal numbering style" is not applied to list levels with
    <w:isLgl/> tag [Miklos Vajna]
16. tdf#150443 Track changes: Crash rejecting a grouped change [Xisco Fauli]
17. tdf#153196 FILEOPEN RTF/DOCX Extra footer appears when section break is in
    the middle of page [Michael Stahl]
18. tdf#153706 Pasting Selected Range to Sheet as GDI Image, Chart image is
    incorrect. [Mike Kaganski]
19. tdf#153761 FILESAVE ODT->DOCX hatch fill in shape is lost [Justin Luth]
20. tdf#155663 FILEOPEN RTF Image crop not imported [Michael Stahl]
21. tdf#155710 Calc crashes every time when saving linked files on macOS
    [Patrick Luby]
22. tdf#155961 cannot access the controls close to vertical scrollbar [Caol??n
    McNamara]
23. tdf#157135 LibreOffice 7.6 stalls/crashes under Windows 11 with Norwegian
    (Bokm?l) locale when opening file dialog [Mike Kaganski]
24. tdf#157158 [UI] Comment arrow drop down is white/light grey when in dark
    mode [Xisco Fauli]
25. tdf#158597 FILEOPEN DOCX Numbering in specific file is unexpectedly bold
    [Michael Stahl]
26. tdf#158735 Solver options are no longer saved during a spreadsheet load.
    [Rafael Lima]
27. tdf#158947 Pasting clipboard contents is not possible under certain
    circumstances with Wayland [Michael Weghorn]
28. tdf#158983 FILEOPEN: RTF: 2 page table is displayed in one page [Michael
    Stahl]
29. tdf#158986 FILEOPEN: RTF: Extra page break [Miklos Vajna]
30. tdf#159251 After using the navigator w/rtl user interface, text is garbled
    during selection / after hovering [Khaled Hosny]
31. tdf#159285 LAYOUT floating table: 2007 DOCX hangs trying to open [Miklos
    Vajna]
32. tdf#159420 EDITING Autofilter for empty cells disabled when by Autofilter
    in other column empty cells filtered out [Xisco Fauli]
33. tdf#159438 ODF export: bookmarks' starts and ends interleave [Mike
    Kaganski]
34. tdf#159453 Importing DOCX: Position of frame has gone [Miklos Vajna]
35. tdf#159483 Calc HTML import: support data-sheets attributes [Miklos Vajna]
36. tdf#159502 missing XML2 version [Michael Stahl]
37. tdf#159515 Custom shape with bitmap fill with image with transparent parts
    is wrongly rendered in extrusion mode [Patrick Luby]
38. tdf#159565 Ctrl+A and Select All don't work when section at the start of
    document body is hidden [Mike Kaganski]
39. tdf#159666 Crash when table and line object are selected at the same time
    [Xisco Fauli]
40. tdf#159689 Exporting glyphs to PDF produces validation warnings in VeraPDF
    [Mike Kaganski]
41. tdf#159696 Small capitals with 'Underlining' does not react to the flag for
    'Single words' [Caol??n McNamara]
42. tdf#159704 FILESAVE exporting to SVG loses the text in some shapes [Jaume
    Pujantell]
43. tdf#159730 RTF table split document layout [Oliver Specht]
44. tdf#159735 Crash when using APSO extension and closing LibreOffice [Michael
    Weghorn]
45. tdf#159752 17 Noto Fonts dropped from 24.2 bundle without notice (and 1
    added) [Xisco Fauli]
46. tdf#159769 Can't open ODF files when LibreOffice's lu* subdirectory in
    system TEMP directory is deleted [Mike Kaganski]
47. tdf#159793 Paper tray settings not saved in RTF and DOCX [Oliver Specht]
48. tdf#159797 Autocorrection: Replace dashes should also work between
    sentences. [Oliver Specht]
49. tdf#159802 Writer Document does not print with Form detail in 24.2 release
    [Noel Grandin]
50. tdf#159813 Assertion failed when dragging-and-dropping text [Mike Kaganski]
51. tdf#159815 Unexpected content inside content control with track changes and
    anchored images from DOCX [Miklos Vajna]
52. tdf#159816 Crash in drag-n-drop of multiple paragraphs with a bookmark
    [Mike Kaganski]
53. tdf#159817 Form controls coordinates scrambled when exporting to pdf with
    uncheked form creation in Writer [Noel Grandin]
54. tdf#159824 FILESAVE ODF->RTF: axial gradients become 2-color linear [Justin
    Luth]
55. tdf#159854 Trigger text is black on dark grey in Animation sidebar deck
    (dark mode) [Caol??n McNamara]
56. tdf#159862 Calc Macro set SearchWildcard to False changes
    SearchRegularExpression value. [Julien Nabet]
57. tdf#159865 Font of the drop down menu in Page Size is very low (in NB bar
    Tabbed UI) [Justin Luth]
58. tdf#159879 Crash when closing "3D View" dialog [Caol??n McNamara]
59. tdf#159908 LibreOffice crashes when using a constant as a loop variable in
    BASIC code, leading to data loss. [Mike Kaganski]
60. tdf#159910 Buttons in navigator not properly announced by Orca screen
    reader (gtk3 VCL plugin) [Michael Weghorn]
61. tdf#159938 Moving through cells with overflowing content changes the cells'
    height and wrapping [Mike Kaganski]
62. tdf#159955 When using a custom page number in Writer, the custom page
    number and the actual sum of pages are switched in the sidebar [Julien
    Nabet]
63. tdf#159968 LibreOffice can't render markers (eg. arrows) embeded to end of
    line [Xisco Fauli]
64. tdf#160003 Copying a sheet with chart and pasting to other document's sheet
    with a different name looses chart [Regina Henschel]

(ryoon)

doc/TODO: + lighttpd-1.4.76.

(wiz)

doc: improve some patterns

(wiz)

Updated www/py-django-bootstrap5, devel/py-joblib, audio/libopus, devel/blosc2

(adam)

blosc2: updated to 2.14.4

Changes from 2.14.3 to 2.14.4

* Bumped SONAME due to recent API changes. See https://github.com/Blosc/c-blosc2/issues/581.

(adam)

libopus: updated to 1.5.2

libopus 1.5.2

Opus 1.5.2 fixes several build issues that were discovered since the 1.5
release. It also fixes a misalignment issue in the AVX2 code that could cause
crashes under Windows.

(adam)

py-joblib: updated to 1.4.0

Release 1.4.0 -- 2024/04/08

- Allow caching co-routines with `Memory.cache`.

- Try to cast ``n_jobs`` to int in parallel and raise an error if
  it fails. This means that ``n_jobs=2.3`` will now result in
  ``effective_n_jobs=2`` instead of failing.

- Ensure that errors in the task generator given to Parallel's call
  are raised in the results consumming thread.

- Adjust codebase to NumPy 2.0 by changing ``np.NaN`` to ``np.nan``
  and importing ``byte_bounds`` from ``np.lib.array_utils``.

- The parameter ``return_as`` in ``joblib.Parallel`` can now be set to
  ``generator_unordered``. In this case the results will be returned in the
  order of task completion rather than the order of submission.

- dask backend now supports ``return_as=generator`` and
  ``return_as=generator_unordered``.

- Vendor cloudpickle 3.0.0 and end support for Python 3.7 which has
  reached end of life.

(adam)

py-django-bootstrap5: updated to 24.1

24.1 (2024-04-12)

- Fix RadioSelectButtonGroup rendering and add 'disabled' attribute to radio button group template

(adam)

Updated www/py-aiohttp, textproc/py-black, devel/py-ruff, graphics/py-leather

(adam)

py-leather: updated to 0.4.0

0.4.0 - October 23, 2023

* feat: :meth:`.Chart.add_line` accepts a `stroke_dasharray argument <https://developer.mozilla.org/en-US/docs/Web/SVG/Attribute/stroke-dasharray>`_.
* feat: Add a ``default_stroke_dasharray`` theme option.
* fix: Apply the ``axis_title_font_size`` and ``tick_font_size`` theme options.

0.3.5 - October 23, 2023

* Leather no longer reconfigures Python warnings globally.
* Add Python 3.11 and 3.12 support.
* Drop Python 3.7 support (end-of-life was June 27, 2023).

(adam)

py-ruff: updated to 0.3.7

0.3.7

Preview features

[flake8-bugbear] Implement loop-iterator-mutation (B909)
[pylint] Implement rule to prefer augmented assignment (PLR6104)

Bug fixes

Avoid TOCTOU errors in cache initialization
[pylint] Recode nan-comparison rule to W0177
[pylint] Reverse min-max logic in if-stmt-min-max

0.3.6

Preview features

[pylint] Implement bad-staticmethod-argument (PLW0211)
[pylint] Implement if-stmt-min-max (PLR1730, PLR1731)
[pyupgrade] Replace str,Enum multiple inheritance with StrEnum UP042
[refurb] Implement if-expr-instead-of-or-operator (FURB110)
[refurb] Implement int-on-sliced-str (FURB166)
[refurb] Implement write-whole-file (FURB103)
[refurb] Support itemgetter in reimplemented-operator (FURB118)
[flake8_comprehensions] Add sum/min/max to unnecessary comprehension check (C419)

Rule changes

[pydocstyle] Require capitalizing docstrings where the first sentence is a single word (D403)
[pycodestyle] Ignore annotated lambdas in class scopes (E731)
[flake8-pyi] Various improvements to PYI034
[flake8-slots] Flag subclasses of call-based typing.NamedTuples as well as subclasses of collections.namedtuple() (SLOT002)
[pyflakes] Allow forward references in class bases in stub files (F821)
[pygrep-hooks] Improve blanket-noqa error message (PGH004)

CLI

Support FORCE_COLOR env var

Configuration

Support negated patterns in [extend-]per-file-ignores

Bug fixes

[flake8-import-conventions] Accept non-aliased (but correct) import in unconventional-import-alias (ICN001)
[flake8-quotes] Add semantic model flag when inside f-string replacement field
[pep8-naming] Recursively resolve TypeDicts for N815 violations
[flake8-quotes] Respect Q00* ignores in flake8-quotes rules
[flake8-simplify] Show negated condition in needless-bool diagnostics (SIM103)
[ruff] Use within-scope shadowed bindings in asyncio-dangling-task (RUF006)
[flake8-pytest-style] Fix single-tuple conversion in pytest-parametrize-values-wrong-type (PT007)
[flake8-return] Ignore assignments to annotated variables in unnecessary-assign (RET504)
[refurb] Do not allow any keyword arguments for read-whole-file in rb mode (FURB101)
[pylint] Don't recommend decorating staticmethods with @singledispatch (PLE1519, PLE1520)
[pydocstyle] Use section name range for all section-related docstring diagnostics
Respect # noqa directives on __all__ openers

(adam)

py-black: updated to 24.4.0

24.4.0

Stable style

- Fix unwanted crashes caused by AST equivalency check

Preview style

- `if` guards in `case` blocks are now wrapped in parentheses when the line is too long.

- Stop moving multiline strings to a new line unless inside brackets

Integrations

- Add a new option `use_pyproject` to the GitHub Action `psf/black`. This will read the
  Black version from `pyproject.toml`.

(adam)

py-aiohttp: updated to 3.9.4

3.9.4 (2024-04-11)

Bug fixes

- The asynchronous internals now set the underlying causes
  when assigning exceptions to the future objects
- Treated values of ``Accept-Encoding`` header as case-insensitive when checking
  for gzip files
- Improved the DNS resolution performance on cache hit
  This is achieved by avoiding an :mod:`asyncio` task creation in this case.
- Changed the type annotations to allow ``dict`` on :meth:`aiohttp.MultipartWriter.append`,
  :meth:`aiohttp.MultipartWriter.append_json` and
  :meth:`aiohttp.MultipartWriter.append_form`
- Ensure websocket transport is closed when client does not close it
  The transport could remain open if the client did not close it. This
  change ensures the transport is closed when the client does not close
  it.
- Leave websocket transport open if receive times out or is cancelled
  This restores the behavior prior to the change in 7978.
- Fixed content not being read when an upgrade request was not supported with the pure Python implementation.
- Fixed a race condition with incoming connections during server shutdown
- Fixed ``multipart/form-data`` compliance with :rfc:`7578`
- Fixed blocking I/O in the event loop while processing files in a POST request
- Escaped filenames in static view
- Fixed the pure python parser to mark a connection as closing when a
  response has no length

Features

- Upgraded *llhttp* to 9.2.1, and started rejecting obsolete line folding
  in Python parser to match

Deprecations (removal in next major release)

- Deprecated ``content_transfer_encoding`` parameter in :py:meth:`FormData.add_field()
  <aiohttp.FormData.add_field>`

Improved documentation

- Added a note about canceling tasks to avoid delaying server shutdown

(adam)

doc/pkg-vulnerabilities: add entries for php-7.4 and php-8.0

(taca)

doc/eol-packages: php74 and php80

PHP 7.4 and PHP 8.0 are EOL.

(taca)

doc/pkg-vulnerabilities: add several php{80,81,82} entries

CVE-2024-1874
https://github.com/php/php-src/security/advisories/GHSA-pc52-254m-w9w7

CVE-2024-2756
https://github.com/php/php-src/security/advisories/GHSA-wpj3-hf5j-x4v4

CVE-2024-3096
https://github.com/php/php-src/security/advisories/GHSA-h746-cjrr-wfmr

(taca)

doc: Updated lang/php81 to 8.1.28

(taca)

lang/php81: update to 8.1.27

This release includes security fixes.

11 Apr 2024, PHP 8.1.28

- Standard:
  . Fixed bug GHSA-pc52-254m-w9w7 (Command injection via array-ish $command
    parameter of proc_open). (CVE-2024-1874) (Jakub Zelenka)
  . Fixed bug GHSA-wpj3-hf5j-x4v4 (__Host-/__Secure- cookie bypass due to
    partial CVE-2022-31629 fix). (CVE-2024-2756) (nielsdos)
  . Fixed bug GHSA-h746-cjrr-wfmr (password_verify can erroneously return true,
    opening ATO risk). (CVE-2024-3096) (Jakub Zelenka)

(taca)