doc: Added textproc/flycheck-mode version 33.0

(ryoon)

textproc/flycheck-mode: import flycheck-mode-33.0

Flycheck is a modern on-the-fly syntax checking extension for GNU
Emacs, intended as replacement for the older Flymake extension
which is part of GNU Emacs.

(ryoon)

devel: Enable dash-el

(ryoon)

doc: Added devel/dash-el version 2.19.1

(ryoon)

devel/dash-el: import dash-el-2.19.1

A modern list api for Emacs. No 'cl required.

(ryoon)

doc: Updated mail/dkimproxy to 1.4.1nb1

(ryoon)

mail/dkimproxy: Add rc.d scripts

* Bump PKGREVISION.

(ryoon)

doc: Updated security/acmesh to 3.0.7

(ryoon)

security/acmesh: Update to 3.0.7

Changelog:
What's Changed

    dns_1984.hosting.sh: fix login with valid csrftoken by @phedoreanu in #4412
    Spelling / grammar by @systemcrash in #4574
    Notify hook: AWS SES by @szhu25 in #4687
    Remove external OTP dependency from deploy hook Synology_DSM.sh by @Eagle3386 in #4646
    4442 by @Neilpang in #4691
    Add BookMyName API support by @alaunay in #3208
    Fix SES region variable by @szhu25 in #4700
    Update dns_kappernet.sh by @hknet in #4714
    sync by @Neilpang in #4720
    Add DNSExit.com API support by @samuel-jimenez in #4712
    Fix the API calls that get the list of domains that PLESK can manage by @zearan in #4710
    Fixed help verbiage to reflect capabilities of --ecc flag by @sg1888 in #4708
    Added functionality for Palo Alto Firewall deployments (PANOS) by @sg1888 in #4575
    Remove punctuation symbol by @vitoyucepi in #4745
    Master 1 by @glocknerc in #4755
    fix for curl bugs nghttp2_option_set_no_rfc9113_leading_and_trailing_… by @KincaidYang in #4776
    inwx: Be case insensitive while searching for the cookie. by @sebastianas in #4764
    Fixed grep pattern regex for nginx conf path by @Nirzak in #4749
    fix for nghttp2_option_set_no_rfc9113_leading_and_trailing_ws_validation by @KincaidYang in #4779
    Fix Auth API access for DSM 6 by @Eagle3386 in #4728
    Add ArtFiles.de DNS API plugin by @Eagle3386 in #3959
    Improved api compatibility with devices by @LJea in #4754
    dns_gandi: implements token in addition to the (deprecated) API key by @zbbfufu in #4794
    Random cron by @MarcelWaldvogel in #944
    Add TencentCloud API by @KincaidYang in #4782
    Fix Variomedia API by @TobiasGrave in #4787
    fix: Synology DSM API path regex by @winromulus in #4809

(ryoon)

editors: Enable manued

(ryoon)

doc: Added editors/manued version 0.0.0.20191018

(ryoon)

editors/manued: import manued-0.0.0.20191018

Manued is a proofreading method of manuscripts. This method is
proposed by Ikuo Takeuchi in No.39 Programming symposium of Japan,
1998. Althogh manued is a media independent proofreading method,
it is especially effective for exchanging electric texts via E-mail.

(ryoon)

doc: Updated www/firefox to 124.0.2nb2

(ryoon)

firefox: Use ffmpeg7

Bump PKGREVISION.

(ryoon)

multimedia: Enable ffmpeg7 and ffplay7

(ryoon)

doc: Added multimedia/ffplay7 version 7.0

(ryoon)

multimedia/ffplay7: import ffplay7-7.0

FFplay is a very simple and portable media player using the FFmpeg
libraries and the SDL library.  It is mostly used as a testbed for
the various FFmpeg APIs.

This package contains major version 7.

(ryoon)

doc: Added multimedia/ffmpeg7 version 7.0

(ryoon)

multimedia/ffmpeg7: import ffmpeg7-7.0

FFmpeg is a complete, cross-platform solution to record, convert
and stream audio and video.  It includes libavcodec - the leading
audio/video codec library.

This package contains major version 7.

(ryoon)

doc: Updated www/ruby-selenium-webdriver to 4.19.0

(taca)

www/ruby-selenium-webdriver: update to 4.19.0

4.19.0 (2024-03-27)

* Add CDP for Chrome 123 and remove 120
* Avoid over-escaping browser path (#13632)
* Add full RBS support (#13234)

(taca)

doc: Updated www/ruby-rack-cache to 1.17.0

(taca)

www/ruby-rack-cache: update to 1.17.0

1.17.0 (2024-04-05)

What's Changed

* Ensure invalidate doesn't mutate response x-status key by @timdef in #25

New Contributors

* @timdef made their first contribution in #25

(taca)

doc: Updated www/ruby-css-parser to 1.17.0

(taca)

www/ruby-css-parser: update to 1.17.0

1.17.0 (2024-04-06)

* Added user_agent as an option to Parser #146

(taca)

doc: Updated www/ruby-aws-sdk-s3 to 1.146.1

(taca)

www/ruby-aws-sdk-s3: update to 1.146.1

1.146.1 (2024-03-28)

* Issue - Fix bug where thread_count option was not being respected for
  multipart uploads.

1.146.0 (2024-03-18)

* Feature - Fix two issues with response root node names.

1.145.0 (2024-03-15)

* Feature - Documentation updates for Amazon S3.

1.144.0 (2024-03-13)

* Feature - This release makes the default option for S3 on Outposts request
  signing to use the SigV4A algorithm when using AWS Common Runtime (CRT).

1.143.1 (2024-03-12)

* Issue - Include original part errors in message when aborting multipart
  upload fails (#2990).

(taca)

doc: Updated www/ruby-aws-sdk-secretsmanager to 1.91.0

(taca)

www/ruby-aws-sdk-secretsmanager: update to 1.91.0

1.91.0 (2024-03-27)

* Feature - Documentation updates for Secrets Manager

(taca)

doc: Updated www/ruby-aws-sdk-core to 3.191.6

(taca)

www/ruby-aws-sdk-core: update to 3.191.6

3.191.6 (2024-04-02)

* Issue - Performance optimization: ensure presence and order of instance
  variables in PluginOptions (#3002).

3.191.5 (2024-03-26)

* Issue - Fix EC2Metadata and InstanceProfileCredentials to respect the port
  from a configured endpoint from code, ENV, or shared config.

(taca)

doc: Updated www/ruby-aws-partitions to 1.909.0

(taca)

www/ruby-aws-partitions: update to 1.909.0

1.909.0 (2024-04-05)

* Feature - Updated the partitions source data the determines the AWS
  service regions and endpoints.

1.908.0 (2024-04-04)

* Feature - Updated the partitions source data the determines the AWS
  service regions and endpoints.

1.907.0 (2024-04-03)

* Feature - Updated the partitions source data the determines the AWS
  service regions and endpoints.

1.906.0 (2024-04-02)

* Feature - Updated the partitions source data the determines the AWS
  service regions and endpoints.

1.905.0 (2024-04-01)

* Feature - Added support for enumerating regions for Aws::Deadline.

1.904.0 (2024-03-29)

* Feature - Added support for enumerating regions for Aws::CodeConnections.

1.903.0 (2024-03-28)

* Feature - Updated the partitions source data the determines the AWS
  service regions and endpoints.

1.902.0 (2024-03-27)

* Feature - Updated the partitions source data the determines the AWS
  service regions and endpoints.

1.901.0 (2024-03-26)

* Feature - Updated the partitions source data the determines the AWS
  service regions and endpoints.

1.900.0 (2024-03-25)

* Feature - Updated the partitions source data the determines the AWS
  service regions and endpoints.

1.899.0 (2024-03-18)

* Feature - Updated the partitions source data the determines the AWS
  service regions and endpoints.

(taca)

doc: Updated security/ruby-sshkit to 1.22.1

(taca)

security/ruby-sshkit: update to 1.22.1

1.22.1 (2024-04-01)

Bug Fixes

* Explicitly require base64 to fix missing constant error with net-ssh
  7.2.2+ (#532) @mattbrictson

Housekeeping

* Fix failing tests on ruby head (#533) @mattbrictson
* Bump toolmantim/release-drafter from 5.25.0 to 6.0.0 (#530) @dependabot

(taca)

doc: Updated security/ruby-rex-text to 0.2.57

(taca)

security/ruby-rex-text: update to 0.2.57

0.2.57 (2024-03-28)

* land #69, add buffer/comment support

(taca)

doc: Updated security/ruby-rex-socket to 0.1.57

(taca)

security/ruby-rex-socket: update to 0.1.57

0.1.57 (2024-03-25)

* Land #66, update is_name to support underscores

(taca)

doc: Updated security/ruby-net-ssh to 7.2.3

(taca)

security/ruby-net-ssh: update to 7.2.3

7.2.3 (2024-04-02)

No documentation.  But it looks like a little improvement to Rakefile.

(taca)

doc: Updated net/ruby-train-core to 3.12.0

(taca)

net/ruby-train-core: update to 3.12.0

3.12.0 (2024-03-28)

Merged Pull Requests

* CHEF-7180: Configures sonarqube for code coverage anlaysis #758 (Vasu1105)
* Adds missing configuration for coverage pipeline #760 (Vasu1105)
* CHEF-7180: Fix configuration values in sonar configuration file #761
  (Vasu1105)
* Fix: Update ruby base image to bullseye in CI tests #765 (ahasunos)
* CHEF-8598: Add support for curve25519 key exchange #764 (ahasunos)
* Upgrade Google REST API Client to latest #757 (balasubramanian-s)
* Revert "Upgrade Google REST API Client to latest" #766 (Vasu1105)
* CHEF-8031- Upgrade GCP client libraries #767 (balasubramanian-s)

(taca)

doc: Updated net/ruby-dnsruby to 1.72.0

(taca)

net/ruby-dnsruby: update to 1.72.0

1.72.0 (2024-03-28)

* Fix compatibility with the --enable-string-literal Ruby option - thanks
  Jean byroot Boussier!

(taca)

doc: Updated graphics/ruby-RMagick to 5.5.0

(taca)

graphics/ruby-RMagick: update to 5.5.0

5.5.0 (2024-04-06)

Improvements

* Add RBS signatures (#1458)
* Remove unnecessary type check in KernelInfo#{unity_add, scale} (#1514)
* Remove unnecessary type check in Image#{morphology, morphology_channel}
  (#1513)
* Improve HatchFill.new to accept Pixel object as color (#1512)
* Fix GraphicContext#font_weight to accept Numeric object (#1510)
* Improve GraphicContext#font_weight to accept Symbol object (#1509)
* Improve Stretchable#viewbox to use implicitly conversioned value (#1507)
* Improve RVG::Transformable#rotate to convert to Float implicitly (#1506)
* Fix Image#modulate in order to accept negative number (#1505)
* Improve Image#modulate to accept "NN%" form string (#1504)
* Implicit conversion to string with methods that expect a string (#1496)
* Coerce to string instead of using #to_s (#1495)
* Coerce to string where pass object into string interpolation (#1494)
* Fix Draw#{fill_opacity, opacity, stroke_opacity} to correctly handle
  arguments (#1492)
* Fix Draw#{interline_spacing, interword_spacing, kerning} to correctly
  handle arguments that can be converted to Float (#1491)
* Remove unnecessary type check in KernelInfo methods (#1489)
* Generate compile_flags.txt for clangd for development (#1488)
* Fix Draw#{stroke_dasharray, stroke_miterlimit} to accept object which has
  #to_f method (#1486)
* Fix Image#composite_affine to accept ImageList object (#1484)
* Fix Image#add_compose_mask to accept ImageList object (#1483)
* Fix incorrect number of required arguments in ArgumentError (#1482)
* Fix ImageList#sort! that should return self (#1481)
* Fix ImageList#eql? that should not raise exception if can't compare
  (#1479)
* Fix ImageList#<=> that should return nil if can't compare (#1478)
* Add DrawAttribute module to simplify Draw, DrawOptions and PolaroidOptions
  (#1477)
* Add missing attribute writer methods in Image::{DrawOptions,
  PolaroidOptions} (#1476)
* Add Image::PolaroidOptions#affine= (#1475)
* Add Image::PolaroidOptions#tile= (#1474)
* Attribute writer methods should return passed value (#1473)
* Return self with ImageList if Image's method return self (#1472)
* Fix Image#clut_channel to accept ImageList object (#1471)
* Fix Magick::GradientFill#fill and Magick::TextureFill#fill to accept
  ImageList object (#1467)

Bug Fixes

* Fix typo in order to fix NoMethodError (#1515)
* Sync compression value in order fix the problem of compression being
  ignored by ImageMagick 7 (#1503)
* Add PKG_CONFIG_PATH for ImageMagick 7 in order to fix installation error
  on macOS (#1501)

(taca)

doc: Updated finance/ruby-braintree to 4.20.0

(taca)

finance/ruby-braintree: update to 4.20.0

4.20.0 (2024-03-26)

* Deprecate credit method in credit_card and credit_card_gateway
* Deprecate sale method in credit_card and credit_card_gateway
* Add domains parameter support to ClientToken::generate

(taca)

doc: Updated devel/ruby-ole to 1.2.13.1

I've missed to write these.

1.2.13 (2024-03-28)

* Drop defunct Travis sudo: false directive (github #27, olleolleolle).
* Fix broken '-y' command line option (github #20).

> 1.2.13.1 (2024-03-28)
>
> * Try using gemspec metadata to see if it will update rubygems homepage
>  link.

(taca)

devel/ruby-ole: update to 1.2.13.1

1.2.13.1 (2024-03-28)

* Try using gemspec metadata to see if it will update rubygems homepage
  link.

(taca)

doc: Updated devel/ruby-async to 2.10.1

(taca)

devel/ruby-async: update to 2.10.1

2.10.0 (2024-03-27)

* Introduce Async::Task#defer_stop by @ioquatix in #310

2.10.1 (2024-03-27)

* Raise stop directly in #defer_stop. by @ioquatix in #311

(taca)

doc: Updated databases/ruby-sequel to 5.79.0

(taca)

databases/ruby-sequel: update to 5.79.0

5.79.0 (2024-04-01)

* Support create_or_replace_view with :materialized option on PostgreSQL
  (nashby) (#2144)

* Support :unlogged_tables_default Database option on Postgres for making
  created tables unlogged by default (jeremyevans) (#2134)

* Add Dataset#select_prepend for prepending to the current selected columns
  (jeremyevans) (#2139)

(taca)

doc/pkg-vulnerabilities: add several php-concrete-cms entries

php{80,81,82}-concrete-cms<9.2.8 XSS
CVE-2024-2753
CVE-2024-3178
CVE-2024-3179
CVE-2024-3180
CVE-2024-3181

(taca)

doc: Updated www/php-concrete-cms to 9.2.8

(taca)

www/php-concrete-cms: update to 9.2.8

9.2.8 (2024-04-02)

Bug Fixes

* Fixed bug where c5:info console command would fail when run on a Concrete
  webroot if that webroot was not yet an installed Concrete site.

* Fixed bug where logout link in toolbar would not work when user was logged
  in as an editor who could not view the Dashboard (thanks ounziw)

Security Updates

* Created CVE-2024-2753 Stored XSS on the calendar color settings screen and
  fixed it with commit 11988 Prior to the fix, a rogue administrator could
  put malicious javascript on the Concrete CMS color setting screen which
  would have would have been triggered by and affected users who accessed
  the color settings screen.  The Concrete CMS security team gave this
  vulnerability a CVSS v3.1 score of 2.0 with a vector of
  AV:N/AC:H/PR:H/UI:R/S:U/C:L/I:N/A:N

  Thank you Rikuto Tauchi for reporting HackerOne 2433383.

* Created CVE-2024-3178 Cross-site Scripting (XSS) - Advanced File Search
  Filter and fixed it with commit 11988 for version 9 and commit 11989 for
  version 8.  Prior to the fix, a rogue administrator could add malicious
  code in the file manager because of insufficient validation of
  administrator provided data.  All administrators have access to the File
  Manager and hence could create a search filter with the malicious code
  attached.  The Concrete CMS security team gave this vulnerability a CVSS
  v3.1 score of 3.1 with a vector of AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:L

  Thank you Guram (javakhishvili) for reporting HackerOne 949443

* Created CVE-2024-3179 Stored XSS in the Custom Class page editing and
  fixed it with commit 11988 for version 9 and commit 11989 for version 8.
  Prior to the fix, a rogue administrator could insert malicious code in the
  custom class field due to insufficient validation of administrator
  provided data.  Concrete CMS version 9.2.8 and 8.5.13 no longer allow any
  non alphanumeric characters in this CSS class.  The Concrete CMS security
  team gave this vulnerability a CVSS v3.1 score of 3.1 with a vector of
  AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:L Thank you Alexey Solovyev for
  reporting HackerOne 918129.

* Created and fixed [CVE-2024-3180]
  (https://nvd.nist.gov/vuln/detail/CVE-2024-3180) Prior to fix, stored XSS
  could be executed by a rogue administrator adding malicious code to the
  link-text field when creating a block of type file.  Fixed with commit
  11988 for version 9 and commit 11989 for version 8.  The Concrete CMS
  security team gave this vulnerability a CVSS v3.1 sore of 3.1 with a
  vector of AV:N/AC:H/PR:H/UI:R/S:U/C:N/I:L/A:L Thank you Alexey Solovyev
  for reporting HackerOne 903356

* Created CVE-2024-3181 Stored XSS in the Search Field.  Prior to the fix,
  stored XSS could be executed by an administrator changing a filter to
  which a rogue administrator had previously added malicious code.  The
  Concrete Team fixed this with commit 11988 for version 9 and commit 11989
  for version 8. Thank you Alexey Solovyev for reporting HackerOne 918142

(taca)

doc: Updated net/pear-Net_SMTP to 1.12.0

(taca)

www/php-concrete-cms: update to 9.2.8

9.2.8 (2024-04-02)

(taca)

doc: Updated graphics/py-matplotlib to 3.8.4

(wiz)

py-matplotlib: update to 3.8.4.

This is the fourth micro release of the 3.8 series.

Highlights of the 3.8.4 release include:

    Enable building against numpy 2.0; released wheels are built against numpy 2
    macosx: Clean up single-shot timers correctly
    Add a draw during show for macos backend
    Fix color sequence data for Set2 and Set3
    gtk: Ensure pending draws are done before GTK draw
    Update "Created with" url in hand.svg
    Avoid modifying user input to Axes.bar
    fix quiver3d incorrect arrow colors

(wiz)

doc: Updated textproc/py-lxml to 5.2.1

(wiz)

py-lxml: update to 5.2.1.

5.2.1 (2024-04-02)
==================

Bugs fixed
----------

* LP#2059910: The minimum CPU architecture for the Linux x86 binary wheels was set back to
  "core2", but with SSE 4.2 enabled.

* LP#2059977: ``Element.iterfind("//absolute_path")`` failed with a ``SyntaxError``
  where it should have issued a warning.

* GH#416: The documentation build was using the non-standard ``which`` command.
  Patch by Michał Górny.

5.2.0 (2024-03-30)
==================

Other changes
-------------

* LP#1958539: The ``lxml.html.clean`` implementation suffered from several (only if used)
  security issues in the past and was now extracted into a separate library:

  https://github.com/fedora-python/lxml_html_clean

  Projects that use lxml without "lxml.html.clean" will not notice any difference,
  except that they won't have potentially vulnerable code installed.
  The module is available as an "extra" setuptools dependency "lxml[html_clean]",
  so that Projects that need "lxml.html.clean" will need to switch their requirements
  from "lxml" to "lxml[html_clean]", or install the new library themselves.

* The minimum CPU architecture for the Linux x86 binary wheels was upgraded to
  "sandybridge" (launched 2011), and glibc 2.28 / gcc 12 (manylinux_2_28) wheels were added.

* Built with Cython 3.0.10.

5.1.2 (2024-??-??)
==================

Bugs fixed
----------

* LP#2059977: ``Element.iterfind("//absolute_path")`` failed with a ``SyntaxError``
  where it should have issued a warning.

(wiz)

doc: Updated graphics/py-contourpy to 1.2.1

(wiz)

py-contourpy: update to 1.2.1.

ContourPy 1.2.1 is a compatibility release to support NumPy 2.

This release supports Python 3.9 to 3.12.

Thanks to new contributor @motoro and core maintainer @ianthomas23.

Compatibility:

    Support NumPy 2 (#331, #371, #372)

Code improvements:

    Fix a few f-strings (#332)

Documentation improvements:

    Clarify use of quotes in pip install (#349)

Build, testing and CI improvements:

    Improved linting (#322, #323, #333, #337)
    Update cppcheck to 2.11 (#324)
    Support running tests on unicore hosts (#327)
    Improved tests against nightly wheels (#329, #373)
    Update to chromium 118 for Bokeh renderer tests (#325)
    Add CI run using earliest supported numpy (#347)

(wiz)

*: bump for cairo buildlink3.mk change

lzo was made an option

(wiz)

cairo: make lzo optional, keep it default-on

Bump PKGREVISION.

(wiz)

xdelta: remove dead HOMEPAGE

(wiz)

doc: Updated devel/pkgconf to 2.2.0

(ryoon)

devel/pkgconf: Update to 2.2.0

Changelog:
Changes from 2.1.1 to 2.2.0:
----------------------------

* libpkgconf SOVERSION is now 5.

* Significant solver rework to flatten both requires and requires.private
  dependencies in a single pass.  Improves performance slightly and ensures
  proper dependency order.
  Patches by Kai Pastor.

* Improve `--digraph` output to reflect more of the solver's state in the
  rendered dependency graph.
  Patches by Kai Pastor.

* Do not reference the graph root by name when presenting error messages about
  directly requested dependency nodes.
  Patch by Kai Pastor.

(ryoon)

inputmethod/uim: Fix build on NetBSD 10

(pho)

doc: Added mail/dovecot2-fts-flatcurve version 1.0.2

(nikita)

dovecot2-fts-flatcurve: Import version 1.0.2

This is a Dovecot FTS (Full Text Search) plugin to enable message indexing
using the Xapian Open Source Search Engine Library.

The plugin relies on Dovecot to do the necessary stemming. It is intended
to act as a simple interface to the Xapian storage/search query functionality.

This driver supports match scoring and substring matches, which means it is
RFC 3501 (IMAP4rev1) compliant (although substring searches are off by default).
This driver does not support fuzzy searches, as there is no built-in support in
Xapian for it.

The driver passes all of the ImapTest search tests.

(nikita)

*: bump for x265 API change

Reported by Marc Baudoin

(wiz)

www/firefox: Add missing patch

(ryoon)

doc: Updated www/firefox-l10n to 124.0.2

(ryoon)

www/firefox-l10n: Update to 124.0.2

* Sync with www/firefox-124.0.2.

(ryoon)

doc: Updated www/firefox to 124.0.2

(ryoon)

www/firefox: Update to 124.0.1

Changelog:
124.0.2:
Fixed

  * Fixed an issue where users with a large amount of bookmarks would be unable
    to restore a bookmarks backup. (Bug 1884308)

  * Fixed an issue that would cause open Firefox windows to go blank or crash
    during video playback on sites such as Netflix. (Bug 1883932)

  * Fixed a crash that affected Linux AArch64 builds.(Bug 1866396)

  * Fixed an issue where some users experienced difficulties loading webpages
    due to changes made to the default AppArmor configuration shipping in
    Ubuntu 24.04. (Bug 1884347)

124.0.1:
Fixed

  * Security fixes.

Mozilla Foundation Security Advisory 2024-15
#CVE-2024-29943: Out-of-bounds access via Range Analysis bypass
#CVE-2024-29944: Privileged JavaScript Execution via Event Handlers

124.0:
New

  * Caret browsing mode now also works in the PDF viewer. (Learn more)

  * In Firefox View, open tabs can now be sorted by either recent activity or
    tab order. Recent activity is the default setting.

  * Firefox now populates the Windows taskbar jump list more efficiently, which
    should allow for a smoother overall browsing experience.

  * Firefox on Mac now uses the macOS fullscreen API for all types of
    fullscreen windows. This should better match the expected macOS user
    experience for fullscreen spaces, menubar and the Dock.

  * As of Firefox 124, Qwant's availability has been expanded to all languages
    in the France region along with Belgium, Italy, Netherlands, Spain, and
    Switzerland.

Fixed

  * Various security fixes.

Mozilla Foundation Security Advisory 2024-12
#CVE-2024-2605: Windows Error Reporter could be used as a Sandbox escape vector
#CVE-2024-2606: Mishandling of WASM register values
#CVE-2024-2607: JIT code failed to save return registers on Armv7-A
#CVE-2024-2608: Integer overflow could have led to out of bounds write
#CVE-2023-5388: NSS susceptible to timing attack against RSA decryption
#CVE-2024-2609: Permission prompt input delay could expire when not in focus
#CVE-2024-2610: Improper handling of html and body tags enabled CSP nonce
#CVE-2024-2611: Clickjacking vulnerability could have led to a user
accidentally granting permissions
#CVE-2024-2612: Self referencing object could have potentially led to a
use-after-free
#CVE-2024-2613: Improper handling of QUIC ACK frame data could have led to OOM
#CVE-2024-2614: Memory safety bugs fixed in Firefox 124, Firefox ESR 115.9, and
Thunderbird 115.9
#CVE-2024-2615: Memory safety bugs fixed in Firefox 124

(ryoon)

* recursive bump for libxkbcommon 1.7.0

Marc Baudoin reported problems with using old binary packages
with the new libkxbcommon, so force everything to 1.7.0

(wiz)

doc: Updated devel/ast-grep to 0.20.2

(wiz)

ast-grep: update to 0.20.2.

#### 0.20.2

- feat: make test --update-all not report error
- fix: fix update cases
- refactor: less indentation for interactive reporter
- feat: improve accept

#### 0.20.1

- feat: respect suppression in lsp

(wiz)

doc: Updated textproc/py-rapidfuzz to 3.7.0

(wiz)

py-rapidfuzz: update to 3.7.0.

[3.7.0] - 2024-03-21
^^^^^^^^^^^^^^^^^^^^

Changed
~~~~~~~
* reduce importtime

(wiz)

doc: Updated devel/py-pybind11 to 2.12.0

(wiz)

py-pybind11: update to 2.12.0.

Convert to wheel.mk.

New Features:

    pybind11 now supports compiling for NumPy 2. Most code shouldn't change (see upgrade-guide-2.12 for details). However, if you experience issues you can define PYBIND11_NUMPY_1_ONLY to disable the new support for now, but this will be removed in the future. #5050
    pybind11/gil_safe_call_once.h was added (it needs to be included explicitly). The primary use case is GIL-safe initialization of C++ static variables. #4877
    Support move-only iterators in py::make_iterator, py::make_key_iterator, py::make_value_iterator. #4834
    Two simple py::set_error() functions were added and the documentation was updated accordingly. In particular, py::exception<>::operator() was deprecated (use one of the new functions instead). The documentation for py::exception<> was further updated to not suggest code that may result in undefined behavior. #4772

Bug fixes:

    Removes potential for Undefined Behavior during process teardown. #4897
    Improve compatibility with the nvcc compiler (especially CUDA 12.1/12.2). #4893
    pybind11/numpy.h now imports NumPy's multiarray and _internal submodules with paths depending on the installed version of NumPy (for compatibility with NumPy 2). #4857
    Builtins collections names in docstrings are now consistently rendered in lowercase (list, set, dict, tuple), in accordance with PEP 585. #4833
    Added py::typing::Iterator<T>, py::typing::Iterable<T>. #4832
    Render py::function as Callable in docstring. #4829
    Also bump PYBIND11_INTERNALS_VERSION for MSVC, which unlocks two new features without creating additional incompatibilities. #4819
    Guard against crashes/corruptions caused by modules built with different MSVC versions. #4779
    A long-standing bug in the handling of Python multiple inheritance was fixed. See PR #4762 for the rather complex details. #4762
    Fix bind_map with using declarations. #4952
    Qualify py::detail::concat usage to avoid ADL selecting one from somewhere else, such as modernjson's concat. #4955
    Use new PyCode API on Python 3.12+. #4916
    Minor cleanup from warnings reported by Clazy. #4988
    Remove typing and duplicate class_ for KeysView/ValuesView/ItemsView. #4985
    Use PyObject_VisitManagedDict() and PyObject_ClearManagedDict() on Python 3.13 and newer. #4973
    Update make_static_property_type() to make it compatible with Python 3.13. #4971

    Render typed iterators for make_iterator, make_key_iterator, make_value_iterator. #4876
    Add several missing type name specializations. #5073
    Change docstring render for py::buffer, py::sequence and py::handle (to Buffer, Sequence, Any). #4831
    Fixed base_enum.__str__ docstring. #4827
    Enforce single line docstring signatures. #4735
    Special 'typed' wrappers now available in typing.h to annotate tuple, dict, list, set, and function. #4259
    Create handle_type_name specialization to type-hint variable length tuples. #5051

    Setting PYBIND11_FINDPYTHON to OFF will force the old FindPythonLibs mechanism to be used. #5042
    Skip empty PYBIND11_PYTHON_EXECUTABLE_LAST for the first cmake run. #4856
    Fix FindPython mode exports & avoid pkg_resources if importlib.metadata available. #4941
    Python_ADDITIONAL_VERSIONS (classic search) now includes 3.12. #4909
    pybind11.pc is now relocatable by default as long as install destinations are not absolute paths. #4830
    Correctly detect CMake FindPython removal when used as a subdirectory. #4806
    Don't require the libs component on CMake 3.18+ when using PYBIND11_FINDPYTHON (fixes manylinux builds). #4805
    pybind11_strip is no longer automatically applied when CMAKE_BUILD_TYPE is unset. #4780
    Support DEBUG_POSFIX correctly for debug builds. #4761
    Hardcode lto/thin lto for Emscripten cross-compiles. #4642
    Upgrade maximum supported CMake version to 3.27 to fix CMP0148 warnings. #4786

Documentation:

    Small fix to grammar in functions.rst. #4791
    Remove upper bound in example pyproject.toml for setuptools. #4774

CI:

    CI: Update NVHPC to 23.5 and Ubuntu 20.04. #4764
    Test on PyPy 3.10. #4714

Other:

    Use Ruff formatter instead of Black. #4912
    An assert() was added to help Coverty avoid generating a false positive. #4817

(wiz)

doc: Updated devel/scons4 to 4.7.0

(wiz)

py-scons: update to 4.7.0.

NEW FUNCTIONALITY

    Method unlink_files was added to the TestCmd class that unlinks a list of files
    from a specified directory. An attempt to unlink a file is made only when the
    file exists; otherwise, the file is ignored.

CHANGED/ENHANCED EXISTING FUNCTIONALITY

    Add an optional argument list string to configure's CheckFunc method so
    that the generated function argument list matches the function's
    prototype when including a header file. Fixes GH Issue #4320
    Now supports pre-release Python 3.13
    Support for Python versions without support for the threading package has been removed
    Dropped three unused warning classes: DeprecatedSourceCodeWarning,
    TaskmasterNeedsExecuteWarning, DeprecatedMissingSConscriptWarning.
    Two warning classes that are actually used were added to manpage section on
    enabling warnings (cache-cleanup-error, future-reserved-variable).

FIXES

    Fix of the --debug=sconscript option to return exist statements when using return
    statement with stop flag enabled
    MSVS: prevent overwriting the SCons environment variable SCONS_HOME with the OS
    environment value of SCONS_HOME in the msvs tool.
    MSVC: Fix the detection of Visual Studio 2015 Express ('14.0Exp') by adding a
    registry key definition and updating the installation root-relative registry value
    at runtime for the location of the VC folder.
    MSVS: Fix the msvs project generation test for MSVS 6.0 to use the correct name of
    the generated project file.
    MSVS: Fix the msvs project generation test scripts so that "false positive" tests
    results are not possible when the initial build is successful and the command-line
    build of the project file fails.
    On Windows platform, when collecting command output (Configure checks),
    make sure decoding of bytes doesn't fail.
    Documentation indicated that both Pseudo() and env.Pseudo() were usable,
    but Pseudo() did not work; is now enabled.
    Improve handling of file data that SCons itself processes - as in
    scanners - try harder to decode non-UTF-8 text.
    PyPackageDir no longer fails if passed a module name which cannot be found,
    now returns None.
    Add locking around creation of CacheDir config file. Fixes issue #4489.

IMPROVEMENTS

    Use of NotImplemented instead of NotImplementedError for special methods
    of _ListVariable class
    The NewParallel scheduler is now the default, the tm_v2 flag is removed,
    and the old scheduler is opt-in under --experimental=legacy_sched. Additionally,
    the new scheduler is now used for -j1 builds as well.
    NOTE: This should significantly improve SCons performance for larger parallel builds
    (Larger -j values)
    CacheDir writes no longer happen within the taskmaster critical section, and therefore
    can run in parallel with both other CacheDir writes and the taskmaster DAG walk.
    The NewParallel scheduler now only adds threads as new work requiring execution
    is discovered, up to the limit set by -j. This should reduce resource utilization
    when the achievable parallelism in the DAG is less than the -j limit.
    Dumping an environment with json formatting will now explicitly specify if a given
    value cannot be serialized.

PACKAGING

    Remove unnecessary dependencies on pypi packages from setup.cfg
    SCons documentation build can now be controlled through SKIP_DOC
    variable - rather than just true/false can now specify
    skip none, skip all, skip pdf docs, skip api docs.

DOCUMENTATION

    Fixed the Scanner examples in the User Guide to be runnable and added
    some more explanation. Clarified discussion of the scanner function in
    the Scanner Objects section of the manpage.
    The manpage entry for Pseudo was clarified.
    The manpage entry for SharedLibrary was clarified.
    Update API docs for Warnings framework; add two warns to manpage
    enable/disable control.
    More consistent use of &Python; in the manpage. A few links added.
    A warning about overwriting env['ENV'] and one about Configure
    checks possibly not running in in no-exec mode also added.
    Clarify how SCons finds the project top directory, and what that is used for.
    Clarify MergeFlags usage of a dict argument.

DEVELOPMENT

    Fix sphinx config to handle SCons versions with post such as: 4.6.0.post1
    Created SCons.Util.sctyping to contain complex type information, allowing
    for repo-wide type hinting without causing cyclical dependencies.

(wiz)

Updated ham/hackrf, devel/py-ipykernel

(adam)

py-ipykernel: updated to 6.29.4

6.29.4

Bugs fixed

- Fix side effect import for pickleutil

Maintenance and upkeep improvements

- Do not import debugger/debugpy unless needed

(adam)

hackrf: updated to 2024.02.1

2024.02.1

To upgrade to this release, you must update libhackrf and hackrf-tools on your host computer. You must also update firmware on your HackRF.

Major changes in this release include:

A new utility, hackrf_biast, provides a way to control the "bias tee" antenna port power output on HackRF One. Thank you, Jonathan Suite (AI6AJ)!
Completely new and comprehensive libhackrf API documentation generated from source is now available in the release package. Thank you, L叩szl坦 Bar叩th!
hackrf_sweep now supports more FFTW features including the ability to use a wisdom file. Thank you, Jonathan Suite (AI6AJ)!
HackRF One r10, the latest hardware revision, is based on r8, reverting most of the changes made in r9.
There have been many enhancements and bug fixes. For a full list of changes, see the git log.

(adam)

doc: Updated x11/libX11 to 1.8.9

(wiz)

libX11: update to 1.8.9.

1.8.9

This release includes:
* Fix regressions introduced in 1.8.8 (!245, !248) - this includes reverting
  for now the previous "Fix XIM input sometimes jumbled (#198, !236)"

1.8.8

This release includes:

* Fix XIM input sometimes jumbled (#198, !236)
* Fix _XkbReadGetDeviceInfoReply for nButtons == dev->buttons (!237)
* Drop ifdefs for platforms that are no longer supported (!242, !243)
* Assorted memory handling cleanups

(wiz)

Updated devel/py-execnet, www/py-publicsuffixlist, www/py-test-jupyter, devel/py-typing-extensions

(adam)

py-typing-extensions: updated to 4.11.0

Release 4.11.0 (April 5, 2024)

This feature release provides improvements to various recently
added features, most importantly type parameter defaults (PEP 696).

There are no changes since 4.11.0rc1.

Release 4.11.0rc1 (March 24, 2024)

- Fix tests on Python 3.13.0a5. Patch by Jelle Zijlstra.
- Fix the runtime behavior of type parameters with defaults (PEP 696).
  Patch by Nadir Chowdhury.
- Fix minor discrepancy between error messages produced by `typing`
  and `typing_extensions` on Python 3.10. Patch by Jelle Zijlstra.
- When `include_extra=False`, `get_type_hints()` now strips `ReadOnly` from the annotation.

(adam)