One PLIST for all options

(adam)

doc: Updated audio/py-music21 to 8.1.0

(gutteridge)

py-music21: update to 8.1.0

music21 v8

I'm proud to release v8 of music21, the toolkit for computer-aided music analysis, score manipulation, computational musicology, etc. This release (technically 8.1) builds on 12.5 months of work from v7, and like all new big number releases has a few backwards incompatible changes from before, in exchange for cool new features.

Version 8 supports Python 3.8+, if you need Python 3.7 (such as on Google Colab which is now 3+ Python versions behind) stick to music21 v7. V8 is the first to fully support Python 3.10 and will receive patches to support Python 3.11 in the future. As Python 3.11 is due to be released any day now, keeping with the m21 policy of supporting three versions of Python, music21 v9 (work starts tomorrow!) will support Python 3.9 and above only.

Big Changes

    The biggest new improvement in v8 is an all new Dublin-Core / MARC based metadata system that allows for encoding a huge amount of information about a score. Look at the new docs for music21.metadata for more information. Thanks to Greg Chapman for the big amount of work on this. (@gregchapman-dev in #1266)
    Modern installation system, based on Hatch. If you have problems, please let me know -- I expect some growing pains on this.
    ArpeggioMark and ArpeggioMarkSpanner classes. by @gregchapman-dev in #1337
    Adding DCML v2 parsing to tsvConverter.py by @malcolmsailor in #1267
    Explicit Keywords on all music21 objects by @mscuthbert in #1377
    Continued Major improvements in Typing across music21. by @mscuthbert and @jacobtylerwalls. If you are using a modern IDE, you will find the number of music21-related bugs you create will go down hugely.
    Ever more docs and more relevant (and diverse examples)

(gutteridge)

shells/eltclsh: Sprinkle MAKE_JOB_SAFE=no

(rin)

devel/gtexinfo: Sprinkle MAKE_JOBS_SAFE=no

(rin)

w3m: add pkg-config to tools

Closes PR 57048 from adr

(wiz)

doc: Updated sysutils/dbus to 1.14.4

(wiz)

dbus: update to 1.14.4.

dbus 1.14.4 (2022-10-05)
========================

This is a security update for the dbus 1.14.x stable branch, fixing
denial-of-service issues (CVE-2022-42010, -42011, -42012) and applying
security hardening (dbus#416).

Behaviour changes:

• On Linux, dbus-daemon and other uses of DBusServer now create a
  path-based Unix socket, unix:path=..., when asked to listen on a
  unix:tmpdir=... address. This makes unix:tmpdir=... equivalent to
  unix:dir=... on all platforms.
  Previous versions would have created an abstract socket, unix:abstract=...,
  in this situation.
  This change primarily affects the well-known session bus when run via
  dbus-launch(1) or dbus-run-session(1). The user bus, enabled by configuring
  dbus with --enable-user-session and running it on a systemd system,
  already used path-based Unix sockets and is unaffected by this change.
  This behaviour change prevents a sandbox escape via the session bus socket
  in sandboxing frameworks that can share the network namespace with the host
  system, such as Flatpak.
  This change might cause a regression in situations where the abstract socket
  is intentionally shared between the host system and a chroot or container,
  such as some use-cases of schroot(1). That regression can be resolved by
  using a bind-mount to share either the D-Bus socket, or the whole /tmp
  directory, with the chroot or container.
  (dbus#416, Simon McVittie)

Denial of service fixes:

Evgeny Vereshchagin discovered several ways in which an authenticated
local attacker could cause a crash (denial of service) in
dbus-daemon --system or a custom DBusServer. In uncommon configurations
these could potentially be carried out by an authenticated remote attacker.

• An invalid array of fixed-length elements where the length of the array
  is not a multiple of the length of the element would cause an assertion
  failure in debug builds or an out-of-bounds read in production builds.
  This was a regression in version 1.3.0.
  (dbus#413, CVE-2022-42011; Simon McVittie)

• A syntactically invalid type signature with incorrectly nested parentheses
  and curly brackets would cause an assertion failure in debug builds.
  Similar messages could potentially result in a crash or incorrect message
  processing in a production build, although we are not aware of a practical
  example. (dbus#418, CVE-2022-42010; Simon McVittie)

• A message in non-native endianness with out-of-band Unix file descriptors
  would cause a use-after-free and possible memory corruption in production
  builds, or an assertion failure in debug builds. This was a regression in
  version 1.3.0. (dbus#417, CVE-2022-42012; Simon McVittie)

(wiz)

bitcoin: bump GCC_REQD to 8 since std::filesystem is needed to make it build

(nros)

doc: Updated sysutils/xplr to 0.19.4

(pin)

sysutils/xplr: update to 0.19.4

Changes & fixes
- The builtin search will now default to skim-v2 based fuzzy matching.
- esc while in search mode will recover the initial focus (i.e. cancel the
  search).
- The following messages will be available for search based operations:
    SearchFuzzy
    SearchFuzzyFromInput
    AcceptSearch
    CancelSearch
- Quick scrolling operations are supported using the following messages and keys:
    ScrollUp page-up
    ScrollDown page-down
    ScrollUpHalf {
    ScrollDownHalf }

Note: People who prefer the old regex based search, can use the
regex-search.xplr plugin.

(pin)

Updated x11/wxGTK32, lang/py-mypy

(adam)

py-mypy: updated to 0.982

0.981
* Support for Python 3.6 and 2 Dropped
* Generate Error on Unbound TypeVar Return Type
* Methods with Empty Bodies in Protocols Are Abstract
* Implicit Optional Types Will Be Disabled by Default
* Precise Types for **kwds Using TypedDict
* Experimental Support for General Recursive Types
* Generic NamedTuples and TypedDicts
* Better Support for Callable Attributes
* Per-Module Error Code Configuration
* Experimental Support for Interactive Inspection of Expressions

(adam)

wxGTK32: updated to 3.2.1

3.2.1

Coming soon after 3.2.0, this is mostly a bug fix release, with just one noteworthy new feature: the addition of wxFileDialog::AddShortcut() function. However it fixes some important regressions and other problems:

Fix crash in applications calling g_log_set_writer_func() with recent glib.
Several fixes to alpha channel handling in wxMSW bitmaps.
Generate key and focus events for wxSearchCtrl in wxOSX.
Fix creating wxRadioBox without any items in wxOSX.
Fix regression with AUI floating pane positioning.
Avoid new warnings given by gcc 12.
Fix building with MSVS 2022 standard-conforming preprocessor.
Work around MSVS 2022 optimizer bug that broke wxImage resizing.
NetBSD build fixes.

(adam)

doc: Updated devel/ruby2ruby to 2.5.0

(taca)

telepathy-qt5: set correct HOMEPAGE

(nros)

devel/ruby2ruby: update to 2.5.0

2.5.0 (2022-10-04)

5 minor enhancements:

* Added support for (most?) pattern matching.
* Added support for **kwrest.
* Added support for forward args (…), defn and call.
* Added support for preexe (BEGIN { … }).
* Support ruby 3.1 hash shorthand syntax. (presidentbeef)

3 bug fixes:

* Fix generation of case w/ no else.
* Fixed a bug block shadow vars (they're grouped)
* Fixed find_pat up (after fixing a find_pat bug in ruby_parser).

(taca)

doc: Updated www/php-apcu to 5.1.22

(taca)

www/php-apcu: update to 5.1.22

pkgsrc change:

* Allow build with enabling PKG_OPTIONS: maintainer-zts.
* Remove trailing whitespace.

5.1.22 (2022-09-19)

- PHP 8.2 compatibility
- PHP 8.1 compatibility in apc.php
- Fix --enable-apcu-rwlocks configure option
- Enable transparent huge pages for mmap memory
- Use monotonic clock for TTL

(taca)

telepathy-qt5: fix build with latest glib2

(nros)

doc: Updated archivers/php-pecl-zip to 1.21.1

(taca)

archivers/php-pecl-zip: update to 1.21.1

1.21.1 (2022-09-16)

* PHP 8.2 compatibility

(taca)

doc: Updated databases/ruby-sqlite3 to 1.5.2

(taca)

databases/ruby-sqlite3: update to 1.5.2

1.5.2 (2022-10-01)

Packaging

This version correctly vendors the tarball for sqlite v3.39.4 in the vanilla
"ruby" platform gem package, so that users will not require network access
at installation.

v1.5.0 and v1.5.1 mistakenly packaged the tarball for sqlite v3.38.5 in the
vanilla "ruby" platform gem, resulting in downloading the intended tarball
over the network at installation time (or, if the network was not available,
failure to install).  Note that the precompiled native gems were not
affected by this issue. [#352]

1.5.1 (2022-09-29)

Dependencies

* Vendored sqlite is updated to v3.39.4.

Security

The vendored version of sqlite, v3.39.4, should be considered to be a
security release.  From the release notes:

Version 3.39.4 is a minimal patch against the prior release that
addresses issues found since the prior release.  In particular, a
potential vulnerability in the FTS3 extension has been fixed, so
this should be considered a security update.

In order to exploit the vulnerability, an attacker must have full
SQL access and must be able to construct a corrupt database with
over 2GB of FTS3 content.  The problem arises from a 32-bit signed
integer overflow.

For more information please see GHSA-mgvv-5mxp-xq67.

(taca)

doc: Updated databases/ruby-sequel to 5.61.0

(taca)

databases/ruby-sequel: update to 5.61.0

5.61.0 (2022-10-01)

* Make Database#foreign_key_list on PostgreSQL return results for
  partitioned tables (jeremyevans)

* Add Database#check_string_typecast_bytesize for checking bytesize of
  strings before typecasting (jeremyevans)

* Treat negative hexidecimal strings similar to positive hexidecimal strings
  when typecasting to integer (jeremyevans)

* Remove is_json and is_not_json methods from the pg_json_ops extension, as
  the support was removed in PostgreSQL 15 beta 4 (jeremyevans)

* Fix handling of timestamps before the date of calendar reform when using
  pg_extended_date_support extension on Ruby 3.2 (jeremyevans)

(taca)

doc: Updated meta-pkgs/bulk-medium to 20221006

(taca)

meta-pkgs/bulk-medium: update to 20221006

* Retire ruby26-base.
* Add ruby31-base.

(taca)

doc: Updated www/drupal9 to 9.3.22

(taca)

www/drupal9: update to 9.3.22

9.3.21 (2022-08-03)

* Issue #3301495 by lauriii, nod_: Update CKEditor 5 to 35.0.1
* Issue #3300773 by bradjones1, xjm, catch, andypost, Spokje: Fix failed
  test on `symfony/http-foundation` 4.4.44/6.1.3 and later

9.3.22 (2022-09-28)

This release fixes security vulnerabilities. Sites are urged to update
immediately after reading the notes below and the security announcement:

* Drupal core - Critical - Multiple vulnerabilities - SA-CORE-2022-016

No other fixes are included.

(taca)

doc: Updated chat/matrix-synapse to 1.67.0

(gdt)

chat/matrix-synapse: Update to 1.6.7.0

Synapse 1.67.0 (2022-09-13)
===========================

This release removes using the deprecated direct TCP replication configuration
for workers. Server admins should use Redis instead. See the [upgrade
notes](https://matrix-org.github.io/synapse/v1.67/upgrade.html#upgrading-to-v1670).

The minimum version of `poetry` supported for managing source checkouts is now
1.2.0.  [[pkgsrc does not seem to "manage source checkouts"]]

Features
--------

- Support setting the registration shared secret in a file, via a new
  `registration_shared_secret_path` configuration
  option.

- Change the default startup behaviour so that any missing
  "additional" configuration files (signing key, etc) are generated
  automatically.

- Improve performance of sending messages in rooms with thousands of
  local.

Deprecations and Removals
-------------------------

- Drop support for calling `/_matrix/client/v3/rooms/{roomId}/invite`
  without an `id_access_token`, which was not permitted by the
  spec. Contributed by @Vetchu.

- Remove redundant `_get_joined_users_from_context` cache. Contributed
  by Nick @ Beeper (@fizzadar).

- Remove the ability to use direct TCP replication with
  workers. Direct TCP replication was deprecated in Synapse
  v1.18.0. Workers now require using Redis.

- Remove support for unstable [private read
  receipts](https://github.com/matrix-org/matrix-spec-proposals/pull/2285).

(gdt)

Updated chat/py-matrix-common to 1.3.0 [gdt 2022-10-06]

(gdt)

chat/py-matrix-common: Update to 1.3.0

upstream NEWS content:

    Drop support for Python 3.6, which went end-of-life December 2021 by @anoadragon453 in #28
    Configure setuptools to automatically discover new modules under
    src/matrix_common by @anoadragon453 in #27
    Add a MXCUri class for representing Matrix media uri's by @anoadragon453 in #29

(gdt)

Updated devel/meson, devel/glib2, devel/glib2-tools, devel/gdbus-codegen

(adam)

glib2: updated to 2.72.4

Overview of changes in GLib 2.72.4
==================================

* Bugs fixed:
- g_cond_wait_until: returning FALSE immediately on mips24 (Philip
  Withnall)
- Regression: in GLib 2.72.3, in gsocketclient/cancellable (Philip
  Withnall)
- GParamSpec constructors should have nullable annotation on nick/blurb
  (Andy Holmes)
- gio: GVariantBuilder builder leaked in g_document_portal_add_documents
  when URI list is empty (Sebastian Keller)
- Backport !2808 “gsocketclient: Fix passing NULL to
  g_task_get_cancellable()” to glib-2-72

* Translation updates:
- Czech (Marek Černocký)
- Georgian (Zurab Kargareteli)
- Hungarian (Balázs Úr)
- Serbian (Мирослав Николић)
- Spanish (Daniel Mustieles)

(adam)

meson: updated to 0.63.3

0.63.3
Bug fixes

(adam)

py-poetry-core: Request that this not be updated to 1.3.x

Upstream has a breaking change that causes synapse to fail.  synapse
has added a pinned dependency, which will need to be patched out, but
the build will fail with 1.3.x.  Given the nature of the change in
dependency processing rules, it seems likely that other poetry-using
projects are going to have problems too.

(gdt)

print: restore tex-orcidlink-doc now that the files got committed.

(markd)

kio-extras: remove obsolete patches

(markd)

k3b: remove obsolete patch

(markd)

tex-orcidlink-doc: actually add the files.

(markd)

x11/ocaml-lablgtk: Tweak DESCR

GTK2 versions have increased since the last edit to describe supported
versions; just say 2.

(gdt)

doc: Updated x11/ocaml-lablgtk to 2.18.13

(gdt)

x11/ocaml-lablgtk: Update to 2.18.13

New release for compatibility with OCaml 5.0.

2022.10.06 [Jacques]
  * Adapt to deprecations in 5.0 and the splitting of camlp-streams

(gdt)

doc: Updated sysutils/tealdeer to 1.6.0

(pin)

sysutils/tealdeer: update to 1.6.0

v1.6.0 (2022-10-02)

It's been 9 months since the last release already! This is not a huge update
feature-wise, but it still contains a few nice new improvements and a few
bugfixes, contributed by 11 different people. The most important new feature
is probably the option to override the cache directory through the config file.
The TEALDEER_CACHE_DIR env variable is now deprecated.

A note to packagers: Shell completions have been moved to the
completion/ subdirectory! Packaging scripst might need to be updated.

Changes:
[added] Allow overriding cache directory through config (#276)
[added] Add --no-auto-update CLI flag (#257)
[added] Show note about auto-updates when cache is missing (#254)
[added] Add support for android platform (#274)
[added] Add custom pages to list output (#285)
[fixed] Cache: Return error if HTTP client cannot be created (#247)
[fixed] Handle cache download errors (#253)
[fixed] Do not page output of tldr --update (#231)
[fixed] Create macOS release builds with bundled root certificates (#272)
[fixed] Clean up and fix shell completions (#262)
[deprecated] The TEALDEER_CACHE_DIR env variable is now deprecated (#276)
[removed] The --config-path command was removed, use --show-paths instead (#290)
[removed] The -o/--os command was removed, use -p/--platform instead (#290)
[removed] The -m/--markdown command was removed, use -r/--raw instead (#290)
[chore] Move shell completion scripts to their own directory (#259)
[chore] Update dependencies (#271, #287, #291)
[chore] Use anyhow for error handling (#249)
[chore] Switch to Rust 2021 edition (#284)

(pin)

tex-orcidlink-doc does not exist

(jnemeth)

gerbera: fix build on systems that use const in second argument to iconv

(nros)

doc: Added multimedia/t-rec version 0.7.5

(pin)

Add t-rec

(pin)

multimedia/t-rec: import package

Blazingly fast terminal recorder that generates animated gif images for the web
written in rust.

Features
- Screenshotting your terminal with 4 frames per second (every 250ms)
- Generates high quality small sized animated gif images or mp4 videos
- Build-In idle frames detection and optimization (for super fluid
  presentations)
- Applies (can be disabled) border decor effects like drop shadow
- Uses native efficient APIs
- Runs without any cloud service and entirely offline
- No issues with terminal sizes larger than 80x24
- No issues with fonts or colors
- No issues with curses based programs
- No issues with escape sequences
- No record and replay - just one simple command to rule them all
- Can record every arbitrary window you want (e.g. browser, ide)

(pin)

add ktnef

(markd)

ktnef: add version 22.08.1

The ktnef library contains an API for the handling of TNEF data.

The API permits access to the actual attachments, the message
properties (TNEF/MAPI), and allows one to view/extract message formatted
text in Rich Text Format format.

(markd)

bacula update

(markd)

bacula*: update to 13.0.1

Release 13.0.1 / 05 August 2022

13.0.1 is a minor bug fix release.

- Fix org#2594 About compilation warning on VolRead/WriteTime
- Fix org#2644 Add support for binary files to bacula md5sum
- Fix org#2655 About incorrect definition of MAX_FOPTS
- Fix org#2656 About incorrect error message on TLS CA Certificate
- Fix org#2657 About startup problem for bacula-sd
- Rework MacOS package

Release 13.0.0 04 July 2022

13.0.0 is a major release.

New Features:
-------------
- Job 'Storage Group' support
- Kubernetes plugin
- New Accurate option to save only file's ACL and metadata
- Windows CSV (Cluster Shared Volumes) support
- More logging for daemon<->daemon connections in Job log output
- Tag support on catalog objects
- Support for SHA256 and SHA512 signatures in FileSet
- External LDAP Console authentication

Misc Features:
- Windows installer 'Silent Mode' options
- Add PriorJob to bconsole 'llist job' output
- Check for IP SANs when verifying TLS certs
- Clarify SD vbackup Device error message
- Remove deprecated sbrk in MacOS and Windows
- Add bconsole .jlist command to get JSON output from regular list commands
- Ensure that the Director will reject catalog updates from the FD
- Add variable for PreviousJobId in mail messages
- Respect the 'nodump' flag in more OSes than just BSD
- Add debug/trace/tags information to .status header
- Handle lin_tape end of device with the new 'Use Lintape=yes' Device directive
- Add MaximumJobErrorCount FileDaemon directive
- bsmtp: Add the possibility to add emails separated with a comma as recipient list
- SDPacketCheck FileDaemon used to control the network flow
- Add bconsole .bvfs_lsfiles allfiles command

Main Fixes:
- Fix org#2188 About the presence of FileSet and Pool directives in the Job
- Fix Director crash for Client Initiated Backup
- Fix Director crash for Migration Job
- Fix incorrect output for the .status client command
- Skip XATTR larger than MaximumNetworkBuffer
- Fix deadlock when starting the Director with an improperly configured catalog
- Fix Director crash caused by BAT
- Fix org#2627 About Director crashing for Copy Jobs and resource rename
- Move the delete volume event just before the actual deletion
- Fix mail variables not working after a conf reload
- Fix OpenBSD chio-changer script
- Fix SQL query generated with ACLs
- Fix heartbeat segfault when the Job is terminated very quickly
- Fix About wrong backup Client displayed to the user when the original Client
  doesn't exist
- Fix org#2605 About incorrect message in restore command
- cdp: open the inotify stream using the CLOEXEC (close on exec) flag
- docker: Check the presence of the docker tools during loadPlugins()
- Fix reload issue when a Job doesn't have a Pool defined
- Fix Copy Job with SelectionType=PoolUncopiedJobs selecting Jobs from wrong Pool
- Fix about checking for Storage being used for Job restart/resume
- Fix about incorrect variable substitution with the query command
- Fix org#2579 About incorrect JSON generated from empty Messages resource
- Fix #9116: copy job missuses the client->FdStorageAddress directive
- Fix org#2658 About segfault with bsdjson with incorrect parameters
- Skip storage daemon detection if the information is not available in the BSR

----------------------------------------------------------------

Release 11.0.6 10 March 2022

11.0.6 is an important bug fix and security fix release.
We advise all 11.0.x users to upgrade to this version.

- Adjust sample-query.sql file for new catalog schema
- Got regression testing working correctly on FreeBSD

Release 11.0.5 03 June 2021

11.0.5 is a minor bug fix release.

- Update MySQL update procedure for 5.6

Release 11.0.4 28 May 2021

11.0.4 is a minor bug fix release.

- Improve MySQL upgrade procedure

Release 11.0.3 21 May 2021

11.0.3 is a minor bug fix release.

- Check if char **jobid parameter is NULL before modifying it in
  bvfs_parse_arg_version()
- Enhance the update_mysql_tables script
- Fix various default permissions

Release 11.0.2 26 March 2021

11.0.2 is a minor bug fix release.

- Add functions to unittests library
- Add support for store_alist_str() in plugin configuration items
- Enhance bdelete_and_free() macro
- Update baculabackupreport script

Release 11.0.1 04 February 2021

11.0.1 is a minor bug fix release.

- Add PGSQL detection for macOS and MacPorts.
- BEE Backport bacula/src/tools/dbcheck.c

----------------------------------------------------------------

Release 11.0.0 12 December 2020

11.0.0 is a major release.

New Features:
-------------
- New catalog format
- Automatic TLS PSK encrypted communication
- Support for Client behind NAT
- Continious Data Protection (CDP) Plugin
- Global Director Autoprune flag
- Events/Audit features
- New Baculum features
- Support for GPFS

Misc:
-----
- New Prune Command Option
- Dynamic Client Address Directive
- Ability to disable Volume Retention
- Ask to mount/create volume when the disk space is low
- Simplification of the Windows FileSet with File=/
- Use of QT5 for Bat on Windows
- Support for Windows files with non-UTF16 names
- Windows Snapshot management has been improved
- Support for the system.cifs_acl extended attribute backup with Linux CIFS
- Built-in Client Scheduler
- Reload command improvements (Keep IP address, Maximum Concurrent value, ...)
- Support for GLOB pattern in Console ACL directives
- Faster CRC32 algorithm

(markd)

add rt5

(markd)

rt5: Add rt version 5.0.3

RT is an industrial-grade ticketing system. It lets a group of
people intelligently and efficiently manage requests submitted by
a community of users. RT is used by systems administrators, customer
support staffs, NOCs, developers and even marketing departments at
over a thousand sites around the world.

This packages tracks RT 5.x branch.

(markd)

{cups-base,libcups}: explicitly use gnutls

version 2.4.2 readded support for openssl and package detects and prefers
base system openssl over gnutls but ssl certificate handling is not working
correctly with it so use gnutls as in previous versions.

(markd)

kapidox: don't try and use cmake RUNTIME_DEPENDENCY_SET feature
its not defined for all platforms and package doesn't actually need it
anyway.

(markd)

fuse-exfatfs: Make mkfs.exfat work on NetBSD

Include the disk sizing code from NetBSD's newfs, allowing the mkfs to
succeed.

(perseant)

doc: Updated time/p5-DateTime-TimeZone to 2.54

(gutteridge)

p5-DateTime-TimeZone: update to 2.54

2.54    2022-09-24

- This release is based on version 2022d of the Olson database. This release
  includes contemporary changes for Palestine.

2.53    2022-08-13

- This release is based on version 2022b of the Olson database. This release
  includes contemporary changes for Chile and Iran.

(gutteridge)

Updated devel/py-setuptools, devel/py-pybind11, math/py-scipy, devel/py-types-setuptools

(adam)

py-types-setuptools: updated to 65.4.0.0

65.4.0.0
[stubsabot] Bump setuptools to 65.4.*

(adam)

py-scipy: updated to 1.9.1

SciPy 1.9.1 is a bug-fix release with no new features
compared to 1.9.0. Notably, some important meson build
fixes are included.

SciPy 1.9.0 is the culmination of 6 months of hard work. It contains
many new features, numerous bug-fixes, improved test coverage and better
documentation. There have been a number of deprecations and API changes
in this release, which are documented below. All users are encouraged to
upgrade to this release, as there are a large number of bug-fixes and
optimizations. Before upgrading, we recommend that users check that
their own code does not use deprecated SciPy functionality (to do so,
run your code with python -Wd and check for DeprecationWarning s).
Our development attention will now shift to bug-fix releases on the
1.9.x branch, and on adding new features on the main branch.

This release requires Python 3.8-3.11 and NumPy 1.18.5 or greater.

For running on PyPy, PyPy3 6.0+ is required.

(adam)

py-pybind11: updated to 2.10.0

Version 2.10.0

Removed support for Python 2.7, Python 3.5, and MSVC 2015. Support for MSVC 2017 is limited due to availability of CI runners; we highly recommend MSVC 2019 or 2022 be used. Initial support added for Python 3.11.

New features:

py::anyset & py::frozenset were added, with copying (cast) to std::set (similar to set).
Support bytearray casting to string.
type_caster<std::monostate> was added. std::monostate is a tag type that allows std::variant to act as an optional, or allows default construction of a std::variant holding a non-default constructible type.
pybind11::capsule::set_name added to mutate the name of the capsule instance.
NumPy: dtype constructor from type number added, accessors corresponding to Python API dtype.num, dtype.byteorder, dtype.flags and dtype.alignment added.

Changes:

Python 3.6 is now the minimum supported version.
The minimum version for MSVC is now 2017.
Fix issues with CPython 3.11 betas and add to supported test matrix.
error_already_set is now safer and more performant, especially for exceptions with long tracebacks, by delaying computation.
Improve exception handling in python str bindings.
The bindings for capsules now have more consistent exception handling.
PYBIND11_OBJECT_CVT and PYBIND11_OBJECT_CVT_DEFAULT macro can now be used to define classes in namespaces other than pybind11.
Error printing code now uses PYBIND11_DETAILED_ERROR_MESSAGES instead of requiring NDEBUG, allowing use with release builds if desired.
Implicit conversion of the literal 0 to pybind11::handle is now disabled.

Bug fixes:

Fix exception handling when pybind11::weakref() fails.
module_::def_submodule was missing proper error handling. This is fixed now.
The behavior or error_already_set was made safer and the highly opaque "Unknown internal error occurred" message was replaced with a more helpful message.
error_already_set::what() now handles non-normalized exceptions correctly.
Support older C++ compilers where filesystem is not yet part of the standard library and is instead included in std::experimental::filesystem.
Fix -Wfree-nonheap-object warnings produced by GCC by avoiding returning pointers to static objects with return_value_policy::take_ownership.
Fix cast from pytype rvalue to another pytype.
Ensure proper behavior when garbage collecting classes with dynamic attributes in Python >=3.9.
A couple long-standing PYBIND11_NAMESPACE __attribute__((visibility("hidden"))) inconsistencies are now fixed (affects only unusual environments).
pybind11::detail::get_internals() is now resilient to in-flight Python exceptions.
Arrays with a dimension of size 0 are now properly converted to dynamic Eigen matrices (more common in NumPy 1.23).
Avoid catching unrelated errors when importing NumPy.

Performance and style:

Added an accessor overload of (object &&key) to reference steal the object when using python types as keys. This prevents unnecessary reference count overhead for attr, dictionary, tuple, and sequence look ups. Added additional regression tests. Fixed a performance bug the caused accessor assignments to potentially perform unnecessary copies.
Perfect forward all args of make_iterator.
Avoid potential bug in pycapsule destructor by adding an error_guard to one of the dtors.
Optimize dictionary access in strip_padding for numpy.
stl_bind.h bindings now take slice args as a const-ref.
Made slice constructor more consistent, and improve performance of some casters by allowing reference stealing.
Change numpy dtype from_args method to use const ref.
Follow rule of three to ensure PyErr_Restore is called only once.
Added missing perfect forwarding for make_iterator functions.
Optimize c++ to python function casting by using the rvalue caster.
Optimize Eigen sparse matrix casting by removing unnecessary temporary.
Avoid potential implicit copy/assignment constructors causing double free in strdup_gaurd.
Enable clang-tidy checks misc-definitions-in-headers, modernize-loop-convert, and modernize-use-nullptr.

Build system improvements:

CMake: Fix file extension on Windows with cp36 and cp37 using FindPython.
CMake: Support multiple Python targets (such as on vcpkg).
CMake: Fix issue with NVCC on Windows.
CMake: Drop the bitness check on cross compiles (like targeting WebAssembly via Emscripten).
Add MSVC builds in debug mode to CI.
MSVC 2022 C++20 coverage was added to GitHub Actions, including Eigen.

Backend and tidying up:

New theme for the documentation.
Remove idioms in code comments. Use more inclusive language.
#include <iostream> was removed from the pybind11/stl.h header. Your project may break if it has a transitive dependency on this include. The fix is to "Include What You Use".
Avoid setup.py <command> usage in internal tests.

(adam)

py-setuptools: updated to 65.4.1

v65.4.1

Misc

Fixed encoding errors in expand.StaticModule when system default encoding doesn't match expectations for source files.
Merge with pypa/distutils@6852b20 including fix for pypa/distutils#181.

(adam)

Note bash 5.2.2 update.

(kre)

The first two (upstream) patches for bash 5.2, producing bash 5.2.2

Patch 1: Expanding unset arrays in an arithmetic context can cause a
segmentation fault.
Patch 2: Starting bash with an invalid locale specification for
LC_ALL/LANG/LC_CTYPE can cause the shell to crash.

(kre)

doc: Updated pkgtools/pkgin to 22.10.0

(jperkin)

pkgin: Update to 22.10.0.

## Version 22.10.0 (2022-10-05)

* Fix issue where newly-installed packages were not correctly marked as
  keep packages.

(jperkin)

doc: note update of ISC DHCP to 4.0.3p1 (4.0.3-P1)

net/isc-dhcp4
net/isc-dhclient4
net/isc-dhcpd4
net/isc-dhcrelay4

(taca)

net/isc-dhcp4: update to 4.4.3p1

4.4.3p1 (ISC DHCP 4.4.3-P1), 2022-10-05

Changes since 4.4.3 (Bug Fixes)

! Corrected a reference count leak that occurs when the server builds
  responses to leasequery packets. Thanks to VictorV of Cyber Kunlun
  Lab for reporting the issue.
  [Gitlab #253]
  CVE: CVE-2022-2928

! Corrected a memory leak that occurs when unpacking a packet that has an
  FQDN option (81) that contains a label with length greater than 63 bytes.
  Thanks to VictorV of Cyber Kunlun Lab for reporting the issue.
  [Gitlab #254]
  CVE: CVE-2022-2929

(taca)

Updated devel/p5-Struct-Dumb to 0.13

(wen)

Update to 0.13

Upstream changes:
Changes for version 0.13 - 2022-08-27
CHANGES
Use `feature 'class'` instead of blessed ARRAYrefs on perls which support that, as an experiment to test how well that works

(wen)

Updated devel/p5-Specio to 0.48

(wen)

Update to 0.48

Upstream changes:
Changes for version 0.48 - 2022-06-11
Importing types into a class which inherited from another class that had imported types wouldn't work, leaving the child class with no `t()` sub. Patch by Kerin Millar.

(wen)

Revbump all Go packages after go119 security update

(bsiegert)

doc: Updated lang/go119 to 1.19.2

(bsiegert)

Update go119 to 1.19.2

This minor release includes 3 security fixes following the security policy:

- archive/tar: unbounded memory consumption when reading headers

  Reader.Read did not set a limit on the maximum size of file headers.
  A maliciously crafted archive could cause Read to allocate unbounded
  amounts of memory, potentially causing resource exhaustion or panics.
  Reader.Read now limits the maximum size of header blocks to 1 MiB.

  Thanks to Adam Korczynski (ADA Logics) and OSS-Fuzz for reporting this issue.

  This is CVE-2022-2879 and Go issue https://go.dev/issue/54853.

- net/http/httputil: ReverseProxy should not forward unparseable query parameters

  Requests forwarded by ReverseProxy included the raw query parameters from the
  inbound request, including unparseable parameters rejected by net/http. This
  could permit query parameter smuggling when a Go proxy forwards a parameter
  with an unparseable value.

  ReverseProxy will now sanitize the query parameters in the forwarded query
  when the outbound request's Form field is set after the ReverseProxy.Director
  function returns, indicating that the proxy has parsed the query parameters.
  Proxies which do not parse query parameters continue to forward the original
  query parameters unchanged.

  Thanks to Gal Goldstein (Security Researcher, Oxeye) and
  Daniel Abeles (Head of Research, Oxeye) for reporting this issue.

  This is CVE-2022-2880 and Go issue https://go.dev/issue/54663.

- regexp/syntax: limit memory used by parsing regexps

  The parsed regexp representation is linear in the size of the input,
  but in some cases the constant factor can be as high as 40,000,
  making relatively small regexps consume much larger amounts of memory.

  Each regexp being parsed is now limited to a 256 MB memory footprint.
  Regular expressions whose representation would use more space than that
  are now rejected. Normal use of regular expressions is unaffected.

  Thanks to Adam Korczynski (ADA Logics) and OSS-Fuzz for reporting this issue.

  This is CVE-2022-41715 and Go issue https://go.dev/issue/55949.

(bsiegert)

doc: Updated lang/go118 to 1.18.7

(bsiegert)

go118: update to 1.18.7

This minor release includes 3 security fixes following the security policy:

- archive/tar: unbounded memory consumption when reading headers

  Reader.Read did not set a limit on the maximum size of file headers.
  A maliciously crafted archive could cause Read to allocate unbounded
  amounts of memory, potentially causing resource exhaustion or panics.
  Reader.Read now limits the maximum size of header blocks to 1 MiB.

  Thanks to Adam Korczynski (ADA Logics) and OSS-Fuzz for reporting this issue.

  This is CVE-2022-2879 and Go issue https://go.dev/issue/54853.

- net/http/httputil: ReverseProxy should not forward unparseable query parameters

  Requests forwarded by ReverseProxy included the raw query parameters from the
  inbound request, including unparseable parameters rejected by net/http. This
  could permit query parameter smuggling when a Go proxy forwards a parameter
  with an unparseable value.

  ReverseProxy will now sanitize the query parameters in the forwarded query
  when the outbound request's Form field is set after the ReverseProxy.Director
  function returns, indicating that the proxy has parsed the query parameters.
  Proxies which do not parse query parameters continue to forward the original
  query parameters unchanged.

  Thanks to Gal Goldstein (Security Researcher, Oxeye) and
  Daniel Abeles (Head of Research, Oxeye) for reporting this issue.

  This is CVE-2022-2880 and Go issue https://go.dev/issue/54663.

- regexp/syntax: limit memory used by parsing regexps

  The parsed regexp representation is linear in the size of the input,
  but in some cases the constant factor can be as high as 40,000,
  making relatively small regexps consume much larger amounts of memory.

  Each regexp being parsed is now limited to a 256 MB memory footprint.
  Regular expressions whose representation would use more space than that
  are now rejected. Normal use of regular expressions is unaffected.

  Thanks to Adam Korczynski (ADA Logics) and OSS-Fuzz for reporting this issue.

  This is CVE-2022-41715 and Go issue https://go.dev/issue/55949.

(bsiegert)

dar: move option stuff to options.mk, remove PKGREVISION comment

(nros)

doc: Updated devel/wabt to 1.0.30

(fcambus)

wabt: update to 1.0.30.

No upstream ChangeLog.

(fcambus)

Updated devel/py-filelock, net/py-tldextract

(adam)

py-tldextract: updated to 3.4.0

3.4.0 (2022-10-04)

* Features
  * Add method `extract_urllib` to extract from a `urllib.parse.{ParseResult,SplitResult}`
* Bugfixes
  * Fix internal type-var error, in newer versions of mypy

(adam)

py-filelock: updated to 3.8.0

3.8.0
[pre-commit.ci] pre-commit autoupdate
Bump actions/upload-artifact from 2 to 3
Bump actions/download-artifact from 2 to 3
Bump pre-commit/action from 2.0.3 to 3.0.0
Bump actions/checkout from 2 to 3
Bump actions/setup-python from 2 to 4
Add timeout unit to docstrings
Unify badges style
[pre-commit.ci] pre-commit autoupdate
[pre-commit.ci] pre-commit autoupdate
Check 3.11 support
[pre-commit.ci] pre-commit autoupdate
Bump dependencies
[pre-commit.ci] pre-commit autoupdate

(adam)

Updated games/stegavorto, devel/py-stem

(adam)

py-stem: updated to 1.8.1

1.8.1
Bug fixes

(adam)

stegavorto: updated to 2011.05.26

2011.05.26
Unknown changes

(adam)

doc: Updated net/pear-Net_SMTP to 1.10.1

(taca)

net/pear-Net_SMTP: update to 1.10.1

1.10.1 (2022-09-23)

Changelog:

* BugFix: (authXOAuth2) longer tokens violate maximum SMTP command line
  length #70

* BugFix: (disconnect) socket will not disconnect on erroneous response upon
  QUIT message #71

* BugFix: Fix PHP 8.2 deprecation warnings on undefined properties #72

(taca)

bash: Handle _SC_RTSIG_MAX not being defined

(kim)

doc/TODO: + openssh-9.1.

(wiz)