py-wcwidth: switch to wheel.mk

(adam)

doc: Updated sysutils/rsftch to 0.5.5

(pin)

sysutils/rsftch: update to 0.5.5

- Code cleanup with json data parsing
- Make unknown infos in json default to empty instead of previous distro info
- Add --version and -v command
- Add ascii tests with --override command without argument
- Add thanks section in README.md
- Add resolution infos icon

(pin)

doc: Updated shells/oh-my-posh to 19.28.0

(pin)

py-py: switch to wheel.mk

(adam)

shells/oh-my-posh: update to 19.28.0

Features
- os: add a default icon for deepin (0b5277e)

(pin)

Updated textproc/py-toml; Removed devel/py-test4, devel/py-packaging2, devel/py-importlib-metadata2, devel/py27-pluggy, devel/py-setuptools_scm5, devel/py-prompt_toolkit1, archivers/py-zipp1

(adam)

py-zipp1, py-test4, py-packaging2, py-importlib-metadata2, py27-pluggy, py-setuptools_scm5, py-prompt_toolkit1: removed

(adam)

py-toml: swith to wheel.mk

(adam)

Updated devel/cmake, textproc/ugrep

(adam)

ugrep: updated to 6.0.0

ugrep v6.0

quicker! much faster search speeds on ARM CPUs and also faster overall on other CPUs using essentially the same SIMD algorithms but better optimized #385 see latest ugrep benchmarks for results
more good stuff! includes ugrep-indexer, which is installed together with ugrep, see ugrep-indexer release notes v1.0.0

(adam)

openmw: Don't try to fetch files during the build.

(nia)

cmake: updated to 3.29.3

CMake 3.29.3
* Tests/CXXModules: test exporting modules which include headers
* cmGeneratorTarget: add the original target as a COMPILE_ONLY link
* cmGeneratorTarget: add method to get a filesystem-safe export name
* cxxmodules: use filesystem-safe export names in filenames
* cmGeneratorTarget: add a target-level query for "needs dyndep"
* VS: set ScanSourceForModuleDependencies at vcxproj level
* cmDyndepCollation: look at all `export(TARGETS)` calls
* Tests/RunCMake/CMakePackage: Define variable closer to where it is used
* FindBoost: Add support for Boost 1.85
* cxxmodules: Do not scan sources while testing the compiler
* Help: Fix CMakePackageConfigHelpers typos, grammar and formatting
* Help: Add missing section heading for apple architecture selection
* generate_apple_architecture_selection_file: Avoid early returns
* generate_apple_*_selection_file: Save/restore PACKAGE_PREFIX_DIR
* Help/OBJC_STANDARD: Document Objective C17 and C23 support
* FindHDF5: Fix detection of versions with more than three components

(adam)

mozilla: Support illumos triple.

(jperkin)

mozilla: Support config-override.

(jperkin)

cmake: Set FETCHCONTENT_FULLY_DISCONNECTED by default

Helps packagers easily include submodules and fetched dependencies
without cmake repeatedly trying to fetch (and failing to) during build.

(nia)

mozilla: Match rust triple on illumos.

(jperkin)

Updated devel/py-atomicwrites; Removed devel/py-docstyle3

(adam)

py-docstyle3: removed; use py-docstyle instead

(adam)

py-atomicwrites: switch to wheel.mk

(adam)

Updated databases/postgresql1[2-6]

(adam)

postgresql: updated to 16.3, 15.7, 14.12, 13.15, 12.19

PostgreSQL 16.3, 15.7, 14.12, 13.15, and 12.19

The PostgreSQL Global Development Group has released an update to all supported versions of PostgreSQL, including 16.3, 15.7, 14.12, 13.15, and 12.19. This release fixes one security vulnerability and over 55 bugs reported over the last several months.

A security vulnerability was found in the system views pg_stats_ext and pg_stats_ext_exprs, potentially allowing authenticated database users to see data they don't have sufficient privileges to view. The fix for this vulnerability only fixes fresh PostgreSQL installations, namely those that are created with the initdb utility after this fix is applied. If you have a current PostgreSQL installation and are concerned about this issue, please follow the instructions in the "Updating" section for remediation steps.

For the full list of changes, please review the release notes.

(adam)

sysutils/open-vm-tools: kern/58195: Detach NetBSD vmt(4) before starting vmtoolsd

On NetBSD/aarch64 this currently only works on -CURRENT, but doing this on
older kernels is at least harmless because drvctl requests are simply
rejected. On any other OSes this should change nothing.

(pho)

pkgtools/url2pkg: document PY_TEST_FLAGS to prevent pkglint warning

(rillig)

doc: Updated sysutils/eza to 0.18.15

(fox)

sysutils/eza: Update to 0.18.15

Changes since 0.18.14:

Changelog
[0.18.15] - 2024-05-09

Bug Fixes

  * Correct command for latest tag in deb-package.sh

Documentation

  * Add how to find man pages in terminal and online. Partly fixes #967
  * Correct heading levels in markdown
  * Move heading out of collapsed section
  * Add some keywords for benefit of ctrl-f

Features

  * Return to original commit at the end of deb-package.sh
  * Add optional tag argument to deb-package.sh

Miscellaneous Tasks

  * Release eza v0.18.15

(fox)

doc: Updated pkgtools/url2pkg to 23.3.1

(rillig)

pkgtools/url2pkg: use deterministic filesystem lookups

Some filesystems return the filenames in unsorted order, so sort each
result of a 'glob' call. Reported by Adam Ciarcinski.

When looking for candidates for a package in the pkgsrc tree, only
consider directories that contain a Makefile. One of the url2pkg tests
looks for pkglint, and while a 'cvs update' is running, there is an old
entry 'devel/pkglint' in the filesystem that made the test fail.

(rillig)

doc: Added databases/mariadb1011-embedded version 10.11.7

(wiz)

databases: add mariadb1011-embedded

(wiz)

databases/mariadb1011-embedded: import mariadb-embedded-10.11.7

MariaDB Server is one of the most popular open source relational databases.
It's made by the original developers of MySQL.

MariaDB turns data into structured information in a wide array of applications,
ranging from banking to websites. It is an enhanced, drop-in replacement
for MySQL. MariaDB is used because it is fast, scalable and robust, with a
rich ecosystem of storage engines, plugins and many other tools make it very
versatile for a wide variety of use cases.

MariaDB is developed as open source software and as a relational database
it provides an SQL interface for accessing data. The latest versions of
MariaDB also include GIS and JSON features.

This package contains the embedded MariaDB server programs.

(wiz)

url2pkg: for Python 3.x only

(adam)

Updated textproc/py-babelfish, graphics/py-pygraphviz, www/py-publicsuffixlist, textproc/py-phonenumbers

(adam)

py-phonenumbers: updated to 8.13.36

8.13.36
Unknown changes

(adam)

py-publicsuffixlist: updated to 0.10.0.20240508

0.10.0.20240508
Unknown changes

(adam)

py-pygraphviz: updated to 1.13

pygraphviz 1.13
===============

We're happy to announce the release of pygraphviz 1.13!

Bug Fixes
---------

- Remove outdated pystrings.swg
- Fix segfault from repr attempting to access attrs on uninitialized instance

Maintenance
-----------

- Remove outdated pystrings.swg
- Update CI tests
- Update pre-commit repos
- Bump webfactory/ssh-agent from 0.8.0 to 0.9.0
- Update tests for macOS Sonoma v14
- Update doc requirements
- Update pre-commit repos
- Remove unnecessary pip flags
- Test on fedora 40

(adam)

py-babelfish: updated to 0.6.1

0.6.1

Bump dependencies
Replace pkg_resources with importlib

(adam)

Updated textproc/py-regex, finance/py-stripe

(adam)

py-stripe: updated to 9.6.0

9.6.0 - 2024-05-09
* Update generated code
* Add support for `allow_redisplay` on resource class `stripe.ConfirmationToken.PaymentMethodPreview` and resource `stripe.PaymentMethod`
* Add support for `preview_mode` on parameter classes `stripe.Invoice.CreatePreviewParams`, `stripe.Invoice.UpcomingLinesParams`, and `stripe.Invoice.UpcomingParams`
* Add support for `_cls_update` on resources `stripe.treasury.OutboundPayment` and `stripe.treasury.OutboundTransfer`
* Add support for `tracking_details` on resources `stripe.treasury.OutboundPayment` and `stripe.treasury.OutboundTransfer`
* Add support for `update` on resources `stripe.treasury.OutboundPayment` and `stripe.treasury.OutboundTransfer`
* Add support for `treasury.outbound_payment.tracking_details_updated` on enums `stripe.Event.type`, `stripe.WebhookEndpoint.CreateParams.enabled_events`, and `stripe.WebhookEndpoint.ModifyParams.enabled_events`
* Add support for `treasury.outbound_transfer.tracking_details_updated` on enums `stripe.Event.type`, `stripe.WebhookEndpoint.CreateParams.enabled_events`, and `stripe.WebhookEndpoint.ModifyParams.enabled_events`

9.5.0 - 2024-05-02
* Update generated code
* Add support for `paypal` on resource class `stripe.Dispute.PaymentMethodDetails`
* Add support for `payment_method_types` on parameter class `stripe.PaymentIntent.ConfirmParams`
* Add support for `ship_from_details` on parameter class `stripe.tax.Calculation.CreateParams` and resources `stripe.tax.Calculation` and `stripe.tax.Transaction`
* Add support for `bh`, `eg`, `ge`, `ke`, `kz`, `ng`, `om` on resource class `stripe.tax.Registration.CountryOptions` and parameter class `stripe.tax.Registration.CreateParamsCountryOptions`
* Add support for `paypal` on enum `stripe.Dispute.PaymentMethodDetails.type`
* Add support for `shipping_address_invalid` on enums `stripe.Invoice.LastFinalizationError.code`, `stripe.PaymentIntent.LastPaymentError.code`, `stripe.SetupAttempt.SetupError.code`, and `stripe.SetupIntent.LastSetupError.code`
* Change type of `metadata` on  `stripe.entitlements.Feature.ModifyParams` from `Dict[str, str]` to `Literal['']|Dict[str, str]`
* Fix type change entries in Python Changelog

9.4.0 - 2024-04-25
* Update generated code
* Add support for `amazon_pay` on resource classes `stripe.Mandate.PaymentMethodDetails` and `stripe.SetupAttempt.PaymentMethodDetails`
* Add support for `revolut_pay` on resource classes `stripe.Mandate.PaymentMethodDetails` and `stripe.SetupAttempt.PaymentMethodDetails`
* Add support for `setup_future_usage` on resource classes `stripe.PaymentIntent.PaymentMethodOptions.AmazonPay`, `stripe.PaymentIntent.PaymentMethodOptions.RevolutPay`, `stripe.checkout.Session.PaymentMethodOptions.AmazonPay`, and `stripe.checkout.Session.PaymentMethodOptions.RevolutPay`
* Add support for `mobilepay` on parameter classes `stripe.PaymentMethodConfiguration.CreateParams` and `stripe.PaymentMethodConfiguration.ModifyParams` and resource `stripe.PaymentMethodConfiguration`
* Add support for `ending_before` on parameter class `stripe.PaymentMethodConfiguration.ListParams`
* Add support for `limit` on parameter class `stripe.PaymentMethodConfiguration.ListParams`
* Add support for `starting_after` on parameter class `stripe.PaymentMethodConfiguration.ListParams`
* Change type of `feature` on  `stripe.entitlements.ActiveEntitlement` from `str` to `ExpandableField[Feature]`
* Add support for `amazon_pay` on enums `stripe.Invoice.PaymentSettings.payment_method_types`, `stripe.Invoice.CreateParamsPaymentSettings.payment_method_types`, `stripe.Invoice.ModifyParamsPaymentSettings.payment_method_types`, `stripe.Subscription.PaymentSettings.payment_method_types`, `stripe.Subscription.CreateParamsPaymentSettings.payment_method_types`, and `stripe.Subscription.ModifyParamsPaymentSettings.payment_method_types`
* Add support for `revolut_pay` on enums `stripe.Invoice.PaymentSettings.payment_method_types`, `stripe.Invoice.CreateParamsPaymentSettings.payment_method_types`, `stripe.Invoice.ModifyParamsPaymentSettings.payment_method_types`, `stripe.Subscription.PaymentSettings.payment_method_types`, `stripe.Subscription.CreateParamsPaymentSettings.payment_method_types`, and `stripe.Subscription.ModifyParamsPaymentSettings.payment_method_types`
* Remove support for inadvertently released identity verification features `email` and `phone` on parameter classes `stripe.identity.VerificationSession.CreateParamsOptions` and `stripe.identity.VerificationSession.ModifyParamsOptions`
* Bump aiohttp from 3.9.2 to 3.9.4

(adam)

py-regex: updated to 2024.5.10

2024.5.10
Unknown changes

(adam)

net/py-cares: Drop PYCARES_CFFI env var

This used to select a cffi implementation vs an earlier non-cffi
implementation.  Now, the cffi implementation is the only approach and
upstream no longer documents this env var or references it in any way.

(gdt)

doc: Added net/scaleway-cli version 2.30.0

(leot)

net: Add scaleway-cli

(leot)

scaleway-cli: Import scaleway-cli-2.30.0 as net/scaleway-cli

Scaleway CLI is a tool to help you pilot your Scaleway infrastructure
directly from your terminal.

Packaged in pkgsrc-wip by <leot> and <bsiegert>.

(leot)

doc: Updated sysutils/rsftch to 0.5.3

(pin)

sysutils/rsftch: update to 0.5.3

v0.5.3
- Fix *BSD issue with getting distribution name

v0.5.2
- Add --info argument
- Code cleanup in src/color_config::get_color_config
- Small bug fix to make sure e.g. --override doesn't accept any --* arguments

(pin)

bulk-test-python27: add mongodb3, builds now.

(wiz)

doc: Updated x11/gnome-shell to 40.2nb26

(wiz)

gnome-shell: add patch for compatibility with glib2 2.80.1

From
https://gitlab.gnome.org/GNOME/gnome-shell/-/merge_requests/3303

Bump PKGREVISION.

(wiz)

mk: Allow "illumos" as GNU host os.

For the most part the triple is still *-*-solaris*, but newer software
such as rust defines the target triple as x86_64-unknown-illumos, and
supporting this helps with patching things that try to match them.

(jperkin)

doc: Updated devel/py-ruff-lsp to 0.0.53nb1

(wiz)

py-ruff-lsp: fix package

Add missing dependencies, fix path to ruff, fix names in ALTERNATIVES.

Bump PKGREVISION.

(wiz)

ruff-lsp: Added, not Updated.

(nikita)

doc: Updated games/openrct2 to 0.4.11

(nia)

openrct2: Update to 0.4.11. Support offline builds.

Changes:

Feature: Coloured usernames by group on multiplayer servers.
Feature: Park admittance price can now be set via text input.
Feature: [Plugin] Expose whether the game is paused to the plugin API.
Improved: ���Fix all rides��� cheat now also works if a mechanic is already fixing the ride.
Improved: Expose ���animation is backwards��� wall property in Tile Inspector.
Improved: Add a separator between ���Load Game��� and ���Save Game���, to avoid accidental overwriting.
Change: [Plugin] Remove access to the internal owner property. Note: ownership is still accessible.
Change: Cheats menu dropdown no longer requires dragging.
Change: Hide the FPS Counter when the top toolbar/widgets have been toggled off.
Change: Construction and removal buttons can now be held down for repeated placement.
Fix: Boat Hire boats get stuck entering track (original bug).
Fix: No reason specified when placing door over unsuitable track.
Fix: Attempting to demolish a flat ride in pause mode allows you to place multiple copies.
Fix: Custom rides with long descriptions extend into lower widgets.
Fix: Fullscreen window option not correctly applied on macOS.
Fix: Crash when loading park bigger than current limits.
Fix: Map generator heightmap should respect increased height limits.
Fix: When creating a new scenario, the default name contains formatting codes.
Fix: Build errors with the ORIGINAL_RATINGS flag.
Fix: Cannot build Colosseum inside a turn or helix.
Fix: Sloped castle walls are vertically offset by one pixel (original bug).

(nia)

mongodb3: bump for dependency change

(wiz)

clang: Switch SunOS back to using the GCC runtime.

Upstream LLVM have removed the SunOS code from libcxx et al, despite us
offering to support it and it working fine, and so we're left with no
choice but to go back to using the GCC libraries and headers, which is a
shame.

Tested to compile at least a few different C/C++ files, and is able to
complete the builds of lang/wasi-*.

(jperkin)

mongodb3: Incompatible with latest boost in pkgsrc, use internal boost

(nia)

mame: bump required gcc version

(nia)

Updated devel/glib2, devel/glib2-tools, devel/gdbus-codegen

(adam)

glib2 glib2-tools gdbus-codegen: updated to 2.80.2

Overview of changes in GLib 2.80.2, 2024-05-08
==============================================

* Fix a regression with IBus caused by the fix for CVE-2024-34397

* Fix installation directory of the GVariant specification

* Bugs fixed:
  - GVariant specification installed in wrong directory (Michael
    Catanzaro)
  - Fixing CVE-2024-34397 caused regressions for ibus (Simon McVittie)
  - Backport "gdbusconnection: Fix test signal subscription ordering" to
    glib-2-80
  - Backport !4049 ���Correct installation directory of GVariant
    specification��� to glib-2-80
  - Backport !4053 ���gdbusconnection: Allow name owners to have the syntax
    of a well-known name��� to glib-2-80

(adam)

doc/TODO: + MesaLib-24.0.7, arti-1.2.2.

(wiz)

Updated graphics/libjpeg-turbo, www/tinyproxy, www/nghttp3, net/ngtcp2

(adam)

ngtcp2: updated to 1.5.0

ngtcp2 v1.5.0

Fix release script
autotools: Switch to tar-pax
Pack more QUIC packets on large PMTUD probes
Drop UDP datagram if it comes from a well-known port
Rework transmitting empty STREAM frame
Take into account SCID length when computing minimum packet size
More prohibited ports
client: Handle error from feed_data
server: Send stateless reset
crypto: Adjust token stack buffer sizes
crypto: Reduce NGTCP2_CRYPTO_TOKEN_RAND_DATALEN to 16
Bump wolfssl to v5.7.0-stable
Group up integration test output
QUIC min Short packet is 22
cmake: add BUILD_TESTING, fix MSVC with static + shared
adding "git submodule" and libev stuff
Bump munit
ci: Add macos-14
server: Fix stateless reset buffer stack buffer overflow
Adopt std::to_array
Fix interop
server: Use std::span for sized binary data
client: Use std::span for sized binary data
examples: More std::span
std::unordered_map lookup by std::string_view
Refactor Buffer
interop: Support linux/arm64
chore: Build multi-platform Docker image during CI
interop: Build images on multiple runners
interop: Push multi platform images
Fix interop image tag
interop: Add missing h09 client/server
Refactor format_hex
CMakeLists(.txt): Add Build Test info on summary
Bump munit
server: Refactor packet write
Remove unused streq_l
Bump aws-lc to v1.26.0
Fix nullptr dereference
Bump boringssl
Bump picotls

(adam)

nghttp3: updated to 1.3.0

nghttp3 v1.3.0

Refactor stream data acknowledgement
Do not call acked_data with 0 length data
Qpack tweak
Avoid assigning zero after memset
Lower decoder stream limit
Workaround llvm issue on github ubuntu runner
apt-get update
Automate release process
autotools: Switch to tar-pax
Add actions/stale
cmake: add BUILD_TESTING, fix MSVC with static + shared
Bump munit
CMakeLists(.txt): Add Build Test info on summary
Bump munit
Update the link for the Prefix.pdf document
More words for errors when reading from or writing to a stream
Clarify the use of nghttp3_conn_close_stream

(adam)

tinyproxy: updated to 1.11.2

1.11.2

Fixes issues detected in 1.11.1, including a nasty UAF bug.

(adam)

libjpeg-turbo: updated to 3.0.3

3.0.3

Significant changes relative to 3.0.2:

1. Fixed an issue in the build system, introduced in 3.0.2, that caused all
libjpeg-turbo components to depend on the Visual C++ run-time DLL when built
with Visual C++ and CMake 3.15 or later, regardless of value of the
`WITH_CRT_DLL` CMake variable.

2. The x86-64 SIMD extensions now include support for Intel Control-flow
Enforcement Technology (CET), which is enabled automatically if CET is enabled
in the C compiler.

3. Fixed a regression introduced by 3.0 beta2[6] that made it impossible for
calling applications to supply custom Huffman tables when generating
12-bit-per-component lossy JPEG images using the libjpeg API.

4. Fixed a segfault that occurred when attempting to use the jpegtran `-drop`
option with a specially-crafted malformed input image or drop image
(specifically an image in which all of the scans contain fewer components than
the number of components specified in the Start Of Frame segment.)

(adam)

bulk-test-python27: add py-moin, bump version

(wiz)

doc: add go vulns

(wiz)

qt5-qttools: Disable llvm option on SunOS.

It brings in full clang rather than just llvm.

(jperkin)

doc: amarok vuln was fixed sometime before 3

(wiz)

poppler-utils: set USE_CXX_FEATURES earlier

poppler/Makefile.common includes compiler.mk, so the value
is ignored if it's only set afterwards

(wiz)

doc: convert a nss vuln to a firefox one

(wiz)

mail/Makefile: + mu

(wiz)

editors/Makefile: + ait

(wiz)

Recursive revbump after changing the default Haskell compiler

(pho)

doc: Updated security/osv-scanner to 1.7.2

(khorben)

osv-scanner: update to 1.7.2

This package hasn't been updated in a long time. The following list of
changes was therefore curated to focus on features or recent bugfixes.

Changes in 1.7.2:

* Bug #899 Guided Remediation: Parse paths in npmrc auth fields correctly.
* Bug #908 Fix rust call analysis by explicitly disabling stripping of debug info.
* Bug #914 Fix regression for go call analysis introduced in 1.7.0.

Changes in 1.7.0:

* Feature #352 Guided Remediation
  Introducing our new experimental guided remediation feature on osv-scanner fix subcommand.
* Feature #805 Include CVSS MaxSevirity in JSON output.

Changes in 1.6.2:

* Feature #694 OSV-Scanner now has subcommands!
  The base command has been moved to scan (currently the only commands is scan). By default if you do not pass in a command, scan will be used, so CLI remains backwards compatible.
* Feature #776 Add pdm lockfile support.

Changes in 1.6.0 and 1.6.1:

* Feature #694 Add support for NuGet lock files version 2.
* Feature #655 Scan and report dependency groups (e.g. "dev dependencies") for vulnerabilities.
* Feature #702 Created an option to skip/disable upload to code scanning.
* Feature #732 Add option to not fail on vulnerability being found for GitHub Actions.
* Feature #729 Verify the spdx licenses passed in to the license allowlist.

Changes in 1.5.0:

* Feature #501 Add experimental license scanning support!
* Feature #642 Support scanning renv files for the R language ecosystem.
* Feature #513 Stabilize call analysis for Go
* Feature #676 Simplify return codes:
  Return 0 if there are no findings or errors.
  Return 1 if there are any findings (license violations or vulnerabilities).
  Return 128 if no packages are found.
* Feature #651 CVSS v4.0 support.
* Feature #60 Pre-commit hook support.

Changes in 1.4.3:

* Feature #621 Add support for scanning vendored C/C++ files.
* Feature #581 Scan submodules commit hashes.

Changes in 1.4.1:

* Feature #534 New SARIF format that separates out individual vulnerabilities
* Experimental Feature #57 Experimental Github Action

Changes in 1.4.0:

* Feature #183 Add (experimental) offline mode
* Feature #452 Add (experimental) rust call analysis, detect whether vulnerable functions are actually called in your Rust project
* Feature #505 OSV-Scanner support custom lockfile formats

Changes in 1.3.5:

* Feature #409 Adds an additional column to the table output which shows the severity if available.

Changes in 1.3.0:

* Feature #198 GoVulnCheck integration! Try it out when scanning go code by adding the --experimental-call-analysis flag.
* Feature #260 Support -r flag in requirements.txt files.
* Feature #300 Make IgnoredVulns also ignore aliases.
* Feature #304 OSV-Scanner now runs faster when there's multiple vulnerabilities.

Changes in 1.2.0:

* Feature #168 Support for scanning debian package status file, usually located in /var/lib/dpkg/status. Thanks @cmaritan
* Feature #94 Specify what parser should be used in --lockfile.
* Feature #158 Specify output format to use with the --format flag.
* Feature #165 Respect .gitignore files by default when scanning.
* Feature #156 Support markdown table output format. Thanks @deftdawg
* Feature #59 Support conan.lock lockfiles and ecosystem Thanks @SSE4
* Updated documentation! Check it out here: https://google.github.io/osv-scanner/

Changes in 1.1.0:

* Feature #98: Support for NuGet ecosystem.
* Feature #71: Now supports Pipfile.lock scanning.
* Bug #85: Even better support for narrow terminals by shortening osv.dev URLs.
* Bug #105: Fix rare cases of too many open file handles.
* Bug #131: Fix table highlighting overflow.
* Bug #101: Now supports 32 bit systems.

Tested on NetBSD/amd64.

(khorben)

doc: add XSS in phpldapadmin

(khorben)

doc: Updated databases/phpldapadmin to 1.2.6.7

(khorben)

phpldapadmin: update to version 1.2.6.7

This fixes an XSS vulnerability when importing using a file upload without a
valid LDIF.

Tested on NetBSD/amd64, Darwin/amd64.

(khorben)

doc: Updated net/gvproxy to 0.7.3

(bsiegert)

gvproxy: update to 0.7.3, now compatible with Go 1.22.

v0.7.3

- Add log-file to proxy builder
- Improve gvproxy error reporting, and improve gvproxy --version in a corner
  case
- github actions improvements

v0.7.2

- transport: Support passing CID for linux vsock
- Add retries to ssh connections to fix a race when used by podman/applehv
- Add --log-file to gvproxy
- Add --version argument to commands
- Add support for go 1.22 (by updating the gvisor go module)
- packit changes

v0.7.1

- gvproxy: add docker.internal dns entries
- Add GvProxyCommand type/helper API
- Add graceful shutdown support for gvproxy
- RPM packaging and packit improvements

(bsiegert)

Fix previously added option "doc"

(cheusov)

Updated x11/gtk4, security/pcsc-lite

(adam)

pcsc-lite: updated to 2.2.1

2.2.1: Ludovic Rousseau

- fix meson related issues
- Some code cleanup

2.2.0: Ludovic Rousseau

- provide files for meson build tool (replaces autoconf/auoomake)
- fix a missing symbol in libpcscspy (bug introduced by the previous version)
- fix shutdown issues with hotplug_libusb
- update pcsc-spy manpage
- update copyright date
- Some other minor improvements

(adam)

gtk4: updated to 4.14.4

Overview of Changes in 4.14.4, 02-05-2024
=========================================

* GtkGraphicsOffload:
- Don't crash without a child

* Icontheme:
- Make symbolic svg loading more efficient
- Handle color-free symbolics more efficiently

* Accessibility:
- Make the gtk-demo sidebar search more accessible
- Stop emitting focus events

* GDK:
- Support XDG_ACTIVATION_TOKEN
- dmabuf: Be more defensive when importing unknown formats to G
- dmabuf: Use narrow range for YUV

* GSK:
- gpu: Handle  tiny offscreens correctl

* Build:
- Fix many ubsan warning

* macOS
- Fix problems with events handed back to the OS
- Respect GDK_DEBUG=default-settings

* Translation updates:
German
Indonesian
Kabyle
Korean
Lithuanian
Russian

(adam)

set NOT_FOR_BULK_PLATFORM

(spz)

Add option "doc" for disabling heavy dependency on docbook-xsl and libxslt.
  Approved by gson@

(cheusov)

bulk-test-python27: Fix COMMENT

(gdt)

doc: Added meta-pkgs/bulk-test-python27 version 20240508

(gdt)

meta-pkgs: Add bulk-test-python27

(gdt)

meta-pkgs/bulk-test-python27: Add 20240508

Meta-package for testing that packages that need python27 still work
as python 27 fades out.

(gdt)

geography/qgis: Align whitespace to wip/qgis-lts

NFCI

(gdt)

geography/qgis: Sort includes of bl3 files

This appears to have no effect; the problem where both system and
pkgsrc sqlite3 are used remains unchanged.

Tidying cherry-picked from wip/qgis-lts by adam@.

(gdt)

doc: Updated www/snac to 2.52

(schmonz)

snac: update to 2.52. Changes:

Posts that were liked or boosted can now be unliked and unboosted.

Outgoing message timeouts are no longer hardcoded and can be
configured (see `snac(8)` for more information).

Fixed a bug that caused some incorrect unfollows under special
conditions (with shared inboxes enabled and users from the same
instance that follow each other, the internal message distributor
was confused).

Mastodon API: Added support for lists.

Added a header to avoid over-zealous caching in some browsers
(contributed by louis77).

Added support for running and federating inside hidden networks
like Tor, I2P or Loki (contributed by iwojima).

Fixed an error processing polls coming from Pleroma instances.

(schmonz)

doc: Updated devel/mise to 2024.5.3

(schmonz)

mise: update to 2024.5.3. Changes:

### Features

* (env) supports glob patterns in `env._.file` and `env._.source` (fix #1916)
* cleanup invalid symlinks in .local/state/mise/(tracked|trusted)-configs

### Bug Fixes

* (plugin-update) Handle errors from the underlying plugin updates
* backend install directory not removed if empty
* mise trust doesn't handle relative paths

### Other Changes

* Update README.md
* move kachick plugins to mise-plugins
* Merge pull request #2019 from jdx/release

(schmonz)

assaultcube-server: bump revision for previous

(nia)

assaultcube: Make it easy to run ac_server as non-root

(nia)

Updated devel/glib2, devel/glib2-tools, devel/gdbus-codegen, net/samba4

(adam)

samba4: updated to 4.20.1

Changes since 4.20.0

* BUG 15630: dns update debug message is too noisy.
* BUG 15635: Do not fail PAC validation for RFC8009 checksums types.
* BUG 15605: Improve performance of lookup_groupmem() in idmap_ad.
* BUG 15636: Smbcacls incorrectly propagates inheritance with Inherit-Only
  flag.
* BUG 15611: http library doesn't support 'chunked transfer encoding'.
* BUG 15600: Provide a systemd service file for the background queue daemon.

(adam)

glib2 glib2-tools gdbus-codegen: updated to 2.80.1

Overview of changes in GLib 2.80.1, 2024-05-07
==============================================

* Fix CVE-2024-34397: GDBus signal subscriptions for well-known names are
  vulnerable to unicast spoofing

* Bugs fixed:
  - GNOME/tracker-miners-315 3.7.0 - GLib-GIO-WARNING **: 09:27:12.186: Error
    creating IO channel for /proc/self/mountinfo: Invalid argument (g-io-error-
    quark, 13) (Ondrej Holy)
  - CVE-2024-34397: GDBus signal subscriptions for well-known names are
    vulnerable to unicast spoofing (Simon McVittie)
  - Devhelp does not show indexes for GLib, GIO, or GObject (Philip
    Withnall)
  - readlink -f fails in CI on macOS (Simon McVittie)
  - Crash in gdbus schedule_callbacks() due to missing NULL check before
    g_str_equal() (Philip Withnall)
  - [th/performance] add script for combining performance results
  - [th/gobject-toggle-refs-check] Fix critical warning for toggle
    notifications in g_object_ref()/g_object_unref()
  - meson: Fix a needless recompilation of some gdbus tests
  - girparser: Don't assume sizeof(size_t) == sizeof(void *)
  - girparser: Allow time_t, off_t, etc. to appear in GIR XML
  - Ported the first few documentation comments in `gio/gaction.c` to gi-
    docgen
  - girparser: Make sizes in integer_aliases more obviously correct
  - girparser: Adjust signedness() macro
  - glib/gvariant: fix compile error with GCC 14.0.1
  - tests: Mark several additional tests as can_fail on GNU Hurd
  - Backport !3979 "Use CPU_COUNT to get the number of set CPUs" to
    glib-2-80
  - Backport !3989 “completion: make gsettings work in nounset mode” to
    glib-2-80
  - Backport "Remove unused cmph files" for glib-2-80
  - Backport !4019 “gunixmounts: Use fallback if libmount monitoring
    fails” to glib-2-80
  - Backport !4005 “Fix various bugs found by scan-build“ to glib-2-80
  - Backport !4028 “gdbusconnection: Fix a crash on arg0 matching” to
    glib-2-80
  - Backport !4031 “gdocumentportal: Handle EROFS and similar errors more
    gracefully” to glib-2-80
  - Backport !4038 “gdbusconnection: Don't deliver signals if the sender
    doesn't match” to glib-2-80

* Translation updates:
  - Czech (Daniel Rusek)
  - Danish (Ask Hjorth Larsen)
  - French (Vincent Chatelain)
  - Galician (Fran Dieguez)
  - Georgian (Ekaterine Papava)
  - German (Christian Kirbach)
  - Indonesian (Andika Triwidada)
  - Italian (Milo Casagrande)
  - Kabyle (Athmane MOKRAOUI, Rachida SACI)
  - Korean (Changwoo Ryu)
  - Latvian (Rūdolfs Mazurs)
  - Persian (Danial Behzadi)
  - Polish (Piotr Drąg)
  - Portuguese (Hugo Carvalho)
  - Portuguese (Brazil) (Leônidas Araújo, Juliano de Souza Camargo)

(adam)