py-icalendar: updated to 5.0.7

5.0.7
Bug fixes:
- to_ical() now accepts RRULE BYDAY values>=10

(adam)

py-epr-reader: updated to 2.4.15

2.4.15
Unknown changes

(adam)

py-coverage: updated to 7.2.7

Version 7.2.7 — 2023-05-29
--------------------------

- Fix: reverted a `change from 6.4.3 <pull 1347_>`_ that helped Cython, but
  also increased the size of data files when using dynamic contexts, as
  described in the now-fixed `issue 1586`_. The problem is now avoided due to a
  recent change (`issue 1538`_).  Thanks to `Anders Kaseorg <pull 1629_>`_
  and David Szotten for persisting with problem reports and detailed diagnoses.

- Wheels are now provided for CPython 3.12.

(adam)

py-bitarray: updated to 2.7.4

2.7.4:
* register `bitarray` as `abc.MutableSequence`
* cibuildwheel: update macOS version to 11 from unsupported 10.15, see
  https://github.com/actions/runner-images/issues/5583
* improve documentation regarding type when indexing single
  bitarray items

(adam)

Updated net/qbittorrent, net/py-minio

(adam)

py-minio: updated to 7.1.15

7.1.15
upload_snowball_object(): seek stream to 0 before upload
Revert "list_objecst: fix parsing user metadata as per MinIO server"
Disable multipart upload for upload_snowball_objects() api.
Remove locale usage for datetime parsing
fix policy as a string in presigned_post_policy() API
Add cert_check flag to main class constructor

(adam)

qbittorrent: updated to 4.5.3

v4.5.3
- BUGFIX: Correctly check if database needs to be updated (glassez)
- BUGFIX: Prevent incorrect log message about torrent content deletion (glassez)
- BUGFIX: Improve finished torrent handling (glassez)
- BUGFIX: Correctly initialize group box children as disabled in Preferences (thalieht)
- BUGFIX: Don't miss saving "download path" in SQLite storage (glassez)
- BUGFIX: Improve logging of running external program (glassez)
- WEBUI: Disable UPnP for web UI by default (glassez)
- WEBUI: Use workaround for IOS file picker (DivineHawk)
- WEBUI: Work around Chrome download limit (Chocobo1)
- WEBUI: Improve 'exporting torrent' behavior (Chocobo1)
- WINDOWS: NSIS: Add Slovak translation (Christian Dan鱈転ek)

(adam)

Updated devel/py-anyio, devel/py-pydantic

(adam)

py-pydantic: updated to 1.10.8

v1.10.8 (2023-05-23)

* Fix a bug in `Literal` usage with `typing-extension==4.6.0`
* Update email-validator dependency to >=2.0.0post2
* update `AnyClassMethod` for changes

(adam)

py-anyio: updated to 3.7.0

**3.7.0**

- Dropped support for Python 3.6
- Improved type annotations:

  - Several functions and methods that were previously annotated as accepting
    ``Coroutine[Any, Any, Any]`` as the return type of the callable have been amended to
    accept ``Awaitable[Any]`` instead, to allow a slightly broader set of coroutine-like
    inputs, like ``async_generator_asend`` objects returned from the ``asend()`` method
    of async generators, and to match the ``trio`` annotations:

    - ``anyio.run()``
    - ``anyio.from_thread.run()``
    - ``TaskGroup.start_soon()``
    - ``TaskGroup.start()``
    - ``BlockingPortal.call()``
    - ``BlockingPortal.start_task_soon()``
    - ``BlockingPortal.start_task()``

    Note that this change involved only changing the type annotations; run-time
    functionality was not altered.

  - The ``TaskStatus`` class is now a generic protocol, and should be parametrized to
    indicate the type of the value passed to ``task_status.started()``
  - The ``Listener`` class is now covariant in its stream type
  - ``create_memory_object_stream()`` now allows passing only ``item_type``
  - Object receive streams are now covariant and object send streams are correspondingly
    contravariant
- Changed ``TLSAttribute.shared_ciphers`` to match the documented semantics of
  ``SSLSocket.shared_ciphers`` of always returning ``None`` for client-side streams
- Fixed ``CapacityLimiter`` on the asyncio backend to order waiting tasks in the FIFO
  order (instead of LIFO) (PR by Conor Stevenson)
- Fixed ``CancelScope.cancel()`` not working on asyncio if called before entering the
  scope
- Fixed ``open_signal_receiver()`` inconsistently yielding integers instead of
  ``signal.Signals`` instances on the ``trio`` backend
- Fixed ``to_thread.run_sync()`` hanging on asyncio if the target callable raises
  ``StopIteration``
- Fixed ``start_blocking_portal()`` raising an unwarranted
  ``RuntimeError: This portal is not running`` if a task raises an exception that causes
  the event loop to be closed
- Fixed ``current_effective_deadline()`` not returning ``-inf`` on asyncio when the
  currently active cancel scope has been cancelled (PR by Ganden Schaffner)
- Fixed the ``OP_IGNORE_UNEXPECTED_EOF`` flag in an SSL context created by default in
  ``TLSStream.wrap()`` being inadvertently set on Python 3.11.3 and 3.10.11
- Fixed ``CancelScope`` to properly handle asyncio task uncancellation on Python 3.11
  (PR by Nikolay Bryskin)
- Fixed ``OSError`` when trying to use ``create_tcp_listener()`` to bind to a link-local
  IPv6 address (and worked around related bugs in ``uvloop``)
- Worked around a `PyPy bug <https://foss.heptapod.net/pypy/pypy/-/issues/3938>`_
  when using ``anyio.getaddrinfo()`` with for IPv6 link-local addresses containing
  interface names

(adam)

Updated devel/py-poetry-core, devel/py-jaraco.functools

(adam)

py-jaraco.functools: updated to 3.7.0

v3.7.0
Added ``bypass_unless`` and ``bypass_when`` and ``identity``.

(adam)

py-poetry-core: updated to 1.6.1

1.6.1

Fixed

Fix an endless recursion in marker handling
Fix an issue where the wheel tag was not built correctly under certain circumstances
Fix an issue where the tests included in the sdist failed due to missing files

(adam)

Updated multimedia/openh264, devel/pkgconf

(adam)

pkgconf: updated to 1.9.5

Changes from 1.9.4 to 1.9.5:
----------------------------
* Fix incorrect assumptions involving the use of ctype(3) functions.
* Fix detection of provided functions on autoconf.
* Fix deletion of tests/meson.build by the autoconf build system.
* Fix quoting rules in argvsplit.c.
* Update libpkgconf documentation and documentation building scripts.
* Enforce maximum package count correctly for --modversion.

(adam)

openh264: updated to 2.3.1

v2.3.1

update SHAREDLIB_MAJORVERSION value in Makefile

v2.3.0

Decoder bug fix to correct the B-frame order in some case
Fixes to avoid hanging for multi-thread decoding
Some Enhancements and fixes for rate control
Assembly optimization for loongson platform
Some minor bug fixes

v2.2.0

Add support for B-slice error concealment
Thread decoding support for multi-slice frame
SIMD optimization for loongson platform
Support the arm64 compilation on Windows and MacOS platform
Some Bug fixes for B-frame decoding
Some minor bug fixes

(adam)

Updated devel/py-test-doctestplus, devel/py-test-httpserver

(adam)

py-test-httpserver: updated to 1.0.8

1.0.8

Bug Fixes
- Version 1.0.7 has been released with incorrect dependencies. This is fixed now.

(adam)

py-test-doctestplus: updated to 0.12.1

0.12.1 (2022-09-26)
- Allow floating point comparison in Python dictionary.

0.12.0 (2022-02-25)
- Run doctests in docstrings of Numpy ufuncs.

(adam)

Updated textproc/py-fastjsonschema, devel/py-test-console-scripts

(adam)

py-test-console-scripts: updated to 1.4.0

1.4.0

Added

Added type-hinting for all types, pytest_console_scripts.ScriptRunner can now be used to hint the script_runner fixture.
Added support for the shell and check keywords for in-process mode. These behave as similarly to subprocess.run as possible.
Script runners now take command arguments similar to subprocess.run, including support for PathLike objects.

Deprecated

Passing command arguments in *args is now deprecated and will raise warnings. These should be wrapped in a list or tuple from now on, similar to subprocess.run.

Removed

Dropped support for Python 3.6

Fixed

Install-time dependencies have been fixed.

(adam)

py-fastjsonschema: updated to 2.17.1

2.17.1 (2023-05-22)
* Fixed tests in sdist

2.17.0 (2023-05-21)
* Added support for Decimals
* Added tests in sdist

(adam)

Added devel/py-versioneer; Updated devel/py-deprecated, www/py-jwcrypto, textproc/py-xlsxwriter

(adam)

py-xlsxwriter: updated to 3.1.2

Release 3.1.2
* Added worksheet page break preview mode via ``worksheet.set_pagebreak_view()``.

(adam)

py-jwcrypto: updated to 1.4.2

Version 1.4.2
Fix typo in new backwards JWT compat heuristics

Version 1.4.1
This is a minor release focused on improving backwards compatibility with applications after the API breaking changes introduced in 1.4
This patch adds a bunch of heuristics to be able to safely autodetect a token type. It has been tested to solve the compatibility issues (ie old code works without modifications and fully securely) with at least one large application.

Version 1.4
This is a security release to address CVE-2022-3102.

The JWT code can auto-detect the type of token being provided, and this can lead the application to incorrect conclusions about the trustworthiness of the token.
Quoting the private disclosure we received : "Under certain circumstances, it is possible to substitute a [..] signed JWS with a JWE that is encrypted with the public key that is normally used for signature validation."
This substitution attack can occur only if the validating application also have access to the private key, normally used to sign the tokens, available during validation of the received JWT.
The significance of this attacks depends on the use of the token, it may lead to authentication bypass or authorization bypass (respectively if claims are used to authenticate or authorize certain actions), because the attacker has full control of the data placed in the JWE and can inject any desired claim value.

Several mitigating factors exist that can protect applications from this issue:

If the private key corresponding to the public key used to encrypt the JWE is not available to the application an exception will be raised.
If the JWK is specified with the 'use' parameter set to 'sig' (as expected for keys used only for signing/verification) an exception will be raised.
If the JWK is specified with the 'key_ops' parameter set and it does not include the 'decrypt' operation an exception will be raised.
Applications may check the token type before validation, in this case they would fail to detect an expected JWS
Normally, signing and validation are done by different applications, so this scenario should be unlikely. However it is possible to have applications that both sign and validate tokens and do not separate JWKs in use, or do not set a JWK 'use' type.

Due to the mitigating factors, and the fact that specific operational constraints and conditions need to be in place to successfully exploit this issue to generate an authentication bypass, we rate this security issue as moderate. Other avenues may decide on a different rating based on use case, always verify what conditions apply to your use of the library to assess risk.

(adam)

py-deprecated: updated to 1.2.14

v1.2.14

Bug fix release

Fix
- Fix: return a correctly dedented docstring when long docstring are using the D212 or D213 format.

Other
- Add support for Python 3.11.
- Drop support for Python older than 3.7 in build systems like pytest and tox,
  while ensuring the library remains production-compatible.
- Update GitHub workflow to run in recent Python versions.

(adam)

py-versioneer: added version 0.28

This is a tool for managing a recorded version number in setuptools-based
python projects. The goal is to remove the tedious and error-prone "update
the embedded version string" step from your release process. Making a new
release should be as easy as recording a new tag in your version-control
system, and maybe making new tarballs.

(adam)

Updated devel/py-maturin, devel/py-cachetools

(adam)

py-cachetools: updated to 5.3.1

v5.3.1 (2023-05-27)

- Depend on Python >= 3.7.

(adam)

py-maturin: updated to 1.0.1

1.0.1
* Add more Python 3.12 sysconfigs
* Fix panicking when no cargo build targets are selected

(adam)

Updated www/py-flask-restful, www/py-MechanicalSoup

(adam)

py-MechanicalSoup: updated to 1.2.0

Version 1.2
===========

Main changes

* Added support for Python 3.10.

* Add support for HTML form-associated elements (i.e. input elements that are
  associated with a form by a ``form`` attribute, but are not a child element
  of the form.)

Bug fixes

* When uploading a file, only the filename is now submitted to the server.
  Previously, the full file path was being submitted, which exposed more
  local information than users may have been expecting.

(adam)

py-flask-restful: updated to 0.3.10

Version 0.3.10

Compatibility with Flask 2.3

(adam)

Updated www/py-test-httpbin, devel/py-requests, math/py-roman, devel/py-test-cov

(adam)

py-test-cov: updated to 4.1.0

4.1.0 (2023-05-24)
------------------
* Updated CI with new Pythons and dependencies.
* Removed rsyncdir support. This makes pytest-cov compatible with xdist 3.0.
* Optimized summary generation to not be performed if no reporting is active (for example,
  when ``--cov-report=''`` is used without ``--cov-fail-under``).
* Added support for JSON reporting.
* Refactored code to use f-strings.
* Fixed a skip in the test suite for some old xdist.

(adam)

py-roman: updated to 4.1

4.1 (2023-05-26)
----------------
- Change license to the Zope Public License (ZPL) version 2.1

(adam)

py-requests: updated to 2.31.0

2.31.0 (2023-05-22)
-------------------

**Security**
- Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential
  forwarding of `Proxy-Authorization` headers to destination servers when
  following HTTPS redirects.

  When proxies are defined with user info (https://user:pass@proxy:8080), Requests
  will construct a `Proxy-Authorization` header that is attached to the request to
  authenticate with the proxy.

  In cases where Requests receives a redirect response, it previously reattached
  the `Proxy-Authorization` header incorrectly, resulting in the value being
  sent through the tunneled connection to the destination server. Users who rely on
  defining their proxy credentials in the URL are *strongly* encouraged to upgrade
  to Requests 2.31.0+ to prevent unintentional leakage and rotate their proxy
  credentials once the change has been fully deployed.

  Users who do not use a proxy or do not supply their proxy credentials through
  the user information portion of their proxy URL are not subject to this
  vulnerability.

  Full details can be read in our [Github Security Advisory](https://github.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q)
  and [CVE-2023-32681](https://nvd.nist.gov/vuln/detail/CVE-2023-32681).

(adam)

py-test-httpbin: updated to 2.0.0

Version 2.0.0!

This is a major release since it drops comparability with some older versions of python.
Huge thanks to @graingert for bringing pytest-httpbin into the modern world!

Drop support for Python 2.6, 2.7, 3.4, 3.5 and 3.6
Add support for Python 3.7, 3.8, 3.9 and 3.10
Avoid deprecation warnings and resource warnings
Add support for Python 3.11 and 3.12, drop dependency on six

(adam)

Updated www/py-websocket-client, net/py-prometheus_client

(adam)

py-prometheus_client: updated to 0.17.0

0.17.0

[ENHANCEMENT] Add additional typing.
[BUGFIX] Fix typo in python_gc_objects_collected metadata.
[BUGFIX] Do not include .pyc files in the build wheel.

(adam)

py-websocket-client: updated to 1.5.2

1.5.2
- Add typehints
- Fix pytype errors
- Fix args passed to logging function
- Standardize PEP 3101 formatting (c6a445f)
- Add more verbose exception for unsuccessful handshake

(adam)

Updated lang/elixir, net/wireshark

(adam)

wireshark: updated to 4.0.6

Wireshark 4.0.6 Release Notes

What’s New

We do not ship official 32-bit Windows packages for Wireshark 4.0 and
later. If you need to use Wireshark on that platform, we recommend
using the latest 3.6 release. Issue 17779[1]

If you’re running Wireshark on macOS and upgraded to macOS 13 from an
earlier version, you will likely have to open and run the “Uninstall
ChmodBPF” package, then open and run “Install ChmodBPF” in order to
reset the ChmodBPF Launch Daemon. Issue 18734[2].

Bug Fixes

  The following vulnerabilities have been fixed:

    • wnpa-sec-2023-12[3] Candump log file parser crash. Issue
      19062[4]. CVE-2023-2855[5].

    • wnpa-sec-2023-13[6] BLF file parser crash. Issue 19063[7].
      CVE-2023-2857[8].

    • wnpa-sec-2023-14[9] GDSDB dissector infinite loop. Issue
      19068[10].

    • wnpa-sec-2023-15[11] NetScaler file parser crash. Issue
      19081[12]. CVE-2023-2858[13].

    • wnpa-sec-2023-16[14] VMS TCPIPtrace file parser crash. Issue
      19083[15]. CVE-2023-2856[16].

    • wnpa-sec-2023-17[17] BLF file parser crash. Issue 19084[18].
      CVE-2023-2854[19].

    • wnpa-sec-2023-18[20] RTPS dissector crash. Issue 19085[21].
      CVE-2023-0666[22].

    • wnpa-sec-2023-19[23] IEEE C37.118 Synchrophasor dissector crash.
      Issue 19087[24]. CVE-2023-0668[25].

    • wnpa-sec-2023-20[26] XRA dissector infinite loop. Issue
      19100[27].

  The following bugs have been fixed:

    • Conversations list has incorrect unit (bytes) in bit speed
      columns in the 3.7 development versions. Issue 18211[28].

    • The media_type table should treat media types, e.g.
      application/3gppHal+json, as case-insensitive. Issue 18611[29].

    • NNTP dissector bug. Issue 18981[30].

    • Incorrect padding in BFCP decoder. Issue 18890[31].

    • SPNEGO dissector bug. Issue 18991[32].

    • SRT values are incorrect when applying a time shift. Issue
      18999[33].

    • Add warning that capturing is not supported in Wireshark
      installed from flatpak. Issue 19008[34].

    • Opening Wireshark with -z io,stat option. Issue 19042[35].

    • batadv dissector bug. Issue 19047[36].

    • radiotap-gen build fails if pcap is not found. Issue 19059[37].

    • [UDS] When filtering the uds.wdbi.data_identifier or
      uds.iocbi.data_identifier field is interpreted as 1 byte whereas
      it consists of 2 bytes. Issue 19078[38].

    • Wireshark can’t save this capture in that format. Issue
      19080[39].

    • MSMMS parsing buffer overflow. Issue 19086[40].

    • USB HID parser shows wrong label for usages Rx/Vx/Vbrx of usage
      page Generic Desktop Control. Issue 19095[41].

    • "Follow → QUIC Stream" mixes data between streams. Issue
      19102[42].

New and Updated Features

  The media type dissector table now properly treats media types and
  subtypes as case-insensitive automatically, per RFC 6838. Media types
  no longer need to be lower cased before registering or looking up in
  the table.

Removed Features and Support

New Protocol Support

  There are no new protocols in this release.

Updated Protocol Support

  batadv, BFCP, CommunityID, COSE, GDSDB, H.265, HTTP, ILP, ISAKMP,
  MSMMS, NNTP, NR RRC, NTLMSSP, QUIC, RTPS, SPNEGO, Synphasor, TCP,
  UDS, ULP, USB HID, and XRA

(adam)

elixir: updated to 1.14.5

v1.14.5 (2023-05-22)

This release contains fixes for Erlang/OTP 26.

Bug fixes

Elixir
* [CLI] Fix a bug where stdout would block when there was no attached terminal on Windows when running on Erlang/OTP 26

Mix
* [Mix] Properly set SSL configuration for Mix downloads when running on Erlang/OTP 26

(adam)

Updated devel/py-cython, devel/meson

(adam)

libproxy: fix testing on Darwin

(adam)

meson: updated to 1.1.1

1.1.1
No changelog

(adam)

py-cython: updated to 0.29.35

0.29.35 (2023-05-24)

Bugs fixed
----------
* A garbage collection enabled subtype of a non-GC extension type could call into the
  deallocation function of the super type with GC tracking enabled.  This could lead
  to crashes during deallocation if GC was triggered on the type at the same time.
* Some C compile failures and crashes in CPython 3.12 were resolved.
* ``except + nogil`` was syntactically not allowed.
  ``except +nogil`` (i.e. defining a C++ exception handling function called ``nogil``)
  is now disallowed to prevent typos.
* A C compile failure in PyPy 3.10 was resolved.
* API header files generated by different Cython versions can now be included in the
* Function signatures containing a type like `tuple[()]` could not be printed.

(adam)

Updated databases/py-apsw, www/curl

(adam)

curl: updated to 8.1.1

curl and libcurl 8.1.1

This release includes the following bugfixes:

o cf-socket: completely remove the disabled USE_RECV_BEFORE_SEND_WORKAROUND [12]
o checksrc: disallow spaces before labels [16]
o cmake: avoid `list(PREPEND)` for compatibility [24]
o cmake: repair cross compiling [10]
o configure: fix --help alignment [9]
o configure: generate a script to run the compiler [11]
o curl_easy_getinfo: clarify on return data types [15]
o docs: document that curl_url_cleanup(NULL) is a safe no-op [4]
o hostip: move easy_lock.h include above curl_memory.h [14]
o http2: double http request parser max line length [8]
o http2: increase stream window size to 10 MB [22]
o http2: upload improvements [21]
o lib: fix conversion warnings with gcc on macOS
o lib: rename struct 'http_req' to 'httpreq' [23]
o ngtcp2: fix compiler warning about possible null-deref [3]
o ngtcp2: proper handling of uint64_t when adjusting send buffer [1]
o os400: update chkstrings.c [2]
o runtests: handle interrupted reads from IPC pipes
o runtests: use the correct fd after select [20]
o sectransp.c: make the code c89 compatible [17]
o select: avoid returning an error on EINTR from select() or poll() [5]
o test425: fix the log directory for the upload
o url: provide better error message when URLs fail to parse [18]
o urlapi: allow numerical parts in the host name [7]
o vquic.c: make recvfrom_packets static, avoid compiler warning [6]

(adam)

py-apsw: updated to 3.42.0.0

3.42.0.0

SQLITE_ENABLE_COLUMN_METADATA is enabled when installing APSW from PyPI (binary or source). (APSW issue 435)

Type stubs and typing information in the documentation use newer Python conventions such as | instead of Union and list instead of typing.List, being more concise and readable. (A recent Python is required to use them, but they have no effect at runtime.) (APSW issue 438)

Shell: Errors when SQLite are preparing a statement now show the relevant extract of the query, and where the error was detected.

Shell: Output modes table (ASCII line drawing, lots of sanitization), box (Unicode line drawing) and qbox (box with quoted values) available. Python 3.7+ (APSW issue 420)

Shell: if started interactively then box is the default mode (list remains the default in non-interactive)

Added Connection.pragma() to execute pragmas and get results. (APSW issue 432)

Added Cursor.get returning query results with the least amount of structure. (APSW issue 389)

Fixed execution tracers should return comment text for comment only queries, and add Cursor.has_vdbe. (APSW issue 433)

Ensure that all applicable options are implemented for apsw.config(), Connection.config() and similar. (APSW issue 431)

Added apsw.sleep() (APSW issue 419)

Strings for apsw.VFS.xNextSystemCall() are interned avoiding memory leaks. (APSW issue 430)

Detect unbound recursion not handled by CPython, and handle better. (APSW issue 425)

(adam)

Updated databases/mysql57-client, databases/mysql57-server

(adam)

mysql57: updated to 5.7.42

Changes in MySQL 5.7.42

Functionality Added or Changed

Important Change: The linked OpenSSL library for MySQL Server has been updated to version 1.1.1t. Issues fixed in OpenSSL version 1.1.1t are described at https://www.openssl.org/news/cl111.txt.

The linked curl library for MySQL Server (Enterprise Edition) has been updated to version 7.88.1.

Bugs Fixed

InnoDB: Prevent online DDL operations from accessing out-of-bounds memory.

Replication: Some binary log events were not always handled correctly.

Replication: Setting binlog_order_commits to OFF could lead to a missed GTID in the next binary log file's Previous_gtids event.

Our thanks to Yewei Xu and the Tencent team for the contribution.

A client setting the character set to an impermissible client character set (ucs2, utf16, utf16le, or utf32) could cause unexpected behavior when the client used an authentication plugin.

The scope of the connect_timeout limit was extended to full-packet reads.

Using --single-transaction with mysqldump version 5.7.41 required either the RELOAD or FLUSH_TABLES privilege. This requirement now applies only when both gtid_mode=ON (default OFF) and with --set-gtid-purged = ON|AUTO (default AUTO).

(adam)

Updated devel/py-maturin, www/py-httpcore

(adam)

py-httpcore: updated to 0.17.2

0.17.2 (May 23th, 2023)

- Add `socket_options` argument to `ConnectionPool` and `HTTProxy` classes.
- Improve logging with per-module logger names.
- Add `sni_hostname` request extension.
- Resolve race condition during import of `anyio` package.
- Enable TCP_NODELAY for all synchronous sockets.

(adam)

py-maturin: updated to 1.0.0

v1.0.0
Add support for multiple --config-settings in PEP517 backend
Remove deprecated --universal2 cli option

(adam)

Updated sysutils/ansible, textproc/py-xlsxwriter

(adam)

py-xlsxwriter: updated to 3.1.1

Release 3.1.1
* Add support for new Excel dynamic functions added in 2023.
* Added support for adding a color to the `invert_if_negative` chart option.

(adam)

ansible: updated to 7.6.0

7.6.0

Major Changes

community.postgresql
- postgresql_privs - the ``password`` argument is deprecated and will be removed in community.postgresql 4.0.0, use the ``login_password`` argument instead (https://github.com/ansible-collections/community.postgresql/issues/406).

infoblox.nios_modules
- Added Grid Master Candidate feature
- Added Member Assignment to network and ranges
- Added NIOS Range module with Create, Update and Delete features
- Fixes issue unable to update/delete EAs using Ansible plugin
- Fixes static and dynamic allocation of IPV4 address of A Record
- Fixes to Update host name of  NIOS member
- Updates default WAPI version to 2.9

(adam)

Updated audio/opencore-amr, audio/fdk-aac

(adam)

fdk-aac: updated to 2.0.2

2.0.2
- Minor upstream updates
- Lots of upstream and local fuzzing fixes
- Added CMake project files
- Removed the MSVC specific makefile

2.0.1
- Minor release with a number of crash/fuzz fixes, primarily for the decoder

2.0.0
- Major update in the upstream source base, with support for new
  profiles and features, and numerous crash/fuzz fixes. The new
  upstream version is referred to as FDKv2, thus skipping the
  major version 1 and syncing the fdk-aac major version number to 2.

(adam)

opencore-amr: updated to 0.1.6

0.1.6
- Fixed an infinite loop when decoding some AMR-NB samples
- Fixed noise spikes when decoding non-voice frames for both AMR-NB and AMR-WB

(adam)

Updated devel/py-coverage, devel/py-test-xdist

(adam)

py-test-xdist: updated to 3.3.1

pytest-xdist 3.3.1 (2023-05-19)

Bug Fixes
- Avoid remote calls during startup as ``execnet`` by default does not ensure remote affinity with the
  main thread and might accidentally schedule the pytest worker into a non-main thread, which breaks numerous frameworks,
  for example ``asyncio``, ``anyio``, ``PyQt/PySide``, etc.

  A more safe correction will require thread affinity in ``execnet``

pytest-xdist 3.3.0 (2023-05-12)

Features
- Improved progress output when collecting nodes to be less verbose.

(adam)

py-coverage: updated to 7.2.6

Version 7.2.6 — 2023-05-23
--------------------------

- Fix: the ``lcov`` command could raise an IndexError exception if a file is
  translated to Python but then executed under its own name.  Jinja2 does this
  when rendering templates.  Fixes `issue 1553`_.

- Python 3.12 beta 1 now inlines comprehensions.  Previously they were compiled
  as invisible functions and coverage.py would warn you if they weren't
  completely executed.  This no longer happens under Python 3.12.

- Fix: the ``coverage debug sys`` command includes some environment variables
  in its output.  This could have included sensitive data.  Those values are
  now hidden with asterisks, closing `issue 1628`_.

(adam)

Updated databases/mysql80-client, databases/mysql80-server

(adam)

mysql80: updated to 8.0.33

8.0.33

Functionality Added or Changed

Important Change: For platforms on which OpenSSL libraries are bundled, the linked OpenSSL library for MySQL Server has been updated to version 1.1.1t. Issues fixed in OpenSSL version 1.1.1t are described at https://www.openssl.org/news/cl111.txt.

Replication: As part of ongoing work to change old terminology used in MySQL products, the terms ���master���, ���slave���, and ���MTS��� have been replaced in error messages relating to MySQL Replication by ���source���, ���replica���, and ���MTA���, respectively. This includes all error messages listed in messages_to_clients.txt and messages_to_error_log.txt relating to replication; the present task does not perform this replacement for messages used in other contexts.

See the MySQL 8.0 Error Message Reference, for more information.

Replication: mysqlbinlog --start-position now accepts values up to 18446744073709551615, unless the --read-from-remote-server or --read-from-remote-source option is also used, in which case the maximum is 4294967295.

Binary packages that include curl rather than linking to the system curl library have been upgraded to use curl 7.88.1.

The use of a generated column with DEFAULT(col_name) to specify the default value for a named column is not permitted and now emits an error message.

Bugs Fixed

NDB Cluster: Occasional temporary errors which could occur when opening a table from the NDB dictionary while repeatedly performing concurrent schema operations were not retried.

NDB Cluster: During iteration, ordered index scans retain a cursor position within each concurrently scanned ordered index fragment. Ordered index fragments are modified and balanced as a result of committing DML transactions, which can require scan cursors to be moved within the tree. When running with query threads configured (AutomaticThreadConfig set to 1), multiple threads can access the same index fragment tree structure, and the scans of multiple threads can have their cursors present in the same structure.

The current issue arose due to an assumption in the logic for moving scan cursors when committing DML operations that all scan cursors belonged to the LDM thread owning the index fragment, which did not allow for the possibility that such fragments might belong to query threads.

InnoDB: Dead code removal.

InnoDB: Error messages related to innodb_doublewrite moved to the error log.

InnoDB: Prevent online DDL operations from accessing out-of-bounds memory.

InnoDB: ALTER TABLE ... AUTO_INCREMENT could be set to less than MAX + 1 and not forced to MAX + 1.

InnoDB: Innodb_data_pending_fsyncs could show extremely high inaccurate values because of a variable overflow.

Partitioning: Some IN() queries on partitioned tables were not always handled correctly.

Partitioning: Queries using the INDEX_MERGE optimizer hint was not handled correctly in all cases.

Replication: XA transactions whose XIDs contained null bytes could not be recovered.

Replication: When binlog_order_commits was set equal to 1, for any two transactions and for any sub-step of the commit phase, the transaction that was written to the binary log first did not always execute the sub-step first, as expected.

Replication: The binary log recovery process did not report all possible error states.

Replication: Following CHANGE REPLICATION SOURCE TO SOURCE_CONNECTION_AUTO_FAILOVER=1, failover generated a number of misleading warnings in the log that implied there were problems when in fact conditions were those expected for such a failover. These log messages have been updated accordingly.

Replication: When a transaction failed, as a side effect, extraneous error messages relating the replication data repositories were written to the log. Now in such cases, we suppress such error messages, which are not directly related to the issue of the failed transaction or its cause.

Replication: Setting binlog_order_commits to OFF could lead to a missed GTID in the next binary log file's Previous_gtids event.

Our thanks to Yewei Xu and the Tencent team for the contribution.

Replication: Corrected the SQL statements suggested in the error message text for ER_RPL_REPLICA_ERROR_RUNNING_QUERY.

Our thanks to Dan McCombs for the contribution.

Replication: A hash scan builds a hash of changes, scans the target table or index, and applies any matching change for the current entry. In the build phase, it uses only the before image, and skips any after image. Problems arose in some cases because generated columns were computed for the (skipped) after image, leading to replication errors. This is fixed by not computing generated columns any longer for seek-only calls such as hash scans.

Our thanks to dc huang for the contribution.

Replication: In certain rare cases, it was possible to set gtid_mode=OFF for one session while another session, after WAIT_FOR_EXECUTED_GTID_SET() was issued by a user in this second session, was still waiting for the next GTID set from the first session. This could result in the second session waiting indefinitely for the function to return.

Group Replication: Accessing the Performance Schema replication_group_communication_information and replication_group_member_stats tables in parallel sometimes caused subsequent group replication operations to hang.

Group Replication: In certain cases, the group replication secondary node unexpectedly shut down while purging the relay log.

Group Replication: When shutting down the Group Replication plugin, the order in which the associated events were reported the error log sometimes led to confusion. To remove any doubts, we now make sure that Plugin group_replication reported: 'Plugin 'group_replication' has been stopped. is in fact the last log message relating to the shutdown, written only when all other events associated with shutting down the plugin have been logged.

Microsoft Windows: The authentication_fido_client plugin stopped responding during the authentication process if it was unable to find a FIDO device on the Windows client host.

In certain cases, CONVERT(utf8mb3_column USING UTF16) was rejected with the error Cannot convert string '\x--...' from binary to utf16.

When joining two tables on a string column, and the column from one of the tables has an additional predicate comparing it with a temporal literal, constant propagation in some cases incorrectly caused the join condition to be modified such that it used temporal rather than string semantics when comparing the strings. This caused incorrect results to be returned from the join.

Error messages returned after calling the mysql_reset_connection() C API function in a prepared statement did not identify the function name properly.

Fixed a regression in a previous fix for an issue with windowing functions.

Our thanks to Dmitry Lenev for the contribution.

When replacing subqueries in transforms, the internal flag showing whether a given query block contains any subqueries (PROP_SUBQUERY) was not updated afterwards.

A client setting the character set to an impermissible client character set (ucs2, utf16, utf16le, or utf32) could cause unexpected behavior when the client used an authentication plugin.

EXPLAIN ANALYZE displayed 0 when the average number of rows was less than 1. To fix this, we now format numbers in the output of EXPLAIN ANALYZE and EXPLAIN FORMAT=TREE such that numbers in the range 0.001-999999.5 are printed as decimal numbers, and numbers outside this range are printed using engineering notation (for example: 1.23e+9, 934e-6). In addition, trailing zeroes are no longer printed, and numbers less than 1e-12 are printed as 0.

This helps ensure consistent precision regardless of the number's value and improve readability, while producing minimal rounding errors.

The NTILE() function did not work correctly in all cases.

Some joins on views did not perform correctly.

Transforming a correlated scalar subquery to a derived table led to a wrong result for InnoDB tables when the subquery included duplicate predicates. An example of a query which could be affected by this issue is shown here:

SELECT * FROM t1
WHERE (
  SELECT t2.a FROM t2
  WHERE t2.a = t1.a AND t2.a = t1.a
    ) > 0;

Fixed an assert in sql/item_strfunc.cc that could potentially lead to issues with the SPACE() function.

Using ROW_COUNT() as the length argument to LPAD() or RPAD() did not perform as expected.

A query with a window function having an expression with a CASE function in its ORDER BY clause could lead to a server exit.

The fix for a previous issue introduced an assertion in debug builds when optimizing a HAVING clause.

When using mysqld_multi, the system that obscures "--password" usage as "--password=*****" would also match "--password-history" and "--password-require-current" definitions as "--password", but now explicitly checks for "--password=" instead.

In some cases, calling the mysql_bind_param() C API function could cause the server to become unresponsive.

The authentication_oci_client plugin was unable to open a valid configuration file if any of its entries contained an equals sign character separated by spaces (for example, key_file = /home/user/.oci/oci_api_key.pem). Now, both 'key=value' and 'key = value' entry formats are supported.

Incorrect results were returned when the result of an INTERSECT or EXCEPT operation was joined with another table. This issue affected these operations in such cases when used with either DISTINCT or ALL.

When preparing a view query, the operation used the system character set (instead of the character set stored in data dictionary) and then reported an invalid character-string error.

Prepared statements that operate on derived tables, including views, could stop unexpectedly due to problems with the code for reopening tables after an error.

Removed an assertion raised in certain cases by the RANDOM_BYTES() function in debug builds.

There was an issue in how persisted variables were set on startup, causing certain variables not to get properly set to their persisted value.

The MAKETIME() function did not perform correctly in all cases.

Some functions with multiple arguments did not produce the expected results.

A table reference in an ORDER BY outside the parenthesized query block in which the table was used, and which query block had no LIMIT or ORDER BY of its own, raised an error.

A left join with an impossible condition as part of an ON clause was not optimized as in MySQL 5.7, so that in MySQL 8.0, the query executed more quickly without the impossible condition than with it. An example of such a query, impossible condition included, is SELECT * FROM t1 JOIN t2 ON t1.c1=t2.c1 AND 1=2.

When a user defined function was part of a derived table that was merged into the outer query block, or was part of a subquery converted to a semi-join, knowledge of whether this UDF was deterministic (or not) was lost during processing.

With JSON logging enabled and an event subclass specified in the audit log filter definition, an empty item ("" : { }) was appended to the end of the logged event.

Some subqueries did not execute properly.

After the asymmetric_encrypt() component function in a SELECT query encountered a NULL field to decrypt, it could return NULL values for other non-NULL encrypted fields.

The server did not always shut down cleanly after uninstalling the audit log plugin.

Certain antijoins were not handled correctly by the server.

When the MySQL 5.7 Optimizer has 2 choices for an index to filter rows, one primary and one secondary, it picks a range scan on the secondary index because the range scan uses more key parts. MySQL 8.0 did not use this logic, instead choosing the primary index to filter rows with WHERE clause filtering. Primary key use is not suitable in such cases due to the presence of LIMIT, and due to the nature of data distribution. The secondary index was not considered while resolving order by due to constant elimination. This resulted in much different query plans in MySQL 5.7 and MySQL 8.0 for the same query.

We solve this issue in MySQL 8.0 by skipping the constant key parts of the index during order-by evaluation only if the query is constant-optimized, which can be done at this time, but not during LIMIT analysis.

The MySQL data dictionary caches failed lookups of se_private_id values (IDs which are not found), which speeds up execution of code specific to InnoDB, relying on the fact that InnoDB does not reuse these IDs. This assumption does not necessarily hold for other storage engines, most notably NDB, where this problem was resolved previously by not using this cache.

We extend the previous fix made for NDB so that the cache lookup is now employed only when the table uses the InnoDB storage engine.

Unexpected results were seen in some queries using DENSE_RANK(), possibly with the addition of WITH ROLLUP.

Fixed an assert raised in sql/sql_tmp_table.cc following work done previously to reimplement ROLLUP processing.

Some CTEs that did not use any tables were not always handled correctly.

Accessing rows from a window frame of a window function call present only in the query's ORDER BY list raised an error.

PERCENT_RANK() used with ORDER BY column did not return the correct result.

The --exclude-tables and --include-tables mysqlpump options did not handle views.

Changed the MySQL systemd service unit configuration from After=network-online.target to Wants=network-online.target to ensure that all configured network devices are available and have an IP address assigned before the service is started.

AVG(...) OVER (ROWS BETWEEN 1 FOLLOWING AND UNBOUNDED FOLLOWING) did not return the correct result.

A query of the form SELECT 1 FROM t1 WHERE NOT EXISTS (VALUES ROW(1), ROW(2)) caused an assert in debug builds when the subquery_to_derived optimizer switch was enabled.

mysqlimport did not escape reserved word table names when used with the --delete option.

When cloning a condition to push down to a derived table, characters in strings representing conditions were converted to utfmb4 correctly only for values less than 128 (the ASCII subset), and code points outside the ASCII subset were converted to invalid characters, causing the resulting character strings to become invalid. For derived tables without UNION, this led to problems when a column name from the derived table used characters outside the ASCII subset, and was used in the WHERE condition. For derived tables with UNION, it created problems when a character outside the ASCII subset was present in a WHERE condition.

We fix these issues by initializing the string used for representing the condition in such cases to the connection character set.

Using --single-transaction with mysqldump version 8.0.32 required either the RELOAD or FLUSH_TABLES privilege. This requirement now applies only when both gtid_mode=ON (default OFF) and with --set-gtid-purged = ON|AUTO (default AUTO).

Fixed a number of issues present in the internal documentation for the scramble generator algorithm in sha256_scramble_generator.cc and sha2_password_common.cc.

Our thanks to Niklas Keller for the contribution.

CREATE USER IF NOT EXISTS added a password history entry even when the user already existed and the password was not updated. This caused a subsequent ALTER USER statement to be rejected.

Many joins using eq_ref access did not perform as well as in previous versions. This issue was first reported in MySQL 8.0.29.

A hash outer join sometimes incorrectly matched NULL with a decimal zero or an empty string that used a non-padding collation, leading to erroneous results.

An object used internally by ALTER INSTANCE RELOAD TLS was not freed until the number of readers reached 0, under the assumption is that the number of readers should reach 0 fairly frequently. The read lock held during an SSL handshake is generally an expensive operation, with network calls, so when roundtrips between the client and the server took excessively long, the lock was held for a relatively long amount of time. This meant that, when changing the value of this object and there were a sufficient number of incoming SSL connections being made, the number of readers might not reach 0 in a reasonable length of time, leaving the thread holding the lock using 100% of the CPU until the lock was released.

We fix this by adding a wait after setting the pointer to this object to a new value, but before releasing the old object.

Our thanks to Sinisa Milivojevic for the contribution.

If mysqldump or mysqlpump could not convert a field's default value to UTF-8 (for instance, if the field was of type BINARY and the default value did not coincide with valid UTF-8), the operation produced results that were not valid to import. Further, using the --hex-blob option did not resolve the issue. We now convert the default value to the system character set. If this fails, the server sends the value as hexadecimal instead to make it more human-readable.

A connection using the C API (libmysqlclient) client library could fail with the FUTURE crypto policy.

While cloning a temporary table for a common table expression which used shared materialization, the cloned temp table was not marked as using hash deduplication, leading to wrong results. We now set the hash field for the cloned temporary table correctly, and update the hidden field count to take this into account.

CREATE EVENT and ALTER EVENT assumed that all values passed to them (other than in a DO clause) resolved as scalars without actually checking the values. This led to assertions when any such values actually rows.

We now perform an explicit check for the number of columns when resolving such items, and report an error when one produces a row and not a scalar value.

A view reference whose underlying field is a constant is not marked as constant when the reference is part of an inner table of an outer join. It was found that, when pushing a condition down to a derived table, the reference was stripped off and only the underlying field was cloned, which made it a constant, and led to wrong results.

To fix this problem, we ensure that we do not push such a condition down to the derived table by adding a check to see first whether the table used by the condition matches the derived table or is a constant expression; only when it is one or the other of these do we actually push the condition down.

(adam)

Updated devel/py-types-setuptools, devel/py-types-ujson, textproc/py-types-yaml, textproc/py-yamllint

(adam)

py-yamllint: updated to 1.32.0

1.32.0 (2023-05-22)
- Look for configuration file in parent directories
- Rule ``anchors``: add new option ``forbid-unused-anchors``

(adam)

py-types-yaml: updated to 6.0.12.10

6.0.12.10
Improve dump/serialize types

* Add overloads to return `str` or `bytes`, instead of `Any`.
* Mark some arguments as keyword-only.
* Add missing default values.

(adam)

py-types-ujson: updated to 5.7.0.5

5.7.0.5
Convert the remaining ujson uses of AnyStr

(adam)

py-types-setuptools: updated to 67.8.0.0

67.8.0.0
Bump setuptools to 67.8.*

(adam)

Updated devel/py-maturin, devel/py-dogpile-cache

(adam)

py-dogpile-cache: updated to 1.2.1

1.2.1
Added py.typed file to root so that typing tools such as Mypy recognize dogpile as typed.

(adam)

py-maturin: updated to 0.15.3

v0.15.3
Fix cross-compile to Apple universal2 in the other platform
Remove serde(flatten) to improve error messages
Allow syn 2.0
describe the need for module-name
Fix cargo test failures in devcontainer
Add PEP 517 config_settings support
Keep file mode on Unix

v0.15.2
Add a unit test for PythonInterpreter::find_by_target
Try GitHub Actions merge queue
Skip git sdist generator tests when executing from a non-git checkout
Publish maturin itself using trusted publisher
Remove bors
When determining the python module name, use pyproject.toml project.name over Cargo.toml package.name.
Warn on missing python-source contents
Fix rewriting dev-dependencies in sdist

(adam)

Updated sysutils/py-sh, devel/py-dotenv

(adam)

py-dotenv: updated to 1.0.0

1.0.0

**Fixed**

* Drop support for python 3.7, add python 3.12-dev
* Handle situations where the cwd does not exist.

(adam)

py-sh: updated to 2.0.4

2.0.4 - 5/13/22

- Allow `ok_code` to be used with `fg`
- Make sure `new_group` never creates a new session

2.0.2 / 2.0.3 (misversioned) - 2/13/22

- Performance regression when using a generator with `_in`
- Adding test support for python 3.11

2.0.0 - 2/9/22

- Executed commands now return a unicode string by default
- Removed magical module-like execution contexts
- Added basic asyncio support via `_async`
- Dropped support for Python < 3.8
- Bumped default tty size to more standard (24, 80)
- First argument being a RunningCommand no longer automatically passes it as stdin
- `RunningCommand.__eq__` no longer has the side effect of executing the command
- `_tee` now supports both "err" and "out"
- Removed the builtin override `cd`
- Altered process launching model to behave more expectedly
- Bugfix where `_no_out` isn't allowed with `_iter="err"`
- Allow keyword arguments to have a list of values

(adam)

Added devel/blosc2; Updated devel/py-faker

(adam)

py-faker: updated to 18.9.0

v18.9.0
* Add `xml` provider.

v18.8.0
* Add `zh_CN` bank locale.

(adam)

blosc2: added version 2.9.2

Blosc is a high performance compressor optimized for binary data (i.e. floating
point numbers, integers and booleans, although it can handle string data too).
It has been designed to transmit data to the processor cache faster than the
traditional, non-compressed, direct memory fetch approach via a memcpy() OS
call. Blosc main goal is not just to reduce the size of large datasets on-disk
or in-memory, but also to accelerate memory-bound computations.

C-Blosc2 is the new major version of C-Blosc, and is backward compatible with
both the C-Blosc1 API and its in-memory format. However, the reverse thing is
generally not true for the format; buffers generated with C-Blosc2 are not
format-compatible with C-Blosc1 (i.e. forward compatibility is not supported).
In case you want to ensure full API compatibility with C-Blosc1 API, define the
BLOSC1_COMPAT symbol.

(adam)

Updated net/libtorrent-rasterbar, devel/ccache

(adam)

ccache: updated to 4.8.1

Ccache 4.8.1

Bug fixes
Fixed an issue with the depend mode in combination with -- on the command line for Clang-based compilers.
Improved knowledge about MSVC debug flags so that non-debug /Z* options are once again supported.
Ccache no longer treats /Zi as unsupported for clang-cl.
Made the output format of ccache -k max_size parsable by ccache itself.

Build/CI improvements
Corrected ccache version in the macOS binary release.
Made it possible to build ccache with clang-cl on Windows.
Upgraded to doctest 2.4.11, thereby fixing a build issue on Solaris.

Documentation improvements
Added a remote file storage example with URL-encoded spaces.

(adam)

libtorrent-rasterbar: updated to 2.0.9

libtorrent-2.0.9

fix issue with web seed connections when they close and re-open
fallocate() not supported is not a fatal error
fix proxying of IPv6 connections via IPv4 proxy
treat CGNAT address range as local IPs
add stricter checking of piece layers when loading torrents
add stricter checking of v1 and v2 hashes being consistent
cache failed DNS lookups as well as successful ones
add an i2p torrent state to control interactions with clear swarms
fix i2p SAM protocol parsing of quoted messages
expose i2p peer destination in peer_info
fix i2p tracker announces
fix issue with read_piece() stopping torrent on pieces not yet downloaded
improve handling of allow_i2p_mixed setting to work for magnet links
fix web seed request for renamed single-file torrents
fix issue where web seeds could disappear from resume data
extend save_resume with additional conditional flags
fix issue with retrying trackers in tiers > 0
fix last_upload and last_download resume data fields to use posix time
improve error messages for no_connect_privileged_ports, by untangle it from the port filter
fix I2P issue introduced in 2.0.0
add async tracker status query, post_trackers()
add async torrent status query, post_status()
support loading version 2 of resume data format
fix issue with odd piece sizes
add async piece availability query, post_piece_availability()
add async download queue query, post_download_queue()
add async file_progress query, post_file_progress()
add async peer_info query, post_peer_info()

(adam)

Updated devel/py-pylint-plugin-utils, net/py-tldextract, sysutils/py-ansible-compat, sysutils/ansible-lint

(adam)

ansible-lint: updated to 6.16.2

v6.16.2

Bugfixes

Update test dependencies
Fix and document installing of requirements.yml files
Do not ever exclude files given as arguments
Ensure we return error if argument gives are not present
Allow rules to expose all tags they can produce
Enable var-name rule to detect read-only variables
Add Oracle Enterprise Linux 7.*
Fix for var-naming rule to not break on include_tasks and vars
var-naming now prevents use of Ansible reserved names
Ensure that we also lint files from git submodules
Adding 2.16 to the list of allowed ansible-core versions in meta-runtime rule

(adam)

py-ansible-compat: updated to 4.0.5

v4.0.5

Bugfixes

Improve requirements.yml detection

(adam)

py-tldextract: updated to 3.4.4

3.4.4
Bugfixes
  * Honor private domains flag on `self`, not only when passed to `__call__`

(adam)

py-pylint-plugin-utils: updated to 0.8.2

0.8.2

Removing the LICENSE and README files from the project include section, as this
had unintended consequences of installing them into the site-packages directory
instead of along side the package code. This is related to
python-poetry/poetry-2015 . Since the LICENSE is available in the dist-info
directory along side the package, then this is sufficient.

Additionally, the python version classifiers will be automatically added by
poetry from the version range specification in the tool.poetry.dependencies
section, so no need to explicitly define them.

(adam)

Updated devel/libuv, devel/py-pylint-plugin-utils

(adam)

py-pylint-plugin-utils: updated to 0.8.1

0.8
Updating CI config with poetry packaging

(adam)

libuv: updated to 1.45.0

Version 1.45.0 (Stable)

Changes since version 1.44.2:

* win: remove stdint-msvc2008.h (Ben Noordhuis)
* android: remove pthread-fixes.c (Ben Noordhuis)
* build: enable MSVC_RUNTIME_LIBRARY setting (自发对称破缺)
* unix: switch to c11 atomics (Ben Noordhuis)
* unix: don't accept() connections in a loop (Ben Noordhuis)
* win: fix off-by-1 buffer overrun in uv_exepath() (Ben Noordhuis)
* build: switch ci from macos-10.15 to macos-11 (Ben Noordhuis)
* win: fix thread race in uv_cwd() and uv_chdir() (Ben Noordhuis)
* unix,win: remove UV_HANDLE_SHUTTING flag (Santiago Gimeno)
* win: support Windows 11 in uv_os_uname() (Luan Devecchi)
* unix: fix uv_getrusage() ru_maxrss reporting (Ben Noordhuis)
* doc: add note about offset -1 in uv_fs_read/write (Steven Schveighoffer)
* test: fix musl libc.a dlerror() test expectation (Ben Noordhuis)
* kqueue: DRY file descriptor deletion logic (Ben Noordhuis)
* linux: teach uv_get_constrained_memory() cgroupsv2 (Ben Noordhuis)
* build: upgrade qemu-user-static package (Ben Noordhuis)
* linux: move epoll.c back into linux-core.c (Ben Noordhuis)
* unix: remove pre-macos 10.8 compatibility hack (Ben Noordhuis)
* unix,win: fix memory leak in uv_fs_scandir() (Ben Noordhuis)
* build: restore qemu download logic (Ben Noordhuis)
* win: fix uv__pipe_accept memory leak (number201724)
* doc: update LINKS.md (Daniel)
* unix: simplify atomic op in uv_tty_reset_mode() (Ben Noordhuis)
* build: add LIBUV_BUILD_SHARED cmake option (Christian Clason)
* linux: remove unused or obsolete syscall wrappers (Ben Noordhuis)
* linux: merge files back into single file (Ben Noordhuis)
* stream: process more than one write req per loop tick (ywave620)
* unix,win: give thread pool threads an 8 MB stack (Ben Noordhuis)
* build: add MemorySanitizer (MSAN) support (Ben Noordhuis)
* doc: add uv_poll_cb status==UV_EBADF note (jensbjorgensen)
* build: support AddressSanitizer on MSVC (Jameson Nash)
* win,pipe: improve method of obtaining pid for ipc (number201724)
* thread: add support for affinity (daomingq)
* include: map ENODATA error code (Ben Noordhuis)
* build: remove bashism from autogen.sh (Santiago Gimeno)
* win,tcp,udp: remove "active streams" optimization (Saúl Ibarra Corretgé)
* win: drop code checking for Windows XP / Server 2k3 (Saúl Ibarra Corretgé)
* unix,win: fix 'sprintf' is deprecated warning (twosee)
* doc: mention close_cb can be NULL (Qix)
* win: optimize udp receive performance (ywave620)
* win: fix an incompatible types warning (twosee)
* doc: document 0 return value for free/total memory (Ben Noordhuis)
* darwin: use hw.cpufrequency again for frequency info (Jameson Nash)
* win,test: change format of TEST_PIPENAME's (Santiago Gimeno)
* win,pipe: fixes in uv_pipe_connect() (Santiago Gimeno)
* misc: fix return value of memory functions (theanarkh)
* src: add new metrics APIs (Trevor Norris)
* thread: add uv_thread_getcpu() (daomingq)
* build: don't use ifaddrs.h on solaris 10 (Edward Humes)
* unix,win: add uv_get_available_memory() (Tim Besard)
* test: fix -Wunused-but-set-variable warnings (Ben Noordhuis)
* doc: bump min supported linux and freebsd versions (Ben Noordhuis)
* Add Socket Runtime to the LINKS.md (Sergey Rubanov)
* unix: drop kfreebsd support (Ben Noordhuis)
* win: fix fstat for pipes and character files (Stefan Stojanovic)
* win: fix -Wunused-variable warning (Ben Noordhuis)
* win: fix -Wunused-function warning (Ben Noordhuis)
* build: drop qemu-alpha from ci matrix (Ben Noordhuis)
* win: move child_stdio_buffer out of uv_process_t (Santiago Gimeno)
* test: fix some unreachable code warnings (Santiago Gimeno)
* linux: simplify uv_uptime() (Ben Noordhuis)
* test: unflake fs_event_watch_dir test (Ben Noordhuis)
* darwin: remove unused fsevents symbol lookups (Ben Noordhuis)
* build: add define guard around UV_EXTERN (Zvicii)
* build: add UndefinedBehaviorSanitizer support (Ben Noordhuis)
* build: enable platform_output test on qemu (Ben Noordhuis)
* linux: handle cpu hotplugging in uv_cpu_info() (Ben Noordhuis)
* build: remove unnecessary policy setting (dundargoc)
* docs: add vcpkg instruction step (Jack·Boos·Yu)
* win,fs: fix readlink errno for a non-symlink file (Darshan Sen)
* misc: extend getpw to take uid as an argument (Jameson Nash)
* unix,win: use static_assert when available (Ben Noordhuis)
* docs: delete code Makefile (Jameson Nash)
* docs: add CI for docs PRs (Jameson Nash)
* docs: update Sphinx version on RTD (Jameson Nash)
* doc: clean up license file (Ben Noordhuis)
* test: fix some warnings when compiling tests (panran)
* build,win: add mingw-w64 CI configuration (Jameson Nash)
* build: add CI for distcheck (Jameson Nash)
* unix: remove busy loop from uv_async_send (Jameson Nash)
* doc: document uv_fs_cb type (Tamás Bálint Misius)
* build: Improve build by cmake for Cygwin (erw7)
* build: add libuv:: namespace to libuvConfig.cmake (AJ Heller)
* test: fix ThreadSanitizer thread leak warning (Ben Noordhuis)
* test: fix ThreadSanitizer data race warning (Ben Noordhuis)
* test: fix ThreadSanitizer data race warning (Ben Noordhuis)
* test: fix ThreadSanitizer data race warning (Ben Noordhuis)
* test: cond-skip fork_threadpool_queue_work_simple (Ben Noordhuis)
* test: cond-skip signal_multiple_loops (Ben Noordhuis)
* test: cond-skip tcp_writealot (Ben Noordhuis)
* build: promote tsan ci to must-pass (Ben Noordhuis)
* build: add CI for OpenBSD and FreeBSD (James McCoy)
* build,test: fix distcheck errors (Jameson Nash)
* test: remove bad tty window size assumption (Ben Noordhuis)
* darwin,process: feed kevent the signal to reap children (Jameson Nash)
* unix: abort on clock_gettime() error (Ben Noordhuis)
* test: remove timing-sensitive check (Ben Noordhuis)
* unix: DRY and fix tcp bind error path (Jameson Nash)
* macos: fix fsevents thread race conditions (Ben Noordhuis)
* win: fix leak in uv_chdir (Trevor Norris)
* test: make valgrind happy (Trevor Norris)
* barrier: wait for prior out before next in (Jameson Nash)
* test: fix visual studio 2015 build error (Ben Noordhuis)
* linux: fix ceph copy error truncating readonly files (Bruno Passeri)
* test: silence more valgrind warnings (Trevor Norris)
* doc: add entries to LINKS.md (Trevor Norris)
* win,unix: change execution order of timers (Trevor Norris)
* doc: add trevnorris to maintainers (Trevor Norris)
* linux: remove epoll_pwait() emulation code path (Ben Noordhuis)
* linux: replace unsafe macro with inline function (Ben Noordhuis)
* linux: remove arm oabi support (Ben Noordhuis)
* unix,sunos: SO_REUSEPORT not valid on all sockets (Stacey Marshall)
* doc: consistent single backquote in misc.rst (Jason Zhang)
* src: switch to use C11 atomics where available (Trevor Norris)
* test: don't use static buffer for formatting (Ben Noordhuis)
* linux: introduce io_uring support (Ben Noordhuis)
* linux: fix academic valgrind warning (Ben Noordhuis)
* test: disable signal test under ASan and MSan (Ben Noordhuis)
* linux: add IORING_OP_OPENAT support (Ben Noordhuis)
* linux: add IORING_OP_CLOSE support (Ben Noordhuis)
* linux: remove bug workaround for obsolete kernels (Ben Noordhuis)
* doc: update active maintainers list (Ben Noordhuis)
* test: add ASSERT_OK (Trevor Norris)
* src: fix events/events_waiting metrics counter (Trevor Norris)
* unix,win: add uv_clock_gettime() (Ben Noordhuis)
* build: remove freebsd and openbsd buildbots (Ben Noordhuis)
* win: fix race condition in uv__init_console() (sivadeilra)
* linux: fix logic bug in sqe ring space check (Ben Noordhuis)
* linux: use io_uring to batch epoll_ctl calls (Ben Noordhuis)
* macos: update minimum supported version (Santiago Gimeno)
* docs: fix some typos (cui fliter)
* unix: use memcpy() instead of type punning (Ben Noordhuis)
* test: add additional assert (Mohammed Keyvanzadeh)
* build: export compile_commands.json (Lewis Russell)
* win,process: write minidumps when sending SIGQUIT (Elliot Saba)
* unix: constrained_memory should return UINT64_MAX (Tim Besard)
* unix: handle CQ overflow in iou ring (Santiago Gimeno)
* unix: remove clang compiler warning pragmas (Ben Noordhuis)
* win: fix mingw build (gengjiawen)
* test: fix -Wbool-compare compiler warning (Ben Noordhuis)
* win: define MiniDumpWithAvxXStateContext always (Santiago Gimeno)
* freebsd: hard-code UV_ENODATA definition (Santiago Gimeno)
* linux: work around EOWNERDEAD io_uring kernel bug (Ben Noordhuis)
* linux: fix WRITEV with lots of bufs using io_uring (Santiago Gimeno)

(adam)

Updated security/py-google-auth, sysutils/py-kubernetes

(adam)

py-kubernetes: updated to 26.1.0

v26.1.0

Kubernetes API Version: v1.26.1

Bug or Regression
- The timeout unit of the WSClient update method is now always seconds for both poll and select functions.

Feature
- Adds support for loading CA certificates from a file using the `idp-certificate-authority` key for the oidc plugin.

(adam)

py-google-auth: updated to 2.18.1

2.18.1
Bug Fixes

Self signed jwt token should be string type

(adam)

Updated devel/cmake[-gui], devel/doxygen

(adam)

doxygen: updated to 1.9.7

Release 1.9.7

Bug fixes

bug 327697 Ignores single-line /*! ... */ comment contents sometimes
bug 473140 Broken anonymous union data in XML
bug 548438 VERBATIM_HEADERS - only works with header files with file type
bug 564252 HTML output for pure virtual function with "throws()" hint is wrong
bug 594746 [html] wrong <title> value, missing title in page for "Members" pages
bug 628022 single `-` in `<pre>` busts nesting levels
bug 636706 Support regular expressions in EXCLUDE_SYMBOLS
bug 752410 make.bat on UNC paths will start to erase files from c:\windows\system32
bug_665439 FILE_VERSION_FILTER incorrectly run for file references from a tagfile with filename "<tagfile>:/my/path"
bug_676971 HIDE_SCOPE_NAMES also hides template declarations of template member functions in detail description
issue 6737 end of comment inside code block
issue 7087 Invalid (X)HTML in case of \mscfile, \dotfile, \diafile,
issue 7386 Method parameters documented inline are not present in documentation when using @copydoc
issue 8790 doxyrest command returns "duplicate member id group...",,
issue 9159 Doxygen produces ugly empty space in LaTeX and PDF output because of hypertargets
issue 9254 Markdown page subpage and treeview
issue 9319 Doc build fails with cairo 1.17.6,
issue 9368 subsubsection and beyond text rendered inline on LaTeX
issue 9668 Doxygen confused with enum class in nested namespaces
issue 9696 bug 466064 Formatting-options for $datetime
issue 9713 Variables show in "Related Functions" section
issue 9718 class diagram's width is not correct and class member appears weird,,
issue 9719 \ref command does not insert title of referenced page,,
issue 9726 \ref command doesn't perform in LaTeX as described in the documentation
issue 9756 Doxygen produces invalid output for many C interpolated strings
issue 9763 Python docstring: brief and detailed description not correctly separated by blank line
issue 9771 Escaped double-quote in Objective-C string confuses parser
issue 9779 Doxygen doesn't correctly treat nested \if statements
issue 9783 Some functions are not listed in "referenced by"
issue 9810 Math in bibliography
issue 9816 Missing search files in QCH content,
issue 9831 @exception description paragraph does not accept @ref tag,
issue 9839 Server side search is returning wrong results
issue 9845 C parser reads "$" as "Interpolated string expression" which is not correct
issue 9846 Python functions with and without type hints displayed inconsistently.
issue 9850 Link to class enum in namespace not working in file reference
issue 9852 Operator<< not parsed correctly in template class
issue 9855 HTML: TOC: Smooth scrolling
issue 9858 Markdown: Heading auto id starting with digit of minus sign
issue 9861 Links among markdown files don't work if upstream path element contains space
issue 9883 Performance issues when HAVE_DOT is YES to make \dot work, and CLASS_GRAPH=GRAPH is also used
issue 9885 References to enum member partially broken since v1.9.5
issue 9911 Support < for documenting members and variables
issue 9921 HIDE_SCOPE_NAMES does not hide names in treeview
issue 9932 Incomplete Style.css
issue 9935 Doxygen WARN_LOGFILE needs to create folder
issue 9942 warning: Member try (variable) of namespace lib_validation is not documented.
issue 9947 Attributes resulting of an unpacked tuple are not documented (Python),,,
issue 9950 PlantUML is not fully supported in markdown fenced code blocks
issue 9963 [VHDL] - Generic parameter list of generic subprograms are not printed
issue 9963
issue 10006 Problem with generated documentation when a method is named 'exception'
issue 10010 SHOW_HEADERFILE doesn't work well for headers with no file extension
issue 10013 infinite recursion (stack overflow) in findScopeFromQualifiedName
issue 10015 Add warning when file set for USE_MDFILE_AS_MAINPAGE isn't found
issue 10050 Typo in the Doxygen \todo documentation
avoid csp insecure eval on search box.
fix sqlite3gen regressions from 592aaa4
Fix server based search for PHP 8.1
search: Fix incorrect result count in opensearch suggestions
Don't show `__pad*__` for unnamed bitfields
Check and copy logo file for rtf output
Escape `-` sign in fontname settings substring as well,
Latex incorrect handling of backticks in code fragments
Variables were shown with () in the client side search results
Prevent bogus type assignment in Python output
Rename correct file to .bak when using "doxygen -u <some-path>" (issue 10035)
Double identifiers due to mapping to same id of file names,
Fixed cross referencing issue.
Limit index fields in hhk file of chm file.
Hide undocumented group members when `HIDE_UNDOC_MEMBERS=YES`
Handling of `\noop` command in preprocessor
Handling of verbatim type sections in preprocessor,
Fixes for type bound procedures in Fortran
Incorrect warning about not matching number of `if` / `endif`
Text on start line of fenced code block should not be ignored.,
Undefined references in pdf documents
No anchor should be created for inherited members,
Not documented parameter in case of `const <type>` without argument name
Prevent list items in section titles,

Features

New option MSCGEN_TOOL for running mscgen externally,
New option MARKDOWN_ID_STYLE to generate GitHub style identifiers for sections
New option SITEMAP_URL to generate Sitemaps
New option TIMESTAMP to disable pages without timestamps (replaces HTML_TIMESTAMP and LATEX_TIMESTAMP)
Making settings from settings file available via new \doxyconfig command.,
Add '<thead>', '<tbody>' and '<tfoot>' HTML tags as dummies
Add `point` as email separator
Improved group handling for defines, static functions, and enums,, and
Support visible attribute for all elements in the layout file,,,
Ignore C11 _Static_assert()
Adding "engine" ebnf, hcl, and regex for plantuml,
Better handling of punctuation characters in GitHub anchors
Better representation of brief (union / struct) descriptions in HTML
Better warning from constant expression evaluation
Reduce LaTeX warnings,,
Support for basic hierarchical grouping in LaTeX output
Support hierarchical groups in RTF and use the same model for pages
Improve default LaTeX hypertarget location
Allow multiple newlines in a Markdown code span.,
[view]
Enable possible other LaTeX error modes via new LATEX_BATCHMODE options,
Added option `trimleft` to the command `\snippet`

Improved user feedback and documentation

bug 630661 Highlighting lines in a dot graph,
bug 615500 Program Icon under Windows,
doc(commands): Update \class example link
doc(commands): Update example links for manual.c
doc(diagrams): Better HTML example link
doc(grouping): Link memgrp example to file docs
doc(various): Match HTML and LaTeX example links
docs(docblocks): Update some example hyperlinks
Translation of terms in tooltip
Updated Portuguese, Spanish, and Swedish translators,,,,
Improve readability/contrast of "use" arrows in dark mode
Hyperlinks in help information of doxywizard
Fix for some permanent redirects
Coloring in languages table in manual
Collect warnings and output them at the end
Debugging documentation
Incorrect HTML generated for doxygen manual,
Incorrect and redirect links in documentation
Incomplete dependency translation report
Spelling corrections,,,,,,,
Confusing edge tooltips shown
Applied various cosmetic changes to the HTML output
Confusing entries in legend explanation
Consistency in HTML output with multiple runs
Consistency / links in LaTeX output of the doxygen documentation
Consistency between HTML and LaTeX / RTF for examples
Consistency between return type and usage of pid
Consistency in used debug terminology
Correct wording of fatal error message
Documentation `\ianchor` correction
Preserve whitespace after \showdate format
Silently ignore `</img>` tag
Union / Struct indicated as Class in the Xref list,
Labels were not visible in dark mode for some dot graphs,
Fixed problem with the client side search engine (HTML output)
Improve layout of table with HTML commands on documentation
Improvement of position of open / closed folder icon
The CDATA sections in xml code representation should not be interpreted

Refactoring and cleanup

Reduce code duplication,,,
Reduce lock contention in symbol resolver
Refactor (sub)page handling for LaTeX
Refactoring: Improve performance of computeMemberRelations()
Refactoring: Optimize Definition::name() and Definition::localName()
Refactoring: Remove raw pointer use from cmdmapper
Refactoring: Store DocNodeVariant pointer inside DocNodes
Refactoring: Use std::variant for code generators
Refactoring: add OutputCodeList to specific generators
Refactoring: add multi-thread support to generateJSNavTree()
Refactoring: add multi-thread support to writeJavaScriptSearchIndex()
Refactoring: avoid unneeded DocParser pushContext/popContext calls
Refactoring: better use of smart pointers for layout module
Refactoring: embed TokenInfo in doctokenizer as value instead of pointer
Refactoring: for ScopedTypeVariant use std::variant
Refactoring: improve argv/argc handling for libclang API
Refactoring: improve performance of selectBlock()
Refactoring: let create*Def() functions return std::unique_ptr instead of raw pointer
Refactoring: make a couple of global enums scoped
Refactoring: make use of C++17 structured bindings
Refactoring: move detab() to util.cpp so it can be shared
Refactoring: move some functionality from generic to more specific files
Refactoring: optimize addHtmlExtensionIfMissing()
Refactoring: optimize keyword substitution for LaTeX output
Refactoring: optimize toLowerChar()
Refactoring: pass variant by moving instead of copying
Refactoring: remove BaseOutputDocInterface class
Refactoring: remove CodeOutputInterface base class from OutputCodeList
Refactoring: remove toClassDefMutable for const input
Refactoring: remove toMemberDefMutable for const input
Refactoring: remove toNamespaceDefMutable for const input
Refactoring: remove unneeded m_impl indirection from MemberDefImpl
Refactoring: remove unused code
Refactoring: remove unused conversion function
Refactoring: replace types uchar/uint/ulong/int64/uint64 by stdint types
Refactoring: simplified the way search data from source code is gathered
Refactoring: simplify ConfigImpl's instance handling
Refactoring: use OutputCodeList for parsing code instead of CodeOutputInterface
Refactoring: use smart pointers for Definition class internals
Refactoring: use smartpointer for Doxygen::searchIndex instance
Refactoring: use std::unique_ptr for FileState in pre.l
Refactoring: use std::variant for generators instead of polymorphism
Refactoring: make MemberVector hold non-const MemberDef pointers
Optimize findFileDef locking
Build: Re-enable LEX_FILES_{H,CPP}, streamline
Various refactorings
Make configuration default texts configurable
Make language detection for fenced code blocks more robust
Make reading configuration utf-8 compatible
Removed unneeded mutable keyword and added missing lock
Improve debugging for lexical scanners
Replace custom tracing/debug prints by tracing via spdlog

Improved testing

Add test case for define doc association
Add test case for direct define documentation
Add test case for enum doc association
Add test case for enum field doc association
Add test case for file doc association
Add test case for function doc association
Add test case for static assertions
Add test case for typedef doc association
Add test case for variable doc association
Add test for doc entry association with groups
testing: Add test case for enum fields
ci: create workflow to publish Docker image
runtests.py: Support tests with addtional inputs
Added unit test with unicode characters in the name
Adding some attributes to dtd validation

(adam)

cmake cmake-gui: updated to 3.26.4

CMake 3.26.4
* FindPython: fix interpreter launcher variable spelling
* Help: Remove duplicated word in COMPILE_OPTIONS target property docs
* Ninja: Restore detection of msvc-wine showIncludes prefix
* FindJNI: add Ubuntu specific paths for more recent JDK versions
* Help: CMP0105 policy: clarifications
* FindCUDAToolkit: nvptxcompiler_static correctly specify dependencies
* FindCUDAToolkit: Add dependency between cusparse and nvJitLink
* FindCUDAToolkit: Fix nvrtc_static dependencies on Windows
* FindCUDAToolkit: Add missing static library dependencies on pthread and libdl
* FindCUDAToolkit: Support CUDA version extraction from version.json

(adam)

Updated www/py-httpx, net/py-tldextract

(adam)

py-tldextract: updated to 3.4.3

3.4.3 (2023-05-18)

* Bugfixes
  * Speed up 10-15% over all inputs
    * Refactor `suffix_index()` to use a trie
  * Docs
    * Adopt PEP257 doc style

3.4.2 (2023-05-16)

* Bugfixes
  * Speed up 10-40% on "average" inputs, and even more on pathological inputs, like long subdomains
    * Optimize `suffix_index()`
    * Optimize netloc extraction

(adam)

py-httpx: updated to 0.24.1

0.24.1 (17th May, 2023)

Added

* Provide additional context in some `InvalidURL` exceptions.

Fixed

* Fix optional percent-encoding behaviour.
* More robust checking for opening upload files in binary mode.
* Properly support IP addresses in `NO_PROXY` environment variable.
* Set default file for `NetRCAuth()` to `None` to use the stdlib default.
* Set logging request lines to INFO level for async requests, in line with sync requests.
* Fix which gen-delims need to be escaped for path/query/fragment components in URL.

(adam)

Updated sysutils/ansible-core, sysutils/py-ansible-compat, sysutils/ansible-lint

(adam)

ansible-lint: updated to 6.16.1

v6.16.1
Bugfixes

Update lock file to use ansible-core 2.15.0
Install requirements from galaxy.yml and tests/requirements.yml
Add Kali Linux as a supported platform
Do not trigger no_handler upon complex conditions
Hide warning about unique filter originating from core
Relax ruamel-yaml requirements
Suggest correct alternative for with_filetree
Upgrade var-naming rule to include role name prefix
Fix exception when using reformatting on scalars
Find and lint imported playbooks

(adam)

py-ansible-compat: updated to 4.0.4

v4.0.4
Bugfixes

Allow use of * version on dependencies

v4.0.3
Bugfixes

Automatically install tests/requirements.yml when found
Also install requirements from galaxy.yml files
Include original message in AnsibleWarning

(adam)

ansible-core: updated to 2.15.0

v2.15.0
=======

Major Changes
-------------

- ansible-test - Docker Desktop on WSL2 is now supported (additional configuration required).
- ansible-test - Docker and Podman are now supported on hosts with cgroup v2 unified. Previously only cgroup v1 and cgroup v2 hybrid were supported.
- ansible-test - Podman now works on container hosts without systemd. Previously only some containers worked, while others required rootfull or rootless Podman, but would not work with both. Some containers did not work at all.
- ansible-test - Podman on WSL2 is now supported.
- ansible-test - When additional cgroup setup is required on the container host, this will be automatically detected. Instructions on how to configure the host will be provided in the error message shown.

Minor Changes
-------------

- Add support for custom salt for vault encoding to make it deterministic (https://github.com/ansible/ansible/issues/35480).
- Added the conditional that was False if ``when`` caused a task to skip under ``false_condition``.
- Allow force deletion of a group even when it is the primary group of a user. (https://github.com/ansible/ansible/issues/77849)
- Ansible.ModuleUtils.AddType - Add support for compiling ``unsafe`` code with the ``//AllowUnsafe`` directive
- Cache field attributes list on the playbook classes
- Cleaned up unused imports in core.
- Get user input for ``pause`` and ``paramiko_ssh`` from the strategy rather than access ``sys.stdin`` in the WorkerProcess.
- Introduce ``Delegatable`` and ``Notifiable`` mixin classes for playbook objects
- Make using blocks as handlers a parser error (https://github.com/ansible/ansible/issues/79968)
- Playbook objects - Replace deprecated stacked ``@classmethod`` and ``@property``
- Raise an error when an incorrect ``isa`` type is passed to ``FieldAttribute``.
- Remove fallback code for when ``defined``/``undefined`` tests were used on objects containing nested undefined variables; due to changes in lazy evalution of Jinja2 expressions it is no longer needed.
- Remove unused Python stdlib imports from module_utils which were not present for backwards compatibility in: common.file, compat.selectors, facts.network.iscsi, facts.network.nvme, yumdnf
- Remove unused internal imports from module_utils which were not present for backwards compatibility in: common.file, common.parameters, facts.system.caps, yumdnf
- Removed ``straight.plugin`` from the build and packaging requirements.
- Removed unused imports from the following action plugins: async_status, command, pause, set_stats, uri, validate_argument_spec
- Removed unused imports from the following lookup plugins: fileglob, template
- Removed unused imports from the following modules: apt, dnf, expect, pip, slurp, user, yum
- Removed unused imports from the following set of test plugins: files
- Removed unused imports from the following strategy plugins: debug
- Removed unused imports from the following vars plugins: host_group_vars
- The minimum required ``setuptools`` version is now 45.2.0, as it is the oldest version to support Python 3.10.
- Use ``ansible.module_utils.six.moves.collections_abc`` instead of ``ansible.module_utils.common._collections_compat`` in modules and module_utils.
- Use ``collections.abc`` instead of ``ansible.module_utils.common._collections_compat`` in controller code.
- Use ``package_data`` instead of ``include_package_data`` for ``setup.cfg`` to avoid ``setuptools`` warnings.
- ``AnsibleJ2Vars`` class that acts as a storage for all variables for templating purposes now uses ``collections.ChainMap`` internally.
- add parameter ``numeric`` to the iptables module to disable dns lookups when running list -action internally (https://github.com/ansible/ansible/issues/78793).
- allow user to set ansible specific env vars for selecting pager and editor, but still fall back to commonly used defaults.
- ansible-doc - support role extension for semantic markup spec so that ``O()`` and ``RV()`` referring to role entrypoints are rendered more readable (https://github.com/ansible/ansible/pull/80305).
- ansible-doc - support semantic markup in text output (https://github.com/ansible/ansible/pull/80242).
- ansible-doc text output - support ``seealso`` plugin record that was added for filter and test plugin documentation (https://github.com/ansible/ansible/pull/80212).
- ansible-galaxy - Add ability to specify collection versions on the CLI without the need for a colon. Such as ``namespace.name==1.2.3`` vs ``namespace.name:1.2.3``.
- ansible-galaxy - Use Python's native ``raise ... from`` instead of ``six.raise_from``.
- ansible-galaxy - support ``resolvelib >= 0.5.3, < 0.10.0``.
- ansible-galaxy - support ``resolvelib >= 0.5.3, < 1.1.0``.
- ansible-inventory now supports the limit command line options.
- ansible-test - A new ``audit`` option is available when running custom containers. This option can be used to indicate whether a container requires the AUDIT_WRITE capability. The default is ``required``, which most containers will need when using Podman. If necessary, the ``none`` option can be used to opt-out of the capability. This has no effect on Docker, which always provides the capability.
- ansible-test - A new ``cgroup`` option is available when running custom containers. This option can be used to indicate a container requires cgroup v1 or that it does not use cgroup. The default behavior assumes the container works with cgroup v2 (as well as v1).
- ansible-test - Add Alpine 3.17 remote.
- ansible-test - Add Fedora 37 container.
- ansible-test - Add Fedora 37 remote.
- ansible-test - Add FreeBSD 12.4 remote.
- ansible-test - Add RHEL 8.7 remote.
- ansible-test - Add RHEL 9.1 remote.
- ansible-test - Add macOS 13.2 remote.
- ansible-test - Additional log details are shown when containers fail to start or SSH connections to containers fail.
- ansible-test - Connection failures to remote provisioned hosts now show failure details as a warning.
- ansible-test - Containers included with ansible-test no longer disable seccomp by default.
- ansible-test - Disabled the ``ansible-format-automatic-specification`` rule from the ``pylint`` sanity test, now that Python 2.6 is no longer supported.
- ansible-test - Enable the ``trailing-comma-tuple`` rule in the ``pylint`` sanity test.
- ansible-test - Enable the ``unused-import`` rule for the ``pylint`` sanity test for collections.
- ansible-test - Failure to connect to a container over SSH now results in a clear error. Previously tests would be attempted even after initial connection attempts failed.
- ansible-test - Improve consistency of executed ``pylint`` commands by making the plugins ordered.
- ansible-test - Improve consistency of version specific documentation links.
- ansible-test - Integration tests can be excluded from retries triggered by the ``--retry-on-error`` option by adding the ``retry/never`` alias. This is useful for tests that cannot pass on a retry or are too slow to make retries useful.
- ansible-test - Minor cleanup and package updates in distro containers.
- ansible-test - More details are provided about an instance when provisioning fails.
- ansible-test - Moved git handling out of the validate-modules sanity test and into ansible-test.
- ansible-test - Reduce the polling limit for SSHD startup in containers from 60 retries to 10. The one second delay between retries remains in place.
- ansible-test - Removed test containers: fedora36
- ansible-test - Removed test remotes: alpine/3.16, fedora/36, freebsd/12.3, rhel/8.6, rhel/9.0, macos/12.0
- ansible-test - Removed the ``--keep-git`` sanity test option, which was limited to testing ansible-core itself.
- ansible-test - SSH connections from OpenSSH 8.8+ to CentOS 6 containers now work without additional configuration. However, clients older than OpenSSH 7.0 can no longer connect to CentOS 6 containers as a result. The container must have ``centos6`` in the image name for this work-around to be applied.
- ansible-test - SSH shell connections from OpenSSH 8.8+ to ansible-test provisioned network instances now work without additional configuration. However, clients older than OpenSSH 7.0 can no longer open shell sessions for ansible-test provisioned network instances as a result.
- ansible-test - Specify the configuration file location required by test plugins when the config file is not found. This resolves issue: https://github.com/ansible/ansible/issues/79411
- ansible-test - The ``ansible-test env`` command now detects and reports the container ID if running in a container.
- ansible-test - The ``pep8`` sanity test rule ``E203`` is now disabled since it is not PEP 8 compliant. This provides compatibility with output generated by the ``black`` code formatter.
- ansible-test - The ``validate-modules`` sanity test no longer limits the ``__future__`` imports that can be used. Other sanity tests that check ``__future__`` imports remain unchanged. As a result, the error code ``illegal-future-imports`` is no longer used.
- ansible-test - Unit tests now support network disconnect by default when running under Podman. Previously this feature only worked by default under Docker.
- ansible-test - Update Alpine 3 container to 3.17.
- ansible-test - Update Python requirements used for sanity tests.
- ansible-test - Update ``base`` and ``default`` containers to include Python 3.11.0.
- ansible-test - Update ``default`` containers to include new ``docs-build`` sanity test requirements.
- ansible-test - Update error handling code to use Python 3.x constructs, avoiding direct use of ``errno``.
- ansible-test - Update test container to ``7.4.0`` which includes the new PSScriptAnalyzer versions
- ansible-test - Update the CloudStack test plugin to use a newer test container with CloudStack 4.18.0.
- ansible-test - Update the NIOS test plugin to use a newer multi-arch test container.
- ansible-test - Update the ``ansible-bad-import-from`` rule in the ``pylint`` sanity test to recommend ``ansible.module_utils.six.moves.collections_abc`` instead of ``ansible.module_utils.common._collections_compat``.
- ansible-test - Update the ``base`` and ``default`` test containers with the latest requirements.
- ansible-test - Update the ``default`` containers to include the ``package-data`` requirements update.
- ansible-test - Update the ``default`` containers to include the ``pylint`` requirements update.
- ansible-test - Updated the Azure Pipelines CI plugin to work with newer versions of git.
- ansible-test - Use ``stop --time 0`` followed by ``rm`` to remove ephemeral containers instead of ``rm -f``. This speeds up teardown of ephemeral containers.
- ansible-test - Warnings are now shown when using containers that were built with VOLUME instructions.
- ansible-test - When setting the max open files for containers, the container host's limit will be checked. If the host limit is lower than the preferred value, it will be used and a warning will be shown.
- ansible-test - When using Podman, ansible-test will detect if the loginuid used in containers is incorrect. When this occurs a warning is displayed and the container is run with the AUDIT_CONTROL capability. Previously containers would fail under this situation, with no useful warnings or errors given.
- ansible-test acme test container - update version to update used Pebble version, underlying Python and Go base containers, and Python requirements (https://github.com/ansible/ansible/pull/79783).
- ansible-test pslint - Upgrade PSScriptAnalyzer to ``1.21.0`` which enables the ``AvoidMultipleTypeAttributes``, ``AvoidSemicolonsAsLineTerminators``, and ``AvoidUsingBrokenHashAlgorithms`` rules
- ansible-test runtime-metadata sanity test - ensure that ``redirect`` entries in ``meta/runtime.yml`` contain collection names, except for ``module_utils`` plugin redirects and ``import_redirect`` redirects (https://github.com/ansible/ansible/pull/78802).
- ansible-test sanity --test ansible-doc - now also lists documentation for test and filter plugins that are documented (https://github.com/ansible/ansible/pull/77737).
- ansible-test validate-modules - Added support for validating module documentation stored in a sidecar file alongside the module (``{module}.yml`` or ``{module}.yaml``). Previously these files were ignored and documentation had to be placed in ``{module}.py``.
- ansible-test validate-modules - no longer treat falsy non-``False`` values for defaults as ``None`` (https://github.com/ansible/ansible/pull/79267).
- apt - add allow-change-held-packages option to apt remove (https://github.com/ansible/ansible/issues/78131)
- apt_repository - adds ``sources_added`` and ``sources_removed`` to the return of the module (https://github.com/ansible/ansible/issues/79306).
- apt_repository will use the trust repo directories in order of preference (more appropriate to less) as they exist on the target.
- collections - Add additional ignores for commonly rejected file extensions
- collections - Add additional includes for REUSE license files (https://github.com/ansible/ansible/issues/79368)
- deb822_repository - Add new module for managing DEB822 formatted apt repositories
- debug - Perform argspec valdiation in debug action plugin (https://github.com/ansible/ansible/issues/79862)
- dnf5 - Add new module for managing packages and other artifacts via the next version of DNF (https://github.com/ansible/ansible/issues/78898)
- galaxy - include ``license_file`` in the default manifest directives (https://github.com/ansible/ansible/pull-request/79420)
- optimized var loading by caching results as there is no variance in input during run.
- pycompat24 module_utils - Remove support for Python 2.5 and earlier.
- sanity tests - updates the collection-deprecated-version tests to ignore the ``prerelease`` component of the collection version ().
- strftime filter, additional docs and links to source of truth.
- updated the vendored distro library to upstream version (https://github.com/ansible/ansible/pull/79227)
- validate-modules sanity test - add support for semantic markup (https://github.com/ansible/ansible/pull/80243).
- validate-modules sanity test - if the ``check_mode`` attribute is present, check that it coincides with the ``support_check_mode`` parameter of ``AnsibleModule`` (https://github.com/ansible/ansible/pull/80090).
- validate-modules sanity test - remove support for the never implemented ``forced_action_plugin`` attribute (https://github.com/ansible/ansible/pull/79317).
- validate-modules sanity test - support the ``plugin`` see-also part of the semantic markup specification (https://github.com/ansible/ansible/pull/80244).

Breaking Changes / Porting Guide
--------------------------------

- ansible-doc - no longer treat plugins in collections whose name starts with ``_`` as deprecated (https://github.com/ansible/ansible/pull/79362).
- ansible-test - Integration tests which depend on specific file permissions when running in an ansible-test managed host environment may require changes. Tests that require permissions other than ``755`` or ``644`` may need to be updated to set the necessary permissions as part of the test run.
- ansible-test - The ``vcenter`` test plugin now defaults to using a user-provided static configuration instead of the ``govcsim`` simulator for collections. Set the ``ANSIBLE_VCSIM_CONTAINER`` environment variable to ``govcsim`` to use the simulator. Keep in mind that the simulator is deprecated and will be removed in a future release.
- ansible-test sanity - previously plugins and modules in collections whose name started with ``_`` were treated as deprecated, even when they were not marked as deprecated in ``meta/runtime.yml``. This is no longer the case (https://github.com/ansible/ansible/pull/79362).
- ansible-test validate-modules - Removed the ``missing-python-doc`` error code in validate modules, ``missing-documentation`` is used instead for missing PowerShell module documentation.

Deprecated Features
-------------------

- The ``ConnectionBase()._new_stdin`` attribute is deprecated, use ``display.prompt_until(msg)`` instead.
- ansible-test - The ``foreman`` test plugin is now deprecated. It will be removed in a future release.
- ansible-test - The ``govcsim`` simulator in the ``vcenter`` test plugin is now deprecated. It will be removed in a future release. Users should switch to providing their own test environment through a static configuration file.
- password_hash - deprecate using passlib.hash.hashtype if hashtype isn't in the list of documented choices.
- vars - Specifying a list of dictionaries for ``vars:`` is deprecated in favor of specifying a dictionary.

Removed Features (previously deprecated)
----------------------------------------

- Remove deprecated ``ANSIBLE_CALLBACK_WHITELIST`` configuration environment variable, use ``ANSIBLE_CALLBACKS_ENABLED`` instead. (https://github.com/ansible/ansible/issues/78821)
- Remove deprecated ``ANSIBLE_COW_WHITELIST`` configuration environment variable, use ``ANSIBLE_COW_ACCEPTLIST`` instead. (https://github.com/ansible/ansible/issues/78819)
- Remove deprecated ``callback_whitelist`` configuration option, use ``callbacks_enabled`` instead. (https://github.com/ansible/ansible/issues/78822)
- Remove deprecated ``cow_whitelist`` configuration option, use ``cowsay_enabled_stencils`` instead. (https://github.com/ansible/ansible/issues/78820)

Bugfixes
--------

- Ansible.Basic.cs - Ignore compiler warning (reported as an error) when running under PowerShell 7.3.x.
- AnsibleModule.run_command - Only use selectors when needed, and rely on Python stdlib subprocess for the simple task of collecting stdout/stderr when prompt matching is not required.
- BSD network facts - Do not assume column indexes, look for ``netmask`` and ``broadcast`` for determining the correct columns when parsing ``inet`` line (https://github.com/ansible/ansible/issues/79117)
- Correctly count rescued tasks in play recap (https://github.com/ansible/ansible/issues/79711)
- Display - Defensively configure writing to stdout and stderr with a custom encoding error handler that will replace invalid characters while providing a deprecation warning that non-utf8 text will result in an error in a future version.
- Do not crash when templating an expression with a test or filter that is not a valid Ansible filter name (https://github.com/ansible/ansible/issues/78912, https://github.com/ansible/ansible/pull/78913).
- Fix ``MANIFEST.in`` to exclude unwanted files in the ``packaging/`` directory.
- Fix ``MANIFEST.in`` to include ``*.md`` files in the ``test/support/`` directory.
- Fix a traceback occuring when a task is named ``meta`` (https://github.com/ansible/ansible/issues/79459)
- Fix an issue where the value of ``become`` was ignored when used on a role used as a dependency in ``main/meta.yml`` (https://github.com/ansible/ansible/issues/79777)
- Fix bug in `vars` applied to roles, they were being incorrectly exported among others while only vars/main.yml was meant to be. Also adjusted the precedence to act the same as inline params.
- Fix conditionally notifying ``include_tasks` handlers when ``force_handlers`` is used (https://github.com/ansible/ansible/issues/79776)
- Fix post-validating looped task fields so the strategy uses the correct values after task execution.
- Fix reusing a connection in a task loop that uses a redirected or aliased name - https://github.com/ansible/ansible/issues/78425
- Fix setting become activation in a task loop - https://github.com/ansible/ansible/issues/78425
- Fix traceback when using the ``template`` module and running with ``ANSIBLE_DEBUG=1`` (https://github.com/ansible/ansible/issues/79763)
- Fix using ``GALAXY_IGNORE_CERTS`` in conjunction with collections in requirements files which specify a specific ``source`` that isn't in the configured servers.
- Fix using ``GALAXY_IGNORE_CERTS`` when downloading tarballs from Galaxy servers (https://github.com/ansible/ansible/issues/79557).
- Fixes leftover _valid_attrs usage.
- Fixes the password lookup to not rewrite files if they are not changed when using the "encrypt" parameter
- Module and role argument validation - include the valid suboption choices in the error when an invalid suboption is provided.
- Perform type check on data passed to Display.display to enforce the requirement of being given a python3 unicode string
- Prevent running same handler multiple times when included via ``include_role`` (https://github.com/ansible/ansible/issues/73643)
- TaskExecutor - don't ignore templated _raw_params that k=v parser failed to parse (https://github.com/ansible/ansible/issues/79862)
- Windows - Display a warning if the module failed to cleanup any temporary files rather than failing the task. The warning contains a brief description of what failed to be deleted.
- Windows - Ensure the module temp directory contains more unique values to avoid conflicts with concurrent runs - https://github.com/ansible/ansible/issues/80294
- Windows - Improve temporary file cleanup used by modules. Will use a more reliable delete operation on Windows Server 2016 and newer to delete files that might still be open by other software like Anti Virus scanners. There are still scenarios where a file or directory cannot be deleted but the new method should work in more scenarios.
- ``ansible-galaxy search rolename`` - give a warning instead of non-zero return code when search results are empty. This is similar to the behavior when listing roles, which gives a warning if a role cannot be found and exits with a return code of ``0``.
- ``ansible_eval_concat`` - avoid redundant unsafe wrapping of templated strings converted to Python types
- ``pkg_mgr`` - fix the default dnf version detection
- ansible-config limit shorthand format to assigned values
- ansible-doc - stop generating wrong module URLs for module see-alsos. The URLs for modules in ansible.builtin do now work, and URLs for modules outside ansible.builtin are no longer added (https://github.com/ansible/ansible/pull/80280).
- ansible-doc now will correctly display short descriptions on listing filters/tests no matter the directory sorting.
- ansible-galaxy - Improve retries for collection installs, to properly retry, and extend retry logic to common URL related connection errors (https://github.com/ansible/ansible/issues/80170 https://github.com/ansible/ansible/issues/80174)
- ansible-galaxy - fix installing collections from directories that have a trailing path separator (https://github.com/ansible/ansible/issues/77803).
- ansible-galaxy - fix installing collections in git repositories/directories which contain a MANIFEST.json file (https://github.com/ansible/ansible/issues/79796).
- ansible-galaxy - fix installing signed collections (https://github.com/ansible/ansible/issues/80648).
- ansible-galaxy - make initial call to Galaxy server on-demand only when installing, getting info about, and listing roles.
- ansible-galaxy - reduce API calls to servers by fetching signatures only for final candidates.
- ansible-galaxy collection install - respect symlinks when installing from source or local repository (https://github.com/ansible/ansible/issues/78442)
- ansible-galaxy collection verify - fix verifying signed collections when the keyring is not configured.
- ansible-galaxy collection/role init - preserve symlinks (https://github.com/ansible/ansible/issues/39334).
- ansible-galaxy role info - fix unhandled AttributeError by catching the correct exception.
- ansible-inventory will no longer duplicate host entries if they were part of a group's childrens tree.
- ansible-inventory will not explicitly sort groups/hosts anymore, giving a chance (depending on output format) to match the order in the input sources.
- ansible-playbook -K breaks when passwords have quotes (https://github.com/ansible/ansible/issues/79836).
- ansible-test - Add ``wheel < 0.38.0`` constraint for Python 3.6 and earlier.
- ansible-test - Add support for ``argcomplete`` version 3.
- ansible-test - Add support for ``pytest`` assertion rewriting when running unit tests on Python 3.5 and later. Resolves issue https://github.com/ansible/ansible/issues/68032
- ansible-test - Added a work-around for a traceback under Python 3.11 when completing certain command line options.
- ansible-test - Allow disabled, unsupported, unstable and destructive integration test targets to be selected using their respective prefixes.
- ansible-test - Allow unstable tests to run when targeted changes are made and the ``--allow-unstable-changed`` option is specified (resolves https://github.com/ansible/ansible/issues/74213).
- ansible-test - Always indicate the Python version being used before installing requirements. Resolves issue https://github.com/ansible/ansible/issues/72855
- ansible-test - Avoid using ``exec`` after container startup when possible. This improves container startup performance and avoids intermittent startup issues with some old containers.
- ansible-test - Connection attempts to managed remote instances no longer abort on ``Permission denied`` errors.
- ansible-test - Detection for running in a Podman or Docker container has been fixed to detect more scenarios. The new detection relies on ``/proc/self/mountinfo`` instead of ``/proc/self/cpuset``. Detection now works with custom cgroups and private cgroup namespaces.
- ansible-test - Exclude ansible-core vendored Python packages from ansible-test payloads.
- ansible-test - Fix broken documentation link for ``aws`` test plugin error messages.
- ansible-test - Fix validate-modules error when retrieving PowerShell argspec when retrieved inside a Cmdlet
- ansible-test - Handle server errors when executing the ``docker info`` command.
- ansible-test - Integration test target prefixes defined in a ``tests/integration/target-prefixes.{group}`` file can now contain an underscore (``_``) character. Resolves issue https://github.com/ansible/ansible/issues/79225
- ansible-test - Multiple containers now work under Podman without specifying the ``--docker-network`` option.
- ansible-test - Pass the ``XDG_RUNTIME_DIR`` environment variable through to container commands.
- ansible-test - Perform PyPI proxy configuration after instances are ready and bootstrapping has been completed. Only target instances are affected, as controller instances were already handled this way. This avoids proxy configuration errors when target instances are not yet ready for use.
- ansible-test - Prevent concurrent / repeat inspections of the same container image.
- ansible-test - Prevent concurrent / repeat pulls of the same container image.
- ansible-test - Prevent concurrent execution of cached methods.
- ansible-test - Removed pointless comparison in diff evaluation logic.
- ansible-test - Set ``PYLINTHOME`` for the ``pylint`` sanity test to prevent failures due to ``pylint`` checking for the existence of an obsolete home directory.
- ansible-test - Show the exception type when reporting errors during instance provisioning.
- ansible-test - Support Podman 4.4.0+ by adding the ``SYS_CHROOT`` capability when running containers.
- ansible-test - Support loading of vendored Python packages from ansible-core.
- ansible-test - The ``validate-modules`` sanity test now properly enforces documentation before imports for plugins. Previously this was only enforced for modules due to a coding error.
- ansible-test - Update ``pylint`` to 2.17.2 to resolve several possible false positives.
- ansible-test - Update ``pylint`` to 2.17.3 to resolve several possible false positives.
- ansible-test - Update the ``pylint`` sanity test requirements to resolve crashes on Python 3.11. (https://github.com/ansible/ansible/issues/78882)
- ansible-test - Update the ``pylint`` sanity test to use version 2.15.4.
- ansible-test - Update the ``pylint`` sanity test to use version 2.15.5.
- ansible-test - Use consistent file permissions when delegating tests to a container or remote host. Files with any execute bit set will use permissions ``755``. All other files will use permissions ``644``. (Resolves issue https://github.com/ansible/ansible/issues/75079)
- ansible-test - When bootstrapping remote FreeBSD instances, use the OS packaged ``setuptools`` instead of installing the latest version from PyPI.
- ansible-test - fix warning message about failing to run an image to include the image name
- ansible-test runtime-metadata sanity test - do not crash on YAML parsing errors without a context mark (https://github.com/ansible/ansible/pull/78802).
- ansible-test sanity - correctly report invalid YAML in validate-modules (https://github.com/ansible/ansible/issues/75837).
- ansible-vault encrypt_string - started appending a line feed at the end of the encrypted string output. Missing newline character caused problems identifying where the string ends in some shells (like bash) or accidentally copying an extra trailing terminator symbol (e.g., zsh prints out a ``%`` sign to signal where the original output stops) (https://github.com/ansible/ansible/issues/78932).
- ansible_facts.hardware - Define all processor facts on s390x (https://github.com/ansible/ansible/issues/19755)
- apt - set locale to fix updating the cache (https://github.com/ansible/ansible/issues/79523).
- apt module should not traceback on invalid type given as package. issue 78663.
- apt_repository will no longer fail to detect key when unrelated errors/warnings are issued by apt-key.
- argument spec validation - again report deprecated parameters for Python-based modules. This was accidentally removed in ansible-core 2.11 when argument spec validation was refactored (https://github.com/ansible/ansible/issues/79680, https://github.com/ansible/ansible/pull/79681).
- argument spec validation - ensure that deprecated aliases in suboptions are also reported (https://github.com/ansible/ansible/pull/79740).
- argument spec validation - fix warning message when two aliases of the same option are used for suboptions to also mention the option's name they are in (https://github.com/ansible/ansible/pull/79740).
- basic.py module_utils - Perform Python version check much earlier to ensure it runs before other errors occur.
- connection local now avoids traceback on invalid user being used to execuet ansible (valid in host, but not in container).
- copy - fix creating the dest directory in check mode with remote_src=True (https://github.com/ansible/ansible/issues/78611).
- copy - fix reporting changes to file attributes in check mode with remote_src=True (https://github.com/ansible/ansible/issues/77957).
- copy module will no longer move 'non files' set as src when remote_src=true.
- copy remote_src=true - fix copying subdirs recursively when the dest exists and the src and dest have multiple common subdirectories in a common directory (https://github.com/ansible/ansible/issues/74536).
- copy remote_src=true - fix reporting changed for copying empty directories.
- display - reduce risk of post-fork output deadlocks (https://github.com/ansible/ansible/pull/79522)
- dnf5 - Use ``transaction.check_gpg_signatures`` API call to check package signatures AND possibly to recover from when keys are missing.
- dnf5 - fix module and package names in the message following failed module respawn attempt
- dnf5 - use the logs API to determine transaction problems
- file - touch action in check mode was always returning ok. Fix now evaluates the different conditions and returns the appropriate changed status. (https://github.com/ansible/ansible/issues/79360)
- file lookup now handles missing files more gracefully.
- file lookup now plays nice with generic lookup ``errors`` option.
- get_url - Ensure we are passing ciphers to all url_get calls (https://github.com/ansible/ansible/issues/79717)
- get_url module - Added a documentation reference to ``hashlib`` regarding algorithms, as well as a note about ``md5`` support on systems running in FIPS compliant mode.
- get_url module - Removed out-of-date documentation stating that ``hashlib`` is a third-party library.
- handlers - fix ``v2_playbook_on_notify`` callback not being called when notifying handlers
- handlers - fix an issue where the ``flush_handlers`` meta task could not be used with FQCN: ``ansible.builtin.meta`` (https://github.com/ansible/ansible/issues/79023)
- include_role - Inherit from role parents beyond a depth of 3 (https://github.com/ansible/ansible/issues/47023).
- jinja2_native - fix intermittent 'could not find job' failures when a value of ``ansible_job_id`` from a result of an async task was inadvertently changed during execution; to prevent this a format of ``ansible_job_id`` was changed.
- jinja2_native: preserve quotes in strings (https://github.com/ansible/ansible/issues/79083)
- keyword inheritance - Ensure that we do not squash keywords in validate (https://github.com/ansible/ansible/issues/79021)
- known_hosts - do not return changed status when a non-existing key is removed (https://github.com/ansible/ansible/issues/78598)
- list-tags now shows the 'never' tag, which was being excluded by default. To list all tasks you still need to add `--list-tasks --tags never,all`.
- loops/delegate_to - Do not double calculate the values of loops and ``delegate_to`` (https://github.com/ansible/ansible/issues/80038)
- module responses - Ensure that module responses are utf-8 adhereing to JSON RFC and expectations of the core code.
- module/role argument spec - validate the type for options that are None when the option is required or has a non-None default (https://github.com/ansible/ansible/issues/79656).
- module_utils/basic.py - Fix detection of available hashing algorithms on Python 3.x. All supported algorithms are now available instead of being limited to a hard-coded list. This affects modules such as ``get_url`` which accept an arbitrary checksum algorithm.
- normal action plugin - remove obsolete ``if`` (https://github.com/ansible/ansible/pull/79690).
- omit on keywords was resetting to default value, ignoring inheritance.
- paramiko - Add a new option to allow paramiko >= 2.9 to easily work with all devices now that rsa-sha2 support was added to paramiko, which prevented communication with numerous platforms. (https://github.com/ansible/ansible/issues/76737)
- paramiko - Add back support for ``ssh_args``, ``ssh_common_args``, and ``ssh_extra_args`` for parsing the ``ProxyCommand`` (https://github.com/ansible/ansible/issues/78750)
- paramiko connection was still using outdated playcontext, this should bring it up to date to use the 'correct' data for each task/loop.
- password lookup now correctly reads stored ident fields.
- password_hash - handle errors using unknown passlib hashtypes more gracefully (https://github.com/ansible/ansible/issues/45392).
- pep517 build backend - Use the documented ``import_module`` import from ``importlib``.
- plugin loader, fix detection for existing configuration before initializing for a plugin
- role deduplication - Always create new role object, regardless of deduplication. Deduplication will only affect whether a duplicate call to a role will execute, as opposed to re-using the same object. (https://github.com/ansible/ansible/pull/78661)
- roles - Fix templating ``public``, ``allow_duplicates`` and ``rolespec_validate`` (https://github.com/ansible/ansible/issues/80304).
- service_facts - Use python re to parse service output instead of grep (https://github.com/ansible/ansible/issues/78541)
- strategy plugins now correctly identify bad registered variables, even on skip.
- strategy plugins: get the correctly templated and validated run_once value on strategy linear (https://github.com/ansible/ansible/issues/78492)
- syntax check - Limit ``--syntax-check`` to ``ansible-playbook`` only, as that is the only CLI affected by this argument (https://github.com/ansible/ansible/issues/80506)
- systemd - daemon-reload and daemon-reexec ignore errors when running in a chroot (https://github.com/ansible/ansible/pull/79643)
- templates - Fixed ``TypeError`` when a lookup plugin has an option called ``name``.
- unarchive - allow relative path for ``dest`` (https://github.com/ansible/ansible/issues/64612)
- unarchive - log errors from commands to assist in debugging (https://github.com/ansible/ansible/issues/64612)
- updated error messages to include 'acl' and not just mode changes when failing to set required permissions on remote.
- uri - improve JSON content type detection
- user - fix comparing group IDs to existing group names so groups are not always updated (https://github.com/ansible/ansible/issues/79956).
- user module - Removed ``password_expire_max`` from the return docs, as it is not returned.
- user module - Removed ``password_expire_min`` from the return docs, as it is not returned.
- validate-modules sanity test - replace semantic markup parsing and validating code with the code from `antsibull-docs-parser 0.2.0 <https://github.com/ansible-community/antsibull-docs-parser/releases/tag/0.2.0>`__ (https://github.com/ansible/ansible/pull/80406).
- vault - show filename additionally if missing secrets prevents decryption (https://github.com/ansible/ansible/issues/79723)
- winrm - Increase the read timeout to 10 seconds later than the operation timeout reducing the chances of a false read timeout

Known Issues
------------

- ansible-test - Additional configuration may be required for certain container host and container combinations. Further details are available in the testing documentation.
- ansible-test - Custom containers with ``VOLUME`` instructions may be unable to start, when previously the containers started correctly. Remove the ``VOLUME`` instructions to resolve the issue. Containers with this condition will cause ``ansible-test`` to emit a warning.
- ansible-test - Systems with Podman networking issues may be unable to run containers, when previously the issue went unreported. Correct the networking issues to continue using ``ansible-test`` with Podman.
- ansible-test - Unit tests for collections do not support ``pytest`` assertion rewriting on Python 2.7.
- ansible-test - Using Docker on systems with SELinux may require setting SELinux to permissive mode. Podman should work with SELinux in enforcing mode.
- dnf5 - The DNF5 package manager currently does not provide all functionality to ensure feature parity between the existing ``dnf`` and the new ``dnf5`` module. As a result the following ``dnf5`` options are effectively a no-op: ``cacheonly``, ``enable_plugin``, ``disable_plugin`` and ``lock_timeout``.

New Plugins
-----------

Filter
~~~~~~

- commonpath - gets the common path
- normpath - Normalize a pathname

New Modules
-----------

Lib
~~~

ansible.modules
^^^^^^^^^^^^^^^

- deb822_repository - Add and remove deb822 formatted repositories
- dnf5 - Manages packages with the I(dnf5) package manager

(adam)

Updated www/py-httpcore, devel/py-test-httpserver

(adam)

py-test-httpserver: updated to 1.0.7

1.0.7
=====

Upgrade Notes
-------------
- With werkzeug 2.3.x the headers type has been updated to not allow integers as header values. This restriction followed up in pytest-httpserver.

Deprecation Notes
-----------------
- Python versions earlier than 3.8 have been deprecated in order to support
  the latest werkzeug. Users using 3.7 or earlier python may use
  pytest-httpserver with earlier werkzeug versions but tests are no longer run
  for these python versions.

Bug Fixes
---------
- Type hinting for header_value_matcher has been fixed. From now, specifying a
  callable as ``Callable[[str, Optional[str], str], bool]`` will be accepted
  also. Providing a ``HeaderValueMatcher`` object will be also accepted as
  before, as it provides the same callable signature.

- Fix Werkzeug deprecation warning about ``parse_authorization_header`` call.
  Replace ``parse_authorization_header`` with ``Authorization.from_header`` as
  suggested. This fix should not introduce any functional change for the
  users.

- Fix Werkzeug deprecation warning about ``werkzeug.urls.url_decode`` call. This
  call has been changed to ``urllib.parse.parse_qsl`` in the implementation.
  This fix should not introduce any functional change for the users.

(adam)

py-httpcore: updated to 0.17.1

0.17.1 (May 17th, 2023)

- If 'retries' is set, then allow retries if an SSL handshake error occurs.
- Improve correctness of tracebacks on network exceptions, by raising properly chained exceptions.
- Prevent connection-hanging behaviour when HTTP/2 connections are closed by a server-sent 'GoAway' frame.
- Fix edge-case exception when removing requests from the connection pool.
- Fix pool timeout edge-case.

(adam)

harfbuzz: sincosf detection is broken in meson; sort PLIST

(adam)

Updated devel/memcached, net/openvpn, archivers/unrar, net/rabbitmq

(adam)

rabbitmq: updated to 3.11.16

RabbitMQ 3.11.16

Core Server

Bug Fixes

Automatic node removal now will
remove quorum queue replicas from the node before removing it from the cluster.

Enhancements

A new boolean setting, quorum_queue.property_equivalence.relaxed_checks_on_redeclaration,
makes it possible to relax queue property equivalence checks
for quorum queues. Specifically, when a quorum queue is redeclared and the client-provided
type is set to "classic", this setting will help avoid a channel exception, making it
easier to migrate to quorum queues step by step, without upgrading all applications in a short
period of time.

CLI Tools

Enhancements

rabbitmq-queues grow and rabbitmq-queues add_member now verify cluster membership of the node
new quorum queue replicas should be placed on.

Federation Plugin

Bug Fixes

URI parser incorrectly used the password query parameter to override the password
value in authority (user info) part.

The password query parameter can be used to specify private key password for
upstream connections that use TLS.

Shovel Plugin

Bug Fixes

URI parser incorrectly used the password query parameter to override the password
value in authority (user info) part.

The password query parameter can be used to specify private key password for Shovels
that use TLS.

(adam)

unrar: updated to 6.2.7

6.2.7
Unknown changes

(adam)

openvpn: updated to 2.6.4

Overview of changes in 2.6.4

User visible changes

License amendment: all NEW commits fall under a modified license that explicitly permits linking with Apache2 libraries (mbedTLS, OpenSSL) - see COPYING for details. Existing code will fall under the new license as soon as all contributors have agreed to the change - work ongoing.

New features

DCO: support kernel-triggered key rotation (avoid IV reuse after 2^32 packets). This is the userland side, accepting a message from kernel, and initiating a TLS renegotiation. As of release, only implemented in FreeBSD kernel.

Bug fixes

fix pkcs#11 usage with OpenSSL 3.x and PSS signing
fix compile error on TARGET_ANDROID
fix typo in help text
manpage updates (--topology)
encoding of non-ASCII windows error messages in log + management fixed (use UTF8 "as for everything else", not ANSI codepages)

(adam)

memcached: updated to 1.6.20

Memcached 1.6.20

Overview

Lots of fixes and updates for Proxy mode. Optimization for extstore disk flushing to alleviate excess evictions. Changes to meta protocol and smaller fixes.

Fixes

extstore: increase aggressiveness of flush thread
proxy: improve unit test coverage
proxy: random small fixes
proxy: return 'readvalidate' on be read timeout
proxy: don't print null ustats from "stats proxy"
proxy: use connect timeout during retries
proxy: fix flaky test in proxyconfig.t
Add a debian dockerfile, as well as upgrade the autoconf dependency
check for sys/auxv.h
proxy: send CLIENT_ERROR when proper
proxy: print lua error message on reload failure
proxy: rip out io_uring code (to be re-added later)
proxy: overhaul backend error handling: surface error messages to clients
proxy: fix reversal of pipelined backend queries
proxy: add request and buffer memory limits
proxy: restrict functions for lua config vs route
proxy: fix bug ignoring -R setting for proxy reqs
proxy: add conntimeout error

New Features

proxy: add memory accounting tracking

(adam)

Updated lang/nodejs, sysutils/py-Send2Trash

(adam)

py-Send2Trash: updated to 1.8.2

Version 1.8.2
* win/legacy: tiny logic simplification
* TravisCI is not used anymore
* fix(ci): Update to latest actions, fix python versions

(adam)

nodejs: updated to 20.2.0

Version 20.2.0 (Current)

doc: add ovflowd to collaborators (Claudio Wunder)
(SEMVER-MINOR) http: prevent writing to the body when not allowed by HTTP spec (Gerrard Lindsay)
(SEMVER-MINOR) sea: add option to disable the experimental SEA warning (Darshan Sen)
(SEMVER-MINOR) test_runner: add skip, todo, and only shorthands to test (Chemi Atlow)
(SEMVER-MINOR) url: add value argument to URLSearchParams has and delete methods (Sankalp Shubham)

(adam)

Updated devel/py-ailment, devel/py-angr, devel/py-archinfo, devel/py-cle, devel/py-pyvex, math/py-claripy

(adam)

py-ailment py-angr py-archinfo py-cle py-pyvex py-claripy: updated to 9.2.51

9.2.51
Bug fixes

(adam)

Updated databases/sqlite3, databases/sqlite3-docs, databases/sqlite3-tcl, devel/lemon

(adam)

sqlite3: updated to 3.42.0

SQLite Release 3.42.0 On 2023-05-16

Add the FTS5 secure-delete command. This option causes all forensic traces to be removed from the FTS5 inverted index when content is deleted.
Enhance the JSON SQL functions to support JSON5 extensions.
The SQLITE_CONFIG_LOG and SQLITE_CONFIG_PCACHE_HDRSZ calls to sqlite3_config() are now allowed to occur after sqlite3_initialize().
New sqlite3_db_config() options: SQLITE_DBCONFIG_STMT_SCANSTATUS and SQLITE_DBCONFIG_REVERSE_SCANORDER.
Query planner improvements:
Enable the "count-of-view" optimization by default.
Avoid computing unused columns in subqueries.
Improvements to the push-down optimization.
Enhancements to the CLI:
Add the --unsafe-testing command-line option. Without this option, some dot-commands (ex: ".testctrl") are now disabled because those commands that are intended for testing only and can cause malfunctions misused.
Allow commands ".log on" and ".log off", even in --safe mode.
"--" as a command-line argument means all subsequent arguments that start with "-" are interpreted as normal non-option argument.
Magic parameters ":inf" and ":nan" bind to floating point literals Infinity and NaN, respectively.
The --utf8 command-line option omits all translation to or from MBCS on the Windows console for interactive sessions, and sets the console code page for UTF-8 I/O during such sessions. The --utf8 option is a no-op on all other platforms.
Add the ability for application-defined SQL functions to have the same name as join keywords: CROSS, FULL, INNER, LEFT, NATURAL, OUTER, or RIGHT.
Enhancements to PRAGMA integrity_check:
Detect and raise an error when a NaN value is stored in a NOT NULL column.
Improved error message output identifies the root page of a b-tree when an error is found within a b-tree.
Allow the session extension to be configured to capture changes from tables that lack an explicit ROWID.
Added the subsecond modifier to the date and time functions.
Negative values passed into sqlite3_sleep() are henceforth interpreted as 0.
The maximum recursion depth for JSON arrays and objects is lowered from 2000 to 1000.
Extended the built-in printf() function so the comma option now works with floating-point conversions in addition to integer conversions.
Miscellaneous bug fixes and performance optimizations

(adam)

Updated math/z3, math/py-z3

(adam)

z3 py-z3: updated to 4.12.2

z3-4.12.2

updated release notes for 12.2
disable publish
remove output
reformat code to remove brackets
Implement proposed smtlib2 bitvector overflow predicates
Merge branch 'master' of https://github.com/z3prover/z3
JS/TS: add Optimize class
remove debug output
make default argument to ensure_def and mk_def explicit

(adam)

Added textproc/py-types-yaml; Updated net/py-responses

(adam)

py-responses: fix DEPENDS; bump revision

(adam)

py-types-yaml: added version 6.0.12.9

This is a PEP 561 type stub package for the PyYAML package. It can be used by
type-checking tools like mypy, pyright, pytype, PyCharm, etc. to check code
that uses PyYAML.

(adam)

Updated devel/blosc, fonts/py-fonttools

(adam)

py-fonttools: updated to 4.39.4

4.39.4 (released 2023-05-10)
----------------------------
- [varLib.interpolatable] Allow for sparse masters
- [merge] Handle differing default/nominalWidthX in CFF
- [ttLib] Add missing main.py file to ttLib package
- [ttx] Fix missing composite instructions in XML
- [ttx] Fix split tables option to work on filenames containing '%'
- [featureVars] Process lookups for features other than rvrn last
- [feaLib] support multiple substitution with classes

(adam)

blosc: updated to 1.21.4

Changes from 1.21.3 to 1.21.4

Upgrade internal-complib zstd from 1.5.2 to 1.5.5.

Zlib updated to 1.2.13.

(adam)

Updated net/py-botocore, net/py-s3transfer, net/py-boto3, net/py-awscli

(adam)

py-awscli: updated to 1.27.134

1.27.134
========

* api-change:``athena``: You can now define custom spark properties at start of the session for use cases like cluster encryption, table formats, and general Spark tuning.
* api-change:``codecatalyst``: With this release, the users can list the active sessions connected to their Dev Environment on AWS CodeCatalyst
* api-change:``kafka``: Added a fix to make clusterarn a required field in ListClientVpcConnections and RejectClientVpcConnection APIs
* api-change:``rekognition``: This release adds a new EyeDirection attribute in Amazon Rekognition DetectFaces and IndexFaces APIs which predicts the yaw and pitch angles of a person's eye gaze direction for each face detected in the image.
* api-change:``rolesanywhere``: Adds support for custom notification settings in a trust anchor. Introduces PutNotificationSettings and ResetNotificationSettings API's. Updates DurationSeconds max value to 3600.
* api-change:``transfer``: This release introduces the ability to require both password and SSH key when users authenticate to your Transfer Family servers that use the SFTP protocol.

1.27.133
========

* api-change:``connect``: This release updates GetMetricDataV2 API, to support metric data up-to last 35 days
* api-change:``elasticache``: Added support to modify the cluster mode configuration for the existing ElastiCache ReplicationGroups. Customers can now modify the configuration from cluster mode disabled to cluster mode enabled.
* api-change:``es``: This release fixes DescribePackages API error with null filter value parameter.
* api-change:``health``: Add support for regional endpoints
* api-change:``ivs-realtime``: Add methods for inspecting and debugging stages: ListStageSessions, GetStageSession, ListParticipants, GetParticipant, and ListParticipantEvents.
* api-change:``omics``: This release provides support for Ready2Run and GPU workflows, an improved read set filter, the direct upload of read sets into Omics Storage, and annotation parsing for analytics stores.
* api-change:``opensearch``: This release fixes DescribePackages API error with null filter value parameter.
* api-change:``route53resolver``: Update FIPS endpoints for GovCloud (US) regions in SDK.
* api-change:``support``: This release adds 2 new Support APIs, DescribeCreateCaseOptions and DescribeSupportedLanguages. You can use these new APIs to get available support languages.

1.27.132
========

* api-change:``emr``: Update emr command to latest version
* api-change:``rds``: Amazon Relational Database Service (RDS) updates for the new Aurora I/O-Optimized storage type for Amazon Aurora DB clusters
* api-change:``swf``: This release adds a new API parameter to exclude old history events from decision tasks.

1.27.131
========

* api-change:``application-autoscaling``: With this release, Amazon SageMaker Serverless Inference customers can use Application Auto Scaling to auto scale the provisioned concurrency of their serverless endpoints.
* api-change:``glue``: This release adds AmazonRedshift Source and Target nodes in addition to DynamicTransform OutputSchemas
* api-change:``sagemaker``: This release includes support for (1) Provisioned Concurrency for Amazon SageMaker Serverless Inference and (2) UpdateEndpointWeightsAndCapacities API for Serverless endpoints.

1.27.130
========

* api-change:``glue``: Support large worker types G.4x and G.8x for Glue Spark
* api-change:``guardduty``: Add AccessDeniedException 403 Error message code to support 3 Tagging related APIs
* api-change:``iotsitewise``: Provide support for 20,000 max results for GetAssetPropertyValueHistory/BatchGetAssetPropertyValueHistory and 15 minute aggregate resolution for GetAssetPropertyAggregates/BatchGetAssetPropertyAggregates
* api-change:``sts``: Documentation updates for AWS Security Token Service.

1.27.129
========

* api-change:``ec2``: This release adds support the inf2 and trn1n instances. inf2 instances are purpose built for deep learning inference while trn1n instances are powered by AWS Trainium accelerators and they build on the capabilities of Trainium-powered trn1 instances.
* api-change:``inspector2``: Amazon Inspector now allows customers to search its vulnerability intelligence database if any of the Inspector scanning types are activated.
* api-change:``mediatailor``: This release adds support for AFTER_LIVE_EDGE mode configuration for avail suppression, and adding a fill-policy setting that sets the avail suppression to PARTIAL_AVAIL or FULL_AVAIL_ONLY when AFTER_LIVE_EDGE is enabled.
* api-change:``sqs``: Revert previous SQS protocol change.

1.27.127
========

* api-change:``cloudwatch``: Update cloudwatch command to latest version
* api-change:``config``: Updated ResourceType enum with new resource types onboarded by AWS Config in April 2023.
* api-change:``connect``: Remove unused InvalidParameterException from CreateParticipant API
* api-change:``ecs``: Documentation update for new error type NamespaceNotFoundException for CreateCluster and UpdateCluster
* api-change:``network-firewall``: This release adds support for the Suricata REJECT option in midstream exception configurations.
* api-change:``opensearch``: DescribeDomainNodes: A new API that provides configuration information for nodes part of the domain
* api-change:``quicksight``: Add support for Topic, Dataset parameters and VPC
* api-change:``rekognition``: This release adds a new attribute FaceOccluded. Additionally, you can now select attributes individually (e.g. ["DEFAULT", "FACE_OCCLUDED", "AGE_RANGE"] instead of ["ALL"]), which can reduce response time.
* api-change:``s3``: Documentation updates for Amazon S3
* api-change:``sagemaker``: We added support for ml.inf2 and ml.trn1 family of instances on Amazon SageMaker for deploying machine learning (ML) models for Real-time and Asynchronous inference. You can use these instances to achieve high performance at a low cost for generative artificial intelligence (AI) models.
* api-change:``securityhub``: Add support for Finding History.
* api-change:``sqs``: This release enables customers to call SQS using AWS JSON-1.0 protocol.

1.27.126
========

* api-change:``appsync``: Private API support for AWS AppSync. With Private APIs, you can now create GraphQL APIs that can only be accessed from your Amazon Virtual Private Cloud ("VPC").
* api-change:``ec2``: Adds an SDK paginator for GetNetworkInsightsAccessScopeAnalysisFindings
* api-change:``inspector2``: This feature provides deep inspection for linux based instance
* api-change:``iottwinmaker``: This release adds a field for GetScene API to return error code and message from dependency services.
* api-change:``network-firewall``: AWS Network Firewall now supports policy level HOME_NET variable overrides.
* api-change:``opensearch``: Amazon OpenSearch Service adds the option to deploy a domain across multiple Availability Zones, with each AZ containing a complete copy of data and with nodes in one AZ acting as a standby. This option provides 99.99% availability and consistent performance in the event of infrastructure failure.
* api-change:``wellarchitected``: This release deepens integration with AWS Service Catalog AppRegistry to improve workload resource discovery.

1.27.125
========

* api-change:``appflow``: This release adds new API to cancel flow executions.
* api-change:``connect``: Amazon Connect Service Rules API update: Added OnContactEvaluationSubmit event source to support user configuring evaluation form rules.
* api-change:``ecs``: Documentation only update to address Amazon ECS tickets.
* api-change:``kendra``: AWS Kendra now supports configuring document fields/attributes via the GetQuerySuggestions API. You can now base query suggestions on the contents of document fields.
* api-change:``resiliencehub``: This release will improve resource level transparency in applications by discovering previously hidden resources.
* api-change:``sagemaker``: Amazon Sagemaker Autopilot supports training models with sample weights and additional objective metrics.

1.27.124
========

* api-change:``compute-optimizer``: support for tag filtering within compute optimizer. ability to filter recommendation results by tag and tag key value pairs. ability to filter by inferred workload type added.
* api-change:``kms``: This release makes the NitroEnclave request parameter Recipient and the response field for CiphertextForRecipient available in AWS SDKs. It also adds the regex pattern for CloudHsmClusterId validation.

1.27.123
========

* api-change:``appflow``: Adds Jwt Support for Salesforce Credentials.
* api-change:``athena``: You can now use capacity reservations on Amazon Athena to run SQL queries on fully-managed compute capacity.
* api-change:``directconnect``: This release corrects the jumbo frames MTU from 9100 to 8500.
* api-change:``efs``: Update efs command to latest version
* api-change:``grafana``: This release adds support for the grafanaVersion parameter in CreateWorkspace.
* api-change:``iot``: This release allows AWS IoT Core users to specify a TLS security policy when creating and updating AWS IoT Domain Configurations.
* api-change:``rekognition``: Added support for aggregating moderation labels by video segment timestamps for Stored Video Content Moderation APIs and added additional information about the job to all Stored Video Get API responses.
* api-change:``simspaceweaver``: Added a new CreateSnapshot API. For the StartSimulation API, SchemaS3Location is now optional, added a new SnapshotS3Location parameter. For the DescribeSimulation API, added SNAPSHOT_IN_PROGRESS simulation state, deprecated SchemaError, added new fields: StartError and SnapshotS3Location.
* api-change:``wafv2``: You can now associate a web ACL with a Verified Access instance.
* api-change:``workspaces``: Added Windows 11 to support Microsoft_Office_2019

1.27.122
========

* api-change:``ec2``: This release adds support for AMD SEV-SNP on EC2 instances.
* api-change:``emr-containers``: This release adds GetManagedEndpointSessionCredentials, a new API that allows customers to generate an auth token to connect to a managed endpoint, enabling features such as self-hosted Jupyter notebooks for EMR on EKS.
* api-change:``guardduty``: Added API support to initiate on-demand malware scan on specific resources.
* api-change:``iotdeviceadvisor``: AWS IoT Core Device Advisor now supports MQTT over WebSocket. With this update, customers can run all three test suites of AWS IoT Core Device Advisor - qualification, custom, and long duration tests - using Signature Version 4 for MQTT over WebSocket.
* api-change:``kafka``: Amazon MSK has added new APIs that allows multi-VPC private connectivity and cluster policy support for Amazon MSK clusters that simplify connectivity and access between your Apache Kafka clients hosted in different VPCs and AWS accounts and your Amazon MSK clusters.
* api-change:``lambda``: Add Java 17 (java17) support to AWS Lambda
* api-change:``marketplace-catalog``: Enabled Pagination for List Entities and List Change Sets operations
* api-change:``osis``: Documentation updates for OpenSearch Ingestion
* api-change:``qldb``: Documentation updates for Amazon QLDB
* api-change:``sagemaker``: Added ml.p4d.24xlarge and ml.p4de.24xlarge as supported instances for SageMaker Studio
* api-change:``xray``: Updated X-Ray documentation with Resource Policy API descriptions.

1.27.121
========

* api-change:``osis``: Initial release for OpenSearch Ingestion

1.27.120
========

* bugfix:ses: SES create and update custom verification email template operations don't send the custom redirection URL content anymore but send the URL as a string instead (as expected)
* api-change:``chime-sdk-messaging``: Remove non actionable field from UpdateChannelReadMarker and DeleteChannelRequest.  Add precise exceptions to DeleteChannel and DeleteStreamingConfigurations error cases.
* api-change:``connect``: Amazon Connect, Contact Lens Evaluation API release including ability to manage forms and to submit contact evaluations.
* api-change:``datasync``: This release adds 13 new APIs to support AWS DataSync Discovery GA.
* api-change:``ds``: New field added in AWS Managed Microsoft AD DescribeSettings response and regex pattern update for UpdateSettings value.  Added length validation to RemoteDomainName.
* api-change:``pinpoint``: Adds support for journey runs and querying journey execution metrics based on journey runs. Adds execution metrics to campaign activities. Updates docs for Advanced Quiet Time.

1.27.119
========

* api-change:``appflow``: Increased the max length for RefreshToken and AuthCode from 2048 to 4096.
* api-change:``codecatalyst``: Documentation updates for Amazon CodeCatalyst.
* api-change:``ec2``: API changes to AWS Verified Access related to identity providers' information.
* api-change:``mediaconvert``: This release introduces a noise reduction pre-filter, linear interpolation deinterlace mode, video pass-through, updated default job settings, and expanded LC-AAC Stereo audio bitrate ranges.
* api-change:``rekognition``: Added new status result to Liveness session status.

1.27.118
========

* api-change:``connect``: This release adds a new API CreateParticipant. For Amazon Connect Chat, you can use this new API to customize chat flow experiences.
* api-change:``ecs``: Documentation update to address various Amazon ECS tickets.
* api-change:``fms``: AWS Firewall Manager adds support for multiple administrators. You can now delegate more than one administrator per organization.

1.27.117
========

* api-change:``chime-sdk-media-pipelines``: This release adds support for specifying the recording file format in an S3 recording sink configuration.
* api-change:``chime-sdk-meetings``: Adds support for Hindi and Thai languages and additional Amazon Transcribe parameters to the StartMeetingTranscription API.
* api-change:``chime``: Adds support for Hindi and Thai languages and additional Amazon Transcribe parameters to the StartMeetingTranscription API.
* api-change:``gamelift``: Amazon GameLift supports creating Builds for Windows 2016 operating system.
* api-change:``guardduty``: This release adds support for the new Lambda Protection feature.
* api-change:``iot``: Support additional OTA states in GetOTAUpdate API
* api-change:``sagemaker``: Amazon SageMaker Canvas adds ModelRegisterSettings support for CanvasAppSettings.
* api-change:``snowball``: Adds support for Amazon S3 compatible storage. AWS Snow Family customers can now use Amazon S3 compatible storage on Snowball Edge devices. Also adds support for V3_5S. This is a refreshed AWS Snowball Edge Storage Optimized device type with 210TB SSD (customer usable).
* api-change:``wafv2``: You can now create encrypted API keys to use in a client application integration of the JavaScript CAPTCHA API . You can also retrieve a list of your API keys and the JavaScript application integration URL.

1.27.116
========

* bugfix:Output: Consistently remove ResponseMetadata field for all commands
* api-change:``comprehend``: This release supports native document models for custom classification, in addition to plain-text models. You train native document models using documents (PDF, Word, images) in their native format.
* api-change:``ecs``: This release supports the Account Setting "TagResourceAuthorization" that allows for enhanced Tagging security controls.
* api-change:``ram``: This release adds support for customer managed permissions. Customer managed permissions enable customers to author and manage tailored permissions for resources shared using RAM.
* api-change:``rds``: Adds support for the ImageId parameter of CreateCustomDBEngineVersion to RDS Custom for Oracle
* api-change:``s3``: Provides support for "Snow" Storage class.
* api-change:``s3control``: Provides support for overriding endpoint when region is "snow". This will enable bucket APIs for Amazon S3 Compatible storage on Snow Family devices.
* api-change:``secretsmanager``: Documentation updates for Secrets Manager

(adam)

py-boto3: updated to 1.26.134

1.26.134
========

* bugfix:EndpointProvider: [``botocore``] Fixed bug in virtual addressing for S3 Buckets
* api-change:``athena``: [``botocore``] You can now define custom spark properties at start of the session for use cases like cluster encryption, table formats, and general Spark tuning.
* api-change:``codecatalyst``: [``botocore``] With this release, the users can list the active sessions connected to their Dev Environment on AWS CodeCatalyst
* api-change:``kafka``: [``botocore``] Added a fix to make clusterarn a required field in ListClientVpcConnections and RejectClientVpcConnection APIs
* api-change:``rekognition``: [``botocore``] This release adds a new EyeDirection attribute in Amazon Rekognition DetectFaces and IndexFaces APIs which predicts the yaw and pitch angles of a person's eye gaze direction for each face detected in the image.
* api-change:``rolesanywhere``: [``botocore``] Adds support for custom notification settings in a trust anchor. Introduces PutNotificationSettings and ResetNotificationSettings API's. Updates DurationSeconds max value to 3600.
* api-change:``transfer``: [``botocore``] This release introduces the ability to require both password and SSH key when users authenticate to your Transfer Family servers that use the SFTP protocol.

1.26.133
========

* bugfix:endpoints: [``botocore``] Include params set in provide-client-param event handlers in dynamic context params for endpoint resolution.
* api-change:``connect``: [``botocore``] This release updates GetMetricDataV2 API, to support metric data up-to last 35 days
* api-change:``elasticache``: [``botocore``] Added support to modify the cluster mode configuration for the existing ElastiCache ReplicationGroups. Customers can now modify the configuration from cluster mode disabled to cluster mode enabled.
* api-change:``es``: [``botocore``] This release fixes DescribePackages API error with null filter value parameter.
* api-change:``health``: [``botocore``] Add support for regional endpoints
* api-change:``ivs-realtime``: [``botocore``] Add methods for inspecting and debugging stages: ListStageSessions, GetStageSession, ListParticipants, GetParticipant, and ListParticipantEvents.
* api-change:``omics``: [``botocore``] This release provides support for Ready2Run and GPU workflows, an improved read set filter, the direct upload of read sets into Omics Storage, and annotation parsing for analytics stores.
* api-change:``opensearch``: [``botocore``] This release fixes DescribePackages API error with null filter value parameter.
* api-change:``route53resolver``: [``botocore``] Update FIPS endpoints for GovCloud (US) regions in SDK.
* api-change:``support``: [``botocore``] This release adds 2 new Support APIs, DescribeCreateCaseOptions and DescribeSupportedLanguages. You can use these new APIs to get available support languages.

1.26.132
========

* api-change:``emr``: [``botocore``] Update emr client to latest version
* api-change:``rds``: [``botocore``] Amazon Relational Database Service (RDS) updates for the new Aurora I/O-Optimized storage type for Amazon Aurora DB clusters
* api-change:``swf``: [``botocore``] This release adds a new API parameter to exclude old history events from decision tasks.

1.26.131
========

* enhancement:endpoints: [``botocore``] Fix cache implementation to reduce memory consumption.
* api-change:``application-autoscaling``: [``botocore``] With this release, Amazon SageMaker Serverless Inference customers can use Application Auto Scaling to auto scale the provisioned concurrency of their serverless endpoints.
* api-change:``glue``: [``botocore``] This release adds AmazonRedshift Source and Target nodes in addition to DynamicTransform OutputSchemas
* api-change:``sagemaker``: [``botocore``] This release includes support for (1) Provisioned Concurrency for Amazon SageMaker Serverless Inference and (2) UpdateEndpointWeightsAndCapacities API for Serverless endpoints.

1.26.130
========

* api-change:``glue``: [``botocore``] Support large worker types G.4x and G.8x for Glue Spark
* api-change:``guardduty``: [``botocore``] Add AccessDeniedException 403 Error message code to support 3 Tagging related APIs
* api-change:``iotsitewise``: [``botocore``] Provide support for 20,000 max results for GetAssetPropertyValueHistory/BatchGetAssetPropertyValueHistory and 15 minute aggregate resolution for GetAssetPropertyAggregates/BatchGetAssetPropertyAggregates
* api-change:``sts``: [``botocore``] Documentation updates for AWS Security Token Service.

1.26.129
========

* api-change:``ec2``: [``botocore``] This release adds support the inf2 and trn1n instances. inf2 instances are purpose built for deep learning inference while trn1n instances are powered by AWS Trainium accelerators and they build on the capabilities of Trainium-powered trn1 instances.
* api-change:``inspector2``: [``botocore``] Amazon Inspector now allows customers to search its vulnerability intelligence database if any of the Inspector scanning types are activated.
* api-change:``mediatailor``: [``botocore``] This release adds support for AFTER_LIVE_EDGE mode configuration for avail suppression, and adding a fill-policy setting that sets the avail suppression to PARTIAL_AVAIL or FULL_AVAIL_ONLY when AFTER_LIVE_EDGE is enabled.
* api-change:``sqs``: [``botocore``] Revert previous SQS protocol change.

1.26.128
========

* bugfix:``sqs``: [``botocore``] Rolled back recent change to wire format protocol

1.26.127
========

* api-change:``cloudwatch``: [``botocore``] Update cloudwatch client to latest version
* api-change:``config``: [``botocore``] Updated ResourceType enum with new resource types onboarded by AWS Config in April 2023.
* api-change:``connect``: [``botocore``] Remove unused InvalidParameterException from CreateParticipant API
* api-change:``ecs``: [``botocore``] Documentation update for new error type NamespaceNotFoundException for CreateCluster and UpdateCluster
* api-change:``network-firewall``: [``botocore``] This release adds support for the Suricata REJECT option in midstream exception configurations.
* api-change:``opensearch``: [``botocore``] DescribeDomainNodes: A new API that provides configuration information for nodes part of the domain
* api-change:``quicksight``: [``botocore``] Add support for Topic, Dataset parameters and VPC
* api-change:``rekognition``: [``botocore``] This release adds a new attribute FaceOccluded. Additionally, you can now select attributes individually (e.g. ["DEFAULT", "FACE_OCCLUDED", "AGE_RANGE"] instead of ["ALL"]), which can reduce response time.
* api-change:``s3``: [``botocore``] Documentation updates for Amazon S3
* api-change:``sagemaker``: [``botocore``] We added support for ml.inf2 and ml.trn1 family of instances on Amazon SageMaker for deploying machine learning (ML) models for Real-time and Asynchronous inference. You can use these instances to achieve high performance at a low cost for generative artificial intelligence (AI) models.
* api-change:``securityhub``: [``botocore``] Add support for Finding History.
* api-change:``sqs``: [``botocore``] This release enables customers to call SQS using AWS JSON-1.0 protocol.

1.26.126
========

* api-change:``appsync``: [``botocore``] Private API support for AWS AppSync. With Private APIs, you can now create GraphQL APIs that can only be accessed from your Amazon Virtual Private Cloud ("VPC").
* api-change:``ec2``: [``botocore``] Adds an SDK paginator for GetNetworkInsightsAccessScopeAnalysisFindings
* api-change:``inspector2``: [``botocore``] This feature provides deep inspection for linux based instance
* api-change:``iottwinmaker``: [``botocore``] This release adds a field for GetScene API to return error code and message from dependency services.
* api-change:``network-firewall``: [``botocore``] AWS Network Firewall now supports policy level HOME_NET variable overrides.
* api-change:``opensearch``: [``botocore``] Amazon OpenSearch Service adds the option to deploy a domain across multiple Availability Zones, with each AZ containing a complete copy of data and with nodes in one AZ acting as a standby. This option provides 99.99% availability and consistent performance in the event of infrastructure failure.
* api-change:``wellarchitected``: [``botocore``] This release deepens integration with AWS Service Catalog AppRegistry to improve workload resource discovery.

1.26.125
========

* api-change:``appflow``: [``botocore``] This release adds new API to cancel flow executions.
* api-change:``connect``: [``botocore``] Amazon Connect Service Rules API update: Added OnContactEvaluationSubmit event source to support user configuring evaluation form rules.
* api-change:``ecs``: [``botocore``] Documentation only update to address Amazon ECS tickets.
* api-change:``kendra``: [``botocore``] AWS Kendra now supports configuring document fields/attributes via the GetQuerySuggestions API. You can now base query suggestions on the contents of document fields.
* api-change:``resiliencehub``: [``botocore``] This release will improve resource level transparency in applications by discovering previously hidden resources.
* api-change:``sagemaker``: [``botocore``] Amazon Sagemaker Autopilot supports training models with sample weights and additional objective metrics.

1.26.124
========

* api-change:``compute-optimizer``: [``botocore``] support for tag filtering within compute optimizer. ability to filter recommendation results by tag and tag key value pairs. ability to filter by inferred workload type added.
* api-change:``kms``: [``botocore``] This release makes the NitroEnclave request parameter Recipient and the response field for CiphertextForRecipient available in AWS SDKs. It also adds the regex pattern for CloudHsmClusterId validation.

1.26.123
========

* api-change:``appflow``: [``botocore``] Adds Jwt Support for Salesforce Credentials.
* api-change:``athena``: [``botocore``] You can now use capacity reservations on Amazon Athena to run SQL queries on fully-managed compute capacity.
* api-change:``directconnect``: [``botocore``] This release corrects the jumbo frames MTU from 9100 to 8500.
* api-change:``efs``: [``botocore``] Update efs client to latest version
* api-change:``grafana``: [``botocore``] This release adds support for the grafanaVersion parameter in CreateWorkspace.
* api-change:``iot``: [``botocore``] This release allows AWS IoT Core users to specify a TLS security policy when creating and updating AWS IoT Domain Configurations.
* api-change:``rekognition``: [``botocore``] Added support for aggregating moderation labels by video segment timestamps for Stored Video Content Moderation APIs and added additional information about the job to all Stored Video Get API responses.
* api-change:``simspaceweaver``: [``botocore``] Added a new CreateSnapshot API. For the StartSimulation API, SchemaS3Location is now optional, added a new SnapshotS3Location parameter. For the DescribeSimulation API, added SNAPSHOT_IN_PROGRESS simulation state, deprecated SchemaError, added new fields: StartError and SnapshotS3Location.
* api-change:``wafv2``: [``botocore``] You can now associate a web ACL with a Verified Access instance.
* api-change:``workspaces``: [``botocore``] Added Windows 11 to support Microsoft_Office_2019

1.26.122
========

* api-change:``ec2``: [``botocore``] This release adds support for AMD SEV-SNP on EC2 instances.
* api-change:``emr-containers``: [``botocore``] This release adds GetManagedEndpointSessionCredentials, a new API that allows customers to generate an auth token to connect to a managed endpoint, enabling features such as self-hosted Jupyter notebooks for EMR on EKS.
* api-change:``guardduty``: [``botocore``] Added API support to initiate on-demand malware scan on specific resources.
* api-change:``iotdeviceadvisor``: [``botocore``] AWS IoT Core Device Advisor now supports MQTT over WebSocket. With this update, customers can run all three test suites of AWS IoT Core Device Advisor - qualification, custom, and long duration tests - using Signature Version 4 for MQTT over WebSocket.
* api-change:``kafka``: [``botocore``] Amazon MSK has added new APIs that allows multi-VPC private connectivity and cluster policy support for Amazon MSK clusters that simplify connectivity and access between your Apache Kafka clients hosted in different VPCs and AWS accounts and your Amazon MSK clusters.
* api-change:``lambda``: [``botocore``] Add Java 17 (java17) support to AWS Lambda
* api-change:``marketplace-catalog``: [``botocore``] Enabled Pagination for List Entities and List Change Sets operations
* api-change:``osis``: [``botocore``] Documentation updates for OpenSearch Ingestion
* api-change:``qldb``: [``botocore``] Documentation updates for Amazon QLDB
* api-change:``sagemaker``: [``botocore``] Added ml.p4d.24xlarge and ml.p4de.24xlarge as supported instances for SageMaker Studio
* api-change:``xray``: [``botocore``] Updated X-Ray documentation with Resource Policy API descriptions.

1.26.121
========

* api-change:``osis``: [``botocore``] Initial release for OpenSearch Ingestion

1.26.120
========

* api-change:``chime-sdk-messaging``: [``botocore``] Remove non actionable field from UpdateChannelReadMarker and DeleteChannelRequest.  Add precise exceptions to DeleteChannel and DeleteStreamingConfigurations error cases.
* api-change:``connect``: [``botocore``] Amazon Connect, Contact Lens Evaluation API release including ability to manage forms and to submit contact evaluations.
* api-change:``datasync``: [``botocore``] This release adds 13 new APIs to support AWS DataSync Discovery GA.
* api-change:``ds``: [``botocore``] New field added in AWS Managed Microsoft AD DescribeSettings response and regex pattern update for UpdateSettings value.  Added length validation to RemoteDomainName.
* api-change:``pinpoint``: [``botocore``] Adds support for journey runs and querying journey execution metrics based on journey runs. Adds execution metrics to campaign activities. Updates docs for Advanced Quiet Time.

1.26.119
========

* api-change:``appflow``: [``botocore``] Increased the max length for RefreshToken and AuthCode from 2048 to 4096.
* api-change:``codecatalyst``: [``botocore``] Documentation updates for Amazon CodeCatalyst.
* api-change:``ec2``: [``botocore``] API changes to AWS Verified Access related to identity providers' information.
* api-change:``mediaconvert``: [``botocore``] This release introduces a noise reduction pre-filter, linear interpolation deinterlace mode, video pass-through, updated default job settings, and expanded LC-AAC Stereo audio bitrate ranges.
* api-change:``rekognition``: [``botocore``] Added new status result to Liveness session status.

1.26.118
========

* api-change:``connect``: [``botocore``] This release adds a new API CreateParticipant. For Amazon Connect Chat, you can use this new API to customize chat flow experiences.
* api-change:``ecs``: [``botocore``] Documentation update to address various Amazon ECS tickets.
* api-change:``fms``: [``botocore``] AWS Firewall Manager adds support for multiple administrators. You can now delegate more than one administrator per organization.

1.26.117
========

* api-change:``chime-sdk-media-pipelines``: [``botocore``] This release adds support for specifying the recording file format in an S3 recording sink configuration.
* api-change:``chime-sdk-meetings``: [``botocore``] Adds support for Hindi and Thai languages and additional Amazon Transcribe parameters to the StartMeetingTranscription API.
* api-change:``chime``: [``botocore``] Adds support for Hindi and Thai languages and additional Amazon Transcribe parameters to the StartMeetingTranscription API.
* api-change:``gamelift``: [``botocore``] Amazon GameLift supports creating Builds for Windows 2016 operating system.
* api-change:``guardduty``: [``botocore``] This release adds support for the new Lambda Protection feature.
* api-change:``iot``: [``botocore``] Support additional OTA states in GetOTAUpdate API
* api-change:``sagemaker``: [``botocore``] Amazon SageMaker Canvas adds ModelRegisterSettings support for CanvasAppSettings.
* api-change:``snowball``: [``botocore``] Adds support for Amazon S3 compatible storage. AWS Snow Family customers can now use Amazon S3 compatible storage on Snowball Edge devices. Also adds support for V3_5S. This is a refreshed AWS Snowball Edge Storage Optimized device type with 210TB SSD (customer usable).
* api-change:``wafv2``: [``botocore``] You can now create encrypted API keys to use in a client application integration of the JavaScript CAPTCHA API . You can also retrieve a list of your API keys and the JavaScript application integration URL.

1.26.116
========

* api-change:``comprehend``: [``botocore``] This release supports native document models for custom classification, in addition to plain-text models. You train native document models using documents (PDF, Word, images) in their native format.
* api-change:``ecs``: [``botocore``] This release supports the Account Setting "TagResourceAuthorization" that allows for enhanced Tagging security controls.
* api-change:``ram``: [``botocore``] This release adds support for customer managed permissions. Customer managed permissions enable customers to author and manage tailored permissions for resources shared using RAM.
* api-change:``rds``: [``botocore``] Adds support for the ImageId parameter of CreateCustomDBEngineVersion to RDS Custom for Oracle
* api-change:``s3``: [``botocore``] Provides support for "Snow" Storage class.
* api-change:``s3control``: [``botocore``] Provides support for overriding endpoint when region is "snow". This will enable bucket APIs for Amazon S3 Compatible storage on Snow Family devices.
* api-change:``secretsmanager``: [``botocore``] Documentation updates for Secrets Manager

(adam)

py-s3transfer: updated to 0.6.1

0.6.1

bugfix:copy: Added support for ChecksumAlgorithm when uploading copy data in parts.

(adam)

py-botocore: updated to 1.29.134

1.29.134
========

* bugfix:EndpointProvider: Fixed bug in virtual addressing for S3 Buckets
* api-change:``athena``: You can now define custom spark properties at start of the session for use cases like cluster encryption, table formats, and general Spark tuning.
* api-change:``codecatalyst``: With this release, the users can list the active sessions connected to their Dev Environment on AWS CodeCatalyst
* api-change:``kafka``: Added a fix to make clusterarn a required field in ListClientVpcConnections and RejectClientVpcConnection APIs
* api-change:``rekognition``: This release adds a new EyeDirection attribute in Amazon Rekognition DetectFaces and IndexFaces APIs which predicts the yaw and pitch angles of a person's eye gaze direction for each face detected in the image.
* api-change:``rolesanywhere``: Adds support for custom notification settings in a trust anchor. Introduces PutNotificationSettings and ResetNotificationSettings API's. Updates DurationSeconds max value to 3600.
* api-change:``transfer``: This release introduces the ability to require both password and SSH key when users authenticate to your Transfer Family servers that use the SFTP protocol.

1.29.133
========

* bugfix:endpoints: Include params set in provide-client-param event handlers in dynamic context params for endpoint resolution.
* api-change:``connect``: This release updates GetMetricDataV2 API, to support metric data up-to last 35 days
* api-change:``elasticache``: Added support to modify the cluster mode configuration for the existing ElastiCache ReplicationGroups. Customers can now modify the configuration from cluster mode disabled to cluster mode enabled.
* api-change:``es``: This release fixes DescribePackages API error with null filter value parameter.
* api-change:``health``: Add support for regional endpoints
* api-change:``ivs-realtime``: Add methods for inspecting and debugging stages: ListStageSessions, GetStageSession, ListParticipants, GetParticipant, and ListParticipantEvents.
* api-change:``omics``: This release provides support for Ready2Run and GPU workflows, an improved read set filter, the direct upload of read sets into Omics Storage, and annotation parsing for analytics stores.
* api-change:``opensearch``: This release fixes DescribePackages API error with null filter value parameter.
* api-change:``route53resolver``: Update FIPS endpoints for GovCloud (US) regions in SDK.
* api-change:``support``: This release adds 2 new Support APIs, DescribeCreateCaseOptions and DescribeSupportedLanguages. You can use these new APIs to get available support languages.

1.29.132
========

* api-change:``emr``: Update emr client to latest version
* api-change:``rds``: Amazon Relational Database Service (RDS) updates for the new Aurora I/O-Optimized storage type for Amazon Aurora DB clusters
* api-change:``swf``: This release adds a new API parameter to exclude old history events from decision tasks.

1.29.131
========

* enhancement:endpoints: Fix cache implementation to reduce memory consumption.
* api-change:``application-autoscaling``: With this release, Amazon SageMaker Serverless Inference customers can use Application Auto Scaling to auto scale the provisioned concurrency of their serverless endpoints.
* api-change:``glue``: This release adds AmazonRedshift Source and Target nodes in addition to DynamicTransform OutputSchemas
* api-change:``sagemaker``: This release includes support for (1) Provisioned Concurrency for Amazon SageMaker Serverless Inference and (2) UpdateEndpointWeightsAndCapacities API for Serverless endpoints.

1.29.130
========

* api-change:``glue``: Support large worker types G.4x and G.8x for Glue Spark
* api-change:``guardduty``: Add AccessDeniedException 403 Error message code to support 3 Tagging related APIs
* api-change:``iotsitewise``: Provide support for 20,000 max results for GetAssetPropertyValueHistory/BatchGetAssetPropertyValueHistory and 15 minute aggregate resolution for GetAssetPropertyAggregates/BatchGetAssetPropertyAggregates
* api-change:``sts``: Documentation updates for AWS Security Token Service.

1.29.129
========

* api-change:``ec2``: This release adds support the inf2 and trn1n instances. inf2 instances are purpose built for deep learning inference while trn1n instances are powered by AWS Trainium accelerators and they build on the capabilities of Trainium-powered trn1 instances.
* api-change:``inspector2``: Amazon Inspector now allows customers to search its vulnerability intelligence database if any of the Inspector scanning types are activated.
* api-change:``mediatailor``: This release adds support for AFTER_LIVE_EDGE mode configuration for avail suppression, and adding a fill-policy setting that sets the avail suppression to PARTIAL_AVAIL or FULL_AVAIL_ONLY when AFTER_LIVE_EDGE is enabled.
* api-change:``sqs``: Revert previous SQS protocol change.

1.29.128
========

* bugfix:``sqs``: Rolled back recent change to wire format protocol

1.29.127
========

* api-change:``cloudwatch``: Update cloudwatch client to latest version
* api-change:``config``: Updated ResourceType enum with new resource types onboarded by AWS Config in April 2023.
* api-change:``connect``: Remove unused InvalidParameterException from CreateParticipant API
* api-change:``ecs``: Documentation update for new error type NamespaceNotFoundException for CreateCluster and UpdateCluster
* api-change:``network-firewall``: This release adds support for the Suricata REJECT option in midstream exception configurations.
* api-change:``opensearch``: DescribeDomainNodes: A new API that provides configuration information for nodes part of the domain
* api-change:``quicksight``: Add support for Topic, Dataset parameters and VPC
* api-change:``rekognition``: This release adds a new attribute FaceOccluded. Additionally, you can now select attributes individually (e.g. ["DEFAULT", "FACE_OCCLUDED", "AGE_RANGE"] instead of ["ALL"]), which can reduce response time.
* api-change:``s3``: Documentation updates for Amazon S3
* api-change:``sagemaker``: We added support for ml.inf2 and ml.trn1 family of instances on Amazon SageMaker for deploying machine learning (ML) models for Real-time and Asynchronous inference. You can use these instances to achieve high performance at a low cost for generative artificial intelligence (AI) models.
* api-change:``securityhub``: Add support for Finding History.
* api-change:``sqs``: This release enables customers to call SQS using AWS JSON-1.0 protocol.

1.29.126
========

* api-change:``appsync``: Private API support for AWS AppSync. With Private APIs, you can now create GraphQL APIs that can only be accessed from your Amazon Virtual Private Cloud ("VPC").
* api-change:``ec2``: Adds an SDK paginator for GetNetworkInsightsAccessScopeAnalysisFindings
* api-change:``inspector2``: This feature provides deep inspection for linux based instance
* api-change:``iottwinmaker``: This release adds a field for GetScene API to return error code and message from dependency services.
* api-change:``network-firewall``: AWS Network Firewall now supports policy level HOME_NET variable overrides.
* api-change:``opensearch``: Amazon OpenSearch Service adds the option to deploy a domain across multiple Availability Zones, with each AZ containing a complete copy of data and with nodes in one AZ acting as a standby. This option provides 99.99% availability and consistent performance in the event of infrastructure failure.
* api-change:``wellarchitected``: This release deepens integration with AWS Service Catalog AppRegistry to improve workload resource discovery.

1.29.125
========

* api-change:``appflow``: This release adds new API to cancel flow executions.
* api-change:``connect``: Amazon Connect Service Rules API update: Added OnContactEvaluationSubmit event source to support user configuring evaluation form rules.
* api-change:``ecs``: Documentation only update to address Amazon ECS tickets.
* api-change:``kendra``: AWS Kendra now supports configuring document fields/attributes via the GetQuerySuggestions API. You can now base query suggestions on the contents of document fields.
* api-change:``resiliencehub``: This release will improve resource level transparency in applications by discovering previously hidden resources.
* api-change:``sagemaker``: Amazon Sagemaker Autopilot supports training models with sample weights and additional objective metrics.

1.29.124
========

* api-change:``compute-optimizer``: support for tag filtering within compute optimizer. ability to filter recommendation results by tag and tag key value pairs. ability to filter by inferred workload type added.
* api-change:``kms``: This release makes the NitroEnclave request parameter Recipient and the response field for CiphertextForRecipient available in AWS SDKs. It also adds the regex pattern for CloudHsmClusterId validation.

1.29.123
========

* api-change:``appflow``: Adds Jwt Support for Salesforce Credentials.
* api-change:``athena``: You can now use capacity reservations on Amazon Athena to run SQL queries on fully-managed compute capacity.
* api-change:``directconnect``: This release corrects the jumbo frames MTU from 9100 to 8500.
* api-change:``efs``: Update efs client to latest version
* api-change:``grafana``: This release adds support for the grafanaVersion parameter in CreateWorkspace.
* api-change:``iot``: This release allows AWS IoT Core users to specify a TLS security policy when creating and updating AWS IoT Domain Configurations.
* api-change:``rekognition``: Added support for aggregating moderation labels by video segment timestamps for Stored Video Content Moderation APIs and added additional information about the job to all Stored Video Get API responses.
* api-change:``simspaceweaver``: Added a new CreateSnapshot API. For the StartSimulation API, SchemaS3Location is now optional, added a new SnapshotS3Location parameter. For the DescribeSimulation API, added SNAPSHOT_IN_PROGRESS simulation state, deprecated SchemaError, added new fields: StartError and SnapshotS3Location.
* api-change:``wafv2``: You can now associate a web ACL with a Verified Access instance.
* api-change:``workspaces``: Added Windows 11 to support Microsoft_Office_2019

1.29.122
========

* api-change:``ec2``: This release adds support for AMD SEV-SNP on EC2 instances.
* api-change:``emr-containers``: This release adds GetManagedEndpointSessionCredentials, a new API that allows customers to generate an auth token to connect to a managed endpoint, enabling features such as self-hosted Jupyter notebooks for EMR on EKS.
* api-change:``guardduty``: Added API support to initiate on-demand malware scan on specific resources.
* api-change:``iotdeviceadvisor``: AWS IoT Core Device Advisor now supports MQTT over WebSocket. With this update, customers can run all three test suites of AWS IoT Core Device Advisor - qualification, custom, and long duration tests - using Signature Version 4 for MQTT over WebSocket.
* api-change:``kafka``: Amazon MSK has added new APIs that allows multi-VPC private connectivity and cluster policy support for Amazon MSK clusters that simplify connectivity and access between your Apache Kafka clients hosted in different VPCs and AWS accounts and your Amazon MSK clusters.
* api-change:``lambda``: Add Java 17 (java17) support to AWS Lambda
* api-change:``marketplace-catalog``: Enabled Pagination for List Entities and List Change Sets operations
* api-change:``osis``: Documentation updates for OpenSearch Ingestion
* api-change:``qldb``: Documentation updates for Amazon QLDB
* api-change:``sagemaker``: Added ml.p4d.24xlarge and ml.p4de.24xlarge as supported instances for SageMaker Studio
* api-change:``xray``: Updated X-Ray documentation with Resource Policy API descriptions.

1.29.121
========

* api-change:``osis``: Initial release for OpenSearch Ingestion

1.29.120
========

* api-change:``chime-sdk-messaging``: Remove non actionable field from UpdateChannelReadMarker and DeleteChannelRequest.  Add precise exceptions to DeleteChannel and DeleteStreamingConfigurations error cases.
* api-change:``connect``: Amazon Connect, Contact Lens Evaluation API release including ability to manage forms and to submit contact evaluations.
* api-change:``datasync``: This release adds 13 new APIs to support AWS DataSync Discovery GA.
* api-change:``ds``: New field added in AWS Managed Microsoft AD DescribeSettings response and regex pattern update for UpdateSettings value.  Added length validation to RemoteDomainName.
* api-change:``pinpoint``: Adds support for journey runs and querying journey execution metrics based on journey runs. Adds execution metrics to campaign activities. Updates docs for Advanced Quiet Time.

1.29.119
========

* api-change:``appflow``: Increased the max length for RefreshToken and AuthCode from 2048 to 4096.
* api-change:``codecatalyst``: Documentation updates for Amazon CodeCatalyst.
* api-change:``ec2``: API changes to AWS Verified Access related to identity providers' information.
* api-change:``mediaconvert``: This release introduces a noise reduction pre-filter, linear interpolation deinterlace mode, video pass-through, updated default job settings, and expanded LC-AAC Stereo audio bitrate ranges.
* api-change:``rekognition``: Added new status result to Liveness session status.

1.29.118
========

* api-change:``connect``: This release adds a new API CreateParticipant. For Amazon Connect Chat, you can use this new API to customize chat flow experiences.
* api-change:``ecs``: Documentation update to address various Amazon ECS tickets.
* api-change:``fms``: AWS Firewall Manager adds support for multiple administrators. You can now delegate more than one administrator per organization.

1.29.117
========

* api-change:``chime-sdk-media-pipelines``: This release adds support for specifying the recording file format in an S3 recording sink configuration.
* api-change:``chime-sdk-meetings``: Adds support for Hindi and Thai languages and additional Amazon Transcribe parameters to the StartMeetingTranscription API.
* api-change:``chime``: Adds support for Hindi and Thai languages and additional Amazon Transcribe parameters to the StartMeetingTranscription API.
* api-change:``gamelift``: Amazon GameLift supports creating Builds for Windows 2016 operating system.
* api-change:``guardduty``: This release adds support for the new Lambda Protection feature.
* api-change:``iot``: Support additional OTA states in GetOTAUpdate API
* api-change:``sagemaker``: Amazon SageMaker Canvas adds ModelRegisterSettings support for CanvasAppSettings.
* api-change:``snowball``: Adds support for Amazon S3 compatible storage. AWS Snow Family customers can now use Amazon S3 compatible storage on Snowball Edge devices. Also adds support for V3_5S. This is a refreshed AWS Snowball Edge Storage Optimized device type with 210TB SSD (customer usable).
* api-change:``wafv2``: You can now create encrypted API keys to use in a client application integration of the JavaScript CAPTCHA API . You can also retrieve a list of your API keys and the JavaScript application integration URL.

1.29.116
========

* api-change:``comprehend``: This release supports native document models for custom classification, in addition to plain-text models. You train native document models using documents (PDF, Word, images) in their native format.
* api-change:``ecs``: This release supports the Account Setting "TagResourceAuthorization" that allows for enhanced Tagging security controls.
* api-change:``ram``: This release adds support for customer managed permissions. Customer managed permissions enable customers to author and manage tailored permissions for resources shared using RAM.
* api-change:``rds``: Adds support for the ImageId parameter of CreateCustomDBEngineVersion to RDS Custom for Oracle
* api-change:``s3``: Provides support for "Snow" Storage class.
* api-change:``s3control``: Provides support for overriding endpoint when region is "snow". This will enable bucket APIs for Amazon S3 Compatible storage on Snow Family devices.
* api-change:``secretsmanager``: Documentation updates for Secrets Manager

(adam)

Updated www/py-tornado, devel/py-typeguard

(adam)

py-typeguard: updated to 4.0.0

**4.0.0** (2023-05-12)

- No changes

**4.0.0rc6** (2023-05-07)

- Fixed ``@typechecked`` optimization causing compilation of instrumented code to fail
  when an ``if`` block was left empty by the AST transformer
- Fixed the AST transformer trying to parse the second argument of ``typing.Annotated``
  as a forward reference

**4.0.0rc5** (2023-05-01)

- Added ``InstrumentationWarning`` to the public API
- Changed ``@typechecked`` to skip instrumentation in optimized mode, as in typeguard
  2.x
- Avoid type checks where the types in question are shadowed by local variables
- Fixed instrumentation using ``typing.Optional`` without a subscript when the subscript
  value was erased due to being an ignored import
- Fixed ``TypeError: isinstance() arg 2 must be a type or tuple of types`` when
  instrumented code tries to check a value against a naked (``str``, not ``ForwardRef``)
  forward reference
- Fixed instrumentation using the wrong "self" type in the ``__new__()`` method

**4.0.0rc4** (2023-04-15)

- Fixed imports guarded by ``if TYPE_CHECKING:`` when used with subscripts
  (``SomeType[...]``) being replaced with ``Any[...]`` instead of just ``Any``
- Fixed instrumentation inadvertently mutating a function's annotations on Python 3.7
  and 3.8
- Fixed ``Concatenate[...]`` in ``Callable`` parameters causing ``TypeError`` to be
  raised
- Fixed type checks for ``*args`` or ``**kwargs`` not being suppressed when their types
  are unusable (guarded by ``if TYPE_CHECKING:`` or otherwise)
- Fixed ``TypeError`` when checking against a generic ``NewType``
- Don't try to check types shadowed by argument names (e.g.
  ``def foo(x: type, type: str): ...``)
- Don't check against unions where one of the elements is ``Any``

**4.0.0rc3** (2023-04-10)

- Fixed ``typing.Literal`` subscript contents being evaluated as forward references
- Fixed resolution of forward references in type aliases

**4.0.0rc2** (2023-04-08)

- The ``.pyc`` files now use a version-based optimization suffix in the file names so as
  not to cause the interpreter to load potentially faulty/incompatible cached bytecode
  generated by older versions
- Fixed typed variable positional and keyword arguments causing compilation errors on
  Python 3.7 and 3.8
- Fixed compilation error when a type annotation contains a type guarded by
  ``if TYPE_CHECKING:``

**4.0.0rc1** (2023-04-02)

- **BACKWARD INCOMPATIBLE** ``check_type()`` no longer uses the global configuration.
  It now uses the default configuration values, unless overridden with an explicit
  ``config`` argument.
- **BACKWARD INCOMPATIBLE** Removed ``CallMemo`` from the API
- **BACKWARD INCOMPATIBLE** Required checkers to use the configuration from
  ``memo.config``, rather than the global configuration
- Added keyword arguments to ``@typechecked``, allowing users to override settings on a
  per-function basis
- Added support for using ``suppress_type_checks()`` as a decorator
- Added support for type checking against nonlocal classes defined within the same
  parent function as the instrumented function
- Changed instrumentation to statically copy the function annotations to avoid having to
  look up the function object at run time
- Improved support for avoiding type checks against imports declared in
  ``if TYPE_CHECKING:`` blocks
- Fixed ``check_type`` not returning the passed value when checking against ``Any``, or
  when type checking is being suppressed
- Fixed ``suppress_type_checks()`` not ending the suppression if the context block
  raises an exception
- Fixed checking non-dictionary objects against a ``TypedDict`` annotation

(adam)

py-tornado: updated to 6.3.2

What's new in Tornado 6.3.2
===========================

Security improvements

- Fixed an open redirect vulnerability in StaticFileHandler under certain
  configurations.

(adam)

Updated net/py-grpcio, net/py-grpcio-testing, net/py-grpcio-tools, multimedia/py-m3u8, net/py-python-socks, www/py-flask-session

(adam)

py-flask-session: updated to 0.5.0

Version 0.5.0
- Drop support for Python < 3.7.
- Switch to ``pyproject.toml`` and Flit for packaging.
- Move to Pallets Community Ecosystem for community-driven maintenance.
- Replace use of ``session_cookie_name`` for Flask 2.3 compatibility.

(adam)

py-python-socks: updated to 2.3.0

2.3.0
Unknown changes

(adam)

py-m3u8: updated to 3.5.0

3.5.0

Comparisons to singletons - PEP8 style guide
Avoid using decimal.Decimal for integer values
Re-work URL joining to follow RFC 3986

(adam)

py-grpcio py-grpcio-testing py-grpcio-tools: updated to 1.54.2

Release v1.54.2
This release contains refinements, improvements, and bug fixes.

(adam)

Updated lang/py-inflect, devel/py-scikit-build, devel/py-faker, textproc/py-sphinx, lang/py-findpython

(adam)

py-findpython: updated to 0.2.5

0.2.5

Bug Fixes

UTF-8 encoding of shell command output on Windows
windows: Findpython failed if PATH env contains folder with restricted access

(adam)

py-sphinx: updated to 7.0.1

7.0.1

Dependencies

* Support `Docutils 0.20`_. Patch by Adam Turner.

Bugs fixed

* Clean up remaining references to ``sphinx.setup_command``
  following the removal of support for setuptools.
  Patch by Willem Mulder.

(adam)

py-faker: updated to 18.7.0

v18.7.0
* Add `license_plate` for `zh_CN` and `zh_TW`.

(adam)

py-scikit-build: updated to 0.17.5

Scikit-build 0.17.5
===================

A small fix release fixing the passing on of generator specific arguments. This
fixes some cases where the Ninja generator was found but then was unable to
build. NetBSD was reported to work, so was added to the BSD's supported.

Bug fixes
---------

* Generator args were missing for actual compile
* Add support for netbsd & pyodide (future)

(adam)

py-inflect: updated to 6.0.4

v6.0.4
* Internal cleanup.

v6.0.3
* A/an support now more correctly honors leading
  capitalized words and abbreviations.
* Improve support for ordinals for floats.

(adam)

Updated devel/py-pdm_backend, net/py-unearth, devel/py-pdm, lang/py-mypy

(adam)

py-mypy: updated to 1.3.0

1.3.0

Performance Improvements
Stub Tooling Improvements
Improvements to attrs
Documentation Updates
Error Reporting Improvements
Mypyc Improvements

(adam)

py-pdm: updated to 2.6.1

2.6.1

Bug Fixes

Fix the error when publishing using trusted publisher.
Fix a bug that PATH env var isn't set correctly when running under non-isolation mode.

2.6.0

Features & Improvements

Install project-level plugins from project config, with tool.pdm.plugins setting.
Added a --json flag to both run and info command allowing to dump scripts and infos as JSON.
Consider tasks with a name starting by an underscore (_) as internal tasks and hide them from the listing.
When running pdm init -n(non-interactive mode), a venv will be created by default. Previously, the selected Python will be used under PEP 582 mode.
Support Trusted Publisher.
Add an ephemeral wheel cache in process for wheels built from non-static revision sources.
Allow self-referencing groups in dev-dependencies.
Add an option --no-cross-platform to pdm lock to create a non-cross-platform lockfile.

Bug Fixes

Fix brackets in --venv option descriptions in zsh completion script.
The resolver doesn't take into account of the requirements for both bare package and package[extra].
Default pypi source does not use configured pypi.password, but "" instead.
Detect Python interpreters under the root of virtual environments.
Fix a race condition when the builder is creating a new build directory.
Raise FileNotFoundError if the requirement path is not found.
Fix a bug that the self package isn't uninstallable.

(adam)

py-unearth: updated to 0.9.1

0.9.1

�泅� Features

cli: Exposing requires-python, platform and abi interface for cli tools.

�汾� Bug Fixes

Evaluation issue when the requirement has no version specifier
Typo on json response field

(adam)

py-pdm_backend: updated to 2.0.7

2.0.7

Convert boolean value to lowercase in Root-Is-Purelib
PDM_BUILD_NO_CLEAN handling is incorrect

(adam)

Added time/py-rfc3339-validator; Updated textproc/py-openapi-schema-validator, textproc/py-openapi-spec-validator, textproc/py-openapi-core

(adam)

py-openapi-core: updated to 0.17.1

0.17.1

Include tests in sdist archives
add python 3.11 support

0.17.0

shortcuts high level public api expose
ParametersError context property deprecated
Spec.create deprecated
Validators refactor
Webhooks support
Rename UnmarshalContext to ValidationContext
Fix PATH_PARAMETER_PATTERN for DRF default value pattern.
Fix falcon response data none
Shortcuts backward compatible
RequestValidator and ResponseValidator backward compatibility
Fix flask decorator function return other types
Fix integration Request Response factories check types fix
Fix Requests request dont allow fragments
Fix openapi packages update and tests
unmarshallers integration tests
Unmarshallers and validators refactor
Shortcuts refactor
Media type deserializers refactor

Backward incompatibilities

Schema unmarshalling/validation returns Invalid* exception (InvalidData, InvalidParameter, InvalidRequestBody, InvalidHeader). Use __cause__ property to get root cause exception.
InvalidSecurity exception renamed to SecurityNotFound

(adam)

py-openapi-spec-validator: fix PKGNAME

(adam)

py-openapi-spec-validator: updated to 0.5.6

0.5.6

Fix typo in server variables schema for OpenAPI 3.1.0
Include tests in sdist archives
jsonschema 4.17 dependency limit
add python 3.11 support

0.5.5

update openapi-schema-validator dependecy

0.5.4

schema properties validation recursion fix

0.5.3

fix custom format checker not found test
fix property missing reference validation

0.5.2

Use stdlib importlib.resources on python >= 3.9
mypy typing module version fix
Drop no longer used runtime dependency on PyYAML
allow openapi-schema-validator 0.4

(adam)

py-openapi-schema-validator: updated to 0.4.4

0.4.4

Include tests in sdist archives
jsonschema 4.17 dependency limit
add python 3.11 support

0.4.3

test required formats only

0.4.2

Rely on jsonschema date date-time and uuid format checkers. Format checkers assigned to validators

Backward incompatibility

Missing format checker for format no longer raise FormatError

0.4.1

OAS30 read write validators

0.4.0

Drop no longer used runtime dependency on attrs
Re-implemented nullable based on OAS 3.0.3 definition.

(adam)

py-rfc3339-validator: added version 0.1.4

A pure python RFC3339 validator.

(adam)

Updated devel/py-poetry-core, devel/py-scikit-build

(adam)

py-scikit-build: updated to 0.17.4

Scikit-build 0.17.4
===================

A followup fix to the issue 0.17.3 tried to fix. We now have a method to
manually test downstream packages, too.

Bug fixes
---------

* Make sure include dir is found even if the lib is not present in :pr:`974`.

(adam)

py-poetry-core: updated to 1.6.0

1.6.0

Added

Improve error message for invalid markers
Increase robustness when deleting temporary directories on Windows
Add support for file dependencies with subdirectories

Changed

Replace tomlkit with tomli, which changes the interface of some internal classes
Deprecate Package.category

Fixed

Fix a performance regression in marker handling
Fix an issue where wildcard version constraints were not handled correctly
Fix an issue where poetry build created duplicate Python classifiers if they were specified manually
Fix an issue where local versions where not handled correctly

(adam)