help2man: updated to 1.49.2

help2man (1.49.2) unstable; urgency=medium
* Add configure~ to mostlyclean target.
* Add Romanian translations (thanks to Remus-Gabriel Chelu).

(adam)

Updated multimedia/mkvtoolnix, devel/py-pyparsing

(adam)

py-pyparsing: updated to 3.0.8

Version 3.0.8
-------------
- API CHANGE: modified pyproject.toml to require Python version
  3.6.8 or later for pyparsing 3.x. Earlier minor versions of 3.6
  fail in evaluating the `version_info` class (implemented using
  `typing.NamedTuple`). If you are using an earlier version of Python
  3.6, you will need to use pyparsing 2.4.7.

- Improved pyparsing import time by deferring regex pattern compiles.

- Updated build to use flit, PR by Michaﾅ� Gﾃｳrny, added BUILDING.md
  doc and removed old Windows build scripts - nice cleanup work!

- More type-hinting added for all arithmetic and logical operator
  methods in `ParserElement`. PR from Kazantcev Andrey, thank you.

- Fixed `infix_notation`'s definitions of `lpar` and `rpar`, to accept
  parse expressions such that they do not get suppressed in the parsed
  results. PR submitted by Philippe Prados, nice work.

- Fixed bug in railroad diagramming with expressions containing `Combine`
  elements. Reported by Jeremy White, thanks!

- Added `show_groups` argument to `create_diagram` to highlight grouped
  elements with an unlabeled bounding box.

- Added `unicode_denormalizer.py` to the examples as a demonstration
  of how Python's interpreter will accept Unicode characters in
  identifiers, but normalizes them back to ASCII so that identifiers
  `print` and `�摯｡�搏ｻ盞｢�搏��攪〜 and `�摶呆搨汝摎を搗帋ｵ輿 are all equivalent.

- Removed imports of deprecated `sre_constants` module for catching
  exceptions when compiling regular expressions. PR submitted by
  Serhiy Storchaka, thank you.

(adam)

mkvtoolnix: updated to 67.0.0

Version 67.0.0 "Under Stars" 2022-04-10

New features and enhancements

* all: IETF BCP 47/RFC 5646 language tags: when deriving the legacy language
  element codes to use a language tag's ISO 639 code is also potentially
  interpreted as an & its prefix is used as the legacy language code. For
  example, "Yue Chinese" = `yue` is not part of ISO 639-2. However, there is
  an extlang subtag `yue` with a valid prefix of `zh` ("Chinese"), and for
  "Chinese" there is an ISO 639-2 language code: `chi`. In this example the
  IETF language element would be set to `yue` and the corresponding legacy
  element to `chi`.
* all: IETF BCP 47/RFC 5646 language tags: grandfathered language tags are now
  supported.
* all: IETF BCP 47/RFC 5646 language tags: all deprecated subtags from the
  IANA language subtag registry are now supported.
* all: IETF BCP 47/RFC 5646 language tags: all lists of valid subtags have
  been updated from their respective authoritative sources.
* all: IETF BCP 47/RFC 5646 language tags: all in the IANA language subtag
  registry are now supported, even those marked as deprecated and of type
  'grandfathered'.
* all: IETF BCP 47/RFC 5646 language tags: reduced the maximum number of
  extended language subtags that are present in a valid tag from 3 to 1 in
  compliance with RFC 5646 section 2.2.2.
* all: IETF BCP 47/RFC 5646 language tags: all language codes reserved for
  private/local use (`qaa`–`qtz`) are now supported.
* all: IETF BCP 47/RFC 5646 language tags: Digital Cinema Naming Convention
  language codes that fall into the IETF BCP 47 range of "private use" tags
  (`qaa`–`qtz`) are now replaced by their IETF BCP 47 equivalents during
  normalization (e.g. `QMS` → `cmn-Hans`).
* all: added a new translation to Chinese Simplified (Singapore) by Dian Li.
* mkvmerge, mkvpropedit: added a new command line option called
  `--enable-legacy-font-mime-types`. With this option on the two programs will
  use the same legacy MIME types for fonts whenever new attachments are added
  (both programs), when reading existing attachments (only `mkvmerge`) or when
  replacing existing ones (only `mkvpropedit`).
* mkvmerge, mkvpropedit: IETF BCP 47/RFC 5646 language tags: added a command
  line option `--normalize-language-ietf <mode>` which turns on normalization
  of IETF BCP 47 language tags to either their canonical (mode `canonical`) or
  extended language subtags form (mode `extlang`) or turns it off (mode
  `off`). If the option isn't given, language tags will now be normalized to
  the canonical form.
* MKVToolNix GUI: IETF BCP 47/RFC 5646 language tags: ISO 639-3 and 639-5
  languages will now be used by default.
* MKVToolNix GUI: IETF BCP 47/RFC 5646 language tags: the language editor
  dialog will now show warnings in several cases: when deprecated tags are
  used; when the tag's canonical and/or extlang forms differ from the user
  input.
* MKVToolNix GUI: IETF BCP 47/RFC 5646 language tags: the language editor now
  has a button to replace the current tag with a normalized form (canonical or
  extlang) if those differ from the current tag.
* MKVToolNix GUI: IETF BCP 47/RFC 5646 language tags: added an option in the
  preferences to always normalize all language tags to their canonical or
  extlang forms or to turn normalization off. Can also be enabled from the
  language editor dialog.
* MKVToolNix GUI: IETF BCP 47/RFC 5646 language tags: the language dialog now
  shows a warning if a variant is used with a prefix that isn't in the
  variant's list of suitable prefixes. It'll also say if the corresponding
  canonical/extlang forms would have a suitable prefix.
* MKVToolNix GUI: IETF BCP 47/RFC 5646 language tags: the language dialog now
  shows a warning if a script is used with a language for which it should be
  suppressed.
* MKVToolNix GUI: multiplexer: the track property group boxes in the
  scrollable pane are now collapsible & expandable, saving their state over
  restarts of the GUI. This is in preparation of adding many more track
  properties in future releases, allowing the user to hide parts they don't
  use all that often.
* MKVToolNix GUI: multiplexer: if the option "use legacy font MIME types" is
  enabled in the preferences, the new command line option
  `--enable-legacy-font-mime-types` will be passed to `mkvmerge` in order to
  have it remap the MIME types of existing attachments, too.

Bug fixes

* all: IETF BCP 47/RFC 5646 language tags: variants aren't validated wrt. to
  prefixes anymore as BCP 47 doesn't actually pose restrictions on them,
  saying only that prefixes "are suitable sequences" for use with the
  variants. What is now verified, though, is that no variant is used multiple
  times within the same language tag.
* build system & MKVToolNix GUI: fixed detecting the presence of & the
  compilation with the multimedia module of Qt version 6.2.0 and newer.
* build system: fixed compilation on Unices other than Linux & macOS
  (e.g. FreeBSD).
* MKVToolNix GUI: job queue: fixed compiling in the audio player code for the
  the "play audio" end-of-job action.
* MKVToolNix GUI: multiplexer: recognizing added XML chapter, segment info or
  chapter files required the XML declaration & root node (e.g. `<?xml…?> …
  <Chapters>` for chapters) be located within the first 1 KB, which wasn't
  enough for files that contain a lot of comments at the start like the
  included `example-chapters-2.xml`. The detection range was extended to 10
  KB.

Build system changes

* build system: the provided Windows binaries are now compiled with Qt 6. A
  drawback is that certain audio formats aren't supported anymore by Qt for
  the "end of job" sound notification playback, notably the Ogg file format &
  the Vorbis audio codec. MKVToolNix therefore now ships Opus-in-WebM files
  for the same purpose.
* The bundled `fmt` library was updated to v8.1.1.
* The bundled `nlohmann-json` library was updated to v3.10.5.
* The bundled `pugixml` library was updated to v1.12.1.

(adam)

py-pyerfa: not for Python 3.7

(adam)

Updated games/rocksndiamonds, textproc/ugrep

(adam)

ugrep: updated to 3.7.9

ugrep v3.7.9
Additional --stats results with total lines searched and matched, and time elapsed. New complementary options --min-depth, --max-depth, --min-line and --max-line which are added for consistency with the updated options --min-count and --max-count. Updated the --min-count option, which can now be combined with any other option except with -v (--invert-match). Updated option -K (--range) to take a MAX argument instead of a FIRST argument for consistency with other min/max options. Recursive searching sysfd, such as /proc and /sys, no longer blocks on special files/devices. Fixed inconsistent colorization with option -v when used with context options -A, -B and -C. Fixed option -r when combined with file argument - (read standard input), which does both, like GNU grep. Other minor improvements.

(adam)

rocksndiamonds: updated to 4.3.1.1

Rocks'n'Diamonds 4.3.1.1 released!
This new patch version is a recommended release, as it fixes several bugs:

fixed crash bug when player was killed by explosion
fixed crash bugs caused by accessing invalid array positions
fixed truncating score to 16-bit value in score file
fixed bug with automatically pausing tape before end for short tapes
fixed redraw problems if screen is much larger than visible playfield
added dynamically increasing number of digits for some game panel values
removed some unused variables and other compilation warnings

Rocks'n'Diamonds 4.3.1.0 released!
A new minor release is available with the following additions and bug fixes:

added check for custom elements being ���next to��� player or element
added graphics animation mode ���tiled��� for tiled graphics on elements
added graphics animation mode ���random_static��� (unchanged for each tile)
added additional empty space elements that can be graphically decorated
added counting mouse clicks on mouse click CEs when using step counter
added showing mouse cursor for levels with mouse click custom elements
fixed bug with playing sound and music loops on the music info screen

(adam)

py-numpy: Python 3.7 will get the older version from now on

(adam)

Updated math/py-numpy, math/py-scipy

(adam)

py-scipy: updated to 1.8.0

SciPy 1.8.0 is the culmination of 6 months of hard work. It contains
many new features, numerous bug-fixes, improved test coverage and better
documentation. There have been a number of deprecations and API changes
in this release, which are documented below. All users are encouraged to
upgrade to this release, as there are a large number of bug-fixes and
optimizations. Before upgrading, we recommend that users check that
their own code does not use deprecated SciPy functionality (to do so,
run your code with ``python -Wd`` and check for ``DeprecationWarning`` s).
Our development attention will now shift to bug-fix releases on the
1.8.x branch, and on adding new features on the master branch.

This release requires Python 3.8+ and NumPy 1.17.3 or greater.

For running on PyPy, PyPy3 6.0+ is required.

**************************
Highlights of this release
**************************

- A sparse array API has been added for early testing and feedback; this
  work is ongoing, and users should expect minor API refinements over
  the next few releases.
- The sparse SVD library PROPACK is now vendored with SciPy, and an interface
  is exposed via `scipy.sparse.svds` with ``solver='PROPACK'``. It is currently
  default-off due to potential issues on Windows that we aim to
  resolve in the next release, but can be optionally enabled at runtime for
  friendly testing with an environment variable setting of ``USE_PROPACK=1``.
- A new `scipy.stats.sampling` submodule that leverages the ``UNU.RAN`` C
  library to sample from arbitrary univariate non-uniform continuous and
  discrete distributions
- All namespaces that were private but happened to miss underscores in
  their names have been deprecated.

(adam)

py-numpy: updated to 1.22.3

The NumPy 1.22.3 is maintenance release that fixes bugs discovered after the
1.22.2 release. The most noticeable fixes may be those for DLPack. One that may
cause some problems is disallowing strings as inputs to logical ufuncs. It is
still undecided how strings should be treated in those functions and it was
thought best to simply disallow them until a decision was reached. That should
not cause problems with older code.

The NumPy 1.22.2 is maintenance release that fixes bugs discovered after the
1.22.1 release. Notable fixes are:

- Several build related fixes for downstream projects and other platforms.
- Various Annotation fixes/additions.
- Numpy wheels for Windows will use the 1.41 tool chain, fixing downstream link
  problems for projects using NumPy provided libraries on Windows.
- Deal with CVE-2021-41495 complaint.

The NumPy 1.22.1 is maintenance release that fixes bugs discovered after the
1.22.0 release. Notable fixes are:

- Fix f2PY docstring problems (SciPy)
- Fix reduction type problems (AstroPy)
- Fix various typing bugs.

NumPy 1.22.0 is a big release featuring the work of 153 contributers spread
over 609 pull requests. There have been many improvements, highlights are:

* Annotations of the main namespace are essentially complete. Upstream is a
  moving target, so there will likely be further improvements, but the major
  work is done. This is probably the most user visible enhancement in this
  release.
* A preliminary version of the proposed Array-API is provided. This is a step
  in creating a standard collection of functions that can be used across
  applications such as CuPy and JAX.
* NumPy now has a DLPack backend. DLPack provides a common interchange format
  for array (tensor) data.
* New methods for ``quantile``, ``percentile``, and related functions. The new
  methods provide a complete set of the methods commonly found in the
  literature.
* A new configurable allocator for use by downstream projects.
* The universal functions have been refactored to implement most of
  :ref:`NEP 43 <NEP43>`.  This also unlocks the ability to experiment with the
  future DType API.

(adam)

Updated textproc/py-openapi-schema-validator, textproc/py-openapi-spec-validator

(adam)

py-openapi-spec-validator: updated to 0.4.0

0.4.0
Drop Python 2.7, 3.5 and 3.6 support
Add Python 3.10 support
Bump dependency upper bounds
Drop pyrsistent direct dependency

(adam)

py-openapi-schema-validator: updated to 0.2.3

0.2.3
readOnly and writeOnly on jsonschema4 fix

0.2.2
Validate oneOf, anyOf and allOf with discriminator (cherry-pick from 0.3.x)

0.2.1
Revert "make jsonschema4 compatible (DeprecationWarning fix)"
Drop python 3.6 support (cherry-pick from 0.3.x and part 2)
Limit jsonschema dependency

0.2.0
switch to poetry
drop python 2.7 and 3.5 support
make jsonschema4 compatible (DeprecationWarning fix)

(adam)

Updated security/py-acme, security/py-certbot*

(adam)

py-acme py-certbot*: updated to 1.26.0

Certbot 1.26.0

Added

Added --new-key. When renewing or replacing a certificate that has --reuse-key
set, it will force a new private key to be generated, one time.

As before, --reuse-key and --no-reuse-key can be used to enable and disable key
reuse.

Changed

The default propagation timeout for the OVH DNS plugin (--dns-ovh-propagation-seconds)
has been increased from 30 seconds to 120 seconds, based on user feedback.

Fixed

Certbot for Windows has been upgraded to use Python 3.9.11, in response to
https://www.openssl.org/news/secadv/20220315.txt.
Previously, when Certbot was in the process of registering a new ACME account
and the ACME server did not present any Terms of Service, the user was asked to
agree with a non-existent Terms of Service ("None"). This bug is now fixed, so
that if an ACME server does not provide any Terms of Service to agree with, the
user is not asked to agree to a non-existent Terms of Service any longer.
If account registration fails, Certbot did not relay the error from the ACME server
back to the user. This is now fixed: the error message from the ACME server is now
presented to the user when account registration fails.

(adam)

Updated security/libgpg-error, devel/py-jupyter_client

(adam)

py-jupyter_client: updated to 7.2.2

7.2.2

Maintenance and upkeep improvements

- Include py.typed file
- [pre-commit.ci] pre-commit autoupdate
- More Cleanup

(adam)

libgpg-error: updated to 1.45

Noteworthy changes in version 1.45 (2022-04-07)
-----------------------------------------------

* Support the "sysopen" mode parameter for gpgrt_fopen so that file
  names longer than MAX_PATH can be supported under Windows.

* gpgrt_access and gpgrt_mkdir now support file names longer than
  MAX_PATH.

* gpgrt_fopen now maps "/dev/null" to "nul" on Windows.

* Published some internal helper functions for Windows.

* Interface changes relative to the 1.42 release:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
gpgrt_free_wchar                NEW.
gpgrt_fname_to_wchar            NEW.
gpgrt_utf8_to_wchar              NEW.
gpgrt_wchar_to_utf8              NEW.

(adam)

Updated devel/py-entrypoints, devel/py-jupyter_client

(adam)

py-jupyter_client: updated to 7.2.1

7.2.1

Maintenance and upkeep improvements

- Handle Warnings

7.2.0

Enhancements made

- Update consoleapp.py

Bugs fixed

- Json packer: handle TypeError and fallback to old json_clean
- Prefer sending signals to kernel process group

Maintenance and upkeep improvements

- Mock is not needed
- Add pytest opts and clean up workflows
- Clean up dependency handling
- Use built in run cancellation

(adam)

py-entrypoints: updated to 0.4

0.4:
Unknown changes

(adam)

Updated devel/py-flit_core, devel/py-flit

(adam)

py-flit_core py-flit: updated to 3.7.1

Version 3.7.1

Fix building packages which need execution to get the version number, and have a relative import in __init__.py.

Version 3.7

Support for external data files such as man pages or Jupyter extension support files.
Project names are now lowercase in wheel filenames and .dist-info folder names, in line with the specification.
Improved support for bootstrapping a Python environment, e.g. for downstream packagers. flit_core.wheel is usable with python -m to create wheels before the build tool is available, and flit_core sdists also include a script to install itself from a wheel before installer is available.
Use newer importlib APIs, fixing some deprecation warnings

(adam)

Make pkglint happy

(adam)

Added www/py-widgetsnbextension; Updated www/py-ipywidgets

(adam)

py-ipywidgets: updated to 7.7.0

7.7
---
Highlights include:

- Fix installation on Python 3.10.
- Throw an error if we cannot render a widget, enabling the rendering system to fall back to rendering a different data type if available.
- Create a new widget control comm channel, enabling more efficient fetching of kernel widget state.
- Refactor logic for fetching kernel widget state to the manager base class. This logic first tries to use the new widget control comm channel, falling back to the existing method of requesting each widget's state individually.
- Enable HTMLManager output widgets to render state updates.
- Do not reset JupyterLab CSS variables if they are already defined.
- Fix variable inspector example.
- Introduce new widget manager `has_model` method for synchronously checking if a widget model is registered.
- Work around bug in Chrome rendering Combobox arrows.
- Optionally echo update messages from frontends to other frontends. This enables widget views in different frontends to maintain consistent state simultaneously, and also makes sure that simultaneous updates from the kernel and frontend resolve to a consistent state. This is off by default in ipywidgets 7.7, and it is anticipated this will be on by default in ipywidgets 8.0. To enable echo update messages across ipwyidgets, set the environment variable `JUPYTER_WIDGETS_ECHO` to 1. To opt a specific attribute out of echo updates, tag the attribute with `echo_update=False` metadata (we do this in core for the FileUpload widget's `data` attribute).

(adam)

py-widgetsnbextension: added version 3.6.0

Interactive HTML widgets for Jupyter notebooks.

(adam)

py-nbconvert: add missing dependency on www/py-beautifulsoup4

(adam)

Added textproc/py-fastjsonschema; Updated www/py-nbformat, www/py-notebook, security/py-gssapi

(adam)

py-gssapi: updated to 1.7.3

v1.7.3:
Fix up sha512sum file generation in the GitHub release asset
Added Python type annotation to classes and functions

(adam)

py-notebook: updated to 6.4.10

6.4.9

Maintenance and upkeep improvements

- Update links and fix check-release)
- Update 6.4.x branch with some missing commits

Other merged PRs

- Specify minimum version of nbconvert required

(adam)

py-nbformat: updated to 5.3.0

5.3.0
=====
- Use `f`astjsonschema`` by default
- Adopt ``pre-commit`` and auto-formatters
- Increase minimum ``jsonschema`` to 2.6, handle warnings

5.2.0
=====
- Add ability to capture validation errors
- Update supported python versions
- Ensure nbformat minor version is present when upgrading
- Only fix cell ID validation issues if asked
- Return the notebook when no conversion is needed
- Catch AttributeErrors stemming from ipython_genutils as ValidationErrors on read
- Don't list pytest-cov as a test dependency
- Remove dependency on IPython genutils
- Include tests in sdist but not wheel

(adam)

py-fastjsonschema: added version 2.15.3

fastjsonschema implements validation of JSON documents by JSON schema. The
library implements JSON schema drafts 04, 06 and 07. The main purpose is to
have a really fast implementation.

(adam)

Updated devel/py-pyrsistent, textproc/py-jsonschema

(adam)

py-flask-restplus: exclude Python 2.7

(adam)

py-jsonschema: updated to 4.4.0

v4.4.0
------
* Add ``mypy`` support
* Add support for Python 3.11

v4.3.3
------
* Properly report deprecation warnings at the right stack level

v4.3.2
------
* Additional performance improvements for resolving refs

v4.3.1
------
* Resolving refs has had performance improvements

v4.3.0
------
* Fix undesired fallback to brute force container uniqueness check on
  certain input types
* Implement a PEP544 Protocol for validator classes

v4.2.1
------
* Pin ``importlib.resources`` from below

v4.2.0
------
* Use ``importlib.resources`` to load schemas
* Ensure all elements of arrays are verified for uniqueness by ``uniqueItems``

v4.1.2
------
* Fix ``dependentSchemas`` to properly consider non-object instances to be
  valid

v4.1.1
------
* Fix ``prefixItems`` not indicating which item was invalid within the instance
  path

v4.1.0
------
* Add Python 3.10 to the list of supported Python versions

v4.0.1
------
* Fix the declaration of minimum supported Python version

v4.0.0
------
* Partial support for Draft 2020-12 (as well as 2019-09).
  Thanks to Thomas Schmidt and Harald Nezbeda.
* ``False`` and ``0`` are now properly considered non-equal even
  recursively within a container
  ``uniqueItems`` validation may be *slower* in some cases. Please feel
  free to report any significant performance regressions, though in
  some cases they may be difficult to address given the specification
  requirement.
* The CLI has been improved, and in particular now supports a ``--output``
  option (with ``plain`` (default) or ``pretty`` arguments) to control the
  output format. Future work may add additional machine-parsable output
  formats.
* Code surrounding ``DEFAULT_TYPES`` and the legacy mechanism for
  specifying types to validators have been removed, as per the deprecation
  policy. Validators should use the ``TypeChecker`` object to customize
  the set of Python types corresponding to JSON Schema types.
* Validation errors now have a ``json_path`` attribute, describing their
  location in JSON path format
* Support for the IP address and domain name formats has been improved
* Support for Python 2 and 3.6 has been dropped, with ``python_requires``
  properly set.
* ``multipleOf`` could overflow when given sufficiently large numbers. Now,
  when an overflow occurs, ``jsonschema`` will fall back to using fraction
  division
* ``jsonschema.__version__``, ``jsonschema.validators.validators``,
  ``jsonschema.validators.meta_schemas`` and
  ``jsonschema.RefResolver.in_scope`` have been deprecated, as has
  passing a second-argument schema to ``Validator.iter_errors`` and
  ``Validator.is_valid``.

(adam)

py-pyrsistent: updated to 0.18.1

0.18.1, 2022-01-14
* Add universal wheels for MacOS, thanks @ntamas for this!
* Add support for Python 3.10, thanks @hugovk for this!
* Fix 236 compilation errors under Python 3.10.
* Drop official support for Python 3.6 since it's EOL since 2021-12-23.
* Fix 238, failing doc tests on Python 3.11, thanks @musicinmybrain for this!

0.18.0, 2021-06-28
* Fix 209 Update freeze recurse into pyrsistent data structures and thaw to recurse into lists and dicts,
  NB! This is a backwards incompatible change! To keep the old behaviour pass `strict=False` to freeze and thaw.
* Fix 226, stop using deprecated exception.message.
* Fix 211, add union operator to persistent maps.
* Fix 194, declare build dependencies through pyproject.toml.
* Officially drop Python 3.5 support.
* Fix 223, release wheels for all major platforms.
* Fix 221, KeyError obscured by TypeError if key is a tuple.
* Fix LICENSE file name spelling.
* Fix 216, add abstractmethod decorator for CheckedType and ABCMeta for _CheckedTypeMeta.
* Fix 228, rename example classes in tests to avoid name clashes with pytest.

0.17.3, 2020-09-13
* Fix 208, release v0.17.3 with proper meta data requiring Python >= 3.5.

0.17.2 (yanked awaiting proper fix for Python 3 req), 2020-09-09
* Same as 0.17.1 released with more recent version of setuptools to get proper meta data for in place.

0.17.1 (yanked for proper meta data), 2020-09-09
* Restrict package to Python >= 3.5 to not break unpinned Python 2 dependencies.

0.17.0 (yanked for Python 2 compatibility), 2020-09-08
* Remove Python 2 support code. This includes dropping some compatibility code and the dependency on
  six.
* Fix 200, python 3 exception chaining. This is a minor backwards incompatibility, hence stepping
  to 0.17.0.

(adam)

Updated devel/py-nest-asyncio, devel/py-ipykernel, parallel/py-ipyparallel, devel/py-prompt_toolkit

(adam)

py-prompt_toolkit: updated to 3.0.29

3.0.29: 2022-04-04
------------------

New features:
- Accept 'handle_sigint' parameter in PromptSession.

Fixes
- Fix 'variable referenced before assignment' error in vt100 mouse bindings.
- Pass `handle_sigint` from `Application.run` to `Application.run_async`.
- Fix detection of telnet client side changes.
- Fix `print_container` utility (handle `EOFError`).

Breaking changes:
- The following are now context managers:
  `create_pipe_input`, `PosixPipeInput` and `Win32PipeInput`.

(adam)

py-ipyparallel: updated to 8.2.1

8.2.1 Fixes some compatibility issues with latest dask, ipykernel, and setuptools,
as well as some typos and improved documentation.

(adam)

py-ipykernel: updated to 6.12.1

6.12.1

Maintenance and upkeep improvements

- Clean up test deps and test setup

6.12.0

Enhancements made

- use packaging instead of pkg_resources to parse versions

Bugs fixed

- Make cell_id optional
- Do not try to send on iostream if closed

(adam)

py-nest-asyncio: updated to 1.5.5

v1.5.5
Potential fix for issue 65

(adam)

Updated net/rabbitmq, textproc/ugrep

(adam)

ugrep: updated to 3.7.8

ugrep v3.7.8

New complementary options --min-depth, --max-depth, --min-line and --max-line which are added for consistency with the updated options --min-count and --max-count. Updated the --min-count option, which can now be combined with any other option except with -v (--invert-match). Updated option -K (--range) to take a MAX argument instead of a FIRST argument for consistency with other min/max options. Recursive searching sysfd, such as /proc and /sys, no longer blocks on special files/devices. Fixed inconsistent colorization with option -v when used with context options -A, -B and -C. Fixed option -r when combined with file argument - (read standard input), which does both, like GNU grep. Updated --stats reporting and other minor improvements.

(adam)

rabbitmq: updated to 3.9.14

RabbitMQ 3.9.14

Changes Worth Mentioning

Core Server

Bug Fixes

Restart of a node that hosted one or more stream leaders resulted in
their consumers not "re-attaching" to the newly elected leader.

Large fanouts experienced a performance regression when streams were not
enabled using a feature flag.

Stream management plugin did not support mixed version clusters.

Stream deletion did not result in a basic.cancel being sent to AMQP 0-9-1 consumers.

Stream clients did not receive a correct stream unavailability error in some
cases.

It is again possible to clear user tags and update the password in a single operation.

Enhancements

Forward compatibility with Erlang 25.

File handle cache efficiency improvements.

Uknown stream properties (e.g. those requested by a node that runs a newer version)
are now handled gracefully.

Temporary hostname resolution issues (attempts that fail with nxdomain)
are now handled more gracefully and with a delay of several seconds.

Build time compatibility with Elixir 1.13.

OAuth 2 AuthN/AuthZ Backend Plugin

Bug Fixes

auth_oauth2.additional_scopes_key in rabbitmq.conf was not converted correctly
during configuration translation and thus had no effect.

LDAP AuthN/AuthZ Backend Plugin

Enhancement

Adapt to a breaking Erlang 24.3 LDAP client change.

Shovel Plugin

Enhacements

Shovels now can be declared with delete-after parameter set to 0.
Such shovels will immediately stop instead of erroring and failing to
start after a node restart.

Consul Peer Discovery Plugin

Enhancements

Support for Consul 1.1 response code changes
when an operation is attempted on a non-existent health check.

(adam)

Updated textproc/py-ujson, net/py-prometheus_client

(adam)

py-prometheus_client: updated to 0.14.0

0.14.0 / 2022-04-05 Latest
[ENHANCEMENT] Continued typing improvements and coverage.
[ENHANCEMENT] Allow binding to IPv6 addresses.
[ENHANCEMENT] Negotiate gzip content-encoding, enabled by default.
[ENHANCEMENT] Allow disabling _created metrics via the PROMETHEUS_DISABLE_CREATED_SERIES environment variable.
[BUGFIX] Correct minor typo in exception raised when exemplar labels are too long.

0.13.1 / 2022-01-28
[BUGFIX] Relax some type constraints that were too strict.
[BUGFIX] Explicitly export functions with __all__.

0.13.0 / 2022-01-25
[CHANGE] Drop support for Python versions 2.7, 3.4, and 3.5.
[FEATURE] Support adding labels when using .time()
[ENHANCEMENT] Begin to add type hints to functions.
[ENHANCEMENT] Improved go-to-declaration behavior for editors.
[BUGFIX] Remove trailing slashes from pushgateway URLS.
[BUGFIX] Catch non-integer bucket/count values

(adam)

py-ujson: updated to 5.2.0

5.2.0

Added

Support parsing NaN, Infinity and -Infinity
Support dynamically linking against system double-conversion library
Add env var to control stripping debug info
Add JSONDecodeError

Fixed

Fix buffer overflows (CVE-2021-45958)
Upgrade Black to fix Click
simplify exception handling on integer overflow
Remove dead code that used to handle the separate int type in Python 2
Fix exceptions on encoding list or dict elements and non-overflow errors on int handling getting silenced

(adam)

Updated net/haproxy, devel/py-test

(adam)

py-test: updated to 7.1.1

pytest 7.1.1 (2022-03-17)
=========================

Bug Fixes
---------
- Fixed a regression in pytest 7.1.0 where some conftest.py files outside of the source tree (e.g. in the `site-packages` directory) were not picked up.

pytest 7.1.0 (2022-03-13)
=========================

Breaking Changes
----------------

- As per our policy, the following features have been deprecated in the 6.X series and are now
  removed:

  * ``pytest._fillfuncargs`` function.
  * ``pytest_warning_captured`` hook - use ``pytest_warning_recorded`` instead.
  * ``-k -foobar`` syntax - use ``-k 'not foobar'`` instead.
  * ``-k foobar:`` syntax.
  * ``pytest.collect`` module - import from ``pytest`` directly.

  For more information consult
  `Deprecations and Removals <https://docs.pytest.org/en/latest/deprecations.html>`__ in the docs.

- Dropped support for Python 3.6, which reached `end-of-life <https://devguide.python.org/#status-of-python-branches>`__ at 2021-12-23.

Improvements
------------

- Fixed test output for some data types where ``-v`` would show less information.
  Also, when showing diffs for sequences, ``-q`` would produce full diffs instead of the expected diff.

- pytest now avoids specialized assert formatting when it is detected that the default ``__eq__`` is overridden in ``attrs`` or ``dataclasses``.

- When ``-vv`` is given on command line, show skipping and xfail reasons in full instead of truncating them to fit the terminal width.

- More information about the location of resources that led Python to raise :class:`ResourceWarning` can now
  be obtained by enabling :mod:`tracemalloc`.

  See :ref:`resource-warnings` for more information.

- More types are now accepted in the ``ids`` argument to ``@pytest.mark.parametrize``.
  Previously only `str`, `float`, `int` and `bool` were accepted;
  now `bytes`, `complex`, `re.Pattern`, `Enum` and anything with a `__name__` are also accepted.

- :func:`pytest.approx` now raises a :class:`TypeError` when given an unordered sequence (such as :class:`set`).

  Note that this implies that custom classes which only implement ``__iter__`` and ``__len__`` are no longer supported as they don't guarantee order.

Bug Fixes
---------

- The deprecation of raising :class:`unittest.SkipTest` to skip collection of
  tests during the pytest collection phase is reverted - this is now a supported
  feature again.

- Symbolic link components are no longer resolved in conftest paths.
  This means that if a conftest appears twice in collection tree, using symlinks, it will be executed twice.
  For example, given

      tests/real/conftest.py
      tests/real/test_it.py
      tests/link -> tests/real

  running ``pytest tests`` now imports the conftest twice, once as ``tests/real/conftest.py`` and once as ``tests/link/conftest.py``.
  This is a fix to match a similar change made to test collection itself in pytest 6.0 (see :pull:`6523` for details).

- Fixed count of selected tests on terminal collection summary when there were errors or skipped modules.

  If there were errors or skipped modules on collection, pytest would mistakenly subtract those from the selected count.

- Fixed regression where ``--import-mode=importlib`` used together with :envvar:`PYTHONPATH` or :confval:`pythonpath` would cause import errors in test suites.

- :fixture:`pytester` now requests a :fixture:`monkeypatch` fixture instead of creating one internally. This solves some issues with tests that involve pytest environment variables.

- Malformed ``pyproject.toml`` files now produce a clearer error message.

(adam)

haproxy: updated to 2.5.5

2.5.5
- CI: github actions: add the output of $CC -dM -E-
- CI: github actions: use cache for OpenTracing
- CI: refactor OpenTracing build script
- CI: github actions: use cache for SSL libs
- CI: Consistently use actions/checkout@v2
- BUILD: atomic: make the old HA_ATOMIC_LOAD() support const pointers
- BUILD: tree-wide: mark a few numeric constants as explicitly long long
- BUG/MEDIUM: mux-fcgi: Don't rely on SI src/dst addresses for FCGI health-checks
- BUG/MEDIUM: htx: Fix a possible null derefs in htx_xfer_blks()
- REGTESTS: fix the race conditions in normalize_uri.vtc
- REGTESTS: fix the race conditions in secure_memcmp.vtc
- BUG/MEDIUM: httpclient/lua: infinite appctx loop with POST
- BUG/MINOR: pool: always align pool_heads to 64 bytes
- BUG/MEDIUM: pools: fix ha_free() on area in the process of being freed
- BUILD: fix kFreeBSD build.
- MINOR: pools: add a new global option "no-memory-trimming"
- MINOR: stats: Add dark mode support for socket rows
- BUILD: pools: fix backport of no-memory-trimming on non-linux OS
- BUILD: fix recent build breakage of freebsd caused by kFreeBSD build fix
- BUG/MINOR: add missing modes in proxy_mode_str()
- BUG/MINOR: cli: shows correct mode in "show sess"
- BUG/MINOR: httpclient: Set conn-stream/channel EOI flags at the end of request
- BUG/MINOR: hlua: Set conn-stream/channel EOI flags at the end of request
- BUG/MINOR: stats: Set conn-stream/channel EOI flags at the end of request
- BUG/MINOR: cache: Set conn-stream/channel EOI flags at the end of request
- BUG/MINOR: promex: Set conn-stream/channel EOI flags at the end of request
- BUG/MEDIUM: stream: Use the front analyzers for new listener-less streams
- DEBUG: cache: Update underlying buffer when loading HTX message in cache applet
- BUG/MEDIUM: mcli: Properly handle errors and timeouts during reponse processing
- DEBUG: stream: Add the missing descriptions for stream trace events
- DEBUG: stream: Fix stream trace message to print response buffer state
- BUG/MAJOR: mux-pt: Always destroy the backend connection on detach
- BUG/MINOR: session: fix theoretical risk of memleak in session_accept_fd()
- BUG/MEDIUM: httpclient: don't consume data before it was analyzed
- CLEANUP: htx: remove unused co_htx_remove_blk()
- BUG/MINOR: httpclient: consume partly the blocks when necessary
- BUG/MINOR: httpclient: remove the UNUSED block when parsing headers
- BUG/MEDIUM: httpclient: must manipulate head, not first
- REGTESTS: fix the race conditions in be2hex.vtc

(adam)

Updated lang/nodejs12, textproc/ugrep

(adam)

ugrep: updated to 3.7.7

ugrep v3.7.7
New complementary options --min-depth, --max-depth, --min-line and --max-line which are added for consistency with the updated options --min-count and --max-count. Updated the --min-count option, which can now be combined with any other option except with -v (--invert-match). Updated option -K (--range) to take a MAX argument instead of a FIRST argument for consistency with other min/max options. Recursive searching sysfd, such as /proc and /sys, no longer blocks on special files/devices. Fixed colorization of option -v when used with context options -A, -B and -C. Fixed option -r when combined with argument - (read standard input), which does both, like GNU grep. Updated --stats reporting and other minor improvements.

(adam)

nodejs12: updated to 12.22.12

Version 12.22.12 'Erbium' (LTS)

This is planned to be the final Node.js 12 release. Node.js 12 will
reach End-of-Life status on 30 April 2022, after which it will no
receive updates. You are strongly advised to migrate your applications
to Node.js 16 or 14 (both of which are Long Term Support (LTS) releases)
to continue to receive future security updates beyond 30 April 2022.

This release fixes a shutdown crash in Node-API (formerly N-API) and a
potential stack overflow when using `vm.runInNewContext()`.

The list of GPG keys used to sign releases and instructions on how to
fetch the keys for verifying binaries has been synchronized with the
main branch.

Version 12.22.11 'Erbium' (LTS)

Update to OpenSSL 1.1.1n, which addresses the following vulnerability:

* Infinite loop in `BN_mod_sqrt()` reachable when parsing certificates (High)(CVE-2022-0778)
  More details are available at <https://www.openssl.org/news/secadv/20220315.txt>

Fix for building Node.js 12.x with Visual Studio 2019 to allow us to continue to
run CI tests.

(adam)

Removed lang/nodejs10

(adam)

nodejs10: removed, end of life

(adam)

Updated multimedia/ffmpeg5, multimedia/ffplay5

(adam)

ffmpeg5 ffplay5: updated to 5.0.1

version 5.0.1:
- avcodec/exr: Avoid signed overflow in displayWindow
- avcodec/diracdec: avoid signed integer overflow in global mv
- avcodec/takdsp: Fix integer overflow in decorrelate_sf()
- avcodec/apedec: fix a integer overflow in long_filter_high_3800()
- avdevice/dshow: fix regression
- avfilter/vf_subtitles: pass storage size to libass
- avcodec/vp9_superframe_split_bsf: Don't read inexistent data
- avcodec/vp9_superframe_split_bsf: Discard invalid zero-sized frames
- avcodec/vp9_superframe_bsf: Check for existence of data before reading it
- avcodec/vp9_raw_reorder_bsf: Check for existence of data before reading it
- avformat/imf: fix packet pts, dts and muxing
- avformat/imf: open resources only when first needed
- avformat/imf: cosmetics
- avformat/imf_cpl: do not use filesize when reading XML file
- avformat/imfdec: Use proper logcontext
- avformat/imfdec: do not use filesize when reading XML file
- doc/utils: add missing 22.2 layout entry
- avcodec/av1: only set the private context pix_fmt field if get_pixel_format() succeeds
- avformat/aqtitledec: Skip unrepresentable durations
- avformat/cafdec: Do not store empty keys in read_info_chunk()
- avformat/mxfdec: Do not clear array in mxf_read_strong_ref_array() before writing
- avformat/mxfdec: Check for avio_read() failure in mxf_read_strong_ref_array()
- avformat/mxfdec: Check count in mxf_read_strong_ref_array()
- avformat/hls: Check target_duration
- avcodec/pixlet: Avoid signed integer overflow in scaling in filterfn()
- avformat/matroskadec: Check pre_ns
- avcodec/sonic: Use unsigned for predictor_k to avoid undefined behavior
- avcodec/libuavs3d: Check ff_set_dimensions() for failure
- avcodec/speexdec: Align some comments
- avcodec/speexdec: Use correct doxygen comments
- avcodec/mjpegbdec: Set buf_size
- avformat/matroskadec: Use rounded down duration in get_cue_desc() check
- avcodec/argo: Check packet size
- avcodec/g729_parser: Check channels
- avformat/avidec: Check height
- avformat/rmdec: Better duplicate tags check
- avformat/mov: Disallow empty sidx
- avformat/argo_cvg:: Fix order of operations in error check in argo_cvg_write_trailer()
- avformat/argo_asf: Fix order of operations in error check in argo_asf_write_trailer()
- avcodec/movtextdec: add () to CMP() macro to avoid unexpected behavior
- avformat/matroskadec: Check duration
- avformat/mov: Corner case encryption error cleanup in mov_read_senc()
- avcodec/jpeglsdec: Fix if( code style
- avcodec/jpeglsdec: Check get_ur_golomb_jpegls() for error
- avcodec/motion_est: fix indention of ff_get_best_fcode()
- avcodec/motion_est: Fix xy indexing on range violation in ff_get_best_fcode()
- avformat/hls: Use unsigned for iv computation
- avcodec/jpeglsdec: Increase range for N in ls_get_code_runterm() by using unsigned
- avformat/matroskadec: Check desc_bytes
- avformat/utils: Fix invalid NULL pointer operation in ff_parse_key_value()
- avformat/matroskadec: Fix infinite loop with bz decompression
- avformat/utils: keep chapter monotonicity on chapter updates
- avformat/mov: Check size before subtraction
- avcodec/cfhd: Avoid signed integer overflow in coeff
- avcodec/libdav1d: free the Dav1dData packet on dav1d_send_data() failure
- avcodec/h264_parser: don't alter decoder private data
- configure: link to libatomic when it's present
- fate/ffmpeg: add missing samples dependency to fate-shortest

(adam)

Added devel/py-configupdater, textproc/py-ini2toml, textproc/py-validate-pyproject; Updated devel/py-setuptools

(adam)

py-setuptools: updated to 62.0.0

v62.0.0
-------

Breaking Changes
^^^^^^^^^^^^^^^^
* Made ``setup.py develop --user`` install to the user site packages directory even if it is disabled in the current interpreter.

Changes
^^^^^^^
* When resolving requirements use both canonical and normalized names -- by :user:`ldaniluk`
* Honor unix file mode in ZipFile when installing wheel via ``install_as_egg`` -- by :user:`delijati`

Misc
^^^^
* Fixed duplicated tag with the ``dist-info`` command.
* Fixed problem preventing ``readme`` specified as dynamic in ``pyproject.toml``
  from being dynamically specified in ``setup.py``.

v61.3.1
-------

Misc
^^^^
* Included missing test file ``setupcfg_examples.txt`` in ``sdist``.
* Added script that allows developers to download ``setupcfg_examples.txt`` prior to
  running tests. By caching these files it should be possible to run the test suite
  offline.

v61.3.0
-------

Changes
^^^^^^^
* Disabled automatic download of ``trove-classifiers`` to facilitate reproducibility.

Misc
^^^^
* Updated ``pyproject.toml`` validation via ``validate-pyproject`` v0.7.1.
* New internal tool made available for updating the code responsible for
  the validation of ``pyproject.toml``.
  This tool can be executed via ``tox -e generate-validation-code``.

v61.2.0
-------

Changes
^^^^^^^
* Ignored a subgroup of invalid ``pyproject.toml`` files that use the ``[project]``
  table to specify only ``requires-python`` (**transitional**).

  .. warning::
    Please note that future releases of setuptools will halt the build process
    if a ``pyproject.toml`` file that does not match doc:`the PyPA Specification
    <PyPUG:specifications/declaring-project-metadata>` is given.
* Updated ``pyproject.toml`` validation, as generated by ``validate-pyproject==0.6.1``.
* Prevented builds from erroring if the project specifies metadata via
  ``pyproject.toml``, but uses other files (e.g. ``setup.py``) to complement it,
  without setting ``dynamic`` properly.

  .. important::
    This is a **transitional** behaviour.
    Future releases of ``setuptools`` may simply ignore externally set metadata
    not backed by ``dynamic`` or even halt the build with an error.
* Merge changes from pypa/distutils@e1d5c9b1f6

Documentation changes
^^^^^^^^^^^^^^^^^^^^^
* Fixed typo in ``pyproject.toml`` example in Quickstart -- by :user:`pablo-cardenas`.

Misc
^^^^
* Fixed missing requirements with environment markers when
  ``optional-dependencies`` is set in ``pyproject.toml``.

v61.1.1
-------

Misc
^^^^
* Fixed missing dependencies when running ``setup.py install``.
  Note that calling ``setup.py install`` directly is still deprecated and
  will be removed in future versions of ``setuptools``.
  Please check the release notes for :ref:`setup_install_deprecation_note`.

v61.1.0
-------

Deprecations
^^^^^^^^^^^^
* Changed ``setuptools.convert_path`` to an internal function that is not exposed
  as part of setuptools API.
  Future releases of ``setuptools`` are likely to remove this function.

Changes
^^^^^^^
* Changed behaviour of auto-discovery to not explicitly expand ``package_dir``
  for flat-layouts and to not use relative paths starting with ``./``.
* Prevented ``pyproject.toml`` parsing from overwriting
  ``dist.include_package_data`` explicitly set in ``setup.py`` with default
  value.
* Added a warning for non existing files listed with the ``file`` directive in
  ``setup.cfg`` and ``pyproject.toml``.
* Added a default value for dynamic ``classifiers`` in ``pyproject.toml`` when
  files are missing and errors being ignored.
* Disabled auto-discovery when distribution class has a ``configuration``
  attribute (e.g. when the ``setup.py`` script contains ``setup(...,
  configuration=...)``).  This is done to ensure extension-only packages created
  with ``numpy.distutils.misc_util.Configuration`` are not broken by the safe
  guard
  behaviour to avoid accidental multiple top-level packages in a flat-layout.

  .. note::
    Users that don't set ``packages``, ``py_modules``, or ``configuration`` are
    still likely to observe the auto-discovery behavior, which may halt the
    build if the project contains multiple directories and/or multiple Python
    files directly under the project root.

    To disable auto-discovery please explicitly set either ``packages`` or
    ``py_modules``. Alternatively you can also configure :ref:`custom-discovery`.

v61.0.0
-------

Deprecations
^^^^^^^^^^^^
* Deprecated ``setuptools.config.read_configuration``,
  ``setuptools.config.parse_configuration`` and other functions or classes
  from ``setuptools.config``.

  Users that still need to parse and process configuration from ``setup.cfg`` can
  import a direct replacement from ``setuptools.config.setupcfg``, however this
  module is transitional and might be removed in the future
  (the ``setup.cfg`` configuration format itself is likely to be deprecated in the future).

Breaking Changes
^^^^^^^^^^^^^^^^
* If you purposefully want to create an *"empty distribution"*, please be aware
  that some Python files (or general folders) might be automatically detected and
  included.

  Projects that currently don't specify both ``packages`` and ``py_modules`` in their
  configuration and contain extra folders or Python files (not meant for distribution),
  might see these files being included in the wheel archive or even experience
  the build to fail.

  You can check details about the automatic discovery (and how to configure a
  different behaviour) in :doc:`/userguide/package_discovery`.
* If the file ``pyproject.toml`` exists and it includes project
  metadata/config (via ``[project]`` table or ``[tool.setuptools]``),
  a series of new behaviors that are not backward compatible may take place:

  - The default value of ``include_package_data`` will be considered to be ``True``.
  - Setuptools will attempt to validate the ``pyproject.toml`` file according
    to PEP 621 specification.
  - The values specified in ``pyproject.toml`` will take precedence over those
    specified in ``setup.cfg`` or ``setup.py``.

Changes
^^^^^^^
* **[EXPERIMENTAL]** Added automatic discovery for ``py_modules`` and ``packages``
  -- by :user:`abravalheri`.

  Setuptools will try to find these values assuming that the package uses either
  the *src-layout* (a ``src`` directory containing all the packages or modules),
  the *flat-layout* (package directories directly under the project root),
  or the *single-module* approach (an isolated Python file, directly under
  the project root).

  The automatic discovery will also respect layouts that are explicitly
  configured using the ``package_dir`` option.

  For backward-compatibility, this behavior will be observed **only if both**
  ``py_modules`` **and** ``packages`` **are not set**.
  (**Note**: specifying ``ext_modules`` might also prevent auto-discover from
  taking place)

  If setuptools detects modules or packages that are not supposed to be in the
  distribution, please manually set ``py_modules`` and ``packages`` in your
  ``setup.cfg`` or ``setup.py`` file.
  If you are using a *flat-layout*, you can also consider switching to
  *src-layout*.
* **[EXPERIMENTAL]** Added automatic configuration for the ``name`` metadata
  -- by :user:`abravalheri`.

  Setuptools will adopt the name of the top-level package (or module in the case
  of single-module distributions), **only when** ``name`` **is not explicitly
  provided**.

  Please note that it is not possible to automatically derive a single name when
  the distribution consists of multiple top-level packages or modules.
* Added vendored dependencies for :pypi:`tomli`, :pypi:`validate-pyproject`.

  These dependencies are used to read ``pyproject.toml`` files and validate them.
* **[EXPERIMENTAL]** When using ``pyproject.toml`` metadata,
  the default value of ``include_package_data`` is changed to ``True``.
* **[EXPERIMENTAL]** Add support for ``pyproject.toml`` configuration
  (as introduced by :pep:`621`). Configuration parameters not covered by
  standards are handled in the ``[tool.setuptools]`` sub-table.

  In the future, existing ``setup.cfg`` configuration
  may be automatically converted into the ``pyproject.toml`` equivalent before taking effect
  (as proposed in 1688). Meanwhile users can use automated tools like
  :pypi:`ini2toml` to help in the transition.

  Please note that the legacy backend is not guaranteed to work with
  ``pyproject.toml`` configuration.

  -- by :user:`abravalheri`
* Implicit namespaces (as introduced in :pep:`420`) are now considered by default
  during :doc:`package discovery </userguide/package_discovery>`, when
  ``setuptools`` configuration and project metadata are added to the
  ``pyproject.toml`` file.

  To disable this behaviour, use ``namespaces = False`` when explicitly setting
  the ``[tool.setuptools.packages.find]`` section in ``pyproject.toml``.

  This change is backwards compatible and does not affect the behaviour of
  configuration done in ``setup.cfg`` or ``setup.py``.
* **[EXPERIMENTAL]** Added support for ``attr:`` and ``cmdclass`` configurations
  in ``setup.cfg`` and ``pyproject.toml`` when ``package_dir`` is implicitly
  found via auto-discovery.
* Postponed importing ``ctypes`` when hiding files on Windows.
  This helps to prevent errors in systems that might not have ``libffi`` installed.
* Merge with pypa/distutils@267dbd25ac

Documentation changes
^^^^^^^^^^^^^^^^^^^^^
* Added initial documentation about configuring ``setuptools`` via ``pyproject.toml``
  (using standard project metadata).

Misc
^^^^
* Refactored ``setuptools.config`` by separating configuration parsing (specific
  to the configuration file format, e.g. ``setup.cfg``) and post-processing
  (which includes directives such as ``file:`` that can be used across different
  configuration formats).

v60.10.0
--------

Changes
^^^^^^^
* Deprecated upload_docs command, to be removed in the future.
* Use samefile from stdlib, supported on Windows since Python 3.2.
* Adopt nspektr (vendored) to implement Distribution._install_dependencies.

Documentation changes
^^^^^^^^^^^^^^^^^^^^^
* Added documentation on using console_scripts from setup.py, which was previously only shown in setup.cfg  -- by :user:`xhlulu`
* Added clarifications about ``MANIFEST.in``, that include links to PyPUG docs
  and more prominent mentions to using a revision control system plugin as an
  alternative.
* Removed mention to ``pkg_resources`` as the recommended way of accessing data
  files, in favour of importlib.resources.
  Additionally more emphasis was put on the fact that *package data files* reside
  **inside** the *package directory* (and therefore should be *read-only*).

Misc
^^^^
* Added workaround for intermittent failures of backend tests on PyPy.
  These tests now are marked with `XFAIL
  <https://docs.pytest.org/en/stable/how-to/skipping.html>`_, instead of erroring
  out directly.
* Improved configuration for :pypi:`rst-linker` (extension used to build the
  changelog).
* Enhanced isolation of tests using virtual environments - PYTHONPATH is not leaking to spawned subprocesses  -- by :user:`befeleme`
* Added options to provide a pre-built ``setuptools`` wheel or sdist for being
  used during tests with virtual environments.
  Paths for these pre-built distribution files can now be set via the environment
  variables: ``PRE_BUILT_SETUPTOOLS_SDIST`` and ``PRE_BUILT_SETUPTOOLS_WHEEL``.

(adam)

py-ini2toml: add py-validate-pyproject to TEST_DEPENDS

(adam)

py-validate-pyproject: added version 0.7.1

With the approval of PEP 517 and PEP 518, the Python community shifted towards
a strong focus on standardisation for packaging software, which allows more
freedom when choosing tools during development and make sure packages created
using different technologies can interoperate without the need for custom
installation procedures.

This shift became even more clear when PEP 621 was also approved, as a
standardised way of specifying project metadata and dependencies.

validate-pyproject was born in this context, with the mission of validating
pyproject.toml files, and make sure they are compliant with the standards and
PEPs. Behind the scenes, validate-pyproject relies on JSON Schema files, which,
in turn, are also a standardised way of checking if a given data structure
complies with a certain specification.

(adam)

py-ini2toml: added version 0.10

The original purpose of this project is to help migrating setup.cfg files to
PEP 621, but by extension it can also be used to convert any compatible
.ini/.cfg file to TOML.

(adam)

py-configupdater: added version 3.1

The sole purpose of ConfigUpdater is to easily update an INI config file with
no changes to the original file except the intended ones. This means comments,
the ordering of sections and key/value-pairs as wells as their cases are kept
as in the original file. Thus ConfigUpdater provides complementary
functionality to Python's ConfigParser which is primarily meant for reading
config files and writing new ones.

(adam)

Updated databases/py-redis, databases/py-pypika

(adam)

py-pypika: updated to 0.48.9

0.48.9
Unknown changes

(adam)

py-redis: updated to 4.2.2

Version 4.2.2
Changes

�泅� New Features

Extended "CLUSTER NODES" parser to support special slot entries
�沐･ NOTE: This change is potentially breaking depending on your use of specialized slot entries. Support for bytes was added
Add support for BIT|BYTE option available in redis 7

�汾� Bug Fixes

Fix imports in for async
Always clear reference to closed reader/writer
Fix disable decode for dump command in async

�洫ｰ Maintenance

Cluster commands linkdocs
Clarify bit type in setbit/getbit documentation
Clean up test supoort enterprise environments
Vector similarity search example
Fix search query with params tests

Version 4.2.1
Changes

�泅� New Features

Add support for CLUSTER MYID
Add dialect support for RediSearch queries

�洫ｰ Maintenance

Fix black
Make typing_extensions conditional to Python < 3.8

Version 4.2.0
Changes

�泅� New Features

Support for Vector Fields for Vector Similarity Search

�汾� Bug Fixes

Fix cluster scan command cursors & scan_iter

�洫ｰ Maintenance

Remove verbose logging from cluster initializers
Mark tests for redis-stack

(adam)

Updated devel/py-frozendict, devel/py-semantic_version

(adam)

py-semantic_version: updated to 2.9.0

2.9.0

Add support for Django 3.1, 3.2, 4.0
Add support for Python 3.7 / 3.8 / 3.9 / 3.10

(adam)

py-frozendict: updated to 2.3.1

2.3.1:
Unknown changes

(adam)

revbump for devel/protobuf

(adam)

Updated devel/protobuf, devel/py-protobuf

(adam)

protobuf py-protobuf: updated to 3.20.0

Protocol Buffers v3.20.0

C++

Add option to use external GTest in CMake
cmake: Set correct sonames for libprotobuf-lite.so and libprotoc.so
Java

Revert "Standardize on Array copyOf"
Resolve more java field accessor name conflicts

Python

Pin multibuild scripts to get manylinux1 wheels back
Dropped support for Python < 3.7

PHP

fix: [PHP] add missing reserved classnames

Ruby

Dropped Ruby 2.3 and 2.4 support for CI and releases.
[Ruby] Message.decode/encode: Add max_recursion_depth option
Ruby: rename max_recursion_depth to recursion_limit
Fix conversion of singleton classes in Ruby
Suppress warning for intentional circular require
[Ruby] allow encode json options to be an object that responds to to_hash

Other

[C#] Fix trim warnings
Add protoc-gen-go-svc to options.md
Fixes NullReferenceException when accessing FieldDescriptor.IsPacked
Add ToProto() method to all C# descriptor classes
Add cmake option protobuf_INSTALL to not install files
[CMake] Allow custom plugin options e.g. to generate mocks
Add an option to preserve proto names in JsonFormatter
Add test scope to kotlin-test for protobuf-kotlin-lite
Add prefix_to_proto_package_mappings_path ObjC option.
[ObjC] Rename proto_package_to_prefix_mappings_path to package_to_prefix_mappings_path.
cmake: Use linker version scripts
Add a generation option to control use of forward declarations in headers.
[C#] fix parse failure for extensions with large field numbers

(adam)

Updated textproc/py-phonenumbers, textproc/py-tomlkit

(adam)

py-tomlkit: updated to 0.10.1

0.10.1

Fixed
- Preserve the newlines before super tables when rendering.
- Fix the bug that comments are appended with comma when rendering a multiline array.

0.10.0

Fixed
- Fix the only child detection when creating tables.
- Include the `docs/` directory and `CHANGELOG.md` in sdist tarball.

(adam)

py-phonenumbers: updated to 8.12.46

What's new in 8.12.40
---------------------
New `to_string()` methods have been added for enum-like classes, emitting strings that describe
integer values known to be enum values.

(adam)

Updated devel/py-ipython, devel/py-ipykernel

(adam)

py-ipykernel: updated to 6.11.0

6.11.0

Enhancements made

- Include method signatures in experimental completion results
- Try to pass cell id to executing kernel.

Maintenance and upkeep improvements

- Handle warnings in tests
- Run flake and remove deprecated import
- Add ignore-revs file
- Autoformat with black and isort
- Add pytest opts and pre-commit

6.10.0

Enhancements made

- Improve performance of stderr and stdout stream buffer

Bugs fixed

- Check if the current thread is the io thread

Maintenance and upkeep improvements

- More CI cleanup
- CI cleanup

Documentation improvements

- Add precision about subprocess stdout/stderr capturing

(adam)

py-ipython: updated to 8.2.0

IPython 8.2 mostly bring bugfixes to IPython.

- Auto-suggestion can now be elected with the ``end`` key.
- Some traceback issues with ``assert etb is not None`` have been fixed.
- History is now pulled from the sqitel database and not from in-memory.
  In particular when using the ``%paste`` magic, the content of the pasted text will
  be part of the history and not the verbatim text ``%paste`` anymore.
- Fix ``Ctrl-\\`` exit cleanup
- Fixes to ``ultratb`` ipdb support when used outside of IPython.

(adam)

Updated devel/glib2, devel/glib2-tools, devel/gdbus-codegen

(adam)

glib2-tools glib2 gdbus-codegen: updated to 2.70.5

Overview of changes in GLib 2.70.5
==================================

* Bugs fixed:
- g_time_zone_new_offset() assertion failure if offset >= 25 hours
- glib: fix buffer overflow in g_canonicalize_filename()
- gtimezone: Fix assertion failure when called with a huge offset

* Translation updates:
- Catalan
- German
- Hungarian
- Lithuanian
- Romanian
- Serbian
- Turkish

(adam)

Updated devel/yarn, devel/py-test-asyncio

(adam)

py-test-asyncio: updated to 0.18.3

0.18.3 (22-03-25)
=================
- Adds `pytest-trio <https://pypi.org/project/pytest-trio/>`_ to the test dependencies
- Fixes a bug that caused pytest-asyncio to try to set up async pytest_trio fixtures in strict mode.

0.18.2 (22-03-03)
=================
- Fix asyncio auto mode not marking static methods.
- Fix a compatibility issue with Hypothesis 6.39.0.

(adam)

yarn: updated to 1.22.18

v1.22.18

Node 17.7.0 had a regression in url.resolve which broke Yarn, causing network errors. This release fixes that, although the regression also got fixed on the Node side starting from 17.7.1, so as long as you keep your Node up-to-date it'll be fine.

(adam)

Updated textproc/py-tomli, devel/py-wrapt

(adam)

py-wrapt: updated to 1.14.0

Version 1.14.0

Bugs Fixed

Python 3.11 dropped inspect.formatargspec() which was used in creating signature changing decorators. Now bundling a version of this function which uses Parameter and Signature from inspect module when available. The replacement function is exposed as wrapt.formatargspec() if need it for your own code.
When using a decorator on a class, isinstance() checks wouldn窶冲 previously work as expected and you had to manually use Type.__wrapped__ to access the real type when doing instance checks. The __instancecheck__ hook is now implemented such that you don窶冲 have to use Type.__wrapped__ instead of Type as last argument to isinstance().
Eliminated deprecation warnings related to Python module import system, which would have turned into broken code in Python 3.12. This was used by the post import hook mechanism.

New Features

Binary wheels provided on PyPi for aarch64 Linux systems and macOS native silicon where supported by Python when using pypa/cibuildwheel.

(adam)

py-tomli: updated to 2.0.1

2.0.1

Improve

Make bundling easier by using relative imports internally and adding license and copyright notice to source files.
Make error messages more uniform
Raise a friendly TypeError for wrong file mode
Allow parse_float to return objects having the append attr
Eagerly raise an error if parse_float returns an illegal type

Packaging

Move from pytest testing framework to unittest and remove python-dateutil test dependency. Tests now only require Python interpreter.

(adam)

Updated finance/py-stripe, devel/py-click, devel/py-pybind11, lang/py-mypy

(adam)

py-mypy: updated to 0.942

0.942:

Fixes to Regressions

Let overload item have a more general return type than the implementation
Fix inheritance false positives with dataclasses/attrs
Support overriding dunder attributes in Enum subclass
Fix small conditional overload regression

Other Fixes

Fix issues related to the order of processing in the builtins import cycle
Fix crash in match statement if class name is undefined
Allow non-final __match_args__ and overriding

(adam)

py-pybind11: updated to 2.9.2

Version 2.9.2 (Mar 29, 2022)

Changes:

Enum now has an __index__ method on Python <3.8 too.
Local internals are now cleared after finalizing the interpreter.
Bug fixes:

Better support for Python 3.11 alphas.
PYBIND11_TYPE_CASTER now uses fully qualified symbols, so it can be used outside of pybind11::detail.
Some fixes for PyPy 3.9.
Fixed a potential memleak in PyPy in get_type_override.
Fix usage of VISIBILITY_INLINES_HIDDEN.

Build system improvements:

Uses sysconfig module to determine installation locations on Python >= 3.10, instead of distutils which has been deprecated.
Support Catch 2.13.5+ (supporting GLIBC 2.34+).
Fix test failures with numpy 1.22 by ignoring whitespace when comparing str() of dtypes.

Backend and tidying up:

clang-tidy: added readability-qualified-auto, readability-braces-around-statements, cppcoreguidelines-prefer-member-initializer, clang-analyzer-optin.performance.Padding, cppcoreguidelines-pro-type-static-cast-downcast, and readability-inconsistent-declaration-parameter-name.
clang-format was added to the pre-commit actions, and the entire code base automatically reformatted (after several iterations preparing for this leap).

(adam)

py-click: updated to 8.1.1

Version 8.1.1
-------------
-  Fix an issue with decorator typing that caused type checking to
    report that a command was not callable. :issue:`2227`

Version 8.1.0
-------------
-  Drop support for Python 3.6. :pr:`2129`
-  Remove previously deprecated code. :pr:`2130`

    -  ``Group.resultcallback`` is renamed to ``result_callback``.
    -  ``autocompletion`` parameter to ``Command`` is renamed to
        ``shell_complete``.
    -  ``get_terminal_size`` is removed, use
        ``shutil.get_terminal_size`` instead.
    -  ``get_os_args`` is removed, use ``sys.argv[1:]`` instead.

-  Rely on :pep:`538` and :pep:`540` to handle selecting UTF-8 encoding
    instead of ASCII. Click's locale encoding detection is removed.
    :issue:`2198`
-  Single options boolean flags with ``show_default=True`` only show
    the default if it is ``True``. :issue:`1971`
-  The ``command`` and ``group`` decorators can be applied with or
    without parentheses. :issue:`1359`
-  The ``Path`` type can check whether the target is executable.
    :issue:`1961`
-  ``Command.show_default`` overrides ``Context.show_default``, instead
    of the other way around. :issue:`1963`
-  Parameter decorators and ``@group`` handles ``cls=None`` the same as
    not passing ``cls``. ``@option`` handles ``help=None`` the same as
    not passing ``help``.
-  A flag option with ``required=True`` requires that the flag is
    passed instead of choosing the implicit default value. :issue:`1978`
-  Indentation in help text passed to ``Option`` and ``Command`` is
    cleaned the same as using the ``@option`` and ``@command``
    decorators does. A command's ``epilog`` and ``short_help`` are also
    processed. :issue:`1985`
-  Store unprocessed ``Command.help``, ``epilog`` and ``short_help``
    strings. Processing is only done when formatting help text for
    output. :issue:`2149`
-  Allow empty str input for ``prompt()`` when
    ``confirmation_prompt=True`` and ``default=""``. :issue:`2157`
-  Windows glob pattern expansion doesn't fail if a value is an invalid
    pattern. :issue:`2195`
-  It's possible to pass a list of ``params`` to ``@command``. Any
    params defined with decorators are appended to the passed params.
    :issue:`2131`.
-  ``@command`` decorator is annotated as returning the correct type if
    a ``cls`` argument is used. :issue:`2211`
-  A ``Group`` with ``invoke_without_command=True`` and ``chain=False``
    will invoke its result callback with the group function's return
    value. :issue:`2124`
-  ``to_info_dict`` will not fail if a ``ParamType`` doesn't define a
    ``name``. :issue:`2168`
-  Shell completion prioritizes option values with option prefixes over
    new options. :issue:`2040`
-  Options that get an environment variable value using
    ``autoenvvar_prefix`` treat an empty value as ``None``, consistent
    with a direct ``envvar``. :issue:`2146`

(adam)

py-stripe: updated to 2.70.0

2.70.0 - 2022-03-30
* API Updates
  * Add support for `cancel_action`, `process_payment_intent`, `process_setup_intent`, and `set_reader_display` methods on resource `Terminal.Reader`

(adam)

Updated finance/py-stripe, devel/py-bitarray

(adam)

py-bitarray: updated to 2.4.1

2.4.1:
* improve `resize()`
* optimize `copy_n()` by avoiding loops
* `.bytereverse()` no longer sets unused bits to zero

2.4.0:
* enable building wheels for multiple platforms and Python versions using
  pypa/cibuildwheel
* use setuptools instead of distutils in `setup.py`
* add missing type hinting for `.count()` step argument

(adam)

py-stripe: updated to 2.69.0

2.69.0 - 2022-03-29
* API Updates
  * Add support for Search API
    * Add support for `search` method on resources `Charge`, `Customer`, `Invoice`, `PaymentIntent`, `Price`, `Product`, and `Subscription`
* Pin click dependency to 8.0.4 to avoid breakage in black
* Add infrastructure for test-helper methods
* Revert Orders to use qualified name for upload_api_base

2.68.0 - 2022-03-23
* API Updates
  * Add support for `cancel` method on resource `Refund`
* Add support for SearchResult.

(adam)

Updated lang/nodejs; Added lang/nodejs14

(adam)

nodejs: updated to 16.14.2

Version 16.14.2 'Gallium' (LTS)

This is a security release.

Notable Changes

Update to OpenSSL 1.1.1n, which addresses the following vulnerability:

Infinite loop in BN_mod_sqrt() reachable when parsing certificates (High)(CVE-2022-0778) More details are available at https://www.openssl.org/news/secadv/20220315.txt

For older changes, see https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V16.md

(adam)

nodejs14: updated to 14.19.1 and moved to lang/nodejs14

Version 14.19.1 'Fermium' (LTS)

This is a security release.

Notable Changes

Update to OpenSSL 1.1.1n, which addresses the following vulnerability:

Infinite loop in BN_mod_sqrt() reachable when parsing certificates (High)(CVE-2022-0778) More details are available at https://www.openssl.org/news/secadv/20220315.txt

(adam)

Updated devel/py-faker, www/py-nbconvert

(adam)

py-nbconvert: updated to 6.4.5

6.4.4
-----
* HTMLExporter: Respect the embed_images flag for HTML blocks

(adam)

py-faker: updated to 13.3.4

v13.3.4
* Bump actions/cache from 2 to 3.

v13.3.3
* Fix factory selection when Faker has been seeded.

(adam)

Updated security/libgcrypt, net/wireshark

(adam)

wireshark: updated to 3.6.3

Wireshark 3.6.3 Release Notes

What’s New

Bug Fixes

  The following bugs have been fixed:

    • Fuzz job crash output: fuzz-2022-01-19-7399.pcap Issue 17894[1].

    • TLS dissector incorrectly reports JA3 values Issue 17942[2].

    • "Wiki Protocol page" in packet details menu is broken - wiki
      pages not migrated to GitLab? Issue 17944[3].

    • Dissector bug, protocol PFCP display Flow Description IE value
      error in Additional Flow Description of PFD Management Request
      Message Issue 17951[4].

    • Bluetooth: Fails to open Log file for SCO connection Issue
      17964[5].

    • Fuzz job crash output: fuzz-2022-03-07-10896.pcap Issue 17984[6].

    • libwiretap: Save as ERF causes segmentation fault Issue 17989[7].

    • HTTP server returning multiple early hints shows too many
      responses in "Follow HTTP Stream" Issue 18006[8].

New and Updated Features

New Protocol Support

  There are no new protocols in this release.

Updated Protocol Support

  CSN.1, HTTP, IEEE 802.11, NTLM SSP, PFCP, PKTLOG, SSDP, TLS, and USB
  HID

New and Updated Capture File Support

  pcap and pcapng

New File Format Decoding Support

  There is no new or updated file format support in this release.

(adam)

libgcrypt: updated to 1.10.1

Noteworthy changes in version 1.10.1 (2022-03-28)
-------------------------------------------------

* Bug fixes:
  - Fix minor memory leaks in FIPS mode.
  - Build fixes for MUSL libc.

* Other:
  - More portable integrity check in FIPS mode.
  - Add X9.62 OIDs to sha256 and sha512 modules.

(adam)

Updated misc/stellarium, net/py-scp

(adam)

py-scp: updated to 0.14.4

0.14.4 (2022-02-23)
- Update type hints for pyright

0.14.3 (2022-02-15)
- Add type hints

(adam)

stellarium: updated to 0.22.0

0.22.0 [2022-03-27]
The major changes of this version:
- AstroCalc: Eclipse Finder
- AstroCalc: RTS (Rises, Transits, Settings)
- Switch from Bortle scale to physical brightness values for light pollution.
- Allow tweaks for the atmosphere brightness/color model and tone mapping
- Several new calendars in the Calendars plugin
- Seasonal polar caps on Mars
- New and improved sky cultures
- Larger textures allowed in Scenery3D
- Improved OnlineQueries and Satellites plugin
- Many fixes in core and plugins.
- Technical preparations towards a major upgrade of the internal Qt framework.

(adam)

Updated databases/sqlite3, databases/sqlite3-docs, databases/sqlite3-tcl, devel/lemon

(adam)

sqlite3: updated to 3.38.2

Additional changes in version 3.38.2 (2022-03-26):

Fix another user-discovered problem with the new Bloom filter optimization that might cause an incorrect answer when doing a LEFT JOIN with a WHERE clause constraint that says that one of the columns on the right table of the LEFT JOIN is NULL. See forum thread 031e262a89b6a9d2.
Other minor patches. See the timeline for details.

(adam)

Updated net/ndpi, net/ntopng

(adam)

ntopng: updated to 5.2.1

ntopng 5.2 (February 2022)

Breakthroughs
* New ClickHouse support for storing historical data, replacing nIndex support (data migration available)
* Advanced Historical Flow Explorer, with the ability to define custom queries using JSON-based configurations
* New Historical Data Analysis page (including Score, Applications, Alerts, AS analysis), with the ability to define custom reports with charts
* Enhanced drill down from charts and historical flow data and alerts to PCAP data
* nEdge support for Ubuntu 20
* Enhanced support for Observation Points

Improvements
* Improve CPU utilization and memory footprint
* Improve historical data retention management for flows and timeseries
* Improve periodic activities handling, with support for strict and relaxed (delayed) tasks
* Improve filtering and analysis of the historical flows
* Improve alert explorer and filtering
* Improve Enterprise dashboard look and feel
* Improve the speedtest support and servers selection
* Improve support for ping and continuous ping (ICMP) for active monitoring
* Improve flow-direction handling
* Improve localization (including DE and IT translations)
* Improve IPS policies management
* Add IPS activities logging (e.g. block, unblock)
* Improve SNMP support
* Optimize polling of SNMP devices
* Improve SNMP v3 support
* Add more information including version
* Stateful SNMP alert to detect too many MACs on non-trunk
* Perform fat MIBs poll on average every 15 minutes
* Add preference to disable polling of SNMP fat MIBs
* Add more information to the historical flow data, including Latency, AS, Observation Points, SNMP interface, Host Pools
* Add detailed view of historical flows and alerts
* Add support for nProbe field L7_INFO
* Add ICMP flood alert
* Add Checks exclusion settings for subnets and for hosts and domains globally
* Add CDP support
* Add more regression tests
* Add support for obsolete client SSH version
* Add support for ERSPAN version 2 (type III)
* Add support for all the new nDPI Flow Risks added in nDPI 4.2
* Add extra info to service and periodicity map hosts
* Add Top Sites check
* REST API
* Getter for the bridge MIB
* Getter for LLDP adjacencies
* Check for BPF filters
* Score charts timeseries and analysis

Changes
* Encapsulated traffic is accounted for the lenght of the encapsulated packet and not of the original packet
* Remove nIndex support, including the flow explorer
* Remove MySQL historical flow explorer (export only)
* Hide LDAP password from logs

Fixes
* Fix a few memory leaks, double free, buffer overflow and invalid memory access
* Fix SQLite initialization
* Fix support for fragmented packets
* Fix IP validation in modals
* Fix netplan configuration manager
* Fix blog notifications
* Fix time range picker to support all browsers
* Fix binary application transfer name in alerts
* Fix glitches in chart drag operations
* Fix pools edit/remove
* Fix InfluxDB timeseries export
* Fix ELK memory leak
* Fix TLS version for obsolete TLS alerts when collecting flows
* Fix fields conversion in timeseries charts filters
* Fix some invalid nProbe field mapping
* Fix hosts Geomap
* Fix slow shutdown termination
* Fix wrong Call-ID 0 with RTP streams with no SIP stream associated
* Fix ping support for FreeBSD
* Fix active monitoring interface list
* Fix host names not always shown
* Fix host pools stats
* Fix UTF8 encoding issues in localization tools
* Fix time/timezone in forwarded syslog messages
* Fix unknown process alert
* Fix nil DOM javascript error
* Fix country not always shown in flow alerts
* Fix non-initialized traffic profiles
* Fix traffic profiles not working over ZMQ
* Fix syslog collection
* Fix async SNMP calls blocking the execution
* Fix CPU stats timeseries
* Fix InfluxDB attempts to alwa re-create retention policies
* Fix REST API ts.lua returning 24h data
* Fix processing of DNS packets under certain conditions
* Fix invalid space in SNMP Hostnames
* Fix REST API incompat. (/get/alert/severity/counters.lua, /get/alert/type/counters.lua)
* Fix map layout not saved correctly
* Fix LLDP topology for Juniper routers
* Fix not authorized error when editing SNMP devices
* Fix double 95perc, splitted avg and 95perc in sent/rcvd in charts
* Fix inconsistent local/remote timeseries
* Fix Risks generation in IPS policy configuration
* Fix deletion of sub-interface
* Fix deadline not honored when monitoring SNMP devices
* Fix traffic profiles on L7 protocols
* Fix TCP connection refused check
* Fix failures when the DB is not reacheable
* Fix segfault with View interfaces
* Fix hosts wrongly detected as Local
* Fix missing throughputs in countries

Misc
* Enforces proxy exclusions with env var `no_proxy`
* Move Lua engine to 5.4
* Major code review and cleanup

nEdge
* Add support for  Ubuntu 20
* Add ability to logout when using the Captive Portal
* Add per egress interface stats and timeseries
* Add active DHCP leases in UI and REST API
* Add daily/weekly/monthly quotas
* Add service and periodicity maps and alerts
* Fix Captive Portal not working due to invalid allowed interface
* Fix addition of static DHCP leases
* Fix factory reset
* Fix reboot button

ntopng 5.0 (August 2021)

Breakthroughs

* Advanced alerts engine with security features, including the detection of [attackers and victims](https://www.ntop.org/ntopng/how-attackers-and-victims-detection-works-in-ntopng/)
* Integration of 30+ [nDPI security risks](https://www.ntop.org/ndpi/how-to-spot-unsafe-communications-using-ndpi-flow-risk-score/)
* Generation of the `score` [indicator of compromise](https://www.ntop.org/ntopng/what-is-score-and-how-it-can-drive-you-towards-network-issues/) for hosts, interfaces and other network elements
* Ability to collect flows from hundredths of routers by means of [observation points](https://www.ntop.org/nprobe/collecting-flows-from-hundred-of-routers-using-observation-points/)
* Anomaly detection based on Double Exponential Smoothing (DES) to uncover possibly suspicious behaviors in the traffic and in the score
* Encrypted Traffic Analysis (ETA) with special emphasis on the TLS to uncover self-signed, expired, invalid certificates and other issues

New features

* Ability to configure alert exclusions for individual hosts to mitigate false positives
* FreeBSD / OPNsense / pfSense [packages](https://packages.ntop.org/)
* Ability to see the TX/RX traffic breakdown both for physical interfaces and when receiving traffic from nProbe
* Add support for ECS when exporting to Syslog
* Improved TCP analysis, including analysis of TCP flows with zero window and low goodput
* Ability to send alerts to Slack
* Implementation of a token-based REST API access

Improvements

* Reworked the execution of hosts and flows checks (formerly user scripts), yielding a reduced CPU load of about 50%
* Improved 100Kfps+ [NetFlow/sFlow collection performance](https://www.ntop.org/nprobe/netflow-collection-performance-using-ntopng-and-nprobe/)
* Drilldown of [nIndex](https://www.ntop.org/guides/ntopng/advanced_features/flows_dump.html#nindex) historical flows much more flexible
* Migration to Bootstrap 5
* Check malicious JA3 signatures against all TLS-based protocols
* Reworked Doh/DoT handling

Fixes

* Fixes SSRF and stored-XSS injected with malicious SSDP responses
* Fixes several leaks in NetworkInterface

Notes

* To ensure optimal performance and scalability and to prevent uneven resource utilization, the maximum number of interfaces handled by a single ntopng instance has been reduced to
* 16 (Enterprise M)
* 32 (Enterprise L)
* 8  (all other versions)
* REST API v1/ is deprecated and will be dropped in the next stable release in favor of REST API v2/
* The old alerts dashboard has been removed and replaced by an advanced alerts drilldown page with integrated charts

(adam)

ndpi:updated to 4.2

nDPI4.2 (Feb 2022)

New Features
- Add a "confidence" field indicating the reliability of the classification
- Add risk exceptions for services and domain names via ndpi_add_domain_risk_exceptions()
- Add ability to report whether a protocol is encrypted

New Supported Protocols and Services
- Add protocol detection for:
  - Badoo
  - Cassandra
  - EthernetIP

Improvements
- Reduce memory footprint
- Improve protocol detection for:
  - BitTorrent
  - ICloud Private Relay
  - IMAP, POP3, SMTP
  - Log4J/Log4Shell
  - Microsoft Azure
  - Pandora TV
  - RTP
  - RTSP
  - Salesforce
  - STUN
  - Whatsapp
  - QUICv2
  - Zoom
- Add flow risk:
  - NDPI_CLEAR_TEXT_CREDENTIALS
  - NDPI_POSSIBLE_EXPLOIT (Log4J)
  - NDPI_TLS_FATAL_ALERT
  - NDPI_TLS_CERTIFICATE_ABOUT_TO_EXPIRE
- Update WhatsAPP and Instagram addresses
- Update the list of default ports for QUIC
- Update WindowsUpdate URLs
- Add support for the .goog Google TLD
- Add googletagmanager.com
- Add bitmaps and API for handling compressed bitmaps
- Add JA3 in risk exceptions
- Add entropy calculation to check for suspicious (encrypted) payload
- Add extraction of hostname in SMTP
- Add RDP over UDP dissection
- Add support for TLS over IPV6 in Subject Alt Names field
- Improve JSON and CSV serialization
- Improve IPv6 support for almost all dissectors
- Improve CI and unit tests, add arm64, armhf and s390x as part of CI
- Improve WHOIS detection, reduce false positives
- Improve DGA detection for skipping potential DGAs of known/popular domain names
- Improve user agent analysis
- Reworked HTTP protocol dissection including HTTP proxy and HTTP connect

Changes
- TLS obsolete protocol is set when TLS < 1.2 (used to be 1.1)
- Numeric IPs are not considered for DGA checks
- Differentiate between standard Amazon stuff (i.e market) and AWS
- Remove Playstation VUE protocol
- Remove pandora.tv from Pandora protocol
- Remove outdated SoulSeek dissector

Fixes
- Fix race conditions
- Fix dissectors to be big-endian friendly
- Fix heap overflow in realloc wrapper
- Fix errors in Kerberos, TLS, H323, Netbios, CSGO, Bittorrent
- Fix wrong tuple comparison
- Fix ndpi_serialize_string_int64
- Fix Grease values parsing
- Fix certificate mismatch check
- Fix null-dereference read for Zattoo with IPv6
- Fix dissectors initialization for XBox, Diameter
- Fix confidence for STUN classifications
- Fix FreeBSD support
- Fix old GQUIC versions on big-endian machines
- Fix aho-corasick on big-endian machines
- Fix DGA false positive
- Fix integer overflow for QUIC
- Fix HTTP false positives
- Fix SonarCloud-CI support
- Fix clashes setting the hostname on similar protocols (FTP, SMTP)
- Fix some invalid TLS guesses
- Fix crash on ARM (Raspberry)
- Fix DNS (including fragmented DNS) dissection
- Fix parsing of IPv6 packets with extension headers
- Fix extraction of Realm attribute in STUN
- Fix support for START-TLS sessions in FTP
- Fix TCP retransmissions for multiple dissectors
- Fix DES initialisation
- Fix Git protocol dissection
- Fix certificate mismatch for TLS flows with no client hello observed
- Fix old versions of GQUIC on big-endian machines

Misc
- Add tool for generating automatically the Azure IP list

nDPI 4.0 (July 2021)

New Features
- Add API for computing RSI (Relative Strenght Index)
- Add GeoIP support
- Add fragments management
- Add API for jitter calculation
- Add single exponential smoothing API
- Add timeseries forecasting support implementing Holt-Winters with confidence interval
- Add support for MAC to radi tree and expose the full API to applications
- Add JA3+, with ALPN and elliptic curve
- Add double exponential smoothing implementation
- Extended API for managing flow risks
- Add flow risk score
- New flow risks:
  - Desktop or File Sharing Session
  - HTTP suspicious content (useful for tracking trickbot)
  - Malicious JA3
  - Malicious SHA1
  - Risky domain
  - Risky AS
  - TLS Certificate Validity Too Long
  - TLS Suspicious Extension

New Supported Protocols and Services
- New protocols:
  - AmongUs
  - AVAST SecureDNS
  - CPHA (CheckPoint High Availability Protocol)
  - DisneyPlus
  - DTLS
  - Genshin Impact
  - HP Virtual Machine Group Management (hpvirtgrp)
  - Mongodb
  - Pinterest
  - Reddit
  - Snapchat VoIP calls
  - Tumblr
  - Virtual Asssitant (Alexa, Siri)
  - Z39.50
- Add protocols to HTTP as subprotocols
- Add detection of TLS browser type
- Add connectionless DCE/RPC detection

Improvements
  - 2.5x speed bump. Example ndpiReader with a long mixed pcap
      v3.4 - nDPI throughput:      1.29 M pps / 3.35 Gb/sec
      v4.0 - nDPI throughput:      3.35 M pps / 8.68 Gb/sec
- Improve detection/dissection of:
  - AnyDesk
  - DNS
  - Hulu
  - DCE/RPC (avoid false positives)
  - dnscrypt
  - Facebook (add new networks)
  - Fortigate
  - FTP Control
  - HTTP
    - Fix user-agent parsing
    - Fix logs when NDPI_ENABLE_DEBUG_MESSAGES is defined
  - IEC104
  - IEC60870
  - IRC
  - Netbios
  - Netflix
  - Ookla speedtest (detection over IPv6)
  - openspeedtest.com
  - Outlook / MicrosoftMail
  - QUIC
    - update to draft-33
    - improve handling of SNI
    - support for fragmented Client Hello
    - support for DNS-over-QUIC
  - RTSP
  - RTSP via HTTP
  - SNMP (reimplemented)
  - Skype
  - SSH
  - Steam (Steam Datagram Relay - SDR)
  - STUN (avoid false positives, improved Skype detection)
  - TeamViewer (add new hosts)
  - TOR (update hosts)
  - TLS
    - Certificate Subject matching
    - Check for common ALPNs
    - Reworked fingerprint calculation
    - Fix extraction for TLS signature algorithms
    - Fix ClientHello parsing
  - UPnP
  - wireguard
- Improve DGA detection
- Improve JA3
- Improve Mining detection
- Improve string matching algorithm
- Improve ndpi_pref_enable_tls_block_dissection
- Optimize speed and memory size
- Update ahocorasick library
- Improve subprotocols detection

Fixes
- Fix partial application matching
- Fix multiple segfault and leaks
- Fix uninitialized memory use
- Fix release of patterns allocated in ndpi_add_string_to_automa
- Fix return value of ndpi_match_string_subprotocol
- Fix setting of flow risks on 32 bit machines
- Fix TLS certificate threshold
- Fix a memory error in TLS JA3 code
- Fix false positives in Z39.50
- Fix off-by-one memory error for TLS-JA3
- Fix bug in ndpi_lru_find_cache
- Fix invalid xbox and playstation port guesses
- Fix CAPWAP tunnel decoding
- Fix parsing of DLT_PPP datalink type
- Fix dissection of QUIC initial packets coalesced with 0-RTT one
- Fix parsing of GTP headers
- Add bitmap boundary checks

Misc
- Update download category name
- Update category labels
- Renamed Skype in Skype_Teams (the protocol is now shared across these apps)
- Add IEC analysis wireshark plugin
- Flow risk visualization in Wireshark
- ndpiReader
  - add statistics about nDPI performance
  - fix memory leak
  - fix collecting of risks statistics
- Move installed libraries from /usr/local to /usr
- Improve NDPI_API_VERSION generation
- Update ndpi_ptree_match_addr prototype

(adam)

Updated lang/python39, lang/python310, lang/py39-html-docs, lang/py310-html-docs

(adam)

python310 py310-html-docs: updated to 3.10.4

Python 3.10.4 final

Core and Builtins

bpo-46968: Check for the existence of the 窶徭ys/auxv.h窶� header in faulthandler to avoid compilation problems in systems where this header doesn窶冲 exist. Patch by Pablo Galindo

Library

bpo-23691: Protect the re.finditer() iterator from re-entering.

bpo-42369: Fix thread safety of zipfile._SharedFile.tell() to avoid a 窶忝ipfile.BadZipFile: Bad CRC-32 for file窶� exception when reading a ZipFile from multiple threads.

bpo-38256: Fix binascii.crc32() when it is compiled to use zlib窶冂 crc32 to work properly on inputs 4+GiB in length instead of returning the wrong result. The workaround prior to this was to always feed the function data in increments smaller than 4GiB or to just call the zlib module function.

bpo-39394: A warning about inline flags not at the start of the regular expression now contains the position of the flag.

bpo-47061: Deprecate the various modules listed by PEP 594:

aifc, asynchat, asyncore, audioop, cgi, cgitb, chunk, crypt, imghdr, msilib, nntplib, nis, ossaudiodev, pipes, smtpd, sndhdr, spwd, sunau, telnetlib, uu, xdrlib

bpo-2604: Fix bug where doctests using globals would fail when run multiple times.

bpo-45997: Fix asyncio.Semaphore re-aquiring FIFO order.

bpo-47022: The asynchat, asyncore and smtpd modules have been deprecated since at least Python 3.6. Their documentation and deprecation warnings and have now been updated to note they will removed in Python 3.12 (PEP 594).

bpo-46421: Fix a unittest issue where if the command was invoked as python -m unittest and the filename(s) began with a dot (.), a ValueError is returned.

bpo-40296: Fix supporting generic aliases in pydoc.

(adam)

python39 py39-html-docs: updated to 3.9.12

Python 3.9.12 final

Core and Builtins

bpo-46968: Check for the existence of the “sys/auxv.h” header in faulthandler to avoid compilation problems in systems where this header doesn’t exist. Patch by Pablo Galindo

Library

bpo-47101: hashlib.algorithms_available now lists only algorithms that are provided by activated crypto providers on OpenSSL 3.0. Legacy algorithms are not listed unless the legacy provider has been loaded into the default OSSL context.
bpo-23691: Protect the re.finditer() iterator from re-entering.
bpo-42369: Fix thread safety of zipfile._SharedFile.tell() to avoid a “zipfile.BadZipFile: Bad CRC-32 for file” exception when reading a ZipFile from multiple threads.
bpo-38256: Fix binascii.crc32() when it is compiled to use zlib’c crc32 to work properly on inputs 4+GiB in length instead of returning the wrong result. The workaround prior to this was to always feed the function data in increments smaller than 4GiB or to just call the zlib module function.
bpo-39394: A warning about inline flags not at the start of the regular expression now contains the position of the flag.
bpo-47061: Deprecate the various modules listed by PEP 594:
aifc, asynchat, asyncore, audioop, cgi, cgitb, chunk, crypt, imghdr, msilib, nntplib, nis, ossaudiodev, pipes, smtpd, sndhdr, spwd, sunau, telnetlib, uu, xdrlib
bpo-2604: Fix bug where doctests using globals would fail when run multiple times.
bpo-45997: Fix asyncio.Semaphore re-aquiring FIFO order.
bpo-47022: The asynchat, asyncore and smtpd modules have been deprecated since at least Python 3.6. Their documentation has now been updated to note they will removed in Python 3.12 (PEP 594).
bpo-46421: Fix a unittest issue where if the command was invoked as python -m unittest and the filename(s) began with a dot (.), a ValueError is returned.
bpo-40296: Fix supporting generic aliases in pydoc.
bpo-14156: argparse.FileType now supports an argument of ‘-’ in binary mode, returning the .buffer attribute of sys.stdin/sys.stdout as appropriate. Modes including ‘x’ and ‘a’ are treated equivalently to ‘w’ when argument is ‘-’. Patch contributed by Josh Rosenberg

(adam)

Updated net/samba4

(adam)

samba4: updated to 4.15.6

Changes since 4.15.5
--------------------
* BUG 14169: Renaming file on DFS root fails with
  NT_STATUS_OBJECT_PATH_NOT_FOUND.
* BUG 14737: Samba does not response STATUS_INVALID_PARAMETER when opening 2
  objects with same lease key.
* BUG 14938: NT error code is not set when overwriting a file during rename
  in libsmbclient.
* BUG 14996: Fix ldap simple bind with TLS auditing.
* BUG 14674: net ads info shows LDAP Server: 0.0.0.0 depending on contacted
  server.
* BUG 14979: Problem when winbind renews Kerberos.
* BUG 8691: pam_winbind will not allow gdm login if password about to expire.
* BUG 14971: virusfilter_vfs_openat: Not scanned: Directory or special file.
* BUG 13631: DFS fix for AIX broken.
* BUG 14974: Solaris and AIX acl modules: wrong function arguments.
* BUG 7239: Function aixacl_sys_acl_get_file not declared / coredump.
* BUG 14900: Regression: Samba 4.15.2 on macOS segfaults intermittently
  during strcpy in tdbsam_getsampwnam.
* BUG 14989: Fix a use-after-free in SMB1 server.
* BUG 14968: smb2_signing_decrypt_pdu() may not decrypt with
  gnutls_aead_cipher_decrypt() from gnutls before 3.5.2.
* BUG 14984: changing the machine password against an RODC likely destroys
  the domain join.
* BUG 14993: authsam_make_user_info_dc() steals memory from its struct
  ldb_message *msg argument.
* BUG 14995: Use Heimdal 8.0 (pre) rather than an earlier snapshot.
* BUG 14967: Samba autorid fails to map AD users if id rangesize fits in the
  id range only once.

(adam)

Updated lang/python3x, lang/py3x-html-docs

(adam)

python310 py310-html-docs: updated to 3.10.3

Python 3.10.3 final

Core and Builtins

bpo-46940: Avoid overriding AttributeError metadata information for nested attribute access calls. Patch by Pablo Galindo.
bpo-46852: Rename the private undocumented float.__set_format__() method to float.__setformat__() to fix a typo introduced in Python 3.7. The method is only used by test_float. Patch by Victor Stinner.
bpo-46794: Bump up the libexpat version into 2.4.6
bpo-46820: Fix parsing a numeric literal immediately (without spaces) followed by “not in” keywords, like in 1not in x. Now the parser only emits a warning, not a syntax error.
bpo-46762: Fix an assert failure in debug builds when a ‘<’, ‘>’, or ‘=’ is the last character in an f-string that’s missing a closing right brace.
bpo-46724: Make sure that all backwards jumps use the JUMP_ABSOLUTE instruction, rather than JUMP_FORWARD with an argument of (2**32)+offset.
bpo-46732: Correct the docstring for the __bool__() method. Patch by Jelle Zijlstra.
bpo-46707: Avoid potential exponential backtracking when producing some syntax errors involving lots of brackets. Patch by Pablo Galindo.
bpo-40479: Add a missing call to va_end() in Modules/_hashopenssl.c.
bpo-46615: When iterating over sets internally in setobject.c, acquire strong references to the resulting items from the set. This prevents crashes in corner-cases of various set operations where the set gets mutated.
bpo-45773: Remove two invalid “peephole” optimizations from the bytecode compiler.
bpo-43721: Fix docstrings of getter, setter, and deleter to clarify that they create a new copy of the property.
bpo-46503: Fix an assert when parsing some invalid N escape sequences in f-strings.
bpo-46417: Fix a race condition on setting a type __bases__ attribute: the internal function add_subclass() now gets the PyTypeObject.tp_subclasses member after calling PyWeakref_NewRef() which can trigger a garbage collection which can indirectly modify PyTypeObject.tp_subclasses. Patch by Victor Stinner.
bpo-46383: Fix invalid signature of _zoneinfo’s module_free function to resolve a crash on wasm32-emscripten platform.
bpo-46070: Py_EndInterpreter() now explicitly untracks all objects currently tracked by the GC. Previously, if an object was used later by another interpreter, calling PyObject_GC_UnTrack() on the object crashed if the previous or the next object of the PyGC_Head structure became a dangling pointer. Patch by Victor Stinner.
bpo-46339: Fix a crash in the parser when retrieving the error text for multi-line f-strings expressions that do not start in the first line of the string. Patch by Pablo Galindo
bpo-46240: Correct the error message for unclosed parentheses when the tokenizer doesn’t reach the end of the source when the error is reported. Patch by Pablo Galindo
bpo-46091: Correctly calculate indentation levels for lines with whitespace character that are ended by line continuation characters. Patch by Pablo Galindo

Library

bpo-43253: Fix a crash when closing transports where the underlying socket handle is already invalid on the Proactor event loop.

bpo-47004: Apply bugfixes from importlib_metadata 4.11.3, including bugfix for EntryPoint.extras, which was returning match objects and not the extras strings.

bpo-46985: Upgrade pip wheel bundled with ensurepip (pip 22.0.4)

bpo-46968: faulthandler: On Linux 5.14 and newer, dynamically determine size of signal handler stack size CPython allocates using getauxval(AT_MINSIGSTKSZ). This changes allows for Python extension’s request to Linux kernel to use AMX_TILE instruction set on Sapphire Rapids Xeon processor to succeed, unblocking use of the ISA in frameworks.

bpo-46955: Expose asyncio.base_events.Server as asyncio.Server. Patch by Stefan Zabka.

bpo-23325: The signal module no longer assumes that SIG_IGN and SIG_DFL are small int singletons.

bpo-46932: Update bundled libexpat to 2.4.7

bpo-25707: Fixed a file leak in xml.etree.ElementTree.iterparse() when the iterator is not exhausted. Patch by Jacob Walls.

bpo-44886: Inherit asyncio proactor datagram transport from asyncio.DatagramTransport.

bpo-46827: Support UDP sockets in asyncio.loop.sock_connect() for selector-based event loops. Patch by Thomas Grainger.

bpo-46811: Make test suite support Expat >=2.4.5

bpo-46252: Raise TypeError if ssl.SSLSocket is passed to transport-based APIs.

bpo-46784: Fix libexpat symbols collisions with user dynamically loaded or statically linked libexpat in embedded Python.

bpo-39327: shutil.rmtree() can now work with VirtualBox shared folders when running from the guest operating-system.

bpo-46756: Fix a bug in urllib.request.HTTPPasswordMgr.find_user_password() and urllib.request.HTTPPasswordMgrWithPriorAuth.is_authenticated() which allowed to bypass authorization. For example, access to URI example.org/foobar was allowed if the user was authorized for URI example.org/foo.

bpo-46643: In typing.get_type_hints(), support evaluating stringified ParamSpecArgs and ParamSpecKwargs annotations. Patch by Gregory Beauregard.

bpo-45863: When the tarfile module creates a pax format archive, it will put an integer representation of timestamps in the ustar header (if possible) for the benefit of older unarchivers, in addition to the existing full-precision timestamps in the pax extended header.

bpo-46676: Make typing.ParamSpec args and kwargs equal to themselves. Patch by Gregory Beauregard.

bpo-46672: Fix NameError in asyncio.gather() when initial type check fails.

bpo-46655: In typing.get_type_hints(), support evaluating bare stringified TypeAlias annotations. Patch by Gregory Beauregard.

bpo-45948: Fixed a discrepancy in the C implementation of the xml.etree.ElementTree module. Now, instantiating an xml.etree.ElementTree.XMLParser with a target=None keyword provides a default xml.etree.ElementTree.TreeBuilder target as the Python implementation does.

bpo-46521: Fix a bug in the codeop module that was incorrectly identifying invalid code involving string quotes as valid code.

bpo-46581: Brings ParamSpec propagation for GenericAlias in line with Concatenate (and others).

bpo-46591: Make the IDLE doc URL on the About IDLE dialog clickable.

bpo-46400: expat: Update libexpat from 2.4.1 to 2.4.4

bpo-46487: Add the get_write_buffer_limits method to asyncio.transports.WriteTransport and to the SSL transport.

bpo-45173: Note the configparser deprecations will be removed in Python 3.12.

bpo-46539: In typing.get_type_hints(), support evaluating stringified ClassVar and Final annotations inside Annotated. Patch by Gregory Beauregard.

bpo-46491: Allow typing.Annotated to wrap typing.Final and typing.ClassVar. Patch by Gregory Beauregard.

bpo-46436: Fix command-line option -d/--directory in module http.server which is ignored when combined with command-line option --cgi. Patch by Géry Ogam.

bpo-41403: Make mock.patch() raise a TypeError with a relevant error message on invalid arg. Previously it allowed a cryptic AttributeError to escape.

bpo-46474: In importlib.metadata.EntryPoint.pattern, avoid potential REDoS by limiting ambiguity in consecutive whitespace.

bpo-46469: asyncio generic classes now return types.GenericAlias in __class_getitem__ instead of the same class.

bpo-46434: pdb now gracefully handles help when __doc__ is missing, for example when run with pregenerated optimized .pyc files.

bpo-46333: The __eq__() and __hash__() methods of typing.ForwardRef now honor the module parameter of typing.ForwardRef. Forward references from different modules are now differentiated.

bpo-46246: Add missing __slots__ to importlib.metadata.DeprecatedList. Patch by Arie Bovenberg.

bpo-46266: Improve day constants in calendar.

Now all constants (MONDAY … SUNDAY) are documented, tested, and added to __all__.

bpo-46232: The ssl module now handles certificates with bit strings in DN correctly.

bpo-43118: Fix a bug in inspect.signature() that was causing it to fail on some subclasses of classes with a __text_signature__ referencing module globals. Patch by Weipeng Hong.

bpo-26552: Fixed case where failing asyncio.ensure_future() did not close the coroutine. Patch by Kumar Aditya.

bpo-21987: Fix an issue with tarfile.TarFile.getmember() getting a directory name with a trailing slash.

bpo-20392: Fix inconsistency with uppercase file extensions in MimeTypes.guess_type(). Patch by Kumar Aditya.

bpo-46080: Fix exception in argparse help text generation if a argparse.BooleanOptionalAction argument’s default is argparse.SUPPRESS and it has help specified. Patch by Felix Fontein.

bpo-44439: Fix .write() method of a member file in ZipFile, when the input data is an object that supports the buffer protocol, the file length may be wrong.

bpo-45703: When a namespace package is imported before another module from the same namespace is created/installed in a different sys.path location while the program is running, calling the importlib.invalidate_caches() function will now also guarantee the new module is noticed.

bpo-24959: Fix bug where unittest sometimes drops frames from tracebacks of exceptions raised in tests.

bpo-44791: Fix substitution of ParamSpec in Concatenate with different parameter expressions. Substitution with a list of types returns now a tuple of types. Substitution with Concatenate returns now a Concatenate with concatenated lists of arguments.

bpo-14156: argparse.FileType now supports an argument of ‘-’ in binary mode, returning the .buffer attribute of sys.stdin/sys.stdout as appropriate. Modes including ‘x’ and ‘a’ are treated equivalently to ‘w’ when argument is ‘-’. Patch contributed by Josh Rosenberg

Documentation

bpo-46463: Fixes escape4chm.py script used when building the CHM documentation file

Tests

bpo-46913: Fix test_faulthandler.test_sigfpe() if Python is built with undefined behavior sanitizer (UBSAN): disable UBSAN on the faulthandler_sigfpe() function. Patch by Victor Stinner.
bpo-46708: Prevent default asyncio event loop policy modification warning after test_asyncio execution.
bpo-46678: The function make_legacy_pyc in Lib/test/support/import_helper.py no longer fails when PYTHONPYCACHEPREFIX is set to a directory on a different device from where tempfiles are stored.
bpo-46616: Ensures test_importlib.test_windows cleans up registry keys after completion.
bpo-44359: test_ftplib now silently ignores socket errors to prevent logging unhandled threading exceptions. Patch by Victor Stinner.
bpo-46542: Fix a Python crash in test_lib2to3 when using Python built in debug mode: limit the recursion limit. Patch by Victor Stinner.
bpo-46576: test_peg_generator now disables compiler optimization when testing compilation of its own C extensions to significantly speed up the testing on non-debug builds of CPython.
bpo-46542: Fix test_json tests checking for RecursionError: modify these tests to use support.infinite_recursion(). Patch by Victor Stinner.
bpo-13886: Skip test_builtin PTY tests on non-ASCII characters if the readline module is loaded. The readline module changes input() behavior, but test_builtin is not intented to test the readline module. Patch by Victor Stinner.

Build

bpo-47032: Ensure Windows install builds fail correctly with a non-zero exit code when part of the build fails.
bpo-47024: Update OpenSSL to 1.1.1n for macOS installers and all Windows builds.
bpo-38472: Fix GCC detection in setup.py when cross-compiling. The C compiler is now run with LC_ALL=C. Previously, the detection failed with a German locale.
bpo-46513: configure no longer uses AC_C_CHAR_UNSIGNED macro and pyconfig.h no longer defines reserved symbol __CHAR_UNSIGNED__.
bpo-45925: Update Windows installer to use SQLite 3.37.2.

Windows

bpo-44549: Update bzip2 to 1.0.8 in Windows builds to mitigate CVE-2016-3189 and CVE-2019-12900
bpo-46948: Prevent CVE-2022-26488 by ensuring the Add to PATH option in the Windows installer uses the correct path when being repaired.
bpo-46638: Ensures registry virtualization is consistently disabled. For 3.10 and earlier, it remains enabled (some registry writes are protected), while for 3.11 and later it is disabled (registry modifications affect all applications).

macOS

bpo-45925: Update macOS installer to SQLite 3.37.2.

IDLE

bpo-46630: Make query dialogs on Windows start with a cursor in the entry box.
bpo-45296: Clarify close, quit, and exit in IDLE. In the File menu, ‘Close’ and ‘Exit’ are now ‘Close Window’ (the current one) and ‘Exit’ is now ‘Exit IDLE’ (by closing all windows). In Shell, ‘quit()’ and ‘exit()’ mean ‘close Shell’. If there are no other windows, this also exits IDLE.
bpo-45447: Apply IDLE syntax highlighting to pyi files. Patch by Alex Waygood and Terry Jan Reedy.

C API

bpo-46433: The internal function _PyType_GetModuleByDef now correctly handles inheritance patterns involving static types.
bpo-14916: Fixed bug in the tokenizer that prevented PyRun_InteractiveOne from parsing from the provided FD.

(adam)

python39 py39-html-docs: updated to 3.9.11

Python 3.9.11 final

Core and Builtins

bpo-46852: Rename the private undocumented float.__set_format__() method to float.__setformat__() to fix a typo introduced in Python 3.7. The method is only used by test_float. Patch by Victor Stinner.
bpo-46794: Bump up the libexpat version into 2.4.6
bpo-46762: Fix an assert failure in debug builds when a ‘<’, ‘>’, or ‘=’ is the last character in an f-string that’s missing a closing right brace.
bpo-46732: Correct the docstring for the __bool__() method. Patch by Jelle Zijlstra.
bpo-40479: Add a missing call to va_end() in Modules/_hashopenssl.c.
bpo-46615: When iterating over sets internally in setobject.c, acquire strong references to the resulting items from the set. This prevents crashes in corner-cases of various set operations where the set gets mutated.
bpo-43721: Fix docstrings of getter, setter, and deleter to clarify that they create a new copy of the property.
bpo-46503: Fix an assert when parsing some invalid N escape sequences in f-strings.
bpo-46417: Fix a race condition on setting a type __bases__ attribute: the internal function add_subclass() now gets the PyTypeObject.tp_subclasses member after calling PyWeakref_NewRef() which can trigger a garbage collection which can indirectly modify PyTypeObject.tp_subclasses. Patch by Victor Stinner.
bpo-46383: Fix invalid signature of _zoneinfo’s module_free function to resolve a crash on wasm32-emscripten platform.

Library

bpo-43253: Fix a crash when closing transports where the underlying socket handle is already invalid on the Proactor event loop.
bpo-47004: Apply bugfixes from importlib_metadata 4.11.3, including bugfix for EntryPoint.extras, which was returning match objects and not the extras strings.
bpo-46985: Upgrade pip wheel bundled with ensurepip (pip 22.0.4)
bpo-46968: faulthandler: On Linux 5.14 and newer, dynamically determine size of signal handler stack size CPython allocates using getauxval(AT_MINSIGSTKSZ). This changes allows for Python extension’s request to Linux kernel to use AMX_TILE instruction set on Sapphire Rapids Xeon processor to succeed, unblocking use of the ISA in frameworks.
bpo-46955: Expose asyncio.base_events.Server as asyncio.Server. Patch by Stefan Zabka.
bpo-46932: Update bundled libexpat to 2.4.7
bpo-25707: Fixed a file leak in xml.etree.ElementTree.iterparse() when the iterator is not exhausted. Patch by Jacob Walls.
bpo-44886: Inherit asyncio proactor datagram transport from asyncio.DatagramTransport.
bpo-46827: Support UDP sockets in asyncio.loop.sock_connect() for selector-based event loops. Patch by Thomas Grainger.
bpo-46811: Make test suite support Expat >=2.4.5
bpo-46252: Raise TypeError if ssl.SSLSocket is passed to transport-based APIs.
bpo-46784: Fix libexpat symbols collisions with user dynamically loaded or statically linked libexpat in embedded Python.
bpo-39327: shutil.rmtree() can now work with VirtualBox shared folders when running from the guest operating-system.
bpo-46756: Fix a bug in urllib.request.HTTPPasswordMgr.find_user_password() and urllib.request.HTTPPasswordMgrWithPriorAuth.is_authenticated() which allowed to bypass authorization. For example, access to URI example.org/foobar was allowed if the user was authorized for URI example.org/foo.
bpo-45863: When the tarfile module creates a pax format archive, it will put an integer representation of timestamps in the ustar header (if possible) for the benefit of older unarchivers, in addition to the existing full-precision timestamps in the pax extended header.
bpo-46672: Fix NameError in asyncio.gather() when initial type check fails.
bpo-45948: Fixed a discrepancy in the C implementation of the xml.etree.ElementTree module. Now, instantiating an xml.etree.ElementTree.XMLParser with a target=None keyword provides a default xml.etree.ElementTree.TreeBuilder target as the Python implementation does.
bpo-46591: Make the IDLE doc URL on the About IDLE dialog clickable.
bpo-46400: expat: Update libexpat from 2.4.1 to 2.4.4
bpo-46487: Add the get_write_buffer_limits method to asyncio.transports.WriteTransport and to the SSL transport.
bpo-46539: In typing.get_type_hints(), support evaluating stringified ClassVar and Final annotations inside Annotated. Patch by Gregory Beauregard.
bpo-46491: Allow typing.Annotated to wrap typing.Final and typing.ClassVar. Patch by Gregory Beauregard.
bpo-46436: Fix command-line option -d/--directory in module http.server which is ignored when combined with command-line option --cgi. Patch by Géry Ogam.
bpo-41403: Make mock.patch() raise a TypeError with a relevant error message on invalid arg. Previously it allowed a cryptic AttributeError to escape.
bpo-46474: In importlib.metadata.EntryPoint.pattern, avoid potential REDoS by limiting ambiguity in consecutive whitespace.
bpo-46469: asyncio generic classes now return types.GenericAlias in __class_getitem__ instead of the same class.
bpo-46434: pdb now gracefully handles help when __doc__ is missing, for example when run with pregenerated optimized .pyc files.
bpo-46333: The __eq__() and __hash__() methods of typing.ForwardRef now honor the module parameter of typing.ForwardRef. Forward references from different modules are now differentiated.
bpo-43118: Fix a bug in inspect.signature() that was causing it to fail on some subclasses of classes with a __text_signature__ referencing module globals. Patch by Weipeng Hong.
bpo-21987: Fix an issue with tarfile.TarFile.getmember() getting a directory name with a trailing slash.
bpo-20392: Fix inconsistency with uppercase file extensions in MimeTypes.guess_type(). Patch by Kumar Aditya.
bpo-46080: Fix exception in argparse help text generation if a argparse.BooleanOptionalAction argument’s default is argparse.SUPPRESS and it has help specified. Patch by Felix Fontein.
bpo-44439: Fix .write() method of a member file in ZipFile, when the input data is an object that supports the buffer protocol, the file length may be wrong.
bpo-45703: When a namespace package is imported before another module from the same namespace is created/installed in a different sys.path location while the program is running, calling the importlib.invalidate_caches() function will now also guarantee the new module is noticed.
bpo-24959: Fix bug where unittest sometimes drops frames from tracebacks of exceptions raised in tests.

Documentation

bpo-46463: Fixes escape4chm.py script used when building the CHM documentation file

Tests

bpo-46913: Fix test_faulthandler.test_sigfpe() if Python is built with undefined behavior sanitizer (UBSAN): disable UBSAN on the faulthandler_sigfpe() function. Patch by Victor Stinner.
bpo-46708: Prevent default asyncio event loop policy modification warning after test_asyncio execution.
bpo-46616: Ensures test_importlib.test_windows cleans up registry keys after completion.
bpo-44359: test_ftplib now silently ignores socket errors to prevent logging unhandled threading exceptions. Patch by Victor Stinner.
bpo-46542: Fix a Python crash in test_lib2to3 when using Python built in debug mode: limit the recursion limit. Patch by Victor Stinner.
bpo-46576: test_peg_generator now disables compiler optimization when testing compilation of its own C extensions to significantly speed up the testing on non-debug builds of CPython.
bpo-46542: Fix test_json tests checking for RecursionError: modify these tests to use support.infinite_recursion(). Patch by Victor Stinner.
bpo-13886: Skip test_builtin PTY tests on non-ASCII characters if the readline module is loaded. The readline module changes input() behavior, but test_builtin is not intented to test the readline module. Patch by Victor Stinner.

Build

bpo-47024: Update OpenSSL to 1.1.1n for macOS installers and all Windows builds.
bpo-38472: Fix GCC detection in setup.py when cross-compiling. The C compiler is now run with LC_ALL=C. Previously, the detection failed with a German locale.
bpo-46513: configure no longer uses AC_C_CHAR_UNSIGNED macro and pyconfig.h no longer defines reserved symbol __CHAR_UNSIGNED__.
bpo-45925: Update Windows installer to use SQLite 3.37.2.
bpo-47032: Ensure Windows install builds fail correctly with a non-zero exit code when part of the build fails.

Windows

bpo-44549: Update bzip2 to 1.0.8 in Windows builds to mitigate CVE-2016-3189 and CVE-2019-12900
bpo-46948: Prevent CVE-2022-26488 by ensuring the Add to PATH option in the Windows installer uses the correct path when being repaired.
bpo-46638: Ensures registry virtualization is consistently disabled. For 3.10 and earlier, it remains enabled (some registry writes are protected), while for 3.11 and later it is disabled (registry modifications affect all applications).
macOS
bpo-45925: Update macOS installer to SQLite 3.37.2.

IDLE

bpo-46630: Make query dialogs on Windows start with a cursor in the entry box.
bpo-45296: Clarify close, quit, and exit in IDLE. In the File menu, ‘Close’ and ‘Exit’ are now ‘Close Window’ (the current one) and ‘Exit’ is now ‘Exit IDLE’ (by closing all windows). In Shell, ‘quit()’ and ‘exit()’ mean ‘close Shell’. If there are no other windows, this also exits IDLE.
bpo-45447: Apply IDLE syntax highlighting to pyi files. Patch by Alex Waygood and Terry Jan Reedy.

(adam)

python38 py38-html-docs: updated to 3.8.13

Python 3.8.13 final

Core and Builtins

bpo-46794: Bump up the libexpat version into 2.4.6
Library
bpo-46985: Upgrade pip wheel bundled with ensurepip (pip 22.0.4)
bpo-46932: Update bundled libexpat to 2.4.7
bpo-46811: Make test suite support Expat >=2.4.5
bpo-46784: Fix libexpat symbols collisions with user dynamically loaded or statically linked libexpat in embedded Python.
bpo-46756: Fix a bug in urllib.request.HTTPPasswordMgr.find_user_password() and urllib.request.HTTPPasswordMgrWithPriorAuth.is_authenticated() which allowed to bypass authorization. For example, access to URI example.org/foobar was allowed if the user was authorized for URI example.org/foo.
bpo-46400: expat: Update libexpat from 2.4.1 to 2.4.4
bpo-46474: In importlib.metadata.EntryPoint.pattern, avoid potential REDoS by limiting ambiguity in consecutive whitespace.
bpo-44849: Fix the os.set_inheritable() function on FreeBSD 14 for file descriptor opened with the O_PATH flag: ignore the EBADF error on ioctl(), fallback on the fcntl() implementation. Patch by Victor Stinner.

Documentation

bpo-41028: Language and version switchers, previously maintained in every cpython branches, are now handled by docsbuild-script.

Tests

bpo-45195: Fix test_readline.test_nonascii(): sometimes, the newline character is not written at the end, so don窶冲 expect it in the output. Patch by Victor Stinner.
bpo-44949: Fix auto history tests of test_readline: sometimes, the newline character is not written at the end, so don窶冲 expect it in the output.

Build

bpo-47024: Update Windows builds and macOS installer build to use OpenSSL 1.1.1n.
bpo-45405: Prevent internal configure error when running configure with recent versions of clang. Patch by David Bohman.
bpo-45220: Avoid building with the Windows 11 SDK previews automatically. This may be overridden by setting the DefaultWindowsSDKVersion environment variable before building.

Windows

bpo-44549: Update bzip2 to 1.0.8 in Windows builds to mitigate CVE-2016-3189 and CVE-2019-12900
bpo-46948: Prevent CVE-2022-26488 by ensuring the Add to PATH option in the Windows installer uses the correct path when being repaired.

macOS

bpo-44828: Avoid tkinter file dialog failure on macOS 12 Monterey when using the Tk 8.6.11 provided by python.org macOS installers. Patch by Marc Culler of the Tk project.

(adam)

python37 py37-html-docs: updated to 3.7.13

Python 3.7.13 final

Library

bpo-46985: Upgrade pip wheel bundled with ensurepip (pip 22.0.4)
bpo-46932: Update bundled libexpat to 2.4.7
bpo-46811: Make test suite support Expat >=2.4.5
bpo-46784: Fix libexpat symbols collisions with user dynamically loaded or statically linked libexpat in embedded Python.
bpo-46756: Fix a bug in urllib.request.HTTPPasswordMgr.find_user_password() and urllib.request.HTTPPasswordMgrWithPriorAuth.is_authenticated() which allowed to bypass authorization. For example, access to URI example.org/foobar was allowed if the user was authorized for URI example.org/foo.

Build

bpo-47024: Update Windows builds and macOS installer build to use OpenSSL 1.1.1n.
bpo-45405: Prevent internal configure error when running configure with recent versions of clang. Patch by David Bohman.

Windows

bpo-44549: Update bzip2 to 1.0.8 in Windows builds to mitigate CVE-2016-3189 and CVE-2019-12900
bpo-46948: Prevent CVE-2022-26488 by ensuring the Add to PATH option in the Windows installer uses the correct path when being repaired.

(adam)

Updated security/gnutls, textproc/ugrep

(adam)

ugrep: updated to 3.7.6

ugrep v3.7.6

New --min-count option, new --hexdump options to grep binary files and display binary matches in hexadecimal with n hex lines before and after the match with --hexdump=Cn, --hexdump=An for n lines after and --hexdump=Bn for n lines before. Omitting n defaults to the entire matching line. Option -X is equivalent to --hexdump=2C for 2 hex columns per line and entire matching line as context. Includes user experience improvements, such as additional --help information and --stats details. This incremental update skips sysfd files that are empty and not searchable (e.g. located in /proc and /sys). We also made ugrep faster overall with performance improvements. More coming soon!

(adam)

gnutls: updated to 3.7.4

Version 3.7.4 (released 2022-03-17)

** libgnutls: Added support for certificate compression as defined in RFC8879.
** certtool: Added option --compress-cert that allows user to specify compression
  methods for certificate compression.
** libgnutls: GnuTLS can now be compiled with --enable-strict-x509 configure
  option to enforce stricter certificate sanity checks that are compliant
  with RFC5280.
** libgnutls: Removed IA5String type from DirectoryString within issuer
  and subject name to make DirectoryString RFC5280 compliant.
** libgnutls: Added function to retrieve the name of current ciphersuite
  from session.

** API and ABI modifications:
GNUTLS_COMP_BROTLI: New gnutls_compression_method_t enum member
GNUTLS_COMP_ZSTD: New gnutls_compression_method_t enum member
gnutls_compress_certificate_get_selected_method: Added
gnutls_compress_certificate_set_methods: Added

(adam)

Updated net/py-python-socks, www/py-aiohttp-socks, www/py-httpx-socks

(adam)

py-httpx-socks: updated to 0.7.3

0.7.3
?

0.7.2
Added secure proxy support

0.7.1
?

0.7.0
Upgrade python-socks to 2.0.0

(adam)

py-aiohttp-socks: updated to 0.7.1

0.7.1
Pin python-socks dependency to the >=2.0.0,<3.0.0 version

0.7.0
Upgrade python-socks to 2.0.0

(adam)

py-python-socks: updated to 2.0.3

2.0.3
Fix anyio exception handling

2.0.2
Fixed 14 anyio.BrokenResourceError has no attribute 'strerror'

2.0.1
?

2.0.0
Added anyio backend
Added new (v2) API for sync and trio backends
The code base has been completely redesigned

(adam)

Updated net/py-zeroconf, www/py-curl

(adam)

py-curl: updated to 7.45.1

PycURL 7.45.1 - 2022-03-13
This release fixes build when libcurl < 7.64.1 is used.

PycURL 7.45.0 - 2022-03-09
This release adds support for SecureTransport SSL backend (MacOS), adds ability to unset a number of multi options, adds ability to duplicate easy handles and permits pycurl classes to be subclassed.

(adam)

py-zeroconf: updated to 0.38.4

0.38.4
Fix IP Address updates when hostname is uppercase

(adam)

Updated security/py-acme, security/py-certbot*

(adam)

py-acme py-certbot: updated to 1.25.0

Certbot 1.25.0

Changed

Dropped 32 bit support for the Windows beta installer
Windows beta installer is now distributed as "certbot-beta-installer-win_amd64.exe".
Users of the Windows beta should uninstall the old version before running this.
Added a check whether OCSP stapling is supported by the installer when requesting a
certificate with the run subcommand in combination with the --must-staple option.
If the installer does not support OCSP and the --must-staple option is used, Certbot
will raise an error and quit.
Certbot and its acme module now depend on josepy>=1.13.0 due to better type annotation
support.

Fixed

Updated dependencies to use new version of cryptography that uses OpenSSL 1.1.1n, in
response to https://www.openssl.org/news/secadv/20220315.txt.

Certbot 1.24.0

Added

When the --debug-challenges option is used in combination with -v, Certbot
now displays the challenge URLs (for http-01 challenges) or FQDNs (for
dns-01 challenges) and their expected return values.

Changed

Support for Python 3.6 was removed.
All Certbot components now require setuptools>=41.6.0.
The acme library now requires requests>=2.20.0.
Certbot and its acme library now require pytz>=2019.3.
certbot-nginx now requires pyparsing>=2.2.1.
certbot-dns-route53 now requires boto3>=1.15.15.

Fixed

Nginx plugin now checks included files for the singleton server_names_hash_bucket_size directive.

(adam)

Updated security/py-josepy, devel/py-jupyter-console

(adam)

py-jupyter-console: updated to 6.4.3

6.4.3

Merged PRs
- Require jupyter_client>=7.0.0

(adam)

py-josepy: updated to 1.13.0

1.13.0 (2022-03-10)
-------------------

* Support for Python 3.6 has been deprecated and will be removed in the next
  scheduled release.
* Corrected some type annotations.

(adam)

Updated net/openvpn, www/py-urllib3

(adam)

py-urllib3: updated to 1.26.9

1.26.9 (2022-03-16)
-------------------

* Changed ``urllib3[brotli]`` extra to favor installing Brotli libraries that are still
  receiving updates like ``brotli`` and ``brotlicffi`` instead of ``brotlipy``.
  This change does not impact behavior of urllib3, only which dependencies are installed.
* Fixed a socket leaking when ``HTTPSConnection.connect()`` raises an exception.
* Fixed ``server_hostname`` being forwarded from ``PoolManager`` to ``HTTPConnectionPool``
  when requesting an HTTP URL. Should only be forwarded when requesting an HTTPS URL.

(adam)

openvpn: updated to 2.5.6

OpenVPN 2.5.6.
This is mostly a bugfix release including one security fix ("Disallow multiple deferred authentication plug-ins.", CVE: 2022-0547).

(adam)

Updated devel/py-dict2xml, devel/py-faker

(adam)

py-faker: updated to 13.3.2

v13.3.2
* Bump actions/stale from 3 to 5

v13.3.1
* Bump actions/setup-python from 2 to 3

(adam)

py-dict2xml: updated to 1.7.1

1.7.1
Adding an option to have self closing tags when the value for that tag equals certain values

(adam)

Updated textproc/ugrep, net/py-minio

(adam)

py-minio: updated to 7.1.5

7.1.5:
Add AssumeRoleWithCertificate credential provider.

7.1.4:
docs: fix typo in object_lock config function name
fix progress bar division by zero error
Add policy unset method to minio admin
fix: lint checks and enable MINIO_CI_CD=1 for functional tests

(adam)

ugrep: updated to 3.7.5

ugrep v3.7.5

New --hexdump options to grep binary files and display binary matches in hexadecimal with n hex lines before and after the match with --hexdump=Cn, --hexdump=An for n lines after and --hexdump=Bn for n lines before. Omitting n defaults to the entire matching line. Option -X is equivalent to --hexdump=2C for 2 hex columns per line and entire matching line as context. Includes user experience improvements, such as additional --help information and --stats details. This incremental update skips sysfd files that are empty and not searchable (e.g. located in /proc and /sys). We also made ugrep faster overall with performance improvements. More coming soon!

(adam)

Updated devel/py-ipykernel, lang/py-mypy, finance/py-stripe, devel/py-click

(adam)

py-click: updated to 8.0.4

Version 8.0.4
-------------
-  ``open_file`` recognizes ``Path("-")`` as a standard stream, the
    same as the string ``"-"``.
-  The ``option`` and ``argument`` decorators preserve the type
    annotation of the decorated function.
-  A callable default value can customize its help text by overriding
    ``__str__`` instead of always showing ``(dynamic)``.
-  Fix a typo in the Bash completion script that affected file and
    directory completion. If this script was generated by a previous
    version, it should be regenerated.
-  Fix typing for ``echo`` and ``secho`` file argument.

(adam)

py-stripe: updated to 2.67.0

2.67.0
* Add support for new resource `TestHelpers.TestClock`

(adam)

rust-analyzer: fix building for pre-1.59.0

(adam)

py-mypy: updated to 0.941

0.940:

Miscellaneous New Features

Add support for conditionally defined overloads
Give "as" variables in with statements separate scopes when it is safe to do so
Add an optional error code ignore-without-code to require ignore comments to have error codes
Add support for typing.Never and typing_extensions.Never as alternative spellings of NoReturn
Add support for typing.reveal_type
Support universal2 macOS wheels
Add match_args support to attr.s()

Enum Improvements

Check Enum definition for invalid base classes
Understand the self-destructing nature of Enum._ignore_
Add StrEnum support for Python 3.11
Make enum values final
Improve final detection for Enum
Fix Enum final properties and writable special members
Enum now accepts String literals and final values as 2nd argument
Fix false positive about member name reuse in enum
Fix enum inheritance regression

Mypyc Fixes and Improvements

Use Py_TYPE and Py_IsNone
Implement additional internal consistency checks
Raise AttributeError also for non-refcounted types
Fix invalid unlikely() in certain rare branches
Skip no-op super calls to object.__init__()
Use latest pythoncapi_compat
Add helpful message to assert

Documentation Updates

Add documentations about Enum types
Update Enum documentation
Improve documentation of allow_redefinition
Fix intelligent indexing example
Explain generic Protocol[T1, T2, ...] shorthand
Clarify that stub-only packages need to be installed
Small documentation improvements for conditional overloads

Improved Error Messages

Improve the "Argument must be a mapping" error message
Coalesce Literals when printing unions
Suggest typing.Callable when using callable as type
Suggest typing.Any when using any as type
Add note about wrong error code in type: ignore
Add no-overload-impl error code
Display ellipsis when formatting variadic tuple[T, ...]
Deduplicate error codes for ignore-without-code
Tweak ignore-without-code error message
Mention common resolutions for build errors

Stubtest Improvements

Ignore more dunder positional-only errors
Fix wrong assumption about relative path
Catch more getattr errors
Error if module level dunder is missing, housekeeping
Ignore __main__ module
Error if a dunder method is missing from a stub
Error if a function is async at runtime but not in the stub
Do not error if a stub is async, but runtime is not
Error if a class should be decorated with @final
Use VERSIONS for submodules
Treat dicts as a subtype of typeddict
Ignore more exceptions in stubtest

Other Notable Fixes and Improvements

Fix non-default keyword-only argument positioning in stubgen
Remove orjson stubs from default list
Use __truediv__ for Python 2 with __future__ import
Fix Python 2 compatibility issue
Use type variable bound to infer constraints
Handle raise Exception(), None on Python 2.7
Fix inference of protocol against overloaded function
Fix an issubclass failure for protocols with overloaded methods
Fix crashes in class scoped imports
Fix use of TypeAlias from aliased imports
Delete open plugin
Read pyproject.toml with correct encoding on Windows
Fix issue with implicit type aliases in import cycles
Forbid extra ParamSpec arguments
Fix crash involving explicit any flag and Required
Fix join of Any against a union type
Simplify unions when erasing last known values
Fix crash with yield in comprehension
Fix handling of NoReturn in union return types
Fix __init__ in dataclasses inheriting from Any
Narrow NamedTuple to bool correctly when __bool__ is defined
Improve type of __attrs_attrs__ in attrs classes
Install dependencies needed for reports via pip install mypy[reports]
Consider import * to be an explicit re-export
Fix --no-implicit-reexport inconsistency
Fix crash if "_" is in builtins
Fixes crash on subclassing Annotated without args

(adam)

py-ipykernel: updated to 6.9.2

6.9.2

Bugs fixed

- Catch error when shutting down kernel from the control channel))
- Only kill children in process group at shutdown
- BUG: Kill subprocesses on shutdown.

(adam)

Updated lang/zig, archivers/unrar, devel/meson, www/apache24

(adam)

apache24: updated to 2.4.53

Changes with Apache 2.4.53

*) SECURITY: CVE-2022-23943: mod_sed: Read/write beyond bounds
  (cve.mitre.org)
  Out-of-bounds Write vulnerability in mod_sed of Apache HTTP
  Server allows an attacker to overwrite heap memory with possibly
  attacker provided data.
  This issue affects Apache HTTP Server 2.4 version 2.4.52 and
  prior versions.

*) SECURITY: CVE-2022-22721: core: Possible buffer overflow with
  very large or unlimited LimitXMLRequestBody (cve.mitre.org)
  If LimitXMLRequestBody is set to allow request bodies larger
  than 350MB (defaults to 1M) on 32 bit systems an integer
  overflow happens which later causes out of bounds writes.
  This issue affects Apache HTTP Server 2.4.52 and earlier.
  Credits: Anonymous working with Trend Micro Zero Day Initiative

*) SECURITY: CVE-2022-22720: HTTP request smuggling vulnerability
  in Apache HTTP Server 2.4.52 and earlier (cve.mitre.org)
  Apache HTTP Server 2.4.52 and earlier fails to close inbound
  connection when errors are encountered discarding the request
  body, exposing the server to HTTP Request Smuggling

*) SECURITY: CVE-2022-22719: mod_lua Use of uninitialized value of
  in r:parsebody (cve.mitre.org)
  A carefully crafted request body can cause a read to a random
  memory area which could cause the process to crash.
  This issue affects Apache HTTP Server 2.4.52 and earlier.

*) core: Make sure and check that LimitXMLRequestBody fits in system memory.

*) core: Simpler connection close logic if discarding the request body fails.

*) mod_http2: preserve the port number given in a HTTP/1.1
  request that was Upgraded to HTTP/2.

*) mod_proxy: Allow for larger worker name.

*) dbm: Split the loading of a dbm driver from the opening of a dbm file. When
  an attempt to load a dbm driver fails, log clearly which driver triggered
  the error (not "default"), and what the error was.

*) mod_proxy: Use the maxium of front end and backend timeouts instead of the
  minimum when tunneling requests (websockets, CONNECT requests).
  Backend timeouts can be configured more selectively (per worker if needed)
  as front end timeouts and typically the backend timeouts reflect the
  application requirements better.

*) ap_regex: Use Thread Local Storage (TLS) to recycle ap_regexec() buffers
  when an efficient TLS implementation is available.

*) core, mod_info: Add compiled and loaded PCRE versions to version
  number display.

*) mod_md: do not interfere with requests to /.well-known/acme-challenge/
  resources if challenge type 'http-01' is not configured for a domain.
  Fixes <https://github.com/icing/mod_md/issues/279>.

*) mod_dav: Fix regression when gathering properties which could lead to huge
  memory consumption proportional to the number of resources.

*) Support pcre2 (10.x) library in place of the now end-of-life pcre (8.x)
  for regular expression evaluation. This depends on locating pcre2-config.

*) Add the ldap function to the expression API, allowing LDAP filters and
  distinguished names based on expressions to be escaped correctly to
  guard against LDAP injection.

*) mod_md: the status description in MDomain's JSON, exposed in the
  md-status handler (if configured) did sometimes not carry the correct
  message when certificates needed renew.

*) mpm_event: Fix a possible listener deadlock on heavy load when restarting
  and/or reaching MaxConnectionsPerChild.

(adam)