doc: Updated security/putty to 0.80

(wiz)

putty: update to 0.80.

PuTTY version 0.80 is released
------------------------------

This is a SECURITY UPDATE. We recommend that _everybody_ upgrade, as
soon as possible.

There is one security fix in this release:

- Fix for a newly discovered security issue known as the 'Terrapin'
  attack, also numbered CVE-2023-48795. The issue affects widely-used
  OpenSSH extensions to the SSH protocol: the ChaCha20+Poly1305
  cipher system, and 'encrypt-then-MAC' mode.

  In order to benefit from the fix, you must be using a fixed version
  of PuTTY _and_ a server with the fix, so that they can agree to
  adopt a modified version of the protocol. Alternatively, you may be
  able to reconfigure PuTTY to avoid selecting any of the affected
  modes.

  If PuTTY 0.80 connects to an SSH server without the fix, it will
  warn you if the initial protocol negotiation chooses an insecure
  mode to run the connection in, so that you can abandon the
  connection. If it's possible to alter PuTTY's configuration to
  avoid the problem, then the warning message will tell you how to do
  it.

As well as this security fix, there are two other ordinary bug fixes
in 0.80:

- On Windows, if you installed the MSI package, PuTTY could not find
  its help file. The help file was installed, but PuTTY wouldn't be
  able to open it, so the help buttons in its dialog boxes were
  missing.

- Sometimes, if you were looking at the terminal scrollback, the view
  position would be reset to the bottom of the scrollback unwantedly,
  if the server sent terminal output that didn't actually cause
  anything to be printed.

(wiz)

devel/hdf5: rename unsafe-threads to hdf5-unsafe-threads and document it

(thor)

py-asyncssh: bump PKGREVISION for previous

(wiz)

py-asyncssh: convert to wheel.mk

Fix LICENSE while here.

(wiz)

doc: Updated security/openssh to 9.6p1

(wiz)

openssh: update to 9.6p1.

Changes since OpenSSH 9.5
=========================

This release contains a number of security fixes, some small features
and bugfixes.

Security
========

This release contains fixes for a newly-discovered weakness in the
SSH transport protocol, a logic error relating to constrained PKCS#11
keys in ssh-agent(1) and countermeasures for programs that invoke
ssh(1) with user or hostnames containing invalid characters.

* ssh(1), sshd(8): implement protocol extensions to thwart the
  so-called "Terrapin attack" discovered by Fabian Bäumer, Marcus
  Brinkmann and Jörg Schwenk. This attack allows a MITM to effect a
  limited break of the integrity of the early encrypted SSH transport
  protocol by sending extra messages prior to the commencement of
  encryption, and deleting an equal number of consecutive messages
  immediately after encryption starts. A peer SSH client/server
  would not be able to detect that messages were deleted.

  While cryptographically novel, the security impact of this attack
  is fortunately very limited as it only allows deletion of
  consecutive messages, and deleting most messages at this stage of
  the protocol prevents user user authentication from proceeding and
  results in a stuck connection.

  The most serious identified impact is that it lets a MITM to
  delete the SSH2_MSG_EXT_INFO message sent before authentication
  starts, allowing the attacker to disable a subset of the keystroke
  timing obfuscation features introduced in OpenSSH 9.5. There is no
  other discernable impact to session secrecy or session integrity.

  OpenSSH 9.6 addresses this protocol weakness through a new "strict
  KEX" protocol extension that will be automatically enabled when
  both the client and server support it. This extension makes
  two changes to the SSH transport protocol to improve the integrity
  of the initial key exchange.

  Firstly, it requires endpoints to terminate the connection if any
  unnecessary or unexpected message is received during key exchange
  (including messages that were previously legal but not strictly
  required like SSH2_MSG_DEBUG). This removes most malleability from
  the early protocol.

  Secondly, it resets the Message Authentication Code counter at the
  conclusion of each key exchange, preventing previously inserted
  messages from being able to make persistent changes to the
  sequence number across completion of a key exchange. Either of
  these changes should be sufficient to thwart the Terrapin Attack.

  More details of these changes are in the PROTOCOL file in the
  OpenSSH source distribition.

* ssh-agent(1): when adding PKCS#11-hosted private keys while
  specifying destination constraints, if the PKCS#11 token returned
  multiple keys then only the first key had the constraints applied.
  Use of regular private keys, FIDO tokens and unconstrained keys
  are unaffected.

* ssh(1): if an invalid user or hostname that contained shell
  metacharacters was passed to ssh(1), and a ProxyCommand,
  LocalCommand directive or "match exec" predicate referenced the
  user or hostname via %u, %h or similar expansion token, then
  an attacker who could supply arbitrary user/hostnames to ssh(1)
  could potentially perform command injection depending on what
  quoting was present in the user-supplied ssh_config(5) directive.

  This situation could arise in the case of git submodules, where
  a repository could contain a submodule with shell characters in
  its user/hostname. Git does not ban shell metacharacters in user
  or host names when checking out repositories from untrusted
  sources.

  Although we believe it is the user's responsibility to ensure
  validity of arguments passed to ssh(1), especially across a
  security boundary such as the git example above, OpenSSH 9.6 now
  bans most shell metacharacters from user and hostnames supplied
  via the command-line. This countermeasure is not guaranteed to be
  effective in all situations, as it is infeasible for ssh(1) to
  universally filter shell metacharacters potentially relevant to
  user-supplied commands.

  User/hostnames provided via ssh_config(5) are not subject to these
  restrictions, allowing configurations that use strange names to
  continue to be used, under the assumption that the user knows what
  they are doing in their own configuration files.

Potentially incompatible changes
--------------------------------

* ssh(1), sshd(8): the RFC4254 connection/channels protocol provides
  a TCP-like window mechanism that limits the amount of data that
  can be sent without acceptance from the peer. In cases where this
  limit was exceeded by a non-conforming peer SSH implementation,
  ssh(1)/sshd(8) previously discarded the extra data. From OpenSSH
  9.6, ssh(1)/sshd(8) will now terminate the connection if a peer
  exceeds the window limit by more than a small grace factor. This
  change should have no effect of SSH implementations that follow
  the specification.

New features
------------

* ssh(1): add a %j token that expands to the configured ProxyJump
  hostname (or the empty string if this option is not being used)
  that can be used in a number of ssh_config(5) keywords. bz3610

* ssh(1): add ChannelTimeout support to the client, mirroring the
  same option in the server and allowing ssh(1) to terminate
  quiescent channels.

* ssh(1), sshd(8), ssh-add(1), ssh-keygen(1): add support for
  reading ED25519 private keys in PEM PKCS8 format. Previously
  only the OpenSSH private key format was supported.

* ssh(1), sshd(8): introduce a protocol extension to allow
  renegotiation of acceptable signature algorithms for public key
  authentication after the server has learned the username being
  used for authentication. This allows varying sshd_config(5)
  PubkeyAcceptedAlgorithms in a "Match user" block.

* ssh-add(1), ssh-agent(1): add an agent protocol extension to allow
  specifying certificates when loading PKCS#11 keys. This allows the
  use of certificates backed by PKCS#11 private keys in all OpenSSH
  tools that support ssh-agent(1). Previously only ssh(1) supported
  this use-case.

Bugfixes
--------

* ssh(1): when deciding whether to enable the keystroke timing
  obfuscation, enable it only if a channel with a TTY is active.

* ssh(1): switch mainloop from poll(3) to ppoll(3) and mask signals
  before checking flags set in signal handler. Avoids potential
  race condition between signaling ssh to exit and polling. bz3531

* ssh(1): when connecting to a destination with both the
  AddressFamily and CanonicalizeHostname directives in use,
  the AddressFamily directive could be ignored. bz5326

* sftp(1): correct handling of the limits@openssh.com option when
  the server returned an unexpected message.

* A number of fixes to the PuTTY and Dropbear regress/integration
  tests.

* ssh(1): release GSS OIDs only at end of authentication, avoiding
  unnecessary init/cleanup cycles. bz2982

* ssh_config(5): mention "none" is a valid argument to IdentityFile
  in the manual. bz3080

* scp(1): improved debugging for paths from the server rejected for
  not matching the client's glob(3) pattern in old SCP/RCP protocol
  mode.

* ssh-agent(1): refuse signing operations on destination-constrained
  keys if a previous session-bind operation has failed. This may
  prevent a fail-open situation in future if a user uses a mismatched
  ssh(1) client and ssh-agent(1) where the client supports a key type
  that the agent does not support.

Portability
-----------

* Better identify unsupported and unstable compiler flags, such as
  -fzero-call-used-regs which has been unstable across a several
  clang releases.

* A number of fixes to regression test reliability and log
  collection.

* Update the OpenSSL dependency in the RPM specification.

* sshd(8): for OpenSolaris systems that support privilege limitation
  via the getpflags() interface, prefer using the newer PRIV_XPOLICY
  to PRIV_LIMIT. bz2833

(wiz)

update homepage

(zafer)

doc: Updated ham/nec2c to 1.3.1

(mef)

(ham/nec2c) Updated 1.3 to 1.3.1

  Version 1.3.1: Fixed a bug in the fbar() in somnec.c reported by
  Ward Harriman, AE6TY, that caused corrupt results with wire dipoles
  close to ground and while using Sommerfeld/Norton approximation.

(mef)

doc: Updated ham/xnec2c to 4.2.3

(mef)

(ham/xnec2c) Updated 4.2.1 to 4.2.3

(From doc/xnec2c.html)
Version 4.2.2:

  Fixed a bug in the fbar() in somnec.c reported by Ward Harriman,
  AE6TY, that caused corrupt results with wire dipoles close to ground
  and while using Sommerfeld/Norton approximation.

Version 4.2.3:

  Fixed a bug in Child_Process() in fork.c which resulted in an
  out-of-bounds (by 1) write to the rc_config.input_file[] character
  array.

(mef)

pkgtools/pkglint: update to 23.2.5

Changes since 23.2.4:

For Python packages that do not support Python 2, warn that egg.mk is
deprecated and should be replaced with wheel.mk.  Provide detailed
migration instructions.

(rillig)

doc: Updated devel/p5-MooseX-SetOnce to 0.203

(mef)

(devel/p5-MooseX-SetOnce) Updated 0.200002 to 0.203

0.203    2022-12-31 21:33:33-05:00 America/New_York
        - update author email contact info (again)
        - fix how perl version was declared (sorry)

0.202    2022-12-31 17:07:01-05:00 America/New_York
        - declare required perl version
        - update author email contact info (again)

0.201    2021-06-18 20:54:02-04:00 America/New_York
          update author email contact info

(mef)

doc: Updated devel/p5-MooseX-App to 1.43nb2

(mef)

(devel/p5-MooseX-App) Updated 1.42 to 1.43

1.43 2023-10-21
    - Remove duplicate license
    - Require Config::Any
    - Fix cmd_aliases for flags (fixed by William Barker)
    - Remove smartmatch (implemented by Petr Pisar)
    - Allow to override build date with SOURCE_DATE_EPOCH (implemented by Bernhard M. Wiedemann)

(mef)

doc: Updated devel/p5-Module-ScanDeps to 1.35

(mef)

(devel/p5-Module-ScanDeps)

1.35  2023-11-05

- massive speed up, esp. for scripts using stuff from
  the Moose ecosystem, thanks to @shawnlaffan:

  - add package level caches for INC searches (_find_in_inc, _glob_in_inc)
  - faster add_deps on case insensitive systems AKA Windows

1.34  2023-09-24

- Fix issue #19 (AKA rschupp/PAR-Packer#78): invalid paths in zip file

  - Restore behaviour from version 1.31 when using "pp --execute ..." or
    "scandeps.pl --execute ...".

    When using "scan_deps(execute => 1, ...)", %INC as gleaned from
    running the script must be sanitized. Contrary to documentation
    "The  key  is the filename you specified (with module names
    converted to pathnames)" %INC *may* contain keys that are
    *absolute pathnames* (or start with "./relativ/path" when
    "relative/path" is in @PATH). Examples are autosplitted modules
    (for autosplit.ix and *.al files). pp will pack these absolute
    paths into the zip (Archive::Zip doesn't complain) which
    results in strange error messages when the packed executable
    tries to unpack them under CACHEDIR/inc on Windows.

    Add t/19-autosplit.t to test for this.
    Add IPC::Run3 to TEST_REQUIRES, used in t/19-autosplit.t

- Add GitHub CI

1.33  2023-08-04

- Recognize Moose/Moo/Mouse style inheritance ("extends")
  or composition ("with") statements.

- Add %Preload entries for known dependants of XS::Parse::Keyword.

  Note: XS::Parse::Keyword is loaded from XS code, grep.metacpan.org
  for calls of boot_xs_parse_keyword() in *.xs files.

1.32  2023-07-05

- Ensure $inc gets removed from the start of $File::Find::name

  On Windows, if $inc contains backslashes then it won't always get removed
  from the start of $File::Find::name because the latter may be canonicalized
  to only contain forward slashes.

- Provide dedicated test scripts for some tests instead of using
  the test scripts themselves: Test::More draws in all kinds of stuff,
  totally unpredictable

- Rewrite test helpers in t/Utils.pm to use Test::More's subtest feature

- Code cleanup; fix detection of 'do STRING' (cf PR #15)

- scandeps.pl:  sort items in "used by" column

- Handle spaces after quote operator, e.g. eval qq {Some::Module}

- Fixes #12: share dir not returned when require module is in an eval

- Recognize constructs like "eval qq{require Inline::C}".

- Recognize idioms like "if (eval { require Foo }) { ..."

- Add %preload rules for some Mojo resource files

  Fixes rschupp/PAR-Packer#44

- Bump perl dependency to guard against ancient perls without FindBin::again()

- Add tool to trace when (and from where) Perl searches for a module

(mef)

doc: Updated devel/p5-Module-Install-RTx to 0.43

(mef)

(devel/p5-Module-Install-RTx) Updated 0.42 to 0.43

0.43 2022-02-09
- Fix "require" remove_files for perl 5.26+

(mef)

doc: Updated devel/p5-Module-Install to 1.21

(mef)

(devel/p5-Module-Install) Updated 1.19 to 1.21

1.21  2023-04-28
  - fix tests broken by Module::Install::DSL removal

1.20  2023-04-27
  - Module::Install::DSL has been removed, as its use is highly discouraged.

(mef)

doc: Updated devel/p5-Module-Find to 0.16

(mef)

(devel/p5-Module-Find) Updated 0.15 to 0.16

    0.16, 2022-08-01
            Fixes an issue where symlink tests failed on systems that do not
            support creation of symlinks. The issue appears on Windows
            systems due to changed behaviour in "File::Find" described in
            perl5/issue #19995 <https://github.com/Perl/perl5/issues/19995>
            Symlink tests were previously skipped if symlink() is not
            available, and now also if creation of a symlink is not
            possible.

            Fixes issue #9 <https://github.com/crenz/Module-Find/issues/9>.
            Note that on Windows system, the patch to "File::Find" from
            perl5/PR #20008 <https://github.com/Perl/perl5/pull/20008> will
            be required for proper operation.

(mef)

doc: Updated devel/p5-Module-ExtractUse to 0.345

(mef)

(devel/p5-Module-ExtractUse) Updated 0.344 to 0.345

0.345  2023-01-16T17:12:05
    - Auto generate meta_yml_has_provides experimental Kwalitee. (Mohammad S Anwar)

(mef)

doc: Updated devel/p5-Module-CPANTS-Analyse to 1.02

(mef)

(devel/p5-Module-CPANTS-Analyse) Updated 1.0.1 to 1.0.2

1.02 2023-09-10
  - Treat use v5.36 as use_warnings
  - Skip some of the manifest test if symlink is not available
  - Improve prereq sorting
  - Improve pod detection
  - Improve script detection
  - Use Parse::Distname to get a little more information from a distribution name
  - Dedupe possible licences
  - Add Object::Pad as use strict equivalent (Wesley Schwengle)
  - Fix has_license_in_source_file for distributions that contain only a
    script under bin or scripts (Sven Kirmess)

(mef)

doc: Updated devel/p5-Module-Build-Tiny to 0.047

(mef)

(devel/p5-Module-Build-Tiny) Updated 0.046 to 0.047

0.047    2023-09-28 17:53:41+02:00 Europe/Brussels
          - Avoid using empty regex for backwards compatability

(mef)

doc: Updated devel/p5-Mixin-Linewise to 0.111

(mef)

(devel/p5-Mixin-Linewise) Updated 0.110 to 0.111

0.111    2022-12-31 21:09:24-05:00 America/New_York
        - update author information

(mef)

doc: Updated devel/p5-Mixin-ExtraFields-Param to 0.022

(mef)

(devel/p5-Mixin-ExtraFields-Param) Updated 0.021 to 0.022

0.022    2022-12-31 13:32:48-05:00 America/New_York
        - update packaging and metadata
        - minimum required Perl is now v5.12

(mef)

doc: Updated devel/p5-Mixin-ExtraFields to 0.140.003

(mef)

(devel/p5-Mixin-ExtraFields) Updated 0.140.002 to 0.140.003

0.140003  2022-12-31 13:29:27-05:00 America/New_York
        - update packaging and metadata
        - minimum required Perl is now v5.12

(mef)

doc: Updated devel/p5-Metrics-Any to 0.10

(mef)

(devel/p5-Metrics-Any) Updated 0.07 to 0.10

0.10    2023-07-07
        [CHANGES]
        * Swap all of the unit tests from Test::More to Test2::V0

0.09    2022-11-28
        [CHANGES]
        * Define a new API for optional high-performance batch mode
          collection of counter and gauge metrics

0.08    2022-10-11
        [CHANGES]
        * Optionally allow the test adapter to store full values for
          distributions

(mef)

doc: Updated graphics/oculante to 0.8.6

(pin)

graphics/oculante: update to 0.8.6

��š Bug Fixes
  - Disable lazy_loop so UI refreshes on windows (workaround) (9324fe2b)

(pin)

doc: Updated net/netop to 0.1.4

(pin)

net/netop: update to 0.1.4

feat: �沁ｸ migrate to ratatui.

(pin)

doc: Updated wm/lefthk to 0.2.1

(pin)

wm/lefthk: update to 0.2.1

Releases 0.2.1, which resolves an error (#38) where the system may freeze when
a subprocess tries to acquire stderr.

(pin)

devel/hdf5: adding unsafe-threads option

This is an option certain scientific users request for building their code.
They explicitly need the unsupported configuration, that somehow seems to
work for them.

(thor)

pkg-vulnerabilities: deactivate one old hdf5 issue

Those fuzzed POCs from 5 years ago trigger this in hdf5 since some time:

h5dump error: internal error (file h5dump.c:line 1471)

(thor)

py-faker: not for Python 2, remove PLIST.py2x

(wiz)

Updated devel/libebml, devel/py-faker

(adam)

py-faker: updated to 21.0.0

v21.0.0

* Fix: random sign in `pyfloat` when `positive=False`. Thanks @viraj-s15.

v20.1.0

* Add company provider and NUSS for `es_ES` locale. Thanks @fgsalomon.
* Add official support for Python 3.12. Thanks @pfouque.

v20.0.3

* Make `unix_time` always return floats.

v20.0.2

* Fix `pydecimal` crash on float `min_value` or `max_value`. Thanks @s-weigand.

v20.0.1

* Fix type hint for `unix_time`.

v20.0.0

* Support platform-specific second precision. Thanks @cknv.

(adam)

libebml: updated to 1.4.5

Version 1.4.5 2023-12-12

Fix invalid memory access (reading beyond allocated memory) due to missing integer overflow check.

(adam)

Updated textproc/py-diff-match-patch, textproc/py-pdf

(adam)

py-pdf: updated to 3.17.3

Version 3.17.3, 2023-12-17

Robustness (ROB)
-  Out-of-bounds issue in handle_tj (text extraction)

Developer Experience (DEV)
-  Make make_release.py easier to configure

Maintenance (MAINT)
-  Bump actions/download-artifact from 3 to 4

(adam)

py-diff-match-patch: updated to 20230430

v20230430

Maintenance release

- Replaced deprecated `imp` usage with `importlib`
- Migrated to PEP 621 metadata, flit
- Reformated with updated black/袖sort/袖fmt
- Tested on Python 3.7 - 3.11
- Dropped support for Python 2.7, 3.5, and 3.6

(adam)

Fix build with icu >= 74.1

Bump PKGREVISION. No ACK from MAINTAINER but wanting to get package
building before the branch

(abs)

doc: Updated sysutils/duplicity to 2.1.4

(triaxx)

duplicity: Update to 2.1.4

pkgsrc changes:
---------------
  * Update HOMEPAGE.
  * Add dependencies for some backends.
  * Fix SUBST messages.

upstream changes:
-----------------
  * Lot of changes: http://duplicity.us/stable/CHANGELOG.html

(triaxx)

doc: new webkit version with some new CVEs

(wiz)

Updated graphics/gnuplot, devel/py-hatchling

(adam)

py-hatchling: updated to 1.21.0

1.21.0 - 2023-12-18其

Added:

Add parent context modifier for path fields

(adam)

gnuplot: updated to 5.4.10

Changes in 5.4.10

FIX postscript: build failed in 5.4.9 if neither gd nor cairo libraries present
FIX data-dependent variable point properties in polar plots
FIX configure script modified to work with macOS+Homebrew
CHANGE use 64-bit integers for iteration (allows iteration over dates)

Changes in 5.4.9

NEW qt: support building with Qt6
CHANGE check plugin version at time of import
FIX prevent segfault if GNUPLOT_DRIVER_DIR is invalid
FIX (regression) only y autoscale yerrorbars to points in xrang
FIX possible memory corruption if clipping causes 0-size polygons
FIX wxt: initialization of key box toggle state
FIX post: handle pixmaps

(adam)

doc: Updated devel/py-sure to 2.0.1nb1

(wiz)

py-sure: convert to wheel.mk

Bump PKGREVISION.

(wiz)

py-gi-docgen: add missing tool

(wiz)

doc: Updated shells/nushell to 0.88.1

(pin)

shells/nushell: update to 0.88.1

v0.88.1
This is the 0.88.1 patch release of Nushell.

With this hotfix we adress a regression in the redirection to external commands
and fix build failures using cargo install and on some platforms.

v0.88.0
This is the 0.88.0 release of Nushell. You can learn more about this release
here: https://www.nushell.sh/blog/2023-12-12-nushell_0_88_0.html

The ChangeLog is too long to reproduce here.

(pin)

Updated textproc/py-markdown2, devel/py-progressbar2

(adam)

py-progressbar2: updated to 4.3.0

v4.3.0

Added support for multithreading, multiprocessing, colors (16, 256 and full color) and many interactive terminal features such as continuous printing for a live ETA

(adam)

py-markdown2: updated to 2.4.12

python-markdown2 2.4.12

- Update `markdown-in-html` extra to handle markdown on same line as HTML
- Fix tables with trailing whitespace not being recognized
- Fix multiple instances of strong emphasis (`**`) in one line
- Fix incorrect parsing of links after square brackets

(adam)

Updated devel/cmake, devel/cmake-gui

(adam)

cmake cmake-gui: updated to 3.28.1

CMake 3.28.1
* Help/create_test_sourcelist: reflow prose
* Help/create_test_sourcelist: add formatting markup
* Help/create_test_sourcelist: format arguments in the signature docs
* cmGeneratorTarget: disable C++ module scanning for verify targets
* cmQtAutoGenInitializer: disable C++ module scanning for autogen sources
* cmLocalGenerator: disable C++ module scanning for copied PCH sources
* cmLocalGenerator: disable C++ module scanning for unity sources
* cmGlobalXCodeGenerator: disable C++ module scanning for force-lang files
* FindFreetype: always find the config module quietly
* FindFreetype: also consider RelWithDebInfo-built libraries
* FindTIFF: always find the config module quietly
* FindTIFF: consider `IMPLIB`-using platforms
* FindCUDAToolkit: Fix stub library representation on reconfigure
* Tests: Update for changes to upstream ninja development version
* gitlab-ci: update macOS jobs to use Xcode 15.1
* FindMatlab: Fix regression on Windows Registry lookup failure
* FindFreetype: Fix success message when config module is found
* FindTIFF: Restore support for projects that do not enable CMP0057
* FindMatlab: Fix processing of multiple versions from Windows Registry
* Help: Fix malformed cross-reference in FetchContent docs
* Help: Add missing versionadded directives for IMPORTED_IMPLIB
* Help: XCFrameworks and stubs are supported on all Apple, not just macOS
* Help: Note case where IMPORTED_IMPLIB isn't needed for (xc)frameworks
* Tests: Do not expect EINTR when sleep is interrupted on GNU/Hurd
* CUDAToolkit: Restore ability to find cupti headers

(adam)

doc: Updated meta-pkgs/xfce4 to 4.18.1nb6

(gutteridge)

xfce4: bump for xfce4-power-manager 4.18.3

(gutteridge)

doc: Updated sysutils/xfce4-power-manager to 4.18.3

(gutteridge)

xfce4-power-manager: update to 4.18.3

4.18.3 (2023-11-30)
======
- power: Fix inhibition management
- settings: Present window to the user when already opened
- settings: Remove useless g_application_hold/release()
- A review of signal handlers disconnection
- Remove #ifdefs DEBUG
- brightness: Rework min level management
- Refactor XfpmBrightness
- Remove useless logs
- backlight: Adjust some spacing for consistency / readability
- backlight: Return earlier when brightness key event should not be
handled
- backlight: fix "handle display brightness keys" setting
- Simplify brightness level management (Fixes #139)
- Add missing properties for panel plugin settings
- Use same debug function everywhere (V2)
- brightness: Silence more warnings
- Fix previous commit (again)
- Fix previous commit
- Fix g_spawn*_sync() wait status management
- brightness: Fix g_spawn() wait status management
- Silence some more warnings
- Update docs url
- power: Fix memory leak
- settings: Fix hidden widgets when !has_lcd_brightness
- backlight: Fix xfconf warning about cancelled operation
- Lower some warning levels
- Use same debug function everywhere
- Fix upower object management
- plugin: Fix non unreffed objects on finalize
- systray-icon: Fix "floating object" warning on finalize
- systray-icon: Fix "invalid property" warnings
- Suspend system if lock screen fails on lid close (Fixes #209)
- Add energy rate into device details
- power: Fix use of g_hash_table_get_values()
- Fix light locker integration (Fixes #201)
- Add app icon at 64px, 96px, clean up SVG metadata
- Fix description for pending states.
- Translation Updates:
  Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian,
  Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish,
  Dutch, Eastern Armenian, English (Australia), English (Canada),
  English (United Kingdom), Estonian, Finnish, French, Galician,
  German, Greek, Hebrew, Hungarian, Icelandic, Indonesian, Interlingue,
  Italian, Japanese, Kannada, Kazakh, Korean, Lithuanian, Malay,
  Norwegian Bokm奪l, Occitan (post 1500), Polish, Portuguese,
  Portuguese (Brazil), Romanian, Russian, Serbian, Slovak, Slovenian,
  Spanish, Swedish, Thai, Turkish, Ukrainian

(gutteridge)

biology/libpll: add bl3

(thor)

doc: Updated biology/libpll to 0.3.2

(thor)

biology/libpll: added package for PLL phylogenetic analysis

The aim of this project is to implement a versatile high-performance
software library for phylogenetic analysis. The library should serve
as a lower-level interface of PLL (Flouri et al. 2015) and should
have the following properties:

    open source code with an appropriate open source license.
    64-bit multi-threaded design that handles very large datasets.
    easy to use and well-documented.
    SIMD implementations of time-consuming parts.
    as fast or faster likelihood computations than RAxML (Stamatakis 2014).
    fast implementation of the site repeats algorithm (Kobert 2017).
    functions for tree visualization.
    bindings for Python.
    generic and clean design.
    Linux, Mac, and Microsoft Windows compatibility.

(thor)

doc: Updated print/texlab to 5.12.0

(wiz)

texlab: update to 5.12.0.

## [5.12.0] - 2023-12-03

### Added

- Infer `texlab.build.auxDirectory`, `texlab.build.logDirectory` and `texlab.build.pdfDirectory` from `latexmkrc` if available ([#907](https://github.com/latex-lsp/texlab/issues/907))

### Fixed

- Do not report `undefined reference` errors when using `\nocite{*}` ([#964](https://github.com/latex-lsp/texlab/issues/964))
- Fix potential crash when parsing build log files ([#973](https://github.com/latex-lsp/texlab/issues/973))
- Set the final tab stop of the `\begin` snippet inside the environment ([#963](https://github.com/latex-lsp/texlab/issues/963))

(wiz)

doc: Updated finance/gnucash-docs to 5.5

(wiz)

gnucash-docs: update to 5.5.

5.5  - 17 December 2023
      o EBICS: for business customers (of the bank) rather than business users.
      o docbook: additional entities for business GUI-elements</li>
      o docbook: gnc-gui-*: Rename the scheduled edit/new/delete menus to
        match a change in the program.
5.4  - 24 September 2023
      o Bug 799074 - Incorrect note re cash page in stock-txn-assistant
      o Add a Chinese translation for the Tutorial and Concepts Guide.
      o Update git branches for API docs
      o Refactor the build system feature for adding customized xslt files.
      o Bump minimum cmake version to 3.14 to keep it in sync with the
        gnucash repo
      o Fix race condition in creating symlinks for the kde help system.
      o Update GitHub actions/checkout to v3 in all actions and add
        nightly-build github workflow.
      o Manual (C,de): Replace obsolete 'gnc-fq-*' with
        'gnucash-cli --quotes *'
      o Guide (C,de,ru): Repair broken links from 'help' to 'manual'
      o Guide (C,de), ch_invest: Remove section 'Finance::Quote install'
      o Manual (C, de) Update F::Q screens to 1.57
      o Change version 4 to 5, branch maint to stable, and update
        Finance::Quote docs to reflect changes in GnuCash.
      o New and Updated Translations: German

(wiz)

doc: Updated finance/gnucash to 5.5

(wiz)

gnucash: update to 5.5.

5.5  - 17 December 2023

The following bugs have been fixed:

    Bug 607000 - SLR visible transactions
                Change the Since Last Run dialog to show only transactions
                with a non-empty Status.
    Bug 792241 - Allow sorting scheduled transactions
    Bug 798025 - SLR Value entry not tied to location
                Disable scrolling and the horizontal scroll bar while an entry
                has focus.
    Bug 798760 - SLR OK button to complete value entry
                With this change the Since Last Run dialog's OK button will
                commit an in-progress edit and advance to the next edit
                requiring input. It will close the dialog only if there are
                no more edits.
    Bug 798760 - SLR change reminder with value entry
                Change transaction state from Reminder to ToCreate when the
                user has provided the needed value and clicked OK.
    Bug 798890 - Printing Problem
    Bug 799087 - Import - Unbalanced (need acct) transactions now show in red
                (previously orange).
    Bug 799090 - Right Clicking scheduled transaction
                Ensure that the selection highlight changes to the item under
                the pointer when right-clicking in the SX Editor.
    Bug 799092 - GnuCash 5.4 leaves background process running on exit
                Clear the schema_hash at app shutdown via
                gnc_prefs_remove_registered and make that function available
                to the Python bindings so that python programs can do so too.
    Bug 799099 - Crash when trying to get quotes
    Bug 799104 - "Asset Chart" broken
    Bug 799108 - "Since Last Run" crashes if there are any errors creating a
                scheduled transaction: Capture errors and display them in a
                dialog box instead.
    Bug 799113 - "Start Import" button reports "Failed"
    Bug 799121 - Parse error on CSV import on MacOS
    Bug 799130 - split-register.c:1847:gnc_split_register_save: assertion
                failed: (xaccTransIsOpen (blank_trans))
    Bug 799134 - Fails to build with GCC 14 (���find_if��� is not a member of ���std���;
                did you mean ���find���)
    Bug 799138 - Port to new Python C config API
    Bug 799143 - FTBFS on 32bit architectures
    Bug 799144 - Date Completion is broken after 5.4 upgrade
    Bug 799148 - Reliable crash when saving a modified saved report
                configuration
    Bug 799150 - Can't paste text (with Ctrl+V) in Notes field in Account Tree
                View
    Bug 799151 - gnc_date_get_last_mday () does not account for leap years
                correctly.
    Bug 799152 - normalize_reldate_tm() does not handle dates with months
                greater than 11 or less than -11 correctly.
    Bug 799156 - normalize_struct_tm() does not normalize seconds,minutes, and
                hours correctly.
Other repairs or enhancements not marked as bugs:

    Cancel the QIF import instead of inserting the default directory if the
        user cancels the file-selection dialog.
    Memory leak fixes
    Rename the scheduled transaction edit/new/delete menus to resolve a
        shortcut conflict.
    Allow saving the sort column in the Since Last Run dialog
    Ensure that Print Checks obtains for the check amount the sum of all splits
        in the current register account and subaccounts.
    Ensure that report page actions are re-enabled after editing options. Some
        actions (Print, PDFExport, and Report Options) had been left disabled.
    Ensure GncDateEntry always reverts to today if the user enters an invalid
        date string.
    Direct cmake to find the base installed Python3 instead of the latest
        version installed. Reference Cmake Issue 24126, Cmake Issue 24878, and
        CMake merge request 8287. Note that this requires CMake 3.20 or later;
        users of older versions will still get the newest installed Python
        version.
    CI: Run distcheck on one workflow to catch quickly instances where someone
        adds a file but forgets to update the distribution.
    Primarily of interest to developers: We've added a new CMAKE_BUILD_TYPE,
        Asan, with two options -DLEAKS and -DODR, both of which default to OFF.
        This creates a non-optimized, with-symbols build with the Address
        Sanitizer hooks compiled in. While the primary motivation is a CI run
        to ensure that there aren't any memory allocation errors revealed in
        the test suite, this is also a useful build to use when debugging a
        segfault crash, many of which are caused by use-after-free errors. When
        building on non-Apple platforms -DLEAKS=ON will add leak detection,
        dumping a stack trace for the allocation of any leaked heap or
        free-store allocations. Similarly and on non-Apple platforms only
        -DODR=ON will log violations of the C++ one definition rule.
    Also of interest to developers: A new cmake option -DCOVERAGE. When on and
        in a non-optimized build this will instrument the program and libraries
        to count usage for every source line. The option also adds three
        targets, lcov-initialize, lcov-collect, and lcov-generate-html. The
        primary motivation is to assess the completeness of tests in CI, see
        https://gnucash.github.io/Coverage-HTML for the latest results.

(wiz)

doc: Updated textproc/tree-sitter-elixir to 0.1.1

(wiz)

tree-sitter-elixir: update to 0.1.1.

Changed

    Rewritten the custom scanner code in C (#56)

Fixed

    Parsing empty interpolation (#55)
    Fixed the repository URL in the Rust crate (#57)

(wiz)

doc: Updated www/restish to 0.20.0

(wiz)

restish: update to 0.20.0.

    c4befd0 Merge pull request #223 from danielgtaylor/dependabot/go_modules/golang.org/x/net-0.17.0
    2db8c10 Merge pull request #225 from exoscale/cached-transport
    c0f180c Merge pull request #226 from danielgtaylor/dependabot/go_modules/golang.org/x/image-0.10.0
    b75a307 Merge pull request #227 from cbliard/patch-1
    a92c7db Merge pull request #229 from danielgtaylor/redirect-url
    21a9017 Merge pull request #233 from danielgtaylor/hide-secrets-input
    d16bdd7 Merge pull request #234 from danielgtaylor/clear-auth-cache
    0a1f26c Update docs to use go install instead of go get
    00b34d8 chore(deps): bump golang.org/x/image from 0.5.0 to 0.10.0
    8135dc8 chore(deps): bump golang.org/x/net from 0.7.0 to 0.17.0
    ac559b9 chore: add configurable redirect_url, preserve default value
    97c3636 feat: add command to clear auth token cache
    13fe1aa fix(api): Do not cache server responses when refreshing API defs
    1ecdb09 fix: hide secret input during API config, fixes #232
    9a25266 fix: use better url parsing

(wiz)

doc: Updated textproc/enchant2 to 2.6.4

(wiz)

enchant2: update to 2.6.4.

2.6.3 (December 11, 2023)
-------------------------

This version makes pkgdatadir versioned by default.

(wiz)

doc: Updated security/py-google-auth-httplib2 to 0.2.0

(wiz)

py-google-auth-httplib2: update to 0.2.0.

0.2.0 (2023-12-12)

Features

    Add support for Python 3.12 (#126) (9a110a6)

Dependencies

    Remove third-party mock library (#124) (ea0c7c6)

(wiz)

doc: Updated security/py-cyclonedx-python-lib to 6.0.0

(wiz)

py-cyclonedx-python-lib: update to 6.0.0.

v6.0.0 (2023-12-10)

Breaking

    feat!: v6.0.0 (#492)

Breaking Changes

    Removed symbols that were already marked as deprecated (via #493)
    Removed symbols in parser.* (#489 via #495)
    Removed output.LATEST_SUPPORTED_SCHEMA_VERSION (#491 via #494)
    Serialization of unsupported enum values might downgrade/migrate/omit them (#490 via #496)
    Handling might raise warnings if a data loss occurred due to omitting.
    The result is a guaranteed valid XML/JSON, since no (enum-)invalid values are rendered.
    Serialization of any model.component.Component with unsupported type raises exception.serialization.SerializationOfUnsupportedComponentTypeException (#490 via #496)
    Object model.bom_ref.BomRef's property value defaults to Null, was arbitrary UUID (#504 via #505)
    This change does not affect serialization. All bom-refs are guaranteed to have unique values on rendering.
    Removed helpers from public API (#503 via #506)

Added

    Basic support for CycloneDX 1.5 (#404 via #488) -- Thanks to @Churro
        No data models were enhanced nor added, yet.
        Pull requests to add functionality are welcome.
        Existing enumerable got new cases, to reflect features of CycloneDX 1.5 (#404 via #488)
        Outputters were enabled to render CycloneDX 1.5 (#404 via #488)

Tests

    Created (regression/unit/integration/functional) tests for CycloneDX 1.5 (#404 via #488)
    Created (regression/functional) tests for Enums' handling and completeness (#490 via #496)

Misc

    Bumped dependency py-serializable@^0.16, was @^0.15 (via #496)

API Changes — the details for migration

    Added new sub-package exception.serialization (via #496)
    Removed class models.ComparableTuple (#503 via #506)
    Enum model.ExternalReferenceType got new cases, to reflect features for CycloneDX 1.5 (#404 via #488)
    Removed function models.get_now_utc (#503 via #506)
    Removed function models.sha1sum (#503 via #506)
    Enum model.component.ComponentType got new cases, to reflect features for CycloneDX 1.5 (#404 via #488)
    Removed model.component.Component.__init__()'s deprecated optional kwarg namespace (via #493)
    Use kwarg group instead.
    Removed model.component.Component.__init__()'s deprecated optional kwarg license_str (via #493)
    Use kwarg licenses instead.
    Removed deprecated method model.component.Component.get_namespace() (via #493)
    Removed class models.dependency.DependencyDependencies (#503 via #506)
    Removed model.vulnerability.Vulnerability.__init__()'s deprecated optional kwarg source_name (via #493)
    Use kwarg source instead.
    Removed model.vulnerability.Vulnerability.__init__()'s deprecated optional kwarg source_url (via #493)
    Use kwarg source instead.
    Removed model.vulnerability.Vulnerability.__init__()'s deprecated optional kwarg recommendations (via #493)
    Use kwarg recommendation instead.
    Removed model.vulnerability.VulnerabilityRating.__init__()'s deprecated optional kwarg score_base (via #493)
    Use kwarg score instead.
    Enum model.vulnerability.VulnerabilityScoreSource got new cases, to reflect features for CycloneDX 1.5 (#404 via #488)
    Removed output.LATEST_SUPPORTED_SCHEMA_VERSION (#491 via #494)
    Removed deprecated function output.get_instance() (via #493)
    Use function output.make_outputter() instead.
    Added new class output.json.JsonV1Dot5, to reflect CycloneDX 1.5 (#404 via #488)
    Added new item to dict output.json.BY_SCHEMA_VERSION, to reflect CycloneDX 1.5 (#404 via #488)
    Added new class output.xml.XmlV1Dot5, to reflect CycloneDX 1.5 (#404 via #488)
    Added new item to dict output.xml.BY_SCHEMA_VERSION, to reflect CycloneDX 1.5 (#404 via #488)
    Removed class parser.ParserWarning (#489 via #495)
    Removed class parser.BaseParser (#489 via #495)
    Enum schema.SchemaVersion got new case V1_5, to reflect CycloneDX 1.5 (#404 via #488)

(wiz)

doc: Updated textproc/py-black to 23.12.0

(wiz)

py-black: update to 23.12.0.

## 23.12.0

### Highlights

It's almost 2024, which means it's time for a new edition of _Black_'s stable style!
Together with this release, we'll put out an alpha release 24.1a1 showcasing the draft
2024 stable style, which we'll finalize in the January release. Please try it out and
[share your feedback](https://github.com/psf/black/issues/4042).

This release (23.12.0) will still produce the 2023 style. Most but not all of the
changes in `--preview` mode will be in the 2024 stable style.

### Stable style

- Fix bug where `# fmt: off` automatically dedents when used with the `--line-ranges`
  option, even when it is not within the specified line range. (#4084)
- Fix feature detection for parenthesized context managers (#4104)

### Preview style

- Prefer more equal signs before a break when splitting chained assignments (#4010)
- Standalone form feed characters at the module level are no longer removed (#4021)
- Additional cases of immediately nested tuples, lists, and dictionaries are now
  indented less (#4012)
- Allow empty lines at the beginning of all blocks, except immediately before a
  docstring (#4060)
- Fix crash in preview mode when using a short `--line-length` (#4086)
- Keep suites consisting of only an ellipsis on their own lines if they are not
  functions or class definitions (#4066) (#4103)

### Configuration

- `--line-ranges` now skips _Black_'s internal stability check in `--safe` mode. This
  avoids a crash on rare inputs that have many unformatted same-content lines. (#4034)

### Packaging

- Upgrade to mypy 1.7.1 (#4049) (#4069)
- Faster compiled wheels are now available for CPython 3.12 (#4070)

### Integrations

- Enable 3.12 CI (#4035)
- Build docker images in parallel (#4054)
- Build docker images with 3.12 (#4055)

(wiz)

doc: Updated devel/py-babel to 2.14.0

(wiz)

py-babel: update to 2.14.0.

Version 2.14.0
--------------

Upcoming deprecation
~~~~~~~~~~~~~~~~~~~~

* This version, Babel 2.14, is the last version of Babel to support Python 3.7.
  Babel 2.15 will require Python 3.8 or newer.
* We had previously announced Babel 2.13 to have been the last version to support
  Python 3.7, but being able to use CLDR 43 with Python 3.7 was deemed important
  enough to keep supporting the EOL Python version for one more release.

Possibly backwards incompatible changes
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

* ``Locale.number_symbols`` will now have first-level keys for each numbering system.
  Since the implicit default numbering system still is ``"latn"``, what had previously
  been e.g. ``Locale.number_symbols['decimal']`` is now ``Locale.number_symbols['latn']['decimal']``.
* Babel no longer directly depends on either ``distutils`` or ``setuptools``; if you had been
  using the Babel setuptools command extensions, you would need to explicitly depend on ``setuptools`` –
  though given you're running ``setup.py`` you probably already do.

Features
~~~~~~~~

* CLDR/Numbers: Add support of local numbering systems for number symbols by @kajte in :gh:`1036`
* CLDR: Upgrade to CLDR 43 by @rix0rrr in :gh:`1043`
* Frontend: Allow last_translator to be passed as an option to extract_message by @AivGitHub in :gh:`1044`
* Frontend: Decouple `pybabel` CLI frontend from distutils/setuptools by @akx in :gh:`1041`
* Numbers: Improve parsing of malformed decimals by @Olunusib and @akx in :gh:`1042`

Infrastructure
~~~~~~~~~~~~~~

* Enforce trailing commas (enable Ruff COM rule and autofix) by @akx in :gh:`1045`
* CI: use GitHub output formats by @akx in :gh:`1046`

(wiz)

doc: Updated devel/libatomic_ops to 7.8.2

(wiz)

libatomic_ops: update to 7.8.2.

== [7.8.2] 2023-12-15 ==

* Eliminate 'atomic_thread_fence is unsupported with tsan' gcc-11 warning
* Eliminate 'comparing signed/unsigned values' lcc warning in add_chunk_as
* Fix 'undefined reference to AO_pt_lock' if configure is using clang-16
* Fix 'undefined reference to __atomic_load/store/cas_16' Mingw64-gcc error
* Fix 'undefined reference' linker errors if shared build on OpenBSD (CMake)
* Fix get_chunk for case of mmap area is located before AO_initial_heap
* Fix typo in AO_HAVE_compare_and_swap_double name in atomic_ops_stack.h
* Fix typo in comment of run_one_test of test_stack
* Fix typos in comments of atomic_ops_malloc.c and atomic_ops_stack.c/h
* Update cmake minimum required version to 3.5

(wiz)