kmail-account-wizard: add version 23.04.3

KMail account wizard.

(markd)

kalarm: add version 23.04.3

KAlarm is a personal alarm message, audio, command and email scheduler.

KAlarm provides a graphical interface to schedule personal timed events -
pop-up alarm messages, playing audio files, command execution and the sending
of emails. It has a wide range of options, including:

* Configuring alarms to recur on an hours/minutes, daily, weekly, monthly or
  annual basis, or setting them to trigger every time you log in.

* Choice of whether or not an alarm should be cancelled if it can't be
  triggered at its scheduled time. An alarm can only be triggered while you
  are logged in and running a graphical environment. If you choose not to
  cancel the alarm if it can't be triggered at the correct time, it will be
  triggered when you eventually log in.

(markd)

kdepim-runtime: add version 23.04.3

The KDE project kdepim-runtime contains the Akonadi resources from kdepim
which can be used without the applications in kdepim.

(markd)

akregator: add version 23.04.3

akregator is a program to read RSS and other online news feeds.

(markd)

pim-sieve-editor: add version 23.04.3

sieveeditor is an editor for Sieve scripts used for email filtering on
a mail server.

(markd)

pim-data-exporter: add version 23.04.3

pimdataexporter allows to export and import PIM settings and local mail.
You can backup and restore settings from the following programs:
kmail, knotes, akregator, kaddressbook, kalarm, korganizer.

(markd)

mbox-importer: add version 23.04.3

Import mbox files to KMail.

(markd)

akonadi-import-wizard: add version 23.04.3

akonadiimportwizard allows to import emails, settings, addressbook and
calendar data detected in your user account from the following mailers:

Trojit, Evolution 1.x - 3.x, OS X Mail, Opera, Sylpheed,
Thunderbird/Mozilla, The Bat!, Outlook Express, Balsa, Pegasus-Mail,
and Claws Mail.

Additionally you can use the manual import for KMail Archive,
mbox (Unix, Evolution), kmail Maildirs, Icedove, Lotus Notes,
Plain Text and Mailman Archives.

(markd)

mailcommon: add version 23.04.3

KDE PIM library providing support for mail applications.

(markd)

mailimporter: add version 23.04.3

Mail importer library.

(markd)

akonadi-calendar-tools: add version 23.04.3

CLI tools to manage akonadi calendars including calendarjanitor and
konsolekalendar.

konsolekalendar is a command line interface to calendars.
It lets you view, insert, remove, or modify calendar events by way of
the command line or from a scripting language.
Additionally, konsolekalendar can create a new calendar,
export a calendar to a variety of other formats, and
import another calendar.

(markd)

grantlee-editor: add version 23.04.3

Editor for Grantlee themes.

(markd)

akonadiconsole: add version 23.04.3

Akonadi management and debugging console.

(markd)

messagelib: add version 23.04.3

KDE PIM messaging library.

(markd)

libksieve: add version 23.04.3

KDE PIM library for managing sieves.

(markd)

libgravatar: add version 23.04.3

Online avatar lookup library.

Allows to retrieve avatar images based on a hash from a person's email
address, as well as local caching to avoid unnecessary network operations.

(markd)

calendarsupport: add version 23.04.3

Calendar Support library provides helper utilities for calendaring
applications.

(markd)

pimcommon: add version 23.04.3

Common libraries for KDE PIM

(markd)

libkdepim: add version 23.04.3

Libraries for KDE PIM applications

(markd)

akonadi-search: add version 23.04.3

Libraries and daemons to implement searching in Akonadi

(markd)

akonadi-calendar: add version 23.04.3

Akonadi Calendar is a library that effectively bridges the type-agnostic API of
the Akonadi client libraries and the domain-specific KCalCore library. It provides
jobs, models and other helpers to make working with events and calendars through
Akonadi easier.

The most notable class is Akonadi::ETMCalendar, a model built on top of the
Akonadi::EntityTreeModel which provides filters to only show events from selected
calendars, iterate over events, including recurrences, provides reverse lookup
from KCalCore::Incidence to Akonadi::Item and other features.

Besides the model there is for example Akonadi::FreeBusyProviderBase, an interface
for Akonadi Resources that can provide Free/Busy information.

(markd)

kmailtransport: add version 23.04.3

KDE Mail Transport Service

(markd)

libkgapi: update to 23.04.3

qt5/kf5 version.

(markd)

akonadi-contacts: add version 23.04.3

Libraries and daemons to implement Contact Management in Akonadi

(markd)

akonadi-notes: add version 23.04.3

Libraries and daemons to implement management of notes in Akonadi

(markd)

akonadi-mime: add version 23.04.3

Libraries and daemons to implement basic email handling

(markd)

akonadi: update to 23.04.3

qt5/kf5 version

(markd)

cdparanoia: fix normal execution on recent macOS releases

Addresses PR pkg/57557 from Jason White, who sourced the patch.

(gutteridge)

py-pdf: this now actually requires flit_core>=3.9

It will fail with anything older. Reported upstream as:
https://github.com/py-pdf/pypdf/pull/2091

(gutteridge)

url2pkg: clean and extract after adjusting the package

The first 'bmake extract' is done only to look at the files from the
package, to determine the dependencies.  In that stage, the package
cannot be built successfully.  To make the whole workflow less
surprising, install the auto-detected dependencies before leaving the
rest of the work to the human package maintainer.  This means that
running url2pkg produces more output and may take significantly more
time, but that time would be spent anyway later, so it's a net win.

Suggested by gdt@.

(rillig)

cmake: fix build failure when qt6-qtbase is installed

(tnn)

net/czmq added

(nros)

doc: Updated multimedia/mpv to 0.36.0

(leot)

mpv: Update to 0.36.0

pkgsrc changes:
- Switch to meson: waf build system will be deprecated (and started to be
  problematic). Try to adjust all patches that we had to meson and switch to
  meson.
- Remove patches/patch-player-lua-ytdl__hook.lua, no longer needed (was
  backported from upstream)
- Remove all waf related patches: all of them should be adjusted for meson and
  are no longer used.

Changes:
Release 0.36.0
==============
This release requires FFmpeg 4.4 or newer.

This is the last release to contain the waf build system.
Meson is the primary and actively supported build system while waf is
considered deprecated.

Features
--------
New
~~~
- player: add window-id property
- vo_kitty: introduce modern sixel alternative
- wayland: add wp-fractional-scale-v1 support
- player/command: add `user-data` property (replacement for `shared-script-properties`)
- vo_gpu_next: support mapping HDR10+ dynamic metadata
- vo_gpu_next: allow screenshots in native colorspace
- vo_gpu_next: parse Dolby Vision metadata for dynamic scene brightness
- video: allow csp equalizer adjustments with floating point precision
- command: add platform property
- demux_mkv: support ARIB captions
- hwdec_vulkan: add support for Vulkan-based hardware decoding
- player: better handling of forced-only subtitles and a toggle in the OSC
- vo_dmabuf_wayland: add osd support

Changed
~~~~~~~
- TOOLS/umpv: prefer $XDG_RUNTIME_DIR
- ffmpeg: increase minimum required version to 4.4
- player: choose speed of smallest acceptable factor for display sync
- player: don't force saving `start` in watch-later-options
- build: officially deprecate waf
- vf_sub: undeprecate
- player: set playlist title to media title if not set already
- player: use and respect XDG_STATE_HOME and XDG_CACHE_HOME by default
- wayland: bump required version to 1.20 and wayland-protocols to 1.25
- ao_pipewire: require at least libpipewire 0.3.48
- vo: hwdec: prioritise drmprime over drmprime_overlay
- vo_gpu/vo_gpu_next: enable gpu shader and icc cache by default

Removed
~~~~~~~
- drm: remove support for legacy (non-atomic) API
- stream/dvb: drop support for DVB API before Linux 3.7
- hwdec_cuda: drop support for PL_HANDLE_WIN32_KMT (Windows 7 only)
- vo_dmabuf_wayland: drop linux-dmabuf-v2 support

Options and Commands
--------------------
Added
~~~~~
- player: add --force-render option
- demux: add --demuxer-hysteresis-secs option to save power with caching
- ao_pipewire: allow usage of global volume control via --pipewire-volume-mode
- vo_gpu_next: add --tone-mapping-visualize
- sub: add --sub-fonts-dir and --osd-fonts-dir options
- player: add --auto-window-resize
- console.lua: add a script-opt for the border size
- player: add --drag-and-drop option
- vo_gpu_next: add --corner-rounding option
- player: add more precise sub fallback options --subs-fallback and --subs-fallback-forced
- player: add --input-cursor-passthrough option
- TOOLS/lua/autoload: allow extending ext sets from script-opts
- demux_playlist: add --directory-mode option to control recursive directory loading
- vo_gpu_next: add --target-contrast and --hdr-contrast-recovery/smoothness

Changed
~~~~~~~
- vd_lavc: add "auto" choice for --vd-lavc-dr and make it the default
(notably this change was also backported to v0.35.1)
- wayland: add auto choice to --wayland-configure-bounds
- image_writer: change --screenshot-tag-colorspace default to yes
- vo_gpu_next: expose --tone-mapping=st2094-40 and st2094-10
- wayland: make --wayland-edge-pixels-pointer default to 16
- options: enable scripts related opts also with cplugins
- player/screenshot: add filename return field
- options: set --subs-with-matching-audio to off by default
- options: default --slang to auto, which uses the settings of the user's OS
- vd_lavc: allow user to specify a priority list in --hwdec
- vd_lavc: map hwdec=yes to hwdec=auto-safe and change ctrl+h to use auto-safe

Deprecated
~~~~~~~~~~
- drm: deprecate `--drm-atomic` (now always enabled)

Removed
~~~~~~~
- vo_gpu_next: remove --tone-mapping-crosstalk

Fixes and Minor Enhancements
----------------------------
- ao_pipewire: log version and other useful debug info
- wayland: error out if essential protocol support is missing
- wayland: add support for content-type protocol
- wayland: also log refresh rate on surface entrance
- vo_gpu_next: fix undefined behavior on alpha-first formats
- meson: prepend MPV_CONFDIR path with prefix
- meson: unbreak dl check on BSDs without libdl
- lcms: fix crash with lcms2-related options if lcms is disabled
- meson: fix stdatomic detection on bsd
- osc: don't spam window-controls bindings on every render
- wayland: check for resize/move in touch event first
- ao_coreaudio: use device's nominal sample rate for latency properties
- hwdec_drmprime: support yuv420p format
- ao_pipewire: properly clean up resources
- vo/{sixel,tct}: use the alternate buffer to restore terminal
- vo_sixel: add option to skip clear while drawing
- filter_kernels: fix kaiser
- hwdec/d3d11va: fix a possible memory leak
- external_files: set log level for potential files to trace
- external_files: recognize webp files as cover art
- vo_opengl: do not blindly reject all Microsoft's OpenGL implementations
- ao_coreaudio: use AudioUnitReset as ao_driver.reset to prevent long restart
- hwdec_drmprime: fix memory leak
- vo: hwdec: fix libdrm-related memory leak
- draw_bmp: ensure last slice width is less than total width
- demux: boost read EBU R128 gain values to ReplayGain's reference level
- version.py: bump copyright year
- TOOLS/umpv: support shell-quotes in $MPV
- vulkan: fix build error for 32bit builds with clang
- TOOLS/lua/autoload: improve and optimize the natural sorting
- vo_wlshm: properly support video panscan
- vo_dmabuf_wayland: support panscan and panning
- ra_d3d11: fix incorrect type
- meson: also search for rst2html with .py extension
- audio: fix crash during uninit with ao_lavc
- wayland: only warn about GNOME when actually missing idle inhibit support
- mp_image: fix XYZ primaries default
- msg: preserve early messages when log-file is set in mpv.conf
- x11: fix issue with xpresent timing feedback
- meson: reuse libmpv objects for cplayer to save 50% of compile steps
- player/client: support observing sub-properties
- m_property: implement new deletion operation on properties
- vo_lavc: set frame rate on encoder to fix non-conforming outputs
- player/video: don't resync audio if video is an image
- stream: accept webdav:// and webdavs:// urls
- video/image_writer: avoid stripping colorspace info when writing image
- stats.lua: display HDR peak in nits
- image_pool: fix memory leak with frames
- options: transition from OPT_FLAG to OPT_BOOL
- vd_lavc: sort hwdecs without hwdevices last for autoprobing
- ytdl_hook: don't overwrite force-media-title
- lua: use user-data for interop between osc.lua and console.lua
- vo: fix race condition with redraw requests
- various: more fixes to ensure correct playback of XYZ colorspace
- ytdl_hook: fix fragment-related issue that broke YouTube DASH playback
- command: expose hls-bitrate and program-id as track-list subproperties
- ao_pipewire: use realtime scheduling for data thread
- auto_profiles: check for non-existent properties
- d3d11: retry device creation without debug, if SDK is not available
- win32: follow Windows settings and update dark mode state
- ytdl_hook.lua: fix clip start and end
- hwdec_drmprime: support custom rpi4_8 and rpi4_10 formats
- sub: fix UPDATE_SUB_HARD for converted and external subtitles
- charset_conv: fix memory corruption in mp_iconv_to_utf8
- options: read config file as stream
- wayland: improve guessing when mpv is focused
- player: always try to detect subtitle language from file name
- vo: fix mp_frame_perf thread safety
- lua: read_options: find script-opts prefix at index 1 exactly
- path: handle URLs consistently in mp_basename
- ao_wasapi: remove infinite loop hack in AOCONTROL_UPDATE_STREAM_TITLE
- ao_wasapi: use client name instead of hardcoded string
- vd_lavc: fix crash if hwdec devices fail to create
- vo_drm: fix null dereference and using closed fd
- image_writer: respect jpeg-quality when using ffmpeg for writing
- image_writer: add support for AVIF
- TOOLS/lua/autoload: avoid unnecessary playlist manipulation, performance
- various: correctly ignore cache files with --no-config
- terminal-unix: better error detection logic
- json: raise parse depth to 50 for the sake of utils.parse_json()
- player: delete watch_later file only after successful load
- wayland: fix memory leak with multiple monitors
- vd_lavc: prefer d3d11va-copy over dxva2-copy
- vd_lavc: fix hwdec for videos with less than less than 3 frames
- wayland: add support for suspended toplevel state
- draw_bmp: ensure last slice is less than total width (again)
- console.lua: sort the output from the help command
- vd_lavc: try other hwdecs when falling back after an hwdec failure
- sd_ass: don't reconfigure ass on every frame (performance regression)
- sd_ass: fix converted subtitles having too-wide borders
- loadfile: compute audio language for sub selection when using lavfi-complex
- wayland: fix modifier keys in certain situations
- vd_lavc: corrections towards hwdec and swdec fallback
- zimg: fix broken sig_peak (HDR) handling
- screenshot: implement `screenshot window` in sw for most VOs
- osc: don't add margins to osc-deadzonesize
- vo_vaapi: fix segfault in draw_osd
- vo_dmabuf_wayland: correctly handle force-window
- ao_pipewire: fix error with pipewire 0.3.75 or later

(leot)

Pullup ticket #6789 - requested by gdt
chat/ejabberd: functionality fix

Revisions pulled up:
- chat/ejabberd/Makefile                                        1.99
- chat/ejabberd/distinfo                                        1.69
- chat/ejabberd/patches/patch-aa                                1.18

---
  Module Name: pkgsrc
  Committed By: manu
  Date: Fri Aug 11 13:50:30 UTC 2023

  Modified Files:
  pkgsrc/chat/ejabberd: Makefile distinfo
  pkgsrc/chat/ejabberd/patches: patch-aa

  Log Message:
  Fix the paths in ejabberdctl

  - Remove ${DESTDIR}
  - Use config from /usr/pkg/etc/ejabberd and not /usr/pkg/share/examples/ejabberd

(bsiegert)

Pullup ticket #6784 - requested by ryoon
www/php-nextcloud: update to latest,
required for migrating to version 27 in the next branch

Revisions pulled up:
- www/php-nextcloud/Makefile                                    1.68
- www/php-nextcloud/PLIST                                      1.54
- www/php-nextcloud/distinfo                                    1.57

---
  Module Name: pkgsrc
  Committed By: ryoon
  Date: Tue Aug  1 12:15:14 UTC 2023

  Modified Files:
  pkgsrc/www/php-nextcloud: Makefile PLIST distinfo

  Log Message:
  php-nextcloud: Update to 26.0.4

  Changelog:
  26.0.4:
  Changes:

      Move encrypt-all password email to EmailTemplate (server#37737)
      Store encrypted OAuth2 client secrets (server#38708)
      Generate user themed favicon and touchicon (server#38853)
      Fix confusion around mail settings and improve layout a bit (server#388=
  87)
      Fix(core): Do not invert app menu text color (server#38908)
      PruneOutdatedSyncTokens deletes all entries (server#38920)
      Adjust admin setup check to increase warning to configure https
  (server#38932)
      Add bruteforce protection in OauthApiController (server#38949)
      Fix(systemtags): Add missing systemtags index (server#38961)
      Perf: skip request without write permission (server#38972)
      Fix: expect interface, not a specific implementation (server#38977)
      Fix: Avoid failing to update the current version entry if there is none
  (server#39003)
      Use getsystemvalue-functions in Mailer.php (server#39006)
      Fix setup-check test (server#39014)
      Fix(l10n): Fix plural issue with different locale and language
  (server#39031)
      Fix creating events with old (< unix time) lastoccurence (server#39060)
      Fix(cypress): branch definition (server#39072)
      Fix(files): Only render the menu if there are actions to show
  (server#39080)
      Silent `imagecreatefromstring()` errors (server#39100)
      Ignore and log non integer versions (server#39117)
      Fix password confirmation (server#39143)
      Fix(sse): don=E2=80=99t update uncached files (server#39152)
      Update psalm-baseline.xml (server#39155)
      Fix(ocp): Fix reference of dashboard IAPIWidget::getItems from WidgetIt=
  em
  (server#39159)
      Fix(TagSearchProvider): Short circuit if no tag matches the query
  (server#39194)
      Fix(cypress): revert only toggle (server#39206)
      Use more efficient tag retrieval on DAV report request (server#39232)
      Fix(dav): Abort requests with 429 instead of waiting (server#39252)
      Fix(files_sharing): hide download permission for circle shares
  (server#39260)
      Display displayname on federated shares (server#39270)
      Add command do delete orphan shares (server#39285)
      Preload custom properties when propfinding folders (server#39293)
      Cibit): fix failing test setup (server#39335)
      Chore(CI): Sign .drone.yml file (server#39345)
      GetStorage before remove (server#39355)
      Fix: also run phpunit on `apps/theming/css` modified files (server#3937=
  5)
      Fix(db): no hardcoded table prefix is expected (server#39393)
      Feat: Add public event for missing indices (server#39397)
      Update psalm-baseline.xml (server#39406)
      Fix(core): Add password confirmation requirement for getapppassword
  (server#39418)
      Fix(apps): Fix loading info.xml file (server#39492)
      Modernize cypress tests (activity#1189)
      Fix npm audit (activity#1243)
      Update nextcloud/ocp dependency (activity#1249)
      Update 3rdparty dependencies (bruteforcesettings#467)
      Revert =E2=80=9CUpdate 3rdparty dependencies=E2=80=9D (bruteforcesettin=
  gs#478)
      Bump unzipper from 0.10.11 to 0.10.14 (files_pdfviewer#751)
      Fix npm audit (files_pdfviewer#766)
      Fix npm audit (again) (files_pdfviewer#773)
      Update phpunit workflows from master (files_pdfviewer#778)
      Replace =E2=80=9CUnselect=E2=80=9D with =E2=80=9CUnselect all=E2=80=9D =
  in right click menu
  (files_rightclick#171)
      Update nextcloud/ocp dependency (firstrunwizard#901)
      Fix npm audit (firstrunwizard#904)
      Fix npm audit (firstrunwizard#916)
      Update nextcloud/ocp dependency (logreader#914)
      Choreaudit dependencies (logreader#925)
      Update nextcloud/ocp dependency (nextcloud_announcements#210)
      Update nextcloud/ocp dependency (nextcloud_announcements#214)
      Update nextcloud/ocp dependency (notifications#1579)
      Fix(settings): Delete settings when a user is deleted (notifications#15=
  85)
      Choreaudit dependencies (notifications#1604)
      Update nextcloud/ocp dependency (notifications#1609)
      Reset selection state in route change (photos#1890)
      Update nextcloud/ocp dependency (photos#1894)
      Fix npm audit (photos#1902)
      Fix npm audit (photos#1913)
      Add unselect all (photos#1922)
      Adapt to SystemTags optimizations on server (photos#1927)
      Update nextcloud/ocp dependency (photos#1934)
      Fix npm audit (privacy#919)
      Fix npm audit (privacy#924)
      Fix npm audit (privacy#930)
      Update nextcloud/ocp dependency (related_resources#195)
      Update nextcloud/ocp dependency (serverinfo#467)
      Update nextcloud/ocp dependency (survey_client#179)
      Fix(deps): update highlight (text#4143)
      Fix(css): info callout box color to =E2=80=93color-info (text#4303)
      Update nextcloud/ocp dependency (text#4307)
      Fix/2708 pasting tables (text#4314)
      Bring back keyboard shortcuts to help modal on non-mobile (text#4319)
      Fix: Pass origin along the initial state update (text#4322)
      Fix: clickable zone of task list checkbox (text#4325)
      Chore(deps): update dependency prosemirror-test-builder to ^1.1.1
  (text#4342)
      Chore(deps): update dependency vue-demi to ^0.14.5 (text#4358)
      Fix(deps): update dependency @nextcloud/files to ^3.0.0-beta.10
  (text#4359)
      Fix(deps): update dependency @nextcloud/router to ^2.1.2 (text#4360)
      Fix(deps): update dependency lib0 to ^0.2.78 (text#4361)
      Chore(deps): update dependency cypress to ^12.15.0 (text#4365)
      Chore(deps): update dependency vite-plugin-commonjs to ^0.8.0 (text#436=
  6)
      Fix(deps): update dependency yjs to ^13.6.5 (text#4368)
      Fix(deps): update dependency @nextcloud/auth to ^2.1.0 (text#4369)
      Fix(deps): update dependency @nextcloud/dialogs to ^4.1.0 (text#4370)
      Fix(deps): update dependency @nextcloud/event-bus to ^3.1.0 (text#4371)
      Fix(deps): update dependency @nextcloud/vue to ^7.12.0 (text#4372)
      Fix(deps): update dependency @nextcloud/l10n to ^2.2.0 (text#4385)
      Fix(deps): update dependency yjs to ^13.6.6 (text#4388)
      Flaky CI fixes (text#4392)
      Chore(deps): update dependency @nextcloud/eslint-config to ^8.3.0-beta.2
  (text#4404)
      Chore(deps): update dependency cypress to ^12.16.0 (text#4405)
      Fix: remove redundant css (text#4408)
      Chore(ci): Run cypress against proper stable branch (text#4410)
      Ci(cypress): Revert show_hidden method for cypress interception
  (text#4413)
      Fix(frontend): Update last saved timestamp when document is saved
  (text#4416)
      Fix: hotkey ctrl-s (text#4418)
      Fix npm audit (text#4430)
      Fix(deps): update dependency @nextcloud/axios to ^2.4.0 (text#4433)
      Fix(deps): update dependency @nextcloud/files to ^3.0.0-beta.11
  (text#4450)
      Fix(deps): update dependency mitt to ^3.0.1 (text#4451)
      Chore(deps): update dependency cypress to ^12.17.0 (text#4455)
      Chore(deps): update dependency vite to ^4.4.2 (text#4456)
      Chore(deps): update jest to ^29.6.1 (text#4457)
      Update nextcloud/ocp dependency (text#4463)
      Fix npm audit (text#4465)
      Fix(frontend): Improve paste handler for table cells (text#4471)
      Fix: Delete inactive sessions in one query (text#4473)
      Chore(deps): update dependency cypress to ^12.17.1 (text#4478)
      Fix: Fetch attachment share permissions (text#4485)
      Fix sync errors after network issues (text#4487)
      Fix: Encode individual parts of the dav url as uri components (text#449=
  7)
      Fix: max width of editor container on mobile (text#4500)
      Fix: link preview width on mobile (text#4502)
      Fix(sync): only save on close if changes were made (text#4509)
      Fix: remove duplicated save key action (text#4515)
      Tests(cypress): Refactor reconnect test to be more reliable and add sec=
  ond
  test for actual reconnect (text#4518)
      Fix: Add index to session_id on text_steps table (text#4524)
      Fix: Use simple query and chunk in PHP to delete inactive sessions
  (text#4552)
      Fix(postgres): Use a unique index name (text#4554)
      Chore(deps-dev): Bump @types/dockerode from 3.3.18 to 3.3.19 (viewer#17=
  24)
      Fix: update npm scripts for visual regression snapshots update
  (viewer#1735)
      Fix npm audit (viewer#1753)
      Use the Node object as event payload (viewer#1755)
      Chore: update cypress.yml workflow from template (viewer#1765)
      Fix npm audit (viewer#1776)
      Chore(deps): Bump @nextcloud/files from 3.0.0-beta.10 to 3.0.0-beta.11
  (viewer#1789)
      Send CSRF token in rawStat (viewer#1799)
      Fix/video fullscreen iphone (viewer#1803)
      Fix/fullscreen ios stable26 (viewer#1822)

  26.0.3:

  Changes:

      Invalidate existing tokens when deleting an oauth client (server#37230)
      Adjust the value of the =E2=80=9Cmax-parts=E2=80=9D parameter of the ob=
  ject storage
  =E2=80=98ListPart=E2=80=99 interface to 1000 (server#37776)
      Allow storing multiple mounts for the same rootid in the mount cache
  (server#38023)
      Fix npm audit (server#38118)
      Use aria-expanded correctly on toggle user actions (server#38358)
      Show pending popover menu when password is enabled by default
  (server#38396)
      Fix loading custom logo image (server#38399)
      Fix: Catch Deadlock properly as execute throws Doctrine exceptions not =
  our
  wrapped ones (server#38479)
      Ungroup `placeholder` css rules (server#38487)
      Add fallback when a there is no preview for a version (server#38509)
      Fix: catch errors in id3parser library (server#38517)
      Fix initialisation of versions in the DB (server#38521)
      Update ca-cert bundle (server#38530)
      Redis: use atomic operations everywhere (server#38539)
      Reload filelist when adding or removing shares (server#38557)
      Fix app menu flicker (server#38564)
      Fix(trashbin): Truncate long filenames (server#38573)
      Fix(caldav): Ignore invalid events for reminder generation (server#3857=
  4)
      Increase from 100000 to 600000 iterations for hash_pbkdf2 (server#38583)
      Update psalm-baseline.xml (server#38598)
      Fix: Use proper link for navigating to files on click handler
  (server#38654)
      Fix(caldav): Close DB cursor in reminder index background job
  (server#38660)
      Improve oauth2 database migration from ownCloud (server#38672)
      Fix(caldav): Cast calendar objects id to int when building index
  (server#38677)
      Sharing: Do not show copy action when user doesn=E2=80=99t have permiss=
  ions
  (server#38684)
      Fix(actions): cypress (server#38698)
      Chore: update workflows from templates (server#38704)
      Create lint-eslint-when-unrelated.yml (server#38720)
      Fix npm audit (server#38741)
      Allow to specify upgrade.cli-upgrade-link in order to link to the corre=
  ct
  documentation (server#38752)
      Log failures to read certificates during listing (server#38757)
      Fix npm audit (server#38807)
      Make sure to show download button only one time (server#38818)
      Use source cache when listing folder during recursive copy (server#3889=
  2)
      Groupfolder activities on move/rename (activity#1204)
      Update nextcloud/ocp dependency (firstrunwizard#878)
      Chore(deps): Bump @nextcloud/vue from 7.7.1 to 7.7.2 (firstrunwizard#88=
  5)
      Fix npm audit (firstrunwizard#891)
      Chore(CI): Adjust testing matrix for Nextcloud 26 on stable26
  (logreader#844)
      Audit and update dependencies (logreader#860)
      Update nextcloud/ocp dependency (nextcloud_announcements#201)
      Update nextcloud/ocp dependency (notifications#1562)
      Chore: update workflows from templates (notifications#1586)
      Audit fix (password_policy#470)
      Update nextcloud/ocp dependency (photos#1747)
      Listen to more events for albums (photos#1846)
      Chore: update workflows from templates (photos#1848)
      Fix: properly handle public link share deletion (photos#1850)
      Fix: use owner instead of owner_id to delete photos by owner (photos#18=
  52)
      Update view when layout setting changes (photos#1858)
      Prevent progress bar overflow when uploading in album content
  (photos#1863)
      Make file list semantically correct (photos#1869)
      Fix npm audit (photos#1879)
      Fix npm audit (privacy#905)
      Chore(CI): Adjust testing matrix for Nextcloud 26 on stable26
  (recommendations#592)
      Chore(CI): Adjust testing matrix for Nextcloud 26 on stable26
  (suspicious_login#777)
      Chore: run npm audit fix (suspicious_login#805)
      Feat: update image view width and add title (text#4165)
      Chore(deps): update dependency vite to ^4.3.9 (text#4197)
      Fix(deps): update dependency @nextcloud/vue to ^7.11.6 (text#4198)
      Update nextcloud/ocp dependency (text#4215)
      Ci: Backport relevant action changes from main (text#4240)
      Fix(UserApiController): Fix warning during test run with PHP 8.2
  (text#4245)
      Don=E2=80=99t expect HTML element with ID `mimetype` in public share (t=
  ext#4257)
      Fix: paste multiple line to table issue (text#4265)
      Fix/4267 js tests (text#4271)
      Fix: handle non markdown files in conflicts (text#4273)
      Fix npm audit (text#4279)
      Fix: Catch unique constraint violation when creating new documents
  (text#4294)
      Chore: Bump composer autoloader for new composer version (text#4295)
      Fix 404 on blank.mp4 (viewer#1677)
      Chore(deps-dev): Bump @types/dockerode from 3.3.17 to 3.3.18 (viewer#16=
  87)
      Chore(deps-dev): Bump tslib from 2.5.0 to 2.5.3 (viewer#1702)
      Fix size of progress container (viewer#1714)
      Chore: update workflows from templates (viewer#1721)
      Fix npm audit (viewer#1732)

  26.0.2:

  Changes:

      Also unmark deleted ldap user when checking the ldap entry (server#3730=
  4)
      Fix DBAL exception handling in setValues (server#37549)
      Fix(dav): Use an icon with correct color for calendar user settings
  section (server#37601)
      Fix button text (server#37708)
      Handle not being able to write file for notify self-test (server#37740)
      Fix: Make sure that rollback hook is triggered on all version backends
  (server#37743)
      Really disable versions features when S3 versioning is enabled
  (server#37768)
      Handle reminders where calendar name is null (server#37785)
      Ungroup `placeholder` css rules to prevent browsers from removing all
  rules (server#37793)
      Fix event move issue (server#37812)
      Fix background color of external devices with errors on dark color theme
  (server#37833)
      Fix(files): Don=E2=80=99t throw an error when guests access the control=
  ler
  (server#37836)
      Sec(deps): Update guzzlehttp/psr7 (server#37845)
      Fix TypeError in Profiler (server#37849)
      Add the server roots and version info hash to apcu prefix (server#37872)
      Check free space only if source exists and is dir (server#37873)
      Ignore errors while trying to update parent storage_mtime (server#37875)
      Do not override stored credentials when login in with SAML (server#3790=
  0)
      Make grid toggle sticky (server#37907)
      Bump @nextcloud/vue from 7.8.0 to 7.10.0 (server#37910)
      Trap focus in dialogs (server#37911)
      Update crl after revoke shifts.csr (server#37922)
      Backport: Fix profile view edit button overlapping status text
  (server#37939)
      Fix(settings): Fix title of profile scope options (server#37941)
      Do not show Tags action when systemtag is disabled (server#37957)
      Fix npm audit (server#37973)
      Add command for getting fileinfo for debugging (server#38005)
      Fix: change maintenance mode info wording (server#38009)
      Fix multiple LDAP configuration support by fixing AccessFactory
  (server#38027)
      Update expire_date column of table comments (server#38037)
      Mutualize expireDate handling when creating and updating a share
  (server#38040)
      Fix: catch ManuallyLockedException and use app context (server#38043)
      Fix app overflow menu on bright color theme (server#38049)
      Fix: add workaround for oci and limit queries (server#38054)
      Fix(ocp): Add deprecation version to ILogFactory::getCustomLogger
  (server#38070)
      Fix =E2=80=9Cskip content=E2=80=9D-buttons on small screen sizes (serve=
  r#38076)
      Increase =E2=80=9CEdit your profile visibility button=E2=80=9D contrast=
    (server#38078)
      Fix weather app aria label (server#38079)
      Increase imaginary timeouts as for big files the processing could take
  very long (server#38081)
      Check return value and improve error handling on certificate manager
  (server#38091)
      Fix(theming): unwanted variables and colours calc fixes (server#38098)
      Fix: always use proper path on node api when calling the view
  (server#38128)
      Fix json_decode expecting a string (server#38130)
      Check if version entity is not null before delete (server#38153)
      Do not stop at the first PHP error/warning in files:scan (server#38154)
      Fix error on delete in ChunkingV2Plugin (server#38167)
      Fix(workflowengine): Fix multiple UI issues in workflow engine admin
  settings (server#38189)
      Make sure to never trigger files hooks on a null path (server#38204)
      Fix redirect on unsupported browser warning (server#38208)
      Update psalm-baseline.xml (server#38212)
      Fix: Check for wrapped retriable exceptions (server#38238)
      Fix(carddav): Mark system address book as read-only (server#38248)
      Check if version has entity before trying to access it (server#38254)
      Add command to summarize space usage (server#38255)
      Fix incosistent scrolling in Firefox (server#38257)
      Fix(deps): Bump @nextcloud/vue to 7.11.5 (server#38263)
      Fix(lostpassword): Also rate limit the setPassword endpoint (server#382=
  68)
      Fix(middleware): Also abort the request when reaching max delay in af=
  =E2=80=A6
  (server#38275)
      Check the username when doing external storage session auth (server#382=
  81)
      Get rid of more int casts in file size manipulations (server#38289)
      Fix generated avatars cache (server#38304)
      SystemTags endpoint to return tags used by a user with meta data
  (server#38307)
      Rename `numericStorageId` to `numericExternalStorageId` in
  PersonalMount.php (server#38317)
      Fix(search): fix load more (server#38318)
      Fix : Share Expire After N Days width (server#38319)
      Chore(deps): Bump @nextcloud/vue from 7.11.5 to 7.11.6 (server#38331)
      Revert =E2=80=9CUngroup `placeholder` css rules to prevent browsers fro=
  m removing
  all rules=E2=80=9D (server#38437)
      Sec(deps): Update guzzlehttp/psr7 (3rdparty#1387)
      Rename =E2=80=9Cuser=E2=80=9D to =E2=80=9Caccount=E2=80=9D in descripti=
  on (bruteforcesettings#455)
      App cfg from cli (circles#1295)
      Make changes to circle config synchroneous (circles#1309)
      Add npm-audit-fix (files_pdfviewer#732)
      Fix npm audit (files_pdfviewer#739)
      Update nextcloud/ocp dependency (firstrunwizard#842)
      Fix npm audit (firstrunwizard#862)
      Update nextcloud/ocp dependency (nextcloud_announcements#193)
      Chore(deps): Bump @nextcloud/vue from 7.7.1 to 7.7.2 (notifications#151=
  8)
      Fix(deps): Update webpack (notifications#1526)
      Fix header menu color by updating @nextcloud/vue to 7.10.0
  (notifications#1534)
      Update nextcloud/ocp dependency (notifications#1543)
      Do not allow deletion from public albums (photos#1750)
      Fix #1753: Media and Photos views are blank after upgrade to 26.0.1
  (photos#1759)
      Fix: hide upload button on public album shares (photos#1763)
      Expose DAV permissions on album and places photos (photos#1775)
      Do not silence error when setting a place (photos#1778)
      Fix folder view (photos#1779)
      Use display name instead of id for shared albums (photos#1783)
      Reset file list on upload in FilesPicker (photos#1792)
      Run npm audit fix (photos#1799)
      Revert using display name in shared albums=E2=80=99 name (photos#1801)
      Prevent progress bar overflow when uploading in Folders (photos#1803)
      Fix npm audit (privacy#888)
      Fix npm audit (recommendations#613)
      Fix(API): Add a log entry when an error occurs so the admin can pass =
  =E2=80=A6
  (related_resources#208)
      Fix npm audit (related_resources#223)
      Chore(deps): Bump @nextcloud/vue from 7.9.0 to 7.11.6
  (related_resources#232)
      Update nextcloud/ocp dependency (serverinfo#433)
      Fix Undefined Array key Family in DefaultOs (serverinfo#438)
      With FreeBSD jails, networkinfo->gateway can be empty (serverinfo#444)
      Update nextcloud/ocp dependency (serverinfo#446)
      Update nextcloud/ocp dependency (serverinfo#457)
      Chore(deps): update dependency eslint-plugin-cypress to ^2.13.3
  (text#4017)
      Fix(deps): update tiptap to ^2.0.3 (text#4055)
      Chore(deps): update dependency vue-demi to ^0.14.0 (text#4056)
      Fix: Only handle recent awareness messagess from sessions (text#4062)
      Adjust smart picker menu action (text#4065)
      Enh(log): use level warning for saving empty docs (text#4072)
      Fix(cypress): show hidden files request now uses PUT (text#4074)
      Chore(deps): update dependency @nextcloud/webpack-vue-config to ^5.5.1
  (text#4098)
      Pass data to `this.$parent.$emit` in `Editor.vue` (text#4103)
      Fix double readme files getting created on case-insensitive storages
  (text#4105)
      Fix npm audit (text#4110)
      Fix editing image description fails if enter isn=E2=80=99t pressed (tex=
  t#4114)
      Fix(Viewer): remove outdated fix from stable16. (text#4120)
      Fix: autofocus own rich workspaces only at freshly created (text#4125)
      Fix(conflict): resolve quickly with fast sync. (text#4127)
      Fix: pass file id for direct editing and fail y.js provider setup if no=
  ne
  was passed (text#4128)
      Chore(deps): update dependency @cypress/webpack-preprocessor to ^5.17.1
  (text#4133)
      Chore(deps): update dependency @vue/vue2-jest to ^29.2.4 (text#4134)
      Fix(deps): update dependency @nextcloud/files to ^3.0.0-beta.9 (text#41=
  35)
      Fix(deps): update dependency lib0 to ^0.2.74 (text#4136)
      Chore(deps): update dependency cypress to ^12.11.0 (text#4137)
      Chore(deps): update dependency vite to ^4.3.5 (text#4138)
      Chore(deps): update dependency vite-plugin-commonjs to ^0.7.0 (text#413=
  9)
      Fix(deps): update dependency @nextcloud/router to ^2.1.1 (text#4141)
      Fix(deps): update dependency @nextcloud/vue to ^7.11.2 (text#4142)
      Fix(deps): update dependency yjs to ^13.6.1 (text#4144)
      Update nextcloud/ocp dependency (text#4150)
      Fix(deps): update dependency @nextcloud/vue to ^7.11.3 (text#4159)
      Chore(deps): update dependency vue-demi to ^0.14.1 (text#4168)
      Fix(deps): update dependency path-normalize to ^6.0.12 (text#4172)
      Chore(deps): update dependency cypress to ^12.12.0 (text#4173)
      Fix(deps): update dependency @nextcloud/vue to ^7.11.4 (text#4175)
      Chore(deps): update dependency @nextcloud/eslint-config to ^8.3.0-beta.0
  (text#4180)
      Chore(deps): update dependency vite-plugin-commonjs to ^0.7.1 (text#418=
  8)
      Chore: v8.0.0 (twofactor_totp#1343)
      Fix(deps): Update vulnerable npm packages (twofactor_totp#1375)
      Chore(deps-dev): replace vue-jest with @vue/vue2-jest@27
  (twofactor_totp#1395)
      Chore(deps): Bump @skjnldsv/vue-plyr from 7.3.0 to 7.3.1 (viewer#1613)
      Chore(deps-dev): Bump @nextcloud/webpack-vue-config from 5.4.0 to 5.5.1
  (viewer#1621)
      Add npm-audit-fix (viewer#1623)
      Fix npm audit (viewer#1632)
      Fix: use left position of sidebar to set viewer width (viewer#1641)
      Chore(deps-dev): Bump @types/dockerode from 3.3.16 to 3.3.17 (viewer#16=
  44)
      Fix: remove undefined method call (viewer#1649)
      Use proper alt text for viewer app modal (viewer#1652)
      Override hardcoded save button width (viewer#1657)
      Increase z-index of SfxPopper instead of its children (viewer#1659)

  26.0.1:

  Changes:

      Update wording for disabled web updater (server#37052)
      Don=E2=80=99t try to hash a nonexisting password (server#37217)
      Use native tooltip for version=E2=80=99s date (server#37264)
      Set `h1` headings for navigation through files app (server#37273)
      Replace custom tooltips with native ones and add description to all e=
  =E2=80=A6
  (server#37275)
      Fix: add important to css hidden files class (server#37286)
      Add parent index on filecache (server#37318)
      Fix(security): Mark recording_servers key appconfig as private as it =
  =E2=80=A6
  (server#37336)
      Fix/36908 set aria hidden for default shipped widgets icons (server#373=
  38)
      Fix OC_Image: Prevent E_WARNING from getimagesize* (server#37368)
      Create `h3` headings for profile page. Replace `` which have=E2=80=A6
  (server#37389)
      Fix(mailer): remove value comparison for smtp_authtype as there is only
  one option (server#37391)
      Do onetime user setup before getting any mount from providers
  (server#37394)
      Backport/stable26/jerome herbinet/patch 15 (server#37431)
      Fix(files_sharing): Allow file actions other than download for hide
  download shares (server#37439)
      Fix(references): Do not log errors on 404 responses of opengraph image
  fetching (server#37440)
      Fix(docs): Fix RST parsing of the sample config (server#37441)
      Fix/36917 the statuses list was implemented semantically incorrectly
  (server#37449)
      Replace custom tooltips with native ones of entries in contacts menu.
  (server#37463)
      Add label for logo link (server#37471)
      Fix the avatar generation on Alpine Linux (server#37482)
      Change contactsmenu structure to a list (server#37485)
      Hide shared files located in group folder=E2=80=99s trash bin (server#3=
  7488)
      Fix default_language doc (server#37508)
      Improve handling of profile fields (server#37523)
      Stable25] Quota value as float for 32-bit systems (server#37533)
      Clear encrypted flag when moving away from encrypted storage
  (server#37537)
      Fix: Avoid scrolling the #content wrapper container (server#37545)
      Feat(security): Allow to opt-out of ratelimit protection, e.g. for te=
  =E2=80=A6
  (server#37551)
      Extend path-prefix optimizer to remove all cases of path_hash=3D when
  encountering a path prefix filter (server#37558)
      Update psalm-baseline.xml (server#37565)
      Migrate metadata JSON column to new value TEXT column (server#37571)
      Fix(initial-state): Log an error when initial-state can not be JSON e=
  =E2=80=A6
  (server#37576)
      Fix cypress tests for files_versions (server#37589)
      Fix: Always create user directory when transfering files to new users
  (server#37666)
      Doc(auth): Warn about disabled token passwords and LDAP logout
  (server#37684)
      Fix(dav): add string comparison for diff (server#37687)
      App type extended_authentication (server#37689)
      Handle not being able to write file for notify self-test (server#37701)
      Fix(translation): Fix several issues with the translations api
  (server#37705)
      Revert =E2=80=9Chandle not being able to write file for notify self-tes=
  t=E2=80=9D
  (server#37718)
      Update nextcloud/ocp dependency (activity#1144)
      Fix multiselect right-click options (files_rightclick#153)
      Fix-right-click multiselect in trash bin (files_rightclick#158)
      Update nextcloud/ocp dependency (nextcloud_announcements#175)
      Update nextcloud/ocp dependency (nextcloud_announcements#185)
      Update nextcloud/ocp dependency (notifications#1481)
      Deduplicate notifications (notifications#1485)
      Update nextcloud/ocp dependency (notifications#1499)
      Add object type as data attr to notification (notifications#1501)
      Update nextcloud/ocp dependency (notifications#1506)
      Feat(API): Add an endpoint to check for existance of notification ids
  (notifications#1509)
      Fix: null password handling in entry control logic (password_policy#454)
      Fix scrolling in large folders (photos#1706)
      Fix(settings): Debounce filepicker calls (photos#1712)
      Migrate to the new file_metadata column layout (photos#1736)
      Albums: check copy source owner is the current user and throw
  (photos#1737)
      Chore(deps): Bump @nextcloud/vue from 7.2.0 to 7.9.0
  (related_resources#205)
      Fix(deps): update dependency @hocuspocus/provider to ^1.1.1 (text#3896)
      Fix(deps): update dependency y-websocket to ^1.5.0 (text#3897)
      Fix(deps): update dependency yjs to ^13.5.51 (text#3898)
      Fix(deps): update dependency lib0 to ^0.2.72 (text#3914)
      Feat: Add Shift-Mod-C for copying the markdown source (text#3942)
      Chore(deps): update dependency cypress to ^12.8.1 (text#3948)
      Get mimeIconUrl for media attachments without a session (text#3955)
      Fix: split layout of conflict view (text#3959)
      Fix(deps): update dependency @nextcloud/vue to ^7.8.3 (text#3966)
      Chore(deps): update dependency @nextcloud/webpack-vue-config to ^5.5.0
  (text#3967)
      Update nextcloud/ocp dependency (text#3969)
      Chore(deps): update dependency vite to ^4.2.1 (text#3971)
      Revert composer autoload changes to PHP 8.1 version (text#3982)
      Emit events from editor when image nodes get added or deleted (text#398=
  3)
      Conflict fixes (text#3988)
      Fix(deps): update dependency @nextcloud/vue to ^7.8.4 (text#3992)
      Fix(deps): update dependency lib0 to ^0.2.73 (text#3993)
      Add table wrapper as scroll container for readonly tables (text#4000)
      Make saving indicator a button for force-save (text#4002)
      Fix: Ensure to not persist user put into the session for direct editing
  (text#4003)
      Fix(deps): update dependency @hocuspocus/provider to ^1.1.3 (text#4013)
      Fix(deps): update dependency @nextcloud/vue to ^7.9.0 (text#4014)
      Fix(deps): update tiptap to ^2.0.1 (text#4015)
      Chore(deps): update dependency cypress to ^12.9.0 (text#4016)
      Update nextcloud/ocp dependency (text#4022)
      Fix(deps): update dependency @nextcloud/files to ^3.0.0-beta.8 (text#40=
  32)
      Fix(deps): update dependency yjs to ^13.5.52 (text#4033)
      Fix(deps): update tiptap to ^2.0.2 (text#4034)
      Update nextcloud/ocp dependency (text#4036)
      Fix: scroll for outline (text#4038)
      Fix: Properly emit ready event on conflicts with the editor API
  (text#4040)
      Fix(deps): update dependency path-normalize to ^6.0.11 (text#4042)
      Fix(challenge): invert icon on light mode (twofactor_totp#1349)
      Chore(deps-dev): Bump dockerode and @types/dockerode (viewer#1583)
      Update vue to 7.6.1 (viewer#1594)
      Fix enter key in text input in image editor (viewer#1597)
      Bump @types/dockerode from 3.3.15 to 3.3.16 (viewer#1600)

(bsiegert)

Pullup ticket #6787 - requested by taca
lang/php82: security fix

Revisions pulled up:
- lang/php/phpversion.mk                                        1.402,1.405
- lang/php82/distinfo                                          1.9-1.11
- lang/php82/patches/patch-build_libtool.m4                    deleted
- lang/php82/patches/patch-configure                            1.9

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Fri Jul  7 12:49:17 UTC 2023

  Modified Files:
  pkgsrc/lang/php: phpversion.mk
  pkgsrc/lang/php82: distinfo
  pkgsrc/lang/php82/patches: patch-configure

  Log Message:
  lang/php82: update to 8.2.8

  PHP 8.2.8 (2023-07-06)

  - CLI:
    . Fixed bug GH-11246 (cli/get_set_process_title fails on MacOS).
      (James Lucas)

  - Core:
    . Fixed build for the riscv64 architecture/GCC 12. (Daniil Gentili)

  - Curl:
    . Fixed bug GH-11433 (Unable to set CURLOPT_ACCEPT_ENCODING to NULL).
      (nielsdos)

  - Date:
    . Fixed bug GH-11455 (Segmentation fault with custom object date properties).
      (nielsdos)

  - DOM:
    . Fixed bugs GH-11288 and GH-11289 and GH-11290 and GH-9142 (DOMExceptions
      and segfaults with replaceWith). (nielsdos)
    . Fixed bug GH-10234 (Setting DOMAttr::textContent results in an empty
      attribute value). (nielsdos)
    . Fix return value in stub file for DOMNodeList::item. (divinity76)
    . Fix spec compliance error with '*' namespace for
      DOMDocument::getElementsByTagNameNS. (nielsdos)
    . Fix DOMElement::append() and DOMElement::prepend() hierarchy checks.
      (nielsdos)
    . Fixed bug GH-11347 (Memory leak when calling a static method inside an
      xpath query). (nielsdos)
    . Fixed bug #67440 (append_node of a DOMDocumentFragment does not reconcile
      namespaces). (nielsdos)
    . Fixed bug #81642 (DOMChildNode::replaceWith() bug when replacing a node
      with itself). (nielsdos)
    . Fixed bug #77686 (Removed elements are still returned by getElementById).
      (nielsdos)
    . Fixed bug #70359 (print_r() on DOMAttr causes Segfault in
      php_libxml_node_free_list()). (nielsdos)
    . Fixed bug #78577 (Crash in DOMNameSpace debug info handlers). (nielsdos)
    . Fix lifetime issue with getAttributeNodeNS(). (nielsdos)
    . Fix "invalid state error" with cloned namespace declarations. (nielsdos)
    . Fixed bug #55294 and #47530 and #47847 (various namespace reconciliation
      issues). (nielsdos)
    . Fixed bug #80332 (Completely broken array access functionality with
      DOMNamedNodeMap). (nielsdos)

  - Opcache:
    . Fix allocation loop in zend_shared_alloc_startup(). (nielsdos)
    . Access violation on smm_shared_globals with ALLOC_FALLBACK. (KoudelkaB)
    . Fixed bug GH-11336 (php still tries to unlock the shared memory ZendSem
      with opcache.file_cache_only=1 but it was never locked). (nielsdos)

  - OpenSSL:
    . Fixed bug GH-9356 Incomplete validation of IPv6 Address fields in
      subjectAltNames (James Lucas, Jakub Zelenka).

  - PCRE:
    . Fix preg_replace_callback_array() pattern validation. (ilutov)

  - PGSQL:
    . Fixed intermittent segfault with pg_trace. (David Carlier)

  - Phar:
    . Fix cross-compilation check in phar generation for FreeBSD. (peter279k)

  - SPL:
    . Fixed bug GH-11338 (SplFileInfo empty getBasename with more than one
      slash). (nielsdos)

  - Standard:
    . Fix access on NULL pointer in array_merge_recursive(). (ilutov)
    . Fix exception handling in array_multisort(). (ilutov)

  - SQLite3:
    . Fixed bug GH-11451 (Invalid associative array containing duplicate
      keys). (nielsdos)

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Sat Aug  5 08:45:39 UTC 2023

  Modified Files:
  pkgsrc/lang/php: phpversion.mk
  pkgsrc/lang/php82: distinfo
  Removed Files:
  pkgsrc/lang/php82/patches: patch-build_libtool.m4

  Log Message:
  lang/php82: update to 8.2.9

  03 Aug 2023, PHP 8.2.9

  - Build:
    . Fixed bug GH-11522 (PHP version check fails with '-' separator).
      (SVGAnimate)

  - CLI:
    . Fix interrupted CLI output causing the process to exit. (nielsdos)

  - Core:
    . Fixed oss-fuzz #60011 (Mis-compilation of by-reference nullsafe operator).
      (ilutov)
    . Fixed line number of JMP instruction over else block. (ilutov)
    . Fixed use-of-uninitialized-value with ??= on assert. (ilutov)
    . Fixed oss-fuzz #60411 (Fix double-compilation of arrow-functions). (ilutov)
    . Fixed build for FreeBSD before the 11.0 releases. (David Carlier)

  - Curl:
    . Fix crash when an invalid callback function is passed to
      CURLMOPT_PUSHFUNCTION. (nielsdos)

  - Date:
    . Fixed bug GH-11368 (Date modify returns invalid datetime). (Derick)
    . Fixed bug GH-11600 (Can't parse time strings which include (narrow)
      non-breaking space characters). (Derick)

  - DOM:
    . Fixed bug GH-11625 (DOMElement::replaceWith() doesn't replace node with
      DOMDocumentFragment but just deletes node or causes wrapping <></>
      depending on libxml2 version). (nielsdos)

  - Fileinfo:
    . Fixed bug GH-11298 (finfo returns wrong mime type for xz files). (Anatol)

  - FTP:
    . Fix context option check for "overwrite". (JonasQuinten)
    . Fixed bug GH-10562 (Memory leak and invalid state with consecutive
      ftp_nb_fget). (nielsdos)

  - GD:
    . Fix most of the external libgd test failures. (Michael Orlitzky)

  - Intl:
    . Fix memory leak in MessageFormatter::format() on failure. (Girgias)

  - Libxml:
    . Fixed bug GHSA-3qrf-m4j2-pcrr (Security issue with external entity loading
      in XML without enabling it). (CVE-2023-3823) (nielsdos, ilutov)

  - MBString:
    . Fix GH-11300 (license issue: restricted unicode license headers).
      (nielsdos)

  - Opcache:
    . Fixed bug GH-10914 (OPCache with Enum and Callback functions results in
      segmentation fault). (nielsdos)
    . Prevent potential deadlock if accelerated globals cannot be allocated.
      (nielsdos)

  - PCNTL:
    . Fixed bug GH-11498 (SIGCHLD is not always returned from proc_open).
      (nielsdos)

  - PDO:
    . Fix GH-11587 (After php8.1, when PDO::ATTR_EMULATE_PREPARES is true
      and PDO::ATTR_STRINGIFY_FETCHES is true, decimal zeros are no longer
      filled). (SakiTakamachi)

  - PDO SQLite:
    . Fix GH-11492 (Make test failure: ext/pdo_sqlite/tests/bug_42589.phpt).
      (KapitanOczywisty, CViniciusSDias)

  - Phar:
    . Add missing check on EVP_VerifyUpdate() in phar util. (nielsdos)
    . Fixed bug GHSA-jqcx-ccgc-xwhv (Buffer mismanagement in phar_dir_read()).
      (CVE-2023-3824) (nielsdos)

  - PHPDBG:
    . Fixed bug GH-9669 (phpdbg -h options doesn't list the -z option). (adsr)

  - Session:
    . Removed broken url support for transferring session ID. (ilutov)

  - Standard:
    . Fix serialization of RC1 objects appearing in object graph twice. (ilutov)

  - Streams:
    . Fixed bug GH-11735 (Use-after-free when unregistering user stream wrapper
      from itself). (ilutov)

  - SQLite3:
    . Fix replaced error handling in SQLite3Stmt::__construct. (nielsdos)

  - XMLReader:
    . Fix GH-11548 (Argument corruption when calling XMLReader::open or
      XMLReader::XML non-statically with observer active). (Bob)

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Sun Aug  6 04:05:06 UTC 2023

  Modified Files:
  pkgsrc/lang/php82: distinfo

  Log Message:
  lang/php82: fix distinfo

  Fix distinfo.  Maybe, I fetched pre-install version.

  No DIST_SUBDIR update with expecting no one fetched pre-official distinfo
  file.

(bsiegert)

Pullup ticket #6786 - requested by taca
lang/php81: security fix

Revisions pulled up:
- lang/php/phpversion.mk                                        1.403-1.404
- lang/php81/distinfo                                          1.25-1.26
- lang/php81/patches/patch-build_libtool.m4                    deleted
- lang/php81/patches/patch-configure                            1.2

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Fri Jul  7 12:51:19 UTC 2023

  Modified Files:
  pkgsrc/lang/php: phpversion.mk
  pkgsrc/lang/php81: distinfo

  Log Message:
  lang/php81: update to 8.1.21

  PHP 8.1.21 (2023-07-06)

  - CLI:
    . Fixed bug GH-11246 (cli/get_set_process_title fails on MacOS).
      (James Lucas)

  - Core:
    . Fixed build for the riscv64 architecture/GCC 12. (Daniil Gentili)

  - Curl:
    . Fixed bug GH-11433 (Unable to set CURLOPT_ACCEPT_ENCODING to NULL).
      (nielsdos)

  - DOM:
    . Fixed bugs GH-11288 and GH-11289 and GH-11290 and GH-9142 (DOMExceptions
      and segfaults with replaceWith). (nielsdos)
    . Fixed bug GH-10234 (Setting DOMAttr::textContent results in an empty
      attribute value). (nielsdos)
    . Fix return value in stub file for DOMNodeList::item. (divinity76)
    . Fix spec compliance error with '*' namespace for
      DOMDocument::getElementsByTagNameNS. (nielsdos)
    . Fix DOMElement::append() and DOMElement::prepend() hierarchy checks.
      (nielsdos)
    . Fixed bug GH-11347 (Memory leak when calling a static method inside an
      xpath query). (nielsdos)
    . Fixed bug #67440 (append_node of a DOMDocumentFragment does not reconcile
      namespaces). (nielsdos)
    . Fixed bug #81642 (DOMChildNode::replaceWith() bug when replacing a node
      with itself). (nielsdos)
    . Fixed bug #77686 (Removed elements are still returned by getElementById).
      (nielsdos)
    . Fixed bug #70359 (print_r() on DOMAttr causes Segfault in
      php_libxml_node_free_list()). (nielsdos)
    . Fixed bug #78577 (Crash in DOMNameSpace debug info handlers). (nielsdos)
    . Fix lifetime issue with getAttributeNodeNS(). (nielsdos)
    . Fix "invalid state error" with cloned namespace declarations. (nielsdos)
    . Fixed bug #55294 and #47530 and #47847 (various namespace reconciliation
      issues). (nielsdos)
    . Fixed bug #80332 (Completely broken array access functionality with
      DOMNamedNodeMap). (nielsdos)

  - Opcache:
    . Fix allocation loop in zend_shared_alloc_startup(). (nielsdos)
    . Access violation on smm_shared_globals with ALLOC_FALLBACK. (KoudelkaB)
    . Fixed bug GH-11336 (php still tries to unlock the shared memory ZendSem
      with opcache.file_cache_only=1 but it was never locked). (nielsdos)

  - OpenSSL:
    . Fixed bug GH-9356 Incomplete validation of IPv6 Address fields in
      subjectAltNames (James Lucas, Jakub Zelenka).

  - PGSQL:
    . Fixed intermittent segfault with pg_trace. (David Carlier)

  - Phar:
    . Fix cross-compilation check in phar generation for FreeBSD. (peter279k)

  - SPL:
    . Fixed bug GH-11338 (SplFileInfo empty getBasename with more than one
      slash). (nielsdos)

  - Standard:
    . Fix access on NULL pointer in array_merge_recursive(). (ilutov)
    . Fix exception handling in array_multisort(). (ilutov)

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Sat Aug  5 08:43:16 UTC 2023

  Modified Files:
  pkgsrc/lang/php: phpversion.mk
  pkgsrc/lang/php81: distinfo
  pkgsrc/lang/php81/patches: patch-configure
  Removed Files:
  pkgsrc/lang/php81/patches: patch-build_libtool.m4

  Log Message:
  lang/php81: update to 8.1.22

  03 Aug 2023, PHP 8.1.22

  - Build:
    . Fixed bug GH-11522 (PHP version check fails with '-' separator).
      (SVGAnimate)

  - CLI:
    . Fix interrupted CLI output causing the process to exit. (nielsdos)

  - Core:
    . Fixed oss-fuzz #60011 (Mis-compilation of by-reference nullsafe operator).
      (ilutov)
    . Fixed use-of-uninitialized-value with ??= on assert. (ilutov)
    . Fixed build for FreeBSD before the 11.0 releases. (David Carlier)

  - Curl:
    . Fix crash when an invalid callback function is passed to
      CURLMOPT_PUSHFUNCTION. (nielsdos)

  - Date:
    . Fixed bug GH-11368 (Date modify returns invalid datetime). (Derick)

  - DOM:
    . Fixed bug GH-11625 (DOMElement::replaceWith() doesn't replace node with
      DOMDocumentFragment but just deletes node or causes wrapping <></>
      depending on libxml2 version). (nielsdos)

  - Fileinfo:
    . Fixed bug GH-11298 (finfo returns wrong mime type for xz files). (Anatol)

  - FTP:
    . Fix context option check for "overwrite". (JonasQuinten)
    . Fixed bug GH-10562 (Memory leak and invalid state with consecutive
      ftp_nb_fget). (nielsdos)

  - GD:
    . Fix most of the external libgd test failures. (Michael Orlitzky)

  - Hash:
    . Fix use-of-uninitialized-value in hash_pbkdf2(), fix missing $options
      parameter in signature. (ilutov)

  - Intl:
    . Fix memory leak in MessageFormatter::format() on failure. (Girgias)

  - Libxml:
    . Fixed bug GHSA-3qrf-m4j2-pcrr (Security issue with external entity loading
      in XML without enabling it). (CVE-2023-3823) (nielsdos, ilutov)

  - MBString:
    . Fix GH-11300 (license issue: restricted unicode license headers).
      (nielsdos)

  - Opcache:
    . Fixed bug GH-10914 (OPCache with Enum and Callback functions results in
      segmentation fault). (nielsdos)
    . Prevent potential deadlock if accelerated globals cannot be allocated.
      (nielsdos)

  - PCNTL:
    . Fixed bug GH-11498 (SIGCHLD is not always returned from proc_open).
      (nielsdos)

  - PCRE:
    . Mangle PCRE regex cache key with JIT option. (mvorisek)

  - PDO:
    . Fix GH-11587 (After php8.1, when PDO::ATTR_EMULATE_PREPARES is true
      and PDO::ATTR_STRINGIFY_FETCHES is true, decimal zeros are no longer
      filled). (SakiTakamachi)

  - PDO SQLite:
    . Fix GH-11492 (Make test failure: ext/pdo_sqlite/tests/bug_42589.phpt).
      (KapitanOczywisty, CViniciusSDias)

  - Phar:
    . Add missing check on EVP_VerifyUpdate() in phar util. (nielsdos)
    . Fixed bug GHSA-jqcx-ccgc-xwhv (Buffer mismanagement in phar_dir_read()).
      (CVE-2023-3824) (nielsdos)

  - PHPDBG:
    . Fixed bug GH-9669 (phpdbg -h options doesn't list the -z option). (adsr)

  - Session:
    . Removed broken url support for transferring session ID. (ilutov)

  - Standard:
    . Fix serialization of RC1 objects appearing in object graph twice. (ilutov)

  - SQLite3:
    . Fix replaced error handling in SQLite3Stmt::__construct. (nielsdos)

(bsiegert)

ap2-python: Note upstream bug report about no-release policy

(gdt)

Pullup ticket #6785 - requested by taca
lang/php80: security fix (CVE-2023-3823, CVE-2024-3824)

Revisions pulled up:
- lang/php/phpversion.mk                                        1.406
- lang/php80/distinfo                                          1.31
- lang/php80/patches/patch-configure                            1.2

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Sun Aug  6 04:28:24 UTC 2023

  Modified Files:
  pkgsrc/lang/php: phpversion.mk
  pkgsrc/lang/php80: distinfo
  pkgsrc/lang/php80/patches: patch-configure

  Log Message:
  lang/php80: update to 8.0.30

  03 Aug 2023, PHP 8.0.30

  - Libxml:
    . Fixed bug GHSA-3qrf-m4j2-pcrr (Security issue with external entity loading
      in XML without enabling it). (CVE-2023-3823) (nielsdos, ilutov)

  - Phar:
    . Fixed bug GHSA-jqcx-ccgc-xwhv (Buffer mismanagement in phar_dir_read()).
      (CVE-2023-3824) (nielsdos)

(bsiegert)

Pullup ticket #6782 - requested by taca
net/samba4: security fix

Revisions pulled up:
- net/samba4/Makefile                                          1.166-1.167
- net/samba4/distinfo                                          1.94-1.95

---
  Module Name: pkgsrc
  Committed By: wiz
  Date: Wed Jul 19 15:33:28 UTC 2023

  Modified Files:
  pkgsrc/net/samba4: Makefile distinfo

  Log Message:
  samba: update to 4.18.4.

  Changes since 4.18.3
  --------------------

  o  Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
    * BUG 15404: Backport --pidl-developer fixes.

  o  Samuel Cabrero <scabrero@samba.org>
    * BUG 14030: Named crashes on DLZ zone update.

  o  Bj旦rn Jacke <bj@sernet.de>
    * BUG 2312: smbcacls and smbcquotas do not check // before the server.

  o  Volker Lendecke <vl@samba.org>
    * BUG 15382: cli_list loops 100% CPU against pre-lanman2 servers.
    * BUG 15391: smbclient leaks fds with showacls.
    * BUG 15402: smbd returns NOT_FOUND when creating files on a r/o filesystem.

  o  Stefan Metzmacher <metze@samba.org>
    * BUG 15355: NSS_WRAPPER_HOSTNAME doesn't match NSS_WRAPPER_HOSTS entry and
      causes test timeouts.

  o  Noel Power <noel.power@suse.com>
    * BUG 15384: net ads lookup (with unspecified realm) fails.

  o  Christof Schmitt <cs@samba.org>
    * BUG 15381: Register Samba processes with GPFS.

  o  Andreas Schneider <asn@samba.org>
    * BUG 15390: Python tarfile extraction needs change to avoid a warning
      (CVE-2007-4559 mitigation).
    * BUG 15398: The winbind child segfaults when listing users with `winbind
      scan trusted domains = yes`.

  o  Jones Syue <jonessyue@qnap.com>
    * BUG 15383: Remove comments about deprecated 'write cache size'.
    * BUG 15403: smbget memory leak if failed to download files recursively.

---
  Module Name: pkgsrc
  Committed By: taca
  Date: Thu Jul 20 01:28:34 UTC 2023

  Modified Files:
  pkgsrc/net/samba4: Makefile distinfo

  Log Message:
  net/samba4: update to 4.18.5

                    ==============================
                    Release Notes for Samba 4.18.5
                            July 19, 2023
                    ==============================

  This is a security release in order to address the following defects:

  o CVE-2022-2127:  When winbind is used for NTLM authentication, a maliciously
                    crafted request can trigger an out-of-bounds read in winbind
                    and possibly crash it.
                    https://www.samba.org/samba/security/CVE-2022-2127.html

  o CVE-2023-3347:  SMB2 packet signing is not enforced if an admin configured
                    "server signing = required" or for SMB2 connections to Domain
                    Controllers where SMB2 packet signing is mandatory.
                    https://www.samba.org/samba/security/CVE-2023-3347.html

  o CVE-2023-34966: An infinite loop bug in Samba's mdssvc RPC service for
                    Spotlight can be triggered by an unauthenticated attacker by
                    issuing a malformed RPC request.
                    https://www.samba.org/samba/security/CVE-2023-34966.html

  o CVE-2023-34967: Missing type validation in Samba's mdssvc RPC service for
                    Spotlight can be used by an unauthenticated attacker to
                    trigger a process crash in a shared RPC mdssvc worker process.
                    https://www.samba.org/samba/security/CVE-2023-34967.html

  o CVE-2023-34968: As part of the Spotlight protocol Samba discloses the server-
                    side absolute path of shares and files and directories in
                    search results.
                    https://www.samba.org/samba/security/CVE-2023-34968.html

  Changes since 4.18.4
  --------------------

  o  Ralph Boehme <slow@samba.org>
    * BUG 15072: CVE-2022-2127.
    * BUG 15340: CVE-2023-34966.
    * BUG 15341: CVE-2023-34967.
    * BUG 15388: CVE-2023-34968.
    * BUG 15397: CVE-2023-3347.

  o  Volker Lendecke <vl@samba.org>
    * BUG 15072: CVE-2022-2127.

  o  Stefan Metzmacher <metze@samba.org>
    * BUG 15418: Secure channel faulty since Windows 10/11 update 07/2023.

(bsiegert)

doc: Updated devel/mold to 2.1.0

(fcambus)

mold: update to 2.1.0.

New features:

- Loongson's LoongArch CPU has been supported.
- -z nosectionheader has been added to eliminate section headers from the
  output file.

Bug fixes and compatibility improvements:

- Previously, linking with the -z pack-relative-relocs option produces
  an executable that glibc 2.38 refuses to run with DT_RELR without
  GLIBC_ABI_DT_RELR dependency error. Now, mold produces binaries compatible
  with glibc 2.38.
- [ARM64] R_AARCH64_ADR_PREL_PG_HI21_NC relocation type has been supported.
- [ARM64] R_AARCH64_MOVW_UABS_G3 relocation type has now been handled as a
  PLT-generating relocation to fix an issue when main is not defined in the
  main executable but rather in a .so file.
- [RISC-V] We now merge input .riscv.attributes contents. Previously, we
  just concatenated them.

(fcambus)

py-anytree: mark as PYTHON_SELF_CONFLICT

XXX: rename bin/ebt to bin/ebt-${PYVERSSUFFIX}?

(wiz)

doc: Updated lang/janet to 1.30.0

(charlotte)

lang/janet: Update to 1.30.0

## 1.30.0 - 2023-08-05

- Change indexing of `array/remove` to start from -1 at the end instead of -2.
- Add new string escape sequences `\\a`, `\\b`, `\\?`, and `\\'`.
- Fix bug with marshalling channels
- Add `div` for floored division
- Make `div` and `mod` variadic
- Support `bnot` for integer types.
- Define `(mod x 0)` as `x`
- Add `ffi/pointer-cfunction` to convert pointers to cfunctions

(charlotte)

doc: Updated games/ironwail to 0.7.0

(charlotte)

games/ironwail: Remove a patch that's no longer necessary

(charlotte)

python3*: when linking with pkgsrc gettext, pass -lintl. When linking
with builtin gettext, NFCI. Fixes PREFER_PKGSRC=gettext-lib builds on at
least NetBSD 9 and 10.

(schmonz)

gcc*: replace gnarly cargo-culted extract logic with EXTRACT_ONLY

(tnn)

emacs: support EMACS_TYPE=emacs29 in same manner as 28

(tnn)

emacs29: disable gcc13-libjit option on Darwin-*-aarch64

No support for Darwin's Aarch64 ABI in any GCC major release yet.
It's on it's way but probably not before GCC 15.

(tnn)

Avoid deprecated warning from cron

Patch from upstream, bump pkgrevision

(abs)

games/ironwail: Update to 0.7.0

Changes from 0.6.0:

- ability to download add-ons from the Mods menu (using the community add-on
  server by default; specify `-addons <url>` on the command line to use a
  different server, `-noaddons` to disable)
- new `Levels` menu, inspired by the one in Mark V, with various enhancements
  such as support for searching (by BSP name/map title) and skill selection
- last save is loaded automatically after dying (`sv_autoload 0` to disable,
  `sv_autoload 1` to ask for confirmation, `sv_autoload 2` to always load
  previous save, if any)
- initial autosave support (sv_autosave 0 to disable)
- moved saving to a background thread (avoids autosave stutter on complex maps)
- improved compatibility with 2021 re-release: the engine will no longer write
  configs to the Nightdive folder to avoid an issues with the KEX engine where
  certain episodes would no longer function properly; existing configs will be
  automatically migrated to the new save location (%USERPROFILE%\Saved
  Games\Ironwail\rerelease)
- added EGS and GOG Quake detection
- initial support for CSQC HUDs (Arcane Dimensions, Alkaline 1.1/1.2), using
  code from QSS (by @Shpoike)
- skill selection menu for Quake64
- reworked Options menu
- added Options, Controls and Video menu searching
- improved console Tab completion
- text can be matched anywhere, not just at the beginning of a
  cvar/command/argument:

    `maxfps` + `Tab` = `host_maxfps`
    `showfps` + `Tab` = `scr_showfps`
    `box` + `Tab` = `r_showbboxes`
    `map fair` + `Tab` = `map ctsj2_fairweather`

- added argument cycling for map/load/save/game/sky commands (Tab/Shift+Tab)
- support for emulating non-square pixels in the UI/HUD (e.g. `scr_pixelaspect
  5:6`)
- customizable screenshot names and folder (using `cl_screenshotname` cvar,
  defaults to `screenshots/%map%_%date%_%time%`)
- Supported variables: `map`, `maptitle`, `date`, `time`, `year`, `month`,
  `day`, `hour`, `min`, `sec`
- `viewsize 130` option (press `+/-` to activate/deactivate) for cleaner
  screenshots (no weapon/HUD/text messages)
- built-in zooming support, bindable from the Controls menu
- New cvars/commands: `zoom_fov`, `zoom_speed`, `+/-zoom`, `togglezoom`,
  `zoom_in/out`
- changed Controls menu to display more entries when possible
- cvar to disable mouse support in the UI (`ui_mouse 0`)
- cvar to enable sound effects when using the mouse to select different menu
  items (`ui_mouse_sound`)
- menu sound effects are now throttled (`ui_sound_throttle` to change the
  interval, `0` to disable)
- `r_showbboxes_filter` option (from @andrey-budko), which limits entities
  highlighted by `r_showbboxes` to those with matching classnames:

-- `r_showbboxes_filter secret` highlights entities with classnames containing
  `secret`
-- `r_showbboxes_filter =trigger_secret` highlights entities with classname equal
  to `trigger_secret`
-- Note: Tab-completion is supported

- `r_showbboxes_health` cvar (`0` = show all entities, `1` = show entities with
  health > 0, `-1` = show entities with health <= 0)
- `r_showbboxes_think` cvar (`0` = show all entities, `1` = show entities with
  thinktime > 0, `-1` = show entities with thinktime <= 0)
- `skies` command, which lists all available skies (with an optional filter
  argument)
- Tab completion for `sky` command
- Tab completion for `bind`/`unbind` key names
- word-based navigation/deletion in console (using
  Ctrl+Left/Right/Backspace/Delete)
- ability to bind Caps/Num/Scroll Lock and Print Screen keys
- optional filter argument for `maps` command
- model scale support (requires protocol 999) - original patch from
  @JosiahJack, with fixes from @temx
- bumped model limit to 4096 (for quakemash)
- `maps` command now prints map titles, too, not just BSP names
- further reduced CPU usage
- added skybox animation ("skywind") support
- skybox caching (to avoid hitching when repeatedly switching between the same
  skyboxes)
- order-independent transparency (`r_oit 0` to disable, e.g. on integrated
  GPUs)
- added option to sort transparent entities by distance when r_oit is disabled
  (`r_alphasort`)
- changed rendering order for transparent brush entities (when both r_oit and
  r_alphasort are off) to match QuakeSpasm
- added Transparency option to Video menu
- improved color matching for 8-bit palettization: higher quality on modern
  maps, more authentic on classic ones
- fullbright colors are now deduced from the colormap instead of being
  hardcoded
- changed fog from planar to spherical (stable when turning around)
- optimized particle rendering and increased default particle limit (using code
  from @mhQuake)
- work-arounds for bugs in old Intel GPU drivers
- ⚠️ Note: some very old Intel GPU drivers might crash/stop responding during
  gameplay.
- Currently there is no fix or work-around for this issue, if you are affected
  by it please use a different engine, such as Quakespasm, Quakespasm Spiked,
  QSS-M or FTE
- discrete GPU will be used by default, if available, instead of integrated one
- fixed softlock in mge2m2
- functional `nomonsters` cvar
- enabled resizing in windowed mode
- more responsive `v_gunkick 2` implementation (@mhQuake)
- changed default `v_gunkick` value to `2` (smooth)
- `v_gunkick`, `cl_rollangle`, `cl_bob` and `scr_clock` are now saved to config
- new `writeconfig` command
- optional file name argument for `condump` command
- eliminated endianness handling overhead (@tyfighter)
- fixed rendering issues when streaming on Discord
- fixed jitter when moving the mouse during a cutscene
- fixed `SZ_GetSpace: overflow` when loading certain large maps (e.g.
  telefragged) with protocol 999
- fixed occasional text rendering artifacts at certain UI scales
- added screen warping and underwater sound effects for Alkaline 1.2 liquid
  brushes
- fixed console animation with `scr_conspeed` <= 0
- added `scr_conbrightness` and `scr_menubgalpha` to improve readability
- experimental language cvar (english/french/german/italian/spanish)
- support for using arbitrary characters as crosshairs (e.g. `crosshair v` for
  v, or `crosshair -118` for the 118th character in the Quake font)
- support for multiple `-basedirs` on the command line

(charlotte)