| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
|
|
Drop 37 from PYTHON_VERSIONS_ACCEPTED for all but
py-backports.cached-property (which exists only for 37, and I'm
guessing it will build fine and not cause trouble).
This follows the new plan of "37 is all but removed, with the
lang/python37 package remaining, but py37-foo are not built by
default" compromise to avoid problems from the current state of
massive py37-foo build failures while stopping short of outright
removal.
|
|
While python 3.7 is not EOL, many python packages are acting as if it
is, and the resulting fallout in bulk builds is making it difficult to
assess real breakage. Following discussion on pkgsrc-users, where
only one person said they wanted to use 3.7 in pkgsrc, 37 is being
dropped from ACCEPTED, but the package remains, at least for now.
Anyone who wants to use 3.7 can set PYTHON_VERSIONS_ACCEPTED in
mk.conf or locally modify pyversion.mk.
Shortly, I will drop 37 from PYTHON_VERSIONS_ACCEPTED from 6 packages
that set it, so that there will be essentially no py37-foo packages
built by default. We will no longer allow adding 37 to
PYTHON_VERSIONS_ACCEPTED. It remains fine to add 37 to
PYTHON_VERSIONS_INCOMPATIBLE, but 37-inspired changes that cause
failures for people with a default pyversion.mk should be avoided.
|
|
Auto merge of #13505 - lowr:feat/gats, r=flodiebold
Clean up tests and add documentation for GATs related stuff
This is a follow-up PR for #13494.
- addresses https://github.com/rust-lang/rust-analyzer/pull/13494#discussion_r1006774897
- documents the ordering constraint on `Binders` and `Substitution` (which is
not really follow-up for the previous PR, but it was introduced to support
GATs and I strongly feel it's worth it)
|
|
7.4.33 (2022-11-03)
- GD:
. Fixed bug #81739: OOB read due to insufficient input validation in
imageloadfont(). (CVE-2022-31630) (cmb)
- Hash:
. Fixed bug #81738: buffer overflow in hash_update() on long parameter.
(CVE-2022-37454) (nicky at mouha dot be)
|
|
|
|
PKGREVISION). For earlier versions, no change.
|
|
This release includes 1 security fixes following the security policy:
syscall, os/exec: unsanitized NUL in environment variables
On Windows, syscall.StartProcess and os/exec.Cmd did not properly check for
invalid environment variable values. A malicious environment variable value
could exploit this behavior to set a value for a different environment
variable. For example, the environment variable string "A=B\x00C=D" set the
variables "A=B" and "C=D".
Thanks to RyotaK (https://twitter.com/ryotkak) for reporting this issue.
This is CVE-2022-41716 and Go issue https://go.dev/issue/56284.
View the release notes for more information:
https://go.dev/doc/devel/release#go1.19.3
|
|
This release includes 1 security fixes following the security policy:
syscall, os/exec: unsanitized NUL in environment variables
On Windows, syscall.StartProcess and os/exec.Cmd did not properly check for
invalid environment variable values. A malicious environment variable value
could exploit this behavior to set a value for a different environment
variable. For example, the environment variable string "A=B\x00C=D" set the
variables "A=B" and "C=D".
Thanks to RyotaK (https://twitter.com/ryotkak) for reporting this issue.
This is CVE-2022-41716 and Go issue https://go.dev/issue/56284.
View the release notes for more information:
https://go.dev/doc/devel/release#go1.18.8
|
|
Some of the latter linking stages can take a signficantly long time.
|
|
v1.2.0
Use new asttokens.ASTText
v1.1.1
tox is breaking weirdly with too much parallelism
v1.1.0
3.11 in setup.cfg
v1.0.0
Always check linecache
|
|
Version 18.12.0 'Hydrogen' (LTS)
Notable Changes
This release marks the transition of Node.js 18.x into Long Term Support (LTS) with the codename 'Hydrogen'. The 18.x release line now moves into "Active LTS" and will remain so until October 2023. After that time, it will move into "Maintenance" until end of life in April 2025.
|
|
pkgsrc changes:
---------------
* Replace conditional configuration in Makefile by conditional option support
in options.mk thanks to Tobias.
|
|
0.12.4
- Remove upper bound on Pydantic when Python is <3.11
|
|
|
|
|
|
Python 3.11 is between 10-60% faster than Python 3.10. On average, we measured a 1.25x speedup on the standard benchmark suite. See Faster CPython for details.
New syntax features:
PEP 654: Exception Groups and except*
New built-in features:
PEP 678: Exceptions can be enriched with notes
New standard library modules:
PEP 680: tomllib — Support for parsing TOML in the Standard Library
Interpreter improvements:
PEP 657: Fine-grained error locations in tracebacks
New -P command line option and PYTHONSAFEPATH environment variable to disable automatically prepending potentially unsafe paths to sys.path
New typing features:
PEP 646: Variadic generics
PEP 655: Marking individual TypedDict items as required or not-required
PEP 673: Self type
PEP 675: Arbitrary literal string type
PEP 681: Data class transforms
Important deprecations, removals and restrictions:
PEP 594: Many legacy standard library modules have been deprecated and will be removed in Python 3.13
PEP 624: Py_UNICODE encoder APIs have been removed
PEP 670: Macros converted to static inline functions
|
|
2.1.0
ASTText class that doesn't require tokens
|
|
Changes not found.
|
|
pkgsrc changes:
---------------
* Disable terminfo on FreeBSD since error occur with curs_terminfo(3X)
functions. The fix comes from FreeBSD ports.
|
|
Two weeks of development.
|
|
Do not manually install executable files and manual.
These are already done by php's Makefile from some time ago.
|
|
8.0.25 (2022-10-27)
- GD:
. Fixed bug #81739: OOB read due to insufficient input validation in
imageloadfont(). (CVE-2022-31630) (cmb)
- Hash:
. Fixed bug #81738: buffer overflow in hash_update() on long parameter.
(CVE-2022-37454) (nicky at mouha dot be)
- Session:
. Fixed bug GH-9583 (session_create_id() fails with user defined save handler
that doesn't have a validateId() method). (Girgias)
- Streams:
. Fixed bug GH-9590 (stream_select does not abort upon exception or empty
valid fd set). (Arnaud)
|
|
8.1.12 (2022-10-27)
- Core:
. Fixes segfault with Fiber on FreeBSD i386 architecture. (David Carlier)
- Fileinfo:
. Fixed bug GH-8805 (finfo returns wrong mime type for woff/woff2 files).
(Anatol)
- GD:
. Fixed bug #81739: OOB read due to insufficient input validation in
imageloadfont(). (CVE-2022-31630) (cmb)
- Hash:
. Fixed bug #81738: buffer overflow in hash_update() on long parameter.
(CVE-2022-37454) (nicky at mouha dot be)
- MBString:
- Fixed bug GH-9683 (Problem when ISO-2022-JP-MS is specified in
mb_ encode_mimeheader). (Alex Dowad)
- Opcache:
. Added indirect call reduction for jit on x86 architectures. (wxue1)
- Session:
. Fixed bug GH-9583 (session_create_id() fails with user defined save handler
that doesn't have a validateId() method). (Girgias)
- Streams:
. Fixed bug GH-9590 (stream_select does not abort upon exception or empty
valid fd set). (Arnaud)
|
|
|
|
upstream changes:
-----------------
Patch Package OTP 25.1.2
Git Tag OTP-25.1.2
Date 2022-10-24
Issue Id ERIERL-866 ERIERL-868
System OTP Release 25
Application erts-13.1.2 mnesia-4.21.2
|
|
Also fix up bootstrap.py to recognize and handle earmv6hf too,
not just armv6hf. Thanks to Brad Spencer for the hints.
|
|
|
|
|
|
Bump PKGREVISION for www/nginx and www/nginx-devel.
<ChangeLog>
nginx modules:
*) Feature: added js_preload_object directive.
*) Feature: added ngx.conf_prefix property.
*) Feature: added s.sendUpstream() and s.sendDownstream()
in stream module.
*) Feature: added support for HEAD method in Fetch API.
*) Improvement: improved async callback support for s.send()
in stream module.
Core:
*) Feature: added "name" instance property for a function
object.
*) Feature: added njs.memoryStats object.
*) Bugfix: fixed String.prototype.trimEnd() with unicode
string.
*) Bugfix: fixed Object.freeze() with fast arrays.
*) Bugfix: fixed Object.defineProperty() with fast arrays.
*) Bugfix: fixed async token as a property name of an object.
*) Bugfix: fixed property set instruction when key modifies
base binding.
*) Bugfix: fixed complex assignments.
*) Bugfix: fixed handling of unhandled promise rejection.
*) Bugfix: fixed process.env when duplicate environ variables
are present.
*) Bugfix: fixed double declaration detection in modules.
*) Bugfix: fixed bound function calls according to the spec.
*) Bugfix: fixed break label for if statement.
*) Bugfix: fixed labeled empty statements.
</ChangeLog>
|
|
0.12.3
Fixed
- Require Pydantic 1.10.2 when Python is 3.11
|
|
|
|
|
|
Has not worked in a long time, if at all, and just spins during the build,
taking hours to finally fail when killed by external influences (as the package
specifies unlimited cputime).
|
|
This remains untested for now, but at least the build from
over in lang/rust didn't fail...
|
|
|
|
...by enabling --enable-imprecise-c99-float-ops in those cases,
fma(3) was added to powerpc between 9.99.98 and 9.99.99.
|
|
|
|
|
|
Update qore to version 1.12.0.
Includes one of our patches and
has tons of bug fixes.
|
|
correctly using print-PLIST
|
|
Add support for py-OpenSSL to versioned_dependencies.mk
|
|
|
|
|
|
It may make more sense to break this out into a separate file, as is
done for other options, but there's helper code present to regenerate
into the base PLIST itself, so I'm simply restoring to there for now.
|
|
Version 18.11.0 (Current)
Notable changes
watch mode (experimental)
Running in 'watch' mode using node --watch restarts the process when an imported file is changed.
Contributed by Moshe Atlow in
Other notable changes
fs:
(SEMVER-MINOR) add FileHandle.prototype.readLines (Antoine du Hamel)
http:
(SEMVER-MINOR) add writeEarlyHints function to ServerResponse (Wing)
http2:
(SEMVER-MINOR) make early hints generic (Yagiz Nizipli)
lib:
(SEMVER-MINOR) refactor transferable AbortSignal (flakey5)
src:
(SEMVER-MINOR) add detailed embedder process initialization API (Anna Henningsen)
util:
(SEMVER-MINOR) add default value option to parsearg (Manuel Spigolon)
|
|
Version 16.18.0 'Gallium' (LTS)
Notable changes
- (SEMVER-MINOR) assert: add getCalls and reset to callTracker (Moshe Atlow)
- (SEMVER-MINOR) crypto: allow zero-length secret KeyObject (Filip Skokan)
- (SEMVER-MINOR) crypto: allow zero-length IKM in HKDF and in webcrypto PBKDF2 (Filip Skokan)
- (SEMVER-MINOR) doc: deprecate modp1, modp2, and modp5 groups (Tobias Nießen)
- (SEMVER-MINOR) http: make idle http parser count configurable (theanarkh)
- (SEMVER-MINOR) http: throw error on content-length mismatch (sidwebworks)
- (SEMVER-MINOR) lib: add diagnostics channel for process and worker (theanarkh)
- (SEMVER-MINOR) net,tls: pass a valid socket on tlsClientError (Daeyeon Jeong)
- (SEMVER-MINOR) net: add local family (theanarkh)
- (SEMVER-MINOR) report: expose report public native apis (Chengzhong Wu)
- (SEMVER-MINOR) src: expose environment RequestInterrupt api (Chengzhong Wu)
- (SEMVER-MINOR) stream: add ReadableByteStream.tee() (Daeyeon Jeong)
- (SEMVER-MINOR) test_runner: add before/after/each hooks (Moshe Atlow)
- (SEMVER-MINOR) util: add maxArrayLength option to Set and Map (Kohei Ueno)
|
|
The Erlang 24 release removed the HiPE module. Un-break builds where
the erlang-hipe option was (often default) enabled.
|
|
|
|
|
