| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Drupal 7.79, 2021-04-07
-----------------------
- Initial support for PHP 8
- Support for SameSite cookie attribute
- Avoid write for unchanged fields (opt-in)
|
|
|
|
0.4 - 2021-02-06
- Support multiple elliptic curves under OpenSSL 1.1.1+ (#150)
- Improve support for Lua 5.4 (not longer require bit library to be installed) (#180)
- Ignore delayed RST_STREAM frames in HTTP 2 (#145)
|
|
|
|
Version 2.5.1
-------------
Released 2021-03-18
- Fix compatibility with Python 2.7.
Version 2.5.0
-------------
Released 2021-03-18
- Update to support SQLAlchemy 1.4.
- SQLAlchemy ``URL`` objects are immutable. Some internal methods have
changed to return a new URL instead of ``None``. :issue:`885`
|
|
This tool makes it easy to quickly spin up a static serving webserver.
|
|
v4.1.2
Changed
- Add tentative support for Python 3.10.
- Stop using `extras_require` for development-only dependencies.
|
|
Version 3.3.0 (February 1st, 2021)
----------------------------------
**Backwards incompatible changes**
* clean escapes HTML comments even when strip_comments=False
**Security fixes**
* Fix bug 1621692 / GHSA-m6xf-fq7q-8743. See the advisory for details.
|
|
3.3.4 (2021-04-06)
------------------
* The async_to_sync type error is now a warning due the high false negative
rate when trying to detect coroutine-returning callables in Python.
3.3.3 (2021-04-06)
------------------
* The sync conversion functions now correctly detect functools.partial and other
wrappers around async functions on earlier Python releases.
|
|
2.12.2 (18.02.2021)
~~~~~~~~~~~~~~~~~~~
* Fix: Pin django-treebeard to <4.5 to prevent migration conflicts (Matt Westcott)
2.12.1 (16.02.2021)
~~~~~~~~~~~~~~~~~~~
* Fix: Ensure aliases are published when the source page is published (Karl Hobley)
* Fix: Make page privacy rules apply to aliases (Karl Hobley)
* Fix: Prevent error when saving embeds that do not include a thumbnail URL (Cynthia Kiser)
* Fix: Ensure that duplicate embed records are deleted when upgrading (Matt Westcott)
* Fix: Prevent failure when running `manage.py dumpdata` with no arguments (Matt Westcott)
2.12 (02.02.2021)
~~~~~~~~~~~~~~~~~
* Added a distinct 'choose' permission for images and documents (Robert Rollins)
* StreamField values can now be modified in-place (Matt Westcott)
* Added support for custom admin color themes (Joshua Marantz)
* Added support for Python 3.9
* Added `WAGTAILIMAGES_IMAGE_FORM_BASE` and `WAGTAILDOCS_DOCUMENT_FORM_BASE` settings to customise the forms for images and documents (Dan Braghis)
* Switch pagination icons to use SVG instead of icon fonts (Scott Cranfill)
* Added string representation to image Format class (Andreas Nüßlein)
* Support returning None from `register_page_action_menu_item` and `register_snippet_action_menu_item` to skip registering an item (Vadim Karpenko)
* Fields on a custom image model can now be defined as required / `blank=False` (Matt Westcott)
* Add combined index for Postgres search backend (Will Giddens)
* Add `Page.specific_deferred` property for accessing specific page instance without up-front database queries (Andy Babic)
* Add hash lookup to embeds to support URLs longer than 255 characters (Coen van der Kamp)
* Fix: Stop menu icon overlapping the breadcrumb on small viewport widths in page editor (Karran Besen)
* Fix: Make sure document chooser pagination preserves the selected collection when moving between pages (Alex Sa)
* Fix: Gracefully handle oEmbed endpoints returning non-JSON responses (Matt Westcott)
* Fix: Fix unique constraint on WorkflowState for SQL Server compatibility (David Beitey)
* Fix: Reinstate chevron on collection dropdown (Mike Brown)
* Fix: Prevent delete button showing on collection / workflow edit views when delete permission is absent (Helder Correia)
2.11.5 (18.02.2021)
~~~~~~~~~~~~~~~~~~~
* Fix: Pin django-treebeard to <4.5 to prevent migration conflicts (Matt Westcott)
2.11.4 (16.02.2021)
~~~~~~~~~~~~~~~~~~~
* Fix: Prevent delete button showing on collection / workflow edit views when delete permission is absent (Helder Correia)
* Fix: Ensure aliases are published when the source page is published (Karl Hobley)
* Fix: Make page privacy rules apply to aliases (Karl Hobley)
2.11.3 (10.12.2020)
~~~~~~~~~~~~~~~~~~~
* Fix: Updated project template migrations to ensure that initial homepage creation runs before addition of locale field (Dan Braghis)
* Fix: Restore ability to use translatable strings in `LANGUAGES` / `WAGTAIL_CONTENT_LANGUAGES` settings (Andreas Morgenstern)
* Fix: Allow `locale` / `translation_of` API filters to be used in combination with search (Matt Westcott)
* Fix: Prevent error on `create_log_entries_from_revisions` when checking publish state on a revision that cannot be restored (Kristin Riebe)
2.11.2 (17.11.2020)
~~~~~~~~~~~~~~~~~~~
* Add custom finder to support Instagram oEmbed API (Luis Nell)
* Add custom finder to support Facebook oEmbed API (Cynthia Kiser)
* Fix: Improve performance of permission check on translations for edit page (Karl Hobley)
* Fix: Gracefully handle missing Locale records on `Locale.get_active` and `.localized` (Matt Westcott)
* Fix: Handle `get_supported_language_variant` returning a language variant not in `LANGUAGES` (Matt Westcott)
* Fix: Reinstate missing icon on settings edit view (Jérôme Lebleu)
* Fix: Avoid performance and pagination logic issues with a large number of languages (Karl Hobley)
* Fix: Allow deleting the default locale (Matt Westcott)
2.11.1 (06.11.2020)
~~~~~~~~~~~~~~~~~~~
* Fix: Ensure that cached `wagtail_site_root_paths` structures from older Wagtail versions are invalidated (Sævar Öfjörð Magnússon)
* Fix: Avoid circular import between wagtail.admin.auth and custom user models (Matt Westcott)
* Fix: Prevent error on resolving page URLs when a locale outside of `WAGTAIL_CONTENT_LANGUAGES` is active (Matt Westcott)
2.11 LTS (02.11.2020)
~~~~~~~~~~~~~~~~~~~~~
* Add support for multi-lingual content (Karl Hobley)
* Add support for aliased pages (Karl Hobley)
* Add support for hierarchical/nested Collections (Robert Rollins)
* Extend treebeard's `fix_tree` method with the ability to non-destructively fix path issues and add a --full option to apply path fixes (Matt Westcott)
* Add `before_edit_snippet`, `before_create_snippet` and `before_delete_snippet` hooks and documentation (Karl Hobley. Sponsored by the Mozilla Foundation)
* Add `register_snippet_listing_buttons` and `construct_snippet_listing_buttons` hooks and documentation (Karl Hobley. Sponsored by the Mozilla Foundation)
* Add `wagtail --version` to available Wagtail CLI commands (Kalob Taulien)
* Add `hooks.register_temporarily` utility function for testing hooks (Karl Hobley. Sponsored by the Mozilla Foundation)
* Remove `unidecode` and use `anyascii` in for Unicode to ASCII conversion (Robbie Mackay)
* Add `render` helper to `RoutablePageMixin` to support serving template responses according to Wagtail conventions (Andy Babic)
* Specify minimum Python version in setup.py (Vince Salvino)
* Show user's full name in report views (Matt Westcott)
* Improve Wagtail admin page load performance by caching SVG icons sprite in localStorage (Coen van der Kamp)
* Support SVG icons in ModelAdmin menu items (Scott Cranfill)
* Support SVG icons in admin breadcrumbs (Coen van der Kamp)
* Serve PDFs inline in the browser (Matt Westcott)
* Make document `content-type` and `content-disposition` configurable via `WAGTAILDOCS_CONTENT_TYPES` and `WAGTAILDOCS_INLINE_CONTENT_TYPES` (Matt Westcott)
* Slug generation no longer removes stopwords (Andy Chosak, Scott Cranfill)
* Add check to disallow StreamField block names that do not match Python variable syntax (François Poulain)
* The `BASE_URL` setting is now converted to a string, if it isn't already, when constructing API URLs (thenewguy)
* Preview from 'pages awaiting moderation' now opens in a new window (Cynthia Kiser)
* Add document extension validation if `WAGTAIL_DOCS_EXTENSIONS` is set (Meghana Bhange)
* Use `django-admin` command in place of `django-admin.py` (minusf)
* Add `register_snippet_action_menu_item` and `construct_snippet_action_menu` hooks to modify the actions available when creating / editing a snippet (Karl Hobley)
* Moved `generate_signature` and `verify_signature` functions into `wagtail.images.utils` (Noah H)
* Implement `bulk_to_python` on all structural StreamField block types (Matt Westcott)
* Add natural key support to `GroupCollectionPermission` (Jim Jazwiecki)
* Implement `prepopulated_fields` for `wagtail.contrib.modeladmin` (David Bramwell)
* Change `classname` keyword argument on basic StreamField blocks to `form_classname` (Meghana Bhange)
* Replace page explorer pushPage/popPage with gotoPage for more flexible explorer navigation (Karl Hobley)
* Fix: Make page-level actions accessible to keyboard users in page listing tables (Jesse Menn)
* Fix: `WAGTAILFRONTENDCACHE_LANGUAGES` was being interpreted incorrectly. It now accepts a list of strings, as documented (Karl Hobley)
* Fix: Update oEmbed endpoints to use https where available (Matt Westcott)
* Fix: Revise `edit_handler` bind order in ModelAdmin views and fix duplicate form instance creation (Jérôme Lebleu)
* Fix: Properly distinguish child blocks when comparing revisions with nested StreamBlocks (Martin Mena)
* Fix: Correctly handle Turkish 'İ' characters in client-side slug generation (Matt Westcott)
* Fix: Page chooser widgets now reflect custom ``get_admin_display_title`` methods (Saptak Sengupta)
* Fix: `Page.copy()` now raises an error if the page being copied is unsaved (Anton Zhyltsou)
* Fix: `Page.copy()` now triggers a `page_published` if the copied page is live (Anton Zhyltsou)
* Fix: The Elasticsearch `URLS` setting can now take a string on its own instead of a list (Sævar Öfjörð Magnússon)
* Fix: Avoid retranslating month / weekday names that Django already provides (Matt Westcott)
* Fix: Fixed padding around checkbox and radio inputs (Cole Maclean)
* Fix: Fix spacing around the privacy indicator panel (Sævar Öfjörð Magnússon, Dan Braghis)
* Fix: Consistently redirect to admin home on permission denied (Matt Westcott, Anton Zhyltsou)
|
|
* Allow child form class to be overridden in the `formsets` Meta property of ClusterForm (Helder Correia)
* Add prefetch_related support to ParentalManyToManyField (Andy Chosak)
* Implement `copy_child_relation` and `copy_all_child_relations` methods on ClusterableModel (Karl Hobley)
* Fix: Fix behavior of ParentalKeys and prefetch_related() supplied with a lookup queryset (Juha Yrjölä)
|
|
20.1.0 - 2021-02-12
document WEB_CONCURRENCY is set by, at least, Heroku
capture peername from accept: Avoid calls to getpeername by capturing the peer name returned by accept
log a warning when a worker was terminated due to a signal
fix tornado usage with latest versions of Django
add support for python -m gunicorn
fix systemd socket activation example
allows to set wsgi application in configg file using wsgi_app
document --timeout = 0
always close a connection when the number of requests exceeds the max requests
Disable keepalive during graceful shutdown
kill tasks in the gthread workers during upgrade
fix latency in gevent worker when accepting new requests
fix file watcher: handle errors when new worker reboot and ensure the list of files is kept
document the default name and path of the configuration file
document how variable impact configuration
document the $PORT environment variable
added milliseconds option to request_time in access_log
added PIP requirements to be used for example
remove version from the Server header
fix sendfile: use socket.sendfile instead of os.sendfile
reloader: use absolute path to prevent empty to prevent0 InotifyError when a file is added to the working directory
Add –print-config option to print the resolved settings at startup.
remove the --log-dict-config CLI flag because it never had a working format (the logconfig_dict setting in configuration files continues to work)
** Breaking changes **
minimum version is Python 3.5
remove version from the Server header
** Others **
miscellaneous changes in the code base to be a better citizen with Python 3
remove dead code
fix documentation generation
|
|
2.4.0 (2021-02-06)
Added support for --session cookie expiration based on Set-Cookie: max-age=<n>.
Show a --check-status warning with --quiet as well, not only when the output is redirected.
Fixed upload with --session
Fixed a missing blank line between request and response
2.3.0 (2020-10-25)
Added support for streamed uploads
Added support for multipart upload streaming
Added support for body-from-file upload streaming (http pie.dev/post @file).
Added --chunked to enable chunked transfer encoding
Added --multipart to allow multipart/form-data encoding for non-file --form requests as well.
Added support for preserving field order in multipart requests
Added --boundary to allow a custom boundary string for multipart/form-data requests.
Added support for combining cookies specified on the CLI and in a session file
Added out of the box SOCKS support with no extra installation
Added --quiet, -q flag to enforce silent behaviour.
Fixed the handling of invalid expires dates in Set-Cookie headers
Removed Tox testing entirely
2.2.0 (2020-06-18)
Added support for custom content types for uploaded files
Added support for $XDG_CONFIG_HOME
Added support for Set-Cookie-triggered cookie expiration
Added --format-options to allow disabling sorting, etc.
Added --sorted and --unsorted shortcuts for (un)setting all sorting-related --format-options.
Added --ciphers to allow configuring OpenSSL ciphers
Added netrc support for auth plugins. Enabled for --auth-type=basic and digest, 3rd parties may opt in
Fixed built-in plugins-related circular imports
2.1.0 (2020-04-18)
Added --path-as-is to bypass dot segment (/../ or /./) URL squashing
Changed the default Accept header value for JSON requests from application/json, */* to application/json, */*;q=0.5 to clearly indicate preference
Fixed --form file upload mixed with redirected stdin error handling
2.0.0 (2020-01-12)
Removed Python 2.7 support (EOL Jan 2020).
Added --offline to allow building an HTTP request and printing it but not actually sending it over the network.
Replaced the old collect-all-then-process handling of HTTP communication with one-by-one processing of each HTTP request or response as they become available. This means that you can see headers immediately, see what is being sent even if the request fails, etc.
Removed automatic config file creation to avoid concurrency issues.
Removed the default 30-second connection --timeout limit.
Removed Python’s default limit of 100 response headers.
Added --max-headers to allow setting the max header limit.
Added --compress to allow request body compression.
Added --ignore-netrc to allow bypassing credentials from .netrc.
Added https alias command with https:// as the default scheme.
Added $ALL_PROXY documentation.
Added type annotations throughout the codebase.
Added tests/ to the PyPi package for the convenience of downstream package maintainers.
Fixed an error when stdin was a closed fd.
Improved --debug output formatting.
|
|
|
|
3.3.2 (2021-04-05)
------------------
* SyncToAsync now takes an optional "executor" argument if you want to supply
your own executor rather than using the built-in one.
* async_to_sync and sync_to_async now check their arguments are functions of
the correct type.
* Raising CancelledError inside a SyncToAsync function no longer stops a future
call from functioning.
* ThreadSensitive now provides context hooks/override options so it can be
made to be sensitive in a unit smaller than threads (e.g. per request)
|
|
3.1.2
-----
Changes:
- Improvement: shell_plus, not save ipython history when using Jupyter
- Improvement: docs, fix spelling mistakes
- Improvement: tests, move to Github Actions instead of Travis
- Improvement: drop_test_database, delete all cloned test databases
- Improvement: setup.py, Added minimum Django>=2.2 version to PyPI package
- Improvement: shell_plus, fix --command globals / locals error
|
|
0.19.1
auth header parsing performance optimizations; Thanks to Paul McGuire
Use mock from the standard library on Python>=3.3
|
|
What’s new in 7.5
Pie chart panel visualization (beta)
Alerting for Loki
Loki label browser
Changed default HTTP method for new Prometheus data sources
Word highlighting for Elasticsearch
Better format definition for trace data
Paste in SSL certs for Postgres data source
Deprecation notice for some Azure Monitor queries
Cloudwatch data source enhancements
Increased API limit for CloudMonitoring Services
Tempo as a backend data source
|
|
|
|
3.12.4
Revert use of deque instead of list for tracking throttling .history. (Due to incompatibility with DjangoRedis cache backend.
3.12.3
Properly handle ATOMIC_REQUESTS when multiple database configurations are used.
Bypass COUNT query when LimitOffsetPagination is configured but pagination params are not included on the request.
Respect allow_null=True on DecimalField.
Allow title cased "Yes"/"No" values with BooleanField.
Add PageNumberPagination.get_page_number() method for overriding behavior.
Fixed rendering of timedelta values in OpenAPI schemas, when present as default, min, or max fields.
Render JSONFields with indentation in browsable API forms.
Remove unnecessary database query in admin Token views.
Raise validation errors when bools are passed to PrimaryKeyRelatedField fields, instead of casting to ints.
Don't include model properties as automatically generated ordering fields with OrderingFilter.
Use deque instead of list for tracking throttling .history.
|
|
|
|
now the pkg builds again on NetBSD-current.
|
|
Changes with nginx 1.19.9 30 Mar 2021
*) Bugfix: nginx could not be built with the mail proxy module, but
without the ngx_mail_ssl_module; the bug had appeared in 1.19.8.
*) Bugfix: "upstream sent response body larger than indicated content
length" errors might occur when working with gRPC backends; the bug
had appeared in 1.19.1.
*) Bugfix: nginx might not close a connection till keepalive timeout
expiration if the connection was closed by the client while
discarding the request body.
*) Bugfix: nginx might not detect that a connection was already closed
by the client when waiting for auth_delay or limit_req delay, or when
working with backends.
*) Bugfix: in the eventport method.
Changes with nginx 1.19.8 09 Mar 2021
*) Feature: flags in the "proxy_cookie_flags" directive can now contain
variables.
*) Feature: the "proxy_protocol" parameter of the "listen" directive,
the "proxy_protocol" and "set_real_ip_from" directives in mail proxy.
*) Bugfix: HTTP/2 connections were immediately closed when using
"keepalive_timeout 0"; the bug had appeared in 1.19.7.
*) Bugfix: some errors were logged as unknown if nginx was built with
glibc 2.32.
*) Bugfix: in the eventport method.
Changes with nginx 1.19.7 16 Feb 2021
*) Change: connections handling in HTTP/2 has been changed to better
match HTTP/1.x; the "http2_recv_timeout", "http2_idle_timeout", and
"http2_max_requests" directives have been removed, the
"keepalive_timeout" and "keepalive_requests" directives should be
used instead.
*) Change: the "http2_max_field_size" and "http2_max_header_size"
directives have been removed, the "large_client_header_buffers"
directive should be used instead.
*) Feature: now, if free worker connections are exhausted, nginx starts
closing not only keepalive connections, but also connections in
lingering close.
*) Bugfix: "zero size buf in output" alerts might appear in logs if an
upstream server returned an incorrect response during unbuffered
proxying; the bug had appeared in 1.19.1.
*) Bugfix: HEAD requests were handled incorrectly if the "return"
directive was used with the "image_filter" or "xslt_stylesheet"
directives.
*) Bugfix: in the "add_trailer" directive.
|
|
Now, we have php.d, so one just installs, and does not modify php.ini.
|
|
Upstream has only intended to reject python 2.x.
|
|
Application changes:
-add S, C, r.
Codebase changes:
-code refactor part II (more details can be found here).
-implement handlers for S, C and r.
|
|
Changes:
7.76.0
======
This release includes the following changes:
o cookies: Support multiple -b parameters
o curl: add --fail-with-body
o doh: add options to disable ssl verification
o http: add support to read and store the referrer header
o sasl: support SCRAM-SHA-1 and SCRAM-SHA-256 via libgsasl
o vtls: initial implementation of rustls backend
This release includes the following bugfixes:
o CVE-2021-22876: strip credentials from the auto-referer header field
o CVE-2021-22890: add 'isproxy' argument to Curl_ssl_get/addsessionid()
o asyn-ares: use consistent resolve error message
o BUG-BOUNTY: removed the cooperation mention
o build: delete unused feature guards
o build: fix --disable-dateparse
o build: fix --disable-http-auth
o build: remove all traces of USE_BLOCKING_SOCKETS
o c-hyper: Remove superfluous pointer check
o c-hyper: support automatic content-encoding
o CI/azure: disable test 433 on azure-ubuntu
o CI/azure: replace python-impacket with python3-impacket
o ci: stop building on freebsd-12-1
o cmake: fix import library name for non-MS compiler on Windows
o cmake: use CMAKE_INSTALL_INCLUDEDIR indirection
o cmake: support WinIDN
o config: fix building SMB with configure using Win32 Crypto
o config: fix detection of restricted Windows App environment
o configure: fail if --with-quiche is used and quiche isn't found
o configure: make AC_TRY_* into AC_*_IFELSE
o configure: make hyper opt-in, and fail if missing
o configure: only add OpenSSL paths if they are defined
o configure: provide Largefile feature for curl-config
o configure: remove use of deprecated macros
o configure: s/AC_HELP_STRING/AS_HELP_STRING
o cookies: Fix potential NULL pointer deref with PSL
o curl: set CURLOPT_NEW_FILE_PERMS if requested
o curl_easy_setopt.3: add curl_easy_option* functions to SEE ALSO
o curl_multibyte: always return a heap-allocated copy of string
o curl_multibyte: fall back to local code page stat/access on Windows
o Curl_timeleft: check both timeouts during connect
o curl_url_set.3: mention CURLU_PATH_AS_IS
o CURLOPT_QUOTE.3: clarify that libcurl doesn't parse what's sent
o docs/HTTP2: remove the outdated remark about multiplexing for the tool
o docs/Makefile.inc: format to be update-friendly
o docs: add CURLOPT_CURLU to 'See also' in curl_url_ functions
o docs: add missing Arg tag to --stderr
o docs: Add SSL backend names to CURL_SSL_BACKEND
o docs: clarify timeouts for queued transfers in multi API
o docs: Explain DOH transfers inherit some SSL settings
o docs: fix FILE example url in --metalink documentation
o docs: make gen.pl support *italic* and **bold**
o doh: Fix sharing user's resolve list with DOH handles
o doh: Inherit CURLOPT_STDERR from user's easy handle
o dynbuf: bump the max HTTP request to 1MB
o examples: Remove threaded-shared-conn.c due to bug
o file: Support unicode urls on windows
o ftp: add 'list_only' to the transfer state struct
o ftp: add 'prefer_ascii' to the transfer state struct
o FTP: allow SIZE to fail when doing (resumed) upload
o ftp: avoid SIZE when asking for a TYPE A file
o ftp: fix Codacy/cppcheck warning about null pointer arithmetic
o ftp: fix memory leak in ftp_done
o ftp: never set data->set.ftp_append outside setopt
o gen.pl: quote "bare" minuses in the nroff curl.1
o github: add torture-ftp for FTP-only torture testing
o gnutls: assume nettle crypto support
o gskit: correct the gskit_send() prototype
o hostip: fix build with sync resolver
o hostip: fix crash in sync resolver builds that use DOH
o hsts: remove unused defines
o http2: don't set KEEP_SEND when there's no more data to be sent
o http2: fail if connection terminated without END_STREAM
o http: cap body data amount during send speed limiting
o http: do not add a referrer header with empty value
o http: make 416 not fail with resume + CURLOPT_FAILONERRROR
o http: remove superfluous NULL assign
o http: strip default port from URL sent to proxy
o http: use credentials from transfer, not connection
o ldap: use correct memory free function
o lib1536: check ptr against NULL before dereferencing it
o lib1537: check ptr against NULL before dereferencing it
o lib: remove 'conn->data' completely
o libssh2: kdb_callback: get the right struct pointer
o libssh2:ssh_connect: clear session pointer after free
o memdebug: close debug logfile explicitly on exit
o mingw: enable using strcasecmp()
o multi: close the connection when h2=>h1 downgrading
o multi: do once-per-transfer inits in before_perform in DID state
o multi: rename the multi transfer states
o multi: update pending list when removing handle
o ngtcp2: adapt to the new recv_datagram callback
o ngtcp2: clarify calculation precedence
o ngtcp2: Fix build error due to change in ngtcp2_addr_init
o ngtcp2: sync with recent API updates
o openldap: avoid NULL pointer dereferences
o openssl: adapt to v3's new const for a few API calls
o openssl: ensure to check SSL_CTX_set_alpn_protos return values
o openssl: remove get_ssl_version_txt in favor of SSL_get_version
o openssl: set the transfer pointer for logging early
o OS400: update for CURLOPT_AWS_SIGV4
o parse_proxy: fix a memory leak in the OOM path
o pathhelp.pm: fix use of pwd -L in Msys environment
o projects: Update VS projects for OpenSSL 1.1.x
o quiche: fix build error: use 'int' for port number
o quiche: fix crash when failing to connect
o retry-all-errors.d: Explain curl errors versus HTTP response errors
o retry.d: Clarify transient 5xx HTTP response codes
o runtests.pl: add %TESTNUMBER variable to make copying tests more convenient
o runtests.pl: add a -P option to specify an external proxy
o runtests.pl: kill processes locking test log files
o setopt: error on CURLOPT_HTTP09_ALLOWED set true with Hyper
o test1188: change error to check for: --fail HTTP status
o test220/314: adjust to run with Hyper
o test304: header CRLF cleanup to work with Hyper
o test306: make it not run with Hyper
o tests: disable .curlrc in more environments
o tests: use %TESTNUMBER instead of fixed number
o tftp: remove the 3600 second default timeout
o time: enable 64-bit time_t in supported mingw environments
o tool_help: add missing argument for --create-file-mode
o tool_help: Increase space between option and description
o tool_operate: bail if set CURLOPT_HTTP09_ALLOWED returns error
o travis: add a rustls build
o travis: bump wolfssl to 4.7.0
o travis: only build wolfssl when needed
o travis: split "torture" into a separate "events" build
o travis: switch ngtcp2 build over to quictls
o travis: use ubuntu nghttp2 package instead of build our own
o url.c: use consistent error message for failed resolve
o url: fix memory leak if OOM in the HSTS handling
o url: fix possible use-after-free in default protocol
o urldata: don't touch data->set.httpversion at run-time
o urldata: fix build without HTTP and MQTT
o urldata: make 'actions[]' use unsigned char instead of int
o urldata: merge "struct DynamicStatic" into "struct UrlState"
o urldata: remove the 'rtspversion' field
o urldata: remove the _ORIG suffix from string names
o version.d: Add missing features to the features list
o wolfssl: don't store a NULL sessionid
|
|
Accidentally missed and part of the 2.32.0 update.
|
|
* Sync with www/firefox-87.0.
|
|
Changelog:
New
* You'll encounter less website breakage in Private Browsing and Strict
Enhanced Tracking Protection with SmartBlock, which provides stand-in
scripts so that websites load properly.
* To further protect your privacy, our new default HTTP Referrer policy will
trim path and query string information from referrer headers to prevent
sites from accidentally leaking sensitive user data.
* The "Highlight All" feature on Find in Page now displays tick marks
alongside your scrollbar that correspond to the location of matches found
on that page.
* We're proud to announce full support for macOS built-in screen reader,
VoiceOver.
* We've added a new locale: Silesian (szl)
Fixed
* We've fixed several significant accessibility issues:
+ Video controls now have visible focus styling and video and audio
controls are now keyboard navigable. (Bug 1681007)
+ HTML <meter> is now spoken by screen readers. (Bug 1460378)
+ Firefox now sets a useful initial focus in Add-ons Manager. (Bug 580537
)
+ Firefox will now fire a name/description change event when
aria-labelledby/describedby content changes. (Bug 493683)
* Various security fixes.
Changed
* To prevent user data loss when filling out forms, we've disabled the
Backspace key as a navigation shortcut for the back navigation button. To
re-enable the Backspace keyboard shortcut, you can change the about:config
preference browser.backspace_action to 0. You can also use the recommended
Alt + Left arrow (Command + Left arrow on Mac) shortcut instead.
Firefox keyboard shortcuts
* We've removed items from the Library menu that weren't used often or have
other access points in the browser: Synced tabs, Recent highlights, and
Pocket list.
* We've simplified the Help menu by reducing redundant items, such as those
that point to Firefox support pages that can also be accessed via the Get
Help item.
Enterprise
* Various bug fixes and new policies have been implemented in the latest
version of Firefox. You can see more details in the Firefox for Enterprise
87 Release Notes.
Developer
* Developer Information
* We've greatly simplified the Web Developer menu. Go to Application Menu >
Web Developer > Web Developer Tools to access Inspector, Web Console,
Debugger, Network Style Error, Performance, Storage Inspector,
Accessibility, and Application
* Developers can now use the Page Inspector to simulate prefers-color-scheme
media queries, without having to change the operating system to light or
dark mode.
* Developers can now use the Page Inspector to toggle the :target
pseudo-class for the currently selected element in addition to the
pseudo-classes that were previously supported: :hover, :active and :focus,
:focus-within, :focus-visible, and :visited.
* There is a number of Page Inspector improvements and bug fixes related to
inactive CSS rules:
+ The table-layout property is now marked as inactive for non-table
elements.
+ The scroll-padding properties (shorthand and longhand) are now marked
as inactive for non-scrollable elements.
+ The text-overflow property was previously incorrectly marked as
inactive for some overflow values.
Securiy fixes:
#CVE-2021-23981: Texture upload into an unbound backing buffer resulted in an
out-of-bound read
#CVE-2021-23982: Internal network hosts could have been probed by a malicious
webpage
#CVE-2021-23983: Transitions for invalid ::marker properties resulted in memory
corruption
#CVE-2021-23984: Malicious extensions could have spoofed popup information
#CVE-2021-23985: Devtools remote debugging feature could have been enabled
without indication to the user
#CVE-2021-23986: A malicious extension could have performed credential-less
same origin policy violations
#CVE-2021-23987: Memory safety bugs fixed in Firefox 87 and Firefox ESR 78.9
#CVE-2021-23988: Memory safety bugs fixed in Firefox 87
|
|
pkgsrc changes:
- Remove patch-Source_WTF_wtf_RAMSize.cpp: fallback method using sysconf(3) is
now used also on NetBSD
- patch-CMakeLists.txt migrated to Source/cmake/WebKitCommon.cmake: all
existent logic was migrated there
- Remove patch-Source_ThirdParty_ANGLE_adjust-angle-include-paths.sh: patched
file no longer present
- Add `-DENABLE_GAMEPAD=OFF' to disable gamepad support: needs libmanette not
yet packaged in pkgsrc
Changes:
2.32.0
======
- NPAPI plugins support have been removed.
- System font scaling factor is correctly applied now.
- New permission request API for MediaKeySystem access.
- New API to remove individual scripts/stylesheets using WebKitUserContentManager.
- Web inspector now shows detailed information about main loop frames.
- The minimum required GStreamer version is now 1.14.
- The GStreamer runtime is now initialized only when required.
- Improved platform support for WebAudio (WebAudio->MediaStream, Worklet, Multi-channel).
- Support for hardware-accelerated video rendering on i.MX8 platforms (using the NXP driver).
Updated in pkgsrc-wip by <cirnatdan> and me.
|
|
|
|
10 months of patches/updates.
|
|
|
|
* Sync with www/firefox78-78.9.0.
|
|
Changelog:
Security fixes:
#CVE-2021-23981: Texture upload into an unbound backing buffer resulted in an
out-of-bound read
#CVE-2021-23982: Internal network hosts could have been probed by a malicious
webpage
#CVE-2021-23984: Malicious extensions could have spoofed popup information
#CVE-2021-23987: Memory safety bugs fixed in Firefox 87 and Firefox ESR 78.9
|
|
|
|
pkgsrc changes:
---------------
* Add a patch to use the same go binary as the one used to build grafana.
The build.go program initially ran go which could be linked to any
installed go binary managed by pkg_alternatives.
upstream changes:
-----------------
7.4.5 (2021-03-18)
Bug fixes
o Security: Fix API permissions issues related to team-sync CVE-2021-28146,
CVE-2021-28147. (Enterprise)
o Security: Usage insights requires signed in users CVE-2021-28148.
(Enterprise)
o Security: Do not allow editors to incorrectly bypass permissions on the
default data source. CVE-2021-27962. (Enterprise)
|
|
upstream cheanges:
------------------
A lot of changes listed at https://github.com/scrapy/scrapy/blob/master/docs/news.rst
|
|
6.0.0 (2021-03-17)
No release note nor changelog. Here are quote from commit log.
* tests: force blocking I/O for Ruby 3.x
* http_request: drop unnecessary #clear call
* Allocate a new request for each client
* test/test_helper: only unlink redirected logs from parent
|
|
2.2.0 (2021-03-18)
* Add support for custom lexers (#187)
* Update Pygments to 2.8.1
|
|
The checksum for the go-spew package is missing from the go.sum file
for some reason.
|
|
|
|
upstream changes:
-----------------
2021-03-01 Florian Schlichting <fsfs@debian.org>
* release davical 1.1.10
* Update carddav/2042-REPORT-addressbook-query together with df6ff3a in AWL
2021-03-01 Andrew Ruthven <puck@catalyst.net.nz>
* Add a regression test for new invalid user result from FreeBusy
* Return a nicer error message if no user is found for Free/Busy via email
2021-02-09 Florian Schlichting <fsfs@debian.org>
* Listing External Calendars is part of the Administration menu and should be restricted to admins
* tighten $c->list_everyone to look for DAV::read privilege and actually block access to principals and collections
2020-05-05 Klaus M Pfeiffer <kmp+gitlab@kmp.or.at>
* add feature list_everyone (fixes #59)
2021-02-08 Florian Schlichting <fsfs@debian.org>
* CI: run interop tests from carddavclient by Michael Stilkerich <ms@mike2k.de>
* Add tests for AWLs "Fix param-filter that checks if a parameter is defined"
* Add test for AWLs "Fix param-filter for multi-value parameters with TYPE=T1,T2 format" and update 2044 accordingly
* Add tests for AWLs "Fix GetProperties: Select properties with group prefix"
* Add tests for AWLs "Fix: GetProperties must treat property names as case-insensitive"
2021-02-07 Andrew Ruthven <puck@catalyst.net.nz>
* Only return the fields that we need for the test
2021-02-06 Andrew Ruthven <puck@catalyst.net.nz>
* CI: Compress the Apache log files
* CI: Ensure DAViCal can write to log files
* CI: Turn on debug logging for all the test runs
* Include the UID of the card which caused us to hit the RRULE limit
* Enable debug logging in CI
* Only return what we're testing, makes it easier to understand regressions
* Add test for anyof
2021-02-05 Florian Schlichting <fsfs@debian.org>
* CI: do not clobber apache logs
* update 2038-REPORT-addressbook-query after AWL's param-filter: fix a typo / explode multivalue commit
2021-02-04 Florian Schlichting <fsfs@debian.org>
* correct test results after AWL merges of mstilkerich/awl-fix_abookquery_paramnotdef and mstilkerich/awl-fix_support_anyof_propfilter
* add two more reports testing an allof prop-filter and an anyof text-match prop-filter
* cardquery: ensure restriction to target collection remains in force even when we find that we need a post_filter step and thus throw away the SQL
* add a REPORT for a property with multiple values, not all of which match the is-not-defined filter (carddavclient's ParamNotDefinedSome test)
* add 4 VCARDs from carddavclient AddressbookQueryTest
2021-02-04 Andrew Ruthven <puck@catalyst.net.nz>
* Correctly exclude cards where TYPE is not set on TEL records.
* Fix the test result and hopefully make the description clearer
* I always get whitespace changes
* Add a bit more info about various suites, and how to time timezone
2021-02-03 Florian Schlichting <fsfs@debian.org>
* fix PHP8 deprecation warnings: "Required parameter X follows optional parameter Y"
2021-01-31 Jan Hicken <jan.hicken@posteo.de>
* Add default value for errcontext variable in error handler function
* Use brackets instead of curly braces for string offset access
2021-02-03 Florian Schlichting <fsfs@debian.org>
* CI: add build_buster_latestphp
2021-02-02 Florian Schlichting <fsfs@debian.org>
* CI: build and test on Debian unstable, then several stable releases relevant to our users
* Normalize "100 Continue" headers
2021-01-24 Andrew Ruthven <andrew@etc.gen.nz>
* Test case for awl-fix_abookquery_negated_propnotdef
2021-02-01 Andrew Ruthven <puck@catalyst.net.nz>
* Test case for negated values in awl-fix_abookquery_paramtextmatch
2020-07-22 Piotr Filip <6465816-piotrfilip@users.noreply.gitlab.com>
* fix: events with recurrence rule are sometimes counted one too many times in freebusy
* test: remove dependency on the current date
2021-01-25 Andrew Ruthven <andrew@etc.gen.nz>
* Update test results with new timezone data
2021-01-24 Andrew Ruthven <andrew@etc.gen.nz>
* Ignore zones.h and zones.tab
* To start with there are no timezones in a fresh database
* Make the runs deterministic
* Fix up update-tzdata.sh so it'll run
* Test case for awl-fix_abookquery_negated_propnotdef
* Test case for awl-fix_abookquery_paramtextmatch
* Test case for awl-fix_abookquery_paramtextmatch
* Add help option for regression tests
* Update some more results based on current regression tests
2021-01-23 Andrew Ruthven <puck@catalyst.net.nz>
* Add test secondary (or more) properties
2020-04-14 Florian Schlichting <fsfs@debian.org>
* gitlab-ci: use latest Debian stable (fixes #221)
|
|
1.0.14:
Bug fixes
|
|
0.12
Fixed a few bugs and added a few features.
Reformatted the code using isort and black.
Other, undocumented changes. Please help out.
|
|
Release 4.5.1
Removed unnecessary default in MP's depth field.
Release 4.5
Add support for custom primary key fields with custom names.
Add support for Python 3.9.
Add support for MSSQL 2019.
Add Code of conduct
Removed outdated Sqlite workaround code
Remove last remains of Python 2.7 code
Use Pytest-django and fixtures for testing
|
|
0.93.3:
Unknown changes
|
|
|
|
hackernews_tui is a Terminal UI to browse Hacker News written in Rust.
The application mainly consists of the following views:
-Story View-Front Page displaying a list of stories in front page of Hacker News
-Comment View` displaying a list of comments in a story
-Story Search View displaying a search bar and a list of stories matching the
search query.
|
