| Age | Commit message (Collapse) | Author | Files | Lines |
|---|
|
Changes in release 0.32.2:
* Fix auth handling for request-target of "*" (regressed since 0.31.x)
* Fix bindtextdomain() detection on OS X (Daniel Macks)
* Fix regeneration of docs in "make install" (Lonnie Abelbeck)
* Fixes for NetBSD build (Thomas Klausner)
|
|
|
|
This is meta gem (package) for Ruby on Rails 7.0.1.
|
|
7.0.1 (2021-01-06)
* No changes.
|
|
7.0.1 (2021-01-06)
* Fix ActionController::Parameters methods to keep the original logger
context when creating a new copy of the original object.
Yutaka Kamei
|
|
7.0.1 (2021-01-06)
* Fix button_to to work with a hash parameter as URL.
MingyuanQin
* Fix link_to with a model passed as an argument twice.
Alex Ghiculescu
|
|
|
|
|
|
Several versions skipped, check https://github.com/aio-libs/aiohttp/releases
for change log.
|
|
* Add szl locale.
* Sync with www/firefox-96.0.1.
|
|
Changelog:
Version 96.0.1, first offered to Release channel users on January 14, 2022
Fixed
* Addresses proxy rule exceptions not working on Windows systems when "Use
system proxy settings" is set (bug 1749501)
* Improvements to make the parsing of content-length headers more robust (bug
1749957)
Version 96.0, first offered to Release channel users on January 11, 2022
New
* We've made significant improvements in noise-suppression and
auto-gain-control as well as slight improvements in echo-cancellation to
provide you with a better overall experience.
* We've also significantly reduced main-thread load.
* Firefox will now default all cookies to having a SameSite=lax attribute
which helps defend against Cross-Site Request Forgery (CSRF) attacks.
* When printing, you can now choose to print only the odd/even pages.
Fixed
* On macOS, command-clicking links in Gmail now opens them in a new tab as
expected.
* Our newest release fixes an issue where video intermittently drops SSRC.
* It also fixes an issue where WebRTC downgrades screen sharing resolution to
provide you with a clearer browsing experience.
* Plus, we've fixed video quality degradation issues on certain sites.
* Detached video in fullscreen on macOS has been temporarily disabled to
avoid some issues with corruption, brightness changes, missing subtitles
and high cpu usage.
* Various security fixes
Security fixes:
#CVE-2022-22746: Calling into reportValidity could have lead to fullscreen
window spoof
#CVE-2022-22743: Browser window spoof using fullscreen mode
#CVE-2022-22742: Out-of-bounds memory access when inserting text in edit mode
#CVE-2022-22741: Browser window spoof using fullscreen mode
#CVE-2022-22740: Use-after-free of ChannelEventQueue::mOwner
#CVE-2022-22738: Heap-buffer-overflow in blendGaussianBlur
#CVE-2022-22737: Race condition when playing audio files
#CVE-2021-4140: Iframe sandbox bypass with XSLT
#CVE-2022-22750: IPC passing of resource handles could have lead to sandbox
bypass
#CVE-2022-22749: Lack of URL restrictions when scanning QR codes
#CVE-2022-22748: Spoofed origin on external protocol launch dialog
#CVE-2022-22745: Leaking cross-origin URLs through securitypolicyviolation
event
#CVE-2022-22744: The 'Copy as curl' feature in DevTools did not fully escape
website-controlled data, potentially leading to command injection
#CVE-2022-22747: Crash when handling empty pkcs7 sequence
#CVE-2022-22736: Potential local privilege escalation when loading modules from
the install directory.
#CVE-2022-22739: Missing throttling on external protocol launch dialog
#CVE-2022-22751: Memory safety bugs fixed in Firefox 96 and Firefox ESR 91.5
#CVE-2022-22752: Memory safety bugs fixed in Firefox 96
|
|
|
|
|
|
Now devel/ruby-fiddle is part of ruby*-base package.
Bump PKGREVISION.
XXX: Is this package still supported?
|
|
|
|
|
|
|
|
Version 21.12.1
* Only display MOTD on startup
* Add config.update support for all config values
* Ignore name argument in Python 3.7
Version 21.12.0
Features
* Allow early Blueprint registrations to still apply later added objects
* Noisy exceptions - force logging of all exceptions
* Optional uvloop by configuration
* Vhost support using multiple TLS certificates
* Change signal routing for increased consistency
BREAKING CHANGE: If you were manually routing signals there is a breaking change. The signal router's get is no longer 100% determinative. There is now an additional step to loop thru the returned signals for proper matching on the requirements. If signals are being dispatched using app.dispatch or bp.dispatch, there is no change.
* Add contextual exceptions
* Increase join concat performance
* Restructure of CLI and application state with new displays and more command parity with app.run
* Add route context at definition time
* Named tasks and new API for managing background tasks
* On app auto-reload, provide insight of changed files
* Auto extend application with Sanic Extensions if it is installed, and provide first class support for accessing the extensions
* Builtin signals changed to Enum
* Support additional config implementation use case
* Refactor environment variable hydration logic
* Prevent sending multiple or mixed responses on a single request
* Custom type casting on environment variables
* Make all deprecation notices consistent
* Allow underscore to start instance names
Bugfixes
* Replace assignation by typing for websocket_handshake
* Fix IPv6 display in startup logs
* Dispatch http.lifecyle.response from exception handler
Deprecations and Removals
* Removal of deprecated items
Sanic and Blueprint may no longer have arbitrary properties attached to them
Sanic and Blueprint forced to have compliant names
alphanumeric + _ + -
must start with letter or _
load_env keyword argument of Sanic
sanic.exceptions.abort
sanic.views.CompositionView
sanic.response.StreamingHTTPResponse
NOTE: the stream() response method (where you pass a callable streaming function) has been deprecated and will be removed in v22.6. You should upgrade all streaming responses to the new style: https://sanicframework.org/en/guide/advanced/streaming.html#response-streaming
* Remove app instance from Config for error handler setting
Developer infrastructure
* Change dev install command
* Change codeclimate complexity threshold from 5 to 10
* Update host test function names so they are not overwritten
* Fail CI on error
* Do not run tests for draft PRs
* Remove paths from coverage checks
* Cleanup ports on tests
Improved Documentation
* Cleanup typos and fix language
Miscellaneous
* Add Python 3.10 support
* Add/correct missing type annotations
* Fix examples to use modern implementations
Version 21.9.2
* Make HTTP connections start in IDLE stage, avoiding delays and error messages
* More consistent config setting with post-FALLBACK_ERROR_FORMAT apply
Version 21.9.1
* Allow non-conforming ErrorHandlers
Version 21.9.0
Features
* Complete overhaul of I/O to websockets
* Add new 17 signals into server and request lifecycles
* Smarter auto fallback formatting upon exception
* Introduce implementation for copying a Blueprint
* Accept header parsing
* Log remote address if available
* Add convenience methods to BP groups
* Add default messages to SanicExceptions
* Type annotation convenience for annotated handlers with path parameters
* Allow Falsey (but not-None) responses from route handlers
* Add exception decorator to Blueprint Groups
* Explicit static directive for serving file or dir (ex: static(..., resource_type="file"))
* Close HTTP loop when connection task cancelled
Bugfixes
* Fix the handling of the end of a chunked request
* Resolve unexpected error handling on static requests
* Make blueprint-based exceptions attach and trigger in a more intuitive manner
* Fixed for handling exceptions of asgi app call
* Fix bug where ws exceptions not being logged
* Cleaner closing of tasks by using abort() in strategic places to avoid dangling sockets
* Fix logging of auto-reload status in debug mode
* Account for BP with exception handler but no routes
Developer infrastructure
* HTTP unit tests with raw client
* Switch to codeclimate
* Try Reopening Windows Tests
* Refactor HttpProtocol into a base class
* Refactor server.py into multi-file module
Miscellaneous
* Remove Duplicated Dependencies and PEP 517 Support
* Type annotation changes
|
|
Version 21.12.0
Update python version testing
Add return type to parse_date
Version 0.7.2
Resolve bug where multiple nested path endpoints where one of the definitions contains multiple methods resulted in 404
|
|
Feature:
- add cli support
- add cli level argument
- parse cli arguments in the config
- override log level
- add structopt crate for parsing cli arguments
- add cli struct
- implement search_query argument
- implement article_id argument
Bug Fixes:
- ui:
- fix horizontal link focus
- fix article view not taking focus
- fix link focus when selecting an header
Documentation:
- readme:
- change usage information
|
|
|
|
The base GCC 7.5 on NetBSD 9.x is missing a C++17 feature expected by
this package now. The pkgsrc GCC 7.5 includes that feature, but the
build still fails later on with another unmet expectation. So GCC 8 is
now the minimum viable version with which to build this package.
This involves a bit of a kludge to deal with how GCC from pkgsrc ends
up linking. This is obviously not ideal, and is part of a broader
topic that needs revisiting. The present goal is to try and stabilize
the 2021Q4 branch.
Tested on 9.2_STABLE/amd64 with www/badwolf. Addresses PR pkg/56604.
|
|
Changes since 0.2.0:
## What's added?
- feat: Add additional info in view cmd #209 @ankitpokhrel
- feat: Show linked issues when viewing #219 @ankitpokhrel
- feat: Show latest comment when viewing #220 @ankitpokhrel
- feat: Add an option to load N comments when viewing issue #226 @ankitpokhrel
## What's fixed?
- fix: Allow config generations even when no boards #216 @sushilkg
- fix: Off by one error in wiki parser #224 @ankitpokhrel
- fix: Language support for Jira cloud #234 @ankitpokhrel
- fix(docs): Optional COMMENT_BODY #236 @realtime-neil
- fix: Respect BROWSER env #253 @ankitpokhrel
## Other notable changes
- cfg: A new field handle is added in issue.types section as part of #234
- build: Reproducible builds #244 #245 @realtime-neil
- build: Initialize version using runtime build info #249 @ankitpokhrel
Full Changelog: https://github.com/ankitpokhrel/jira-cli/compare/v0.2.0...v0.3.0
To all direct/indirect contributors and backers, Thank you
|
|
|
|
|
|
0.19.1
Fixed
- Allow first path segments containing colons
- Fix license classifier
- Fix typos
|
|
|
|
|
|
|
|
|
|
|
|
|
|
Changes since 5.8:
5.8.3
4 security issues affect WordPress versions between 3.7 and 5.8. If you haven't yet updated to 5.8, all WordPress versions since 3.7 have also been updated to fix the following security issues:
* Props to Karim El Ouerghemmi and Simon Scannell of SonarSource for disclosing an issue with stored XSS through post slugs.
* Props to Simon Scannell of SonarSource for reporting an issue with Object injection in some multisite installations.
* Props to ngocnb and khuyenn from GiaoHangTietKiem JSC for working with Trend Micro Zero Day Initiative on reporting a SQL injection vulnerability in WP_Query.
* Props to Ben Bidner from the WordPress security team for reporting a SQL injection vulnerability in WP_Meta_Query.
More info on https://wordpress.org/support/wordpress-version/version-5-8-3/
5.8.2
1 security update and fixed 2 bugs.
More info on https://wordpress.org/support/wordpress-version/version-5-8-2/
5.8.1
3 security issues affects WordPress versions between 5.4 and 5.8. If you haven't yet updated to 5.8, all WordPress versions since 5.4 have also been updated to fix the following security issues:
* Props @mdawaffe, member of the WordPress Security Team for their work fixing a data exposure vulnerability within the REST API.
* Props to Michal Bentkowski of Securitum for reporting a XSS vulnerability in the block editor.
* The Lodash library has been updated to version 4.17.21 in each branch to incorporate upstream security fixes.
In addition to these issues, the security team would like to thank the following people for reporting vulnerabilities during the WordPress 5.8 beta testing period, allowing them to be fixed prior to release:
* Props Evan Ricafort for reporting a XSS vulnerability in the block editor discovered during the 5.8 release's beta period.
* Props Steve Henty for reporting a privilege escalation issue in the block editor.
More info on https://wordpress.org/support/wordpress-version/version-5-8-1/
|
|
|
|
|
|
|
|
2.5.0 (2020-07-12)
Fixed
* Socket adapter will now retry writing to socket rather than throw an
exception if `fwrite()` call returns zero written bytes
https://github.com/pear/HTTP_Request2/issues/23
Changed
* Socket adapter will use only TLS 1.2 and TLS 1.3 (the latter is
available on PHP 7.4+)
* Upgraded tests for PHPUnit 9 compatibility, PHPUnit Polyfills
package is used to run them on PHP 5.6 to PHP 8
* Test suite now runs on Github Actions rather than on Travis
* Updated Public Suffix List
2.5.1 (2021-01-06)
* The package runs under PHP 8.1 without `E_DEPRECATED` messages
https://github.com/pear/HTTP_Request2/issues/25
* Updated Public Suffix List
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
setuptools has this as default when --root is used (since version 0.6a11).
|
|
New in varnish 7:
- switch from PCRE to PCRE2
- RFC8941 Structured Fields
- increased default values for memory settings
- bit flags in ACLs
|
|
|
|
7.81.0
Changes:
mime: use percent-escaping for multipart form field and file names
Bugfixes:
asyn-ares: ares_getaddrinfo needs no happy eyeballs timer
azure: make the "w/o HTTP/SMTP/IMAP" build disable SSL proper
BINDINGS: add cURL client for PostgreSQL
BINDINGS: add one from Everything curl and update a link
checksrc: detect more kinds of NULL comparisons we avoid
CI: build examples for additional code verification
CI: bump job to use mbedtls 3.1.0
cmake: don't set _USRDLL on a static Windows build
cmake: prevent dev warning due to mismatched arg
cmake: private identifiers use CURL_ instead of CMAKE_ prefix
config.d: update documentation to match the path search
configure: add -lm to configure for rustls build.
configure: better diagnostics if hyper is built wrong
configure: don't enable TLS when --without-* flags are used
configure: fix runtime-lib detection on macOS
curl.1: require "see also" for every documented option
curl: improve error message for --head with -J
curl_easy_cleanup.3: remove from multi handle first
curl_easy_escape.3: call curl_easy_cleanup in example
curl_easy_unescape.3: call curl_easy_cleanup in example
curl_multi_init.3: fix EXAMPLE formatting
curl_multi_perform/socket_action.3: clarify what errors mean
curl_share_setopt.3: split out options into their own manpages
CURLOPT_STDERR.3: does not work with libcurl as a win32 DLL
digest: compute user:realm:pass digest w/o userhash
docs/checksrc: Add documentation for STRERROR
docs/cmdline-opts: do not say "protocols: all"
docs/examples: workaround broken -Wno-pedantic-ms-format
docs/HTTP3: describe how to setup a h3 reverse-proxy for testing
docs/INSTALL.md: typo fix : added missing "get" verb
docs/URL-SYNTAX.md: space is not fine in a given URL
docs: add known bugs list to HTTP3.md
docs: address proselint nits
docs: consistent manpage SYNOPSIS
docs: fix dead links, remove ECH.md
docs: fix typo in OpenSSL 3 build instructions
docs: Update the Reducing Size section
example/progressfunc: remove code for old libcurls
examples/multi-single.c: remove WAITMS()
FAQ: typo fix : "yout" ➤ "your"
ftp: disable warning 4706 in MSVC
gen.pl: improve example output format
github workflow: add wolfssl (removed from zuul)
github/workflows: add mbedtls and mbedtls-clang (removed from zuul)
gtls: check return code for gnutls_alpn_set_protocols
hash: lazy-alloc the table in Curl_hash_add()
http2:set_transfer_url() return early on OOM
HTTP3: update quiche build instructions
http: enable haproxy support for hyper backend
http: Fix CURLOPT_HTTP200ALIASES
http_proxy: don't close the socket (too early)
insecure.d: detail its use for SFTP and SCP as well
insecure.d: expand and clarify
libcurl-multi.3: "SOCKS proxy handshakes" are not blocking
libcurl-security.3: mention address and URL mitigations
libssh2: fix error message for sha256 mismatch
libtest: avoid "assignment within conditional expression"
lift: ignore is a deprecated config option, use ignoreRules
linkcheck.yml: add CI job that checks markdown links
m4/curl-compilers: tell clang -Wno-pointer-bool-conversion
Makefile.m32: rename -winssl option to -schannel and tidy up
mbedTLS: add support for CURLOPT_CAINFO_BLOB
mbedtls: fix CURLOPT_SSLCERT_BLOB
mbedtls: fix private member designations for v3.1.0
misc: remove unused doh flags when CURL_DISABLE_DOH is defined
misc: s/e-mail/email
multi: cleanup the socket hash when destroying it
multi: handle errors returned from socket/timer callbacks
multi: shut down CONNECT in Curl_detach_connnection
netrc.d: edit the .netrc example to look nicer
ngtcp2: verify the server cert on connect (quictls)
ngtcp2: verify the server certificate for the gnutls case
nss:set_cipher don't clobber the cipher list
openldap: implement STARTTLS
openldap: process search query response messages one by one
openldap: several minor improvements
openldap: simplify ldif generation code
openssl: check the return value of BIO_new()
openssl: define HAVE_OPENSSL_VERSION for OpenSSL 1.1.0+
openssl: remove `RSA_METHOD_FLAG_NO_CHECK` handling if unavailable
openssl: remove usage of deprecated `SSL_get_peer_certificate`
openssl: use non-deprecated API to read key parameters
page-footer: add a mention of how to report bugs to the man page
page-footer: document more environment variables
request.d: refer to 'method' rather than 'command'
retry-all-errors.d: make the example complete
runtests: make the SSH library a testable feature
rustls: read of zero bytes might be okay
rustls: remove comment about checking handshaking
rustls: remove incorrect EOF check
sha256/md5: return errors when init fails
socks5: use appropriate ATYP for numerical IP address host names
test1156: enable for hyper
test1156: fixup the stdout check for Windows
test1525: tweaked for hyper
test1526: enable for hyper
test1527: enable for hyper
test1528: enable for hyper
test1554: adjust for hyper
test1556: adjust for hyper
test302[12]: run only with the libssh2 backend
test661: enable for hyper
tests/CI.md: add more information on CI environments
tests/data/test302[12]: fix MSYS2 path conversion of hostpubsha256
tftp: mark protocol as not possible to do over CONNECT
tool_findfile: updated search for a file in the homedir
tool_operate: only set SSH related libcurl options for SSH URLs
tool_operate: warn if too many output arguments were found
url.c: fix the SIGPIPE comment for Curl_close
url: check ssl_config when re-use proxy connection
url: reduce ssl backend count for CURL_DISABLE_PROXY builds
urlapi: accept port number zero
urlapi: if possible, shorten given numerical IPv6 addresses
urlapi: provide more detailed return codes
urlapi: reject short file URLs
version_win32: Check build number and platform id
vtls/rustls: adapt to the updated rustls_version proto
writeout: fix %{http_version} for HTTP/3
x509asn1: return early on errors
zuul.d: update rustls-ffi to version 0.8.2
zuul: fix quiche build pointing to wrong Cargo
|
|
0.21.3
Fixed
* Fix streaming uploads using `SyncByteStream` or `AsyncByteStream`. Regression in 0.12.2.
|
|
1.26.8 (2022-01-07)
-------------------
* Added extra message to``urllib3.exceptions.ProxyError`` when urllib3 detects that
a proxy is configured to use HTTPS but the proxy itself appears to only use HTTP.
* Added a mention of the size of the connection pool when discarding a connection due to the pool being full.
* Added explicit support for Python 3.11.
* Deprecated the ``Retry.MAX_BACKOFF`` class property in favor of ``Retry.DEFAULT_MAX_BACKOFF``
to better match the rest of the default parameter names. ``Retry.MAX_BACKOFF`` is removed in v2.0.
* Changed location of the vendored ``ssl.match_hostname`` function from ``urllib3.packages.ssl_match_hostname``
to ``urllib3.util.ssl_match_hostname`` to ensure Python 3.10+ compatibility after being repackaged
by downstream distributors.
* Fixed absolute imports, all imports are now relative.
|
