Age | Commit message (Collapse) | Author | Files | Lines |
|
There are many changes, including API-breaking ones. Full details in the
CHANGES.md file included in the distribution.
|
|
Upstream changes are minor bugfixes and additions.
|
|
This release includes the following bugfixes:
o altsvc: fix host name matching for trailing dots [31]
o cirrus: Update to FreeBSD 12.3 [24]
o cirrus: Use pip for Python packages on FreeBSD [23]
o conn: fix typo 'connnection' -> 'connection' in two function names [1]
o cookies: make bad_domain() not consider a trailing dot fine [26]
o curl: free resource in error path [3]
o curl: guard against size_t wraparound in no-clobber code [4]
o CURLOPT_DOH_URL.3: mention the known bug [19]
o CURLOPT_HSTS*FUNCTION.3: document the involved structs as well [20]
o CURLOPT_SSH_AUTH_TYPES.3: fix the default [18]
o data/test376: set a proper name
o GHA/mbedtls: enabled nghttp2 in the build [11]
o gha: build msh3 [5]
o gskit: fixed bogus setsockopt calls [17]
o gskit: remove unused function set_callback [2]
o hsts: ignore trailing dots when comparing hosts names [28]
o HTTP-COOKIES: add missing CURLOPT_COOKIESESSION [40]
o http: move Curl_allow_auth_to_host() [9]
o http_proxy/hyper: handle closed connections [34]
o hyper: fix test 357 [32]
o Makefile: fix "make ca-firefox" [37]
o mbedtls: bail out if rng init fails [14]
o mbedtls: fix compile when h2-enabled [12]
o mbedtls: fix some error messages
o misc: use "autoreconf -fi" instead buildconf [22]
o msh3: get msh3 version from MsH3Version [6]
o msh3: print boolean value as text representation [10]
o msh3: psss remote_port to MsH3ConnectionOpen [7]
o ngtcp2: add ca-fallback support for OpenSSL backend [35]
o nss: return error if seemingly stuck in a cert loop [30]
o openssl: define HAVE_SSL_CTX_SET_EC_CURVES for libressl [8]
o post_per_transfer: remove the updated file name [27]
o sectransp: bail out if SSLSetPeerDomainName fails [33]
o tests/server: declare variable 'reqlogfile' static [39]
o tests: fix markdown formatting in README [38]
o test{898,974,976}: add 'HTTP proxy' keywords [16]
o tls: check more TLS details for connection reuse [25]
o url: check SSH config match on connection reuse [21]
o urlapi: address (harmless) UndefinedBehavior sanitizer warning [15]
o urlapi: reject percent-decoding host name into separator bytes [29]
o x509asn1: make do_pubkey handle EC public keys [13]
|
|
more dependencies or distfiles.
|
|
|
|
0.6.3
- Clean up docs and typings
|
|
This release only includes bug fixes.
|
|
Also, tweak CONFLICTS.
Bump PKGREVISION.
|
|
|
|
|
|
|
|
|
|
|
|
No change except version.
|
|
## Rails 7.0.2.4 (April 26, 2022) ##
* Allow Content Security Policy DSL to generate for API responses.
*Tim Wade*
|
|
## Rails 7.0.2.4 (April 26, 2022) ##
* Fix and add protections for XSS in `ActionView::Helpers` and `ERB::Util`.
Escape dangerous characters in names of tags and names of attributes in the
tag helpers, following the XML specification. Rename the option
`:escape_attributes` to `:escape`, to simplify by applying the option to the
whole tag.
*Álvaro Martín Fraguas*
|
|
No change except version.
|
|
## Rails 6.1.5.1 (April 26, 2022) ##
* No changes.
## Rails 6.1.5 (March 09, 2022) ##
* The Action Cable client now ensures successful channel subscriptions:
* The client maintains a set of pending subscriptions until either
the server confirms the subscription or the channel is torn down.
* Rectifies the race condition where an unsubscribe is rapidly followed
by a subscribe (on the same channel identifier) and the requests are
handled out of order by the ActionCable server, thereby ignoring the
subscribe command.
*Daniel Spinosa*
* Truncate broadcast logging messages.
*J Smith*
|
|
## Rails 6.1.5.1 (April 26, 2022) ##
* Allow Content Security Policy DSL to generate for API responses.
*Tim Wade*
## Rails 6.1.5 (March 09, 2022) ##
* Fix `content_security_policy` returning invalid directives.
Directives such as `self`, `unsafe-eval` and few others were not
single quoted when the directive was the result of calling a lambda
returning an array.
```ruby
content_security_policy do |policy|
policy.frame_ancestors lambda { [:self, "https://example.com"] }
end
```
With this fix the policy generated from above will now be valid.
*Edouard Chin*
* Update `HostAuthorization` middleware to render debug info only
when `config.consider_all_requests_local` is set to true.
Also, blocked host info is always logged with level `error`.
Fixes #42813.
*Nikita Vyrko*
* Dup arrays that get "converted".
Fixes #43681.
*Aaron Patterson*
* Don't show deprecation warning for equal paths.
*Anton Rieder*
* Fix crash in `ActionController::Instrumentation` with invalid HTTP formats.
Fixes #43094.
*Alex Ghiculescu*
* Add fallback host for SystemTestCase driven by RackTest.
Fixes #42780.
*Petrik de Heus*
* Add more detail about what hosts are allowed.
*Alex Ghiculescu*
|
|
## Rails 6.1.5.1 (April 26, 2022) ##
* Fix and add protections for XSS in `ActionView::Helpers` and `ERB::Util`.
Escape dangerous characters in names of tags and names of attributes in the
tag helpers, following the XML specification. Rename the option
`:escape_attributes` to `:escape`, to simplify by applying the option to the
whole tag.
*Álvaro Martín Fraguas*
## Rails 6.1.5 (March 09, 2022) ##
* `preload_link_tag` properly inserts `as` attributes for files with `image` MIME
types, such as JPG or SVG.
*Nate Berkopec*
* Add `autocomplete="off"` to all generated hidden fields.
Fixes #42610.
*Ryan Baumann*
* Fix `current_page?` when URL has trailing slash.
This fixes the `current_page?` helper when the given URL has a trailing slash,
and is an absolute URL or also has query params.
Fixes #33956.
*Jonathan Hefner*
|
|
No change except version.
|
|
## Rails 6.0.4.8 (April 26, 2022) ##
* Allow Content Security Policy DSL to generate for API responses.
*Tim Wade*
|
|
## Rails 6.0.4.8 (April 26, 2022) ##
* Fix and add protections for XSS in `ActionView::Helpers` and `ERB::Util`.
Escape dangerous characters in names of tags and names of attributes in the
tag helpers, following the XML specification. Rename the option
`:escape_attributes` to `:escape`, to simplify by applying the option to the
whole tag.
*Álvaro Martín Fraguas*
|
|
No change except version.
|
|
## Rails 5.2.7.1 (April 26, 2022) ##
* Allow Content Security Policy DSL to generate for API responses.
*Tim Wade*
## Rails 5.2.7 (March 10, 2022) ##
* No changes.
|
|
## Rails 5.2.7.1 (April 26, 2022) ##
* Fix and add protections for XSS in `ActionView::Helpers` and `ERB::Util`.
Escape dangerous characters in names of tags and names of attributes in the
tag helpers, following the XML specification. Rename the option
`:escape_attributes` to `:escape`, to simplify by applying the option to the
whole tag.
*Álvaro Martín Fraguas*
## Rails 5.2.7 (March 10, 2022) ##
* No changes.
|
|
# bslib 0.3.1
## New features
* Upgraded Bootstrap 5 (i.e., `bs_theme(version = 5)`) from 5.0.2 to
5.1.0 (#365)
## Bug fixes
* Closed rstudio/shiny#3519: `nav_menu()` (i.e.,
`shiny::navbarMenu()`) wasn't producing an `.active` class on it's
`.dropdown` container properly. (#372)
# bslib 0.3.0
## Breaking changes
* Closed rstudio/rmarkdown#2154: `{magrittr}`'s pipe operator (`%>%`)
is no longer re-exported by `{bslib}`. Either `library(magrittr)` to
make `%>%` available and/or use use R 4.1's pipe operator (`|>`).
## New features
* Closed #82: Added support for Bootstrap 5 (via `bs_theme(version =
5)`). Bootstrap 4 remains the default in this release, but the next
release, the default will likely change to Bootstrap 5.
## Bug fixes
* Closed #6: rmarkdown's .tabset-fade class now works with Bootstrap
4+ since legacy use of .nav .fade is now officially supported in
Bootstrap 4+. (#325)
|
|
|
|
0.6.2
Merged PRs
- Fix documentation generation
0.6.1
Merged PRs
- [pre-commit.ci] pre-commit autoupdate
- Add error_on_interrupt trait
- Fix typo
- Add on_cell_executed hook
|
|
5.4.0
=====
* Add project URLs to ``setup.py``
* Fix import in ``nbformat.current``
* Add ``mypy`` and typings support
* Improve CI
|
|
0.14.0
What's Changed
docs: update missed example.com reference by @danielgtaylor in #114
Password prompt when user defined but not password by @kpetremann in #116
api: add show and add missing sync documentation by @kpetremann in #117
feat: render Markdown using glamour by @danielgtaylor in #118
docs: various updates & config examples by @danielgtaylor in #119
chore: adding some forgotten files by @danielgtaylor in #120
fix: build on windows by @danielgtaylor in #121
0.13.3
What's Changed
docs/configuration.md: Clarify equivalent commands by @waldyrious in #109
fix: formatting, simplify dates by @danielgtaylor in #110
fix: base64 handling of []byte and raw mode on structured input by @danielgtaylor in #111
fix: combine all links for paginated responses by @danielgtaylor in #112
docs: update guide & other docs by @danielgtaylor in #113
0.13.2
What's Changed
docs: add anatomy of an openapi-powered cli command info by @danielgtaylor in #100
docs: add comparison page by @danielgtaylor in #101
Docs updates by @danielgtaylor in #102
fix: detect text/yaml response content type by @danielgtaylor in #103
fix: add basic build time to dev --version by @danielgtaylor in #104
fix: do not use scientific notation for large integers by @danielgtaylor in #105
fix: do not panic on empty image by @danielgtaylor in #106
fix: prevent escaping JSON for browsers by @danielgtaylor in #107
fix: find HAL links in array responses by @danielgtaylor in #108
|
|
|
|
xh is a friendly and fast tool for sending HTTP requests. It reimplements as
much as possible of HTTPie's, https://httpie.io/ excellent design, with a focus
on improved performance.
|
|
Version 1.10.1
--------------
- A ``GoogleCloudStorageCache`` backend has been added to the user contributed
caching backends.
- Fix a regression introduced in the last release which broke all applications
subclassing the ``Cache`` class.
- Add test_generic_get_bytes test case.
- Various improvements and fixes.
|
|
# diffviewer 0.1.1
* The diffviewer widget previously ignored some very minor pixel differences,
but now it will show every difference (#9, #11).
|
|
|
|
3.5.1 (2022-04-30)
------------------
* sync_to_async in thread-sensitive mode now works corectly when the
outermost thread is synchronous
|
|
Remove unused includes, fix dependencies where it's not included.
|
|
This was tested on NetBSD-9.2/macppc
Patches submitted upstream at
https://github.com/wicknix/Arctic-Fox/pull/101
|
|
0.4.7 -> 0.4.8 broke this without notice, but the only user in
pkgsrc, calibre, is already restricted to python 3.x
|
|
|
|
Drupal is a free web Content Management System (CMS) that allows an
individual or a community of users to easily publish, manage and organize
a wide variety of content on a website.
|
|
Upstream changes:
Drupal 7.89, 2022-03-02
-----------------------
- Bug fixes for PHP 8.1
- Fix tests for PostgreSQL
Drupal 7.88, 2022-02-15
-----------------------
- Fixed security issues:
- SA-CORE-2022-003
Drupal 7.87, 2022-01-19
-----------------------
- Fix regression caused by jQuery UI position() backport
|
|
shiny 1.7.1
===========
## Bug Fixes
* Closed #3516: Fix regression in repeated calls to `appendTab()` when
`navbarMenu()` is already present within a
`tabsetPanel()`/`navbarPage()`. (#3518)
* Re-arranged conditions for testthat 1.0.0 compatibility. (#3512)
shiny 1.7.0
===========
## Full changelog
### Breaking changes
* The `format` and `locale` arguments to `sliderInput()` have been
removed. They have been deprecated since 0.10.2.2 (released on
2014-12-08).
* Closed #3403: `insertTab()`'s `position` parameter now defaults to
`"after"` instead of `"before"`. This has the benefit of allowing us
to fix a bug in positioning when `target = NULL`, but has the
drawback of changing the default behavior when `target` is not
`NULL`. (#3404)
### New features and improvements
* Bootstrap 5 support. (#3410 and rstudio/bslib#304)
* As explained
[here](https://rstudio.github.io/bslib/index.html#basic-usage), to
opt-in to Bootstrap 5, provide `bslib::bs_theme(version = 5)` to a
page layout function with a `theme` argument (e.g., `fluidPage()`,
`navbarPage()`, etc).
* Closed #3322, #3313, #1823, #3321, #3320, #1928, and #2310: Various
improvements to `navbarPage()`, `tabsetPanel()`, `tabPanel()`,
`navbarMenu()`, etc. Also, these functions are now powered by the
`{bslib}` package's new `nav()` API (consider using `{bslib}`'s API
to create better looking and more fully featured navs). (#3388)
* All uses of `list(...)` have been replaced with
`rlang::list2(...)`. This means that you can use trailing `,`
without error and use rlang's `!!!` operator to "splice" a list of
argument values into `...`. We think this'll be particularly useful
for passing a list of `tabPanel()` to their consumers (i.e.,
`tabsetPanel()`, `navbarPage()`, etc). For example, `tabs <-
list(tabPanel("A", "a"), tabPanel("B", "b"));
navbarPage(!!!tabs)`. (#3315 and #3328)
* `installExprFunction()` and `exprToFunction()` are now able to
handle quosures when `quoted = TRUE`. So `render`-functions which
call these functions (such as with `htmlwidgets`) can now understand
quosures. Users can also use `rlang::inject()` to unquote a quosure
for evaluation. This also means that `render` function no longer
need `env` and `quoted` parameters; that information can be embedded
into a quosure which is then passed to the `render` function. Better
documentation was added for how to create `render`
functions. (#3472)
* `icon(lib="fontawesome")` is now powered by the `{fontawesome}`
package, which will make it easier to use the latest FA icons in the
future (by updating the `{fontawesome}` package). (#3302)
* Closed #3397: `renderPlot()` new uses `ggplot2::get_alt_text()` to inform an `alt` text default (for `{ggplot2}` plots). (#3398)
* `modalDialog()` gains support for `size = "xl"`. (#3410)
* Addressed #2521: Updated the list of TCP ports that will be rejected
by default in runapp.R, adding 5060, 5061 and 6566. Added
documentation describing the port range (3000:8000) and which ports
are rejected. (#3456)
### Other improvements
* Shiny's core JavaScript code was converted to TypeScript. For the
latest development information, please see the [README.md in
`./srcts`](https://github.com/rstudio/shiny/tree/master/srcts). (#3296)
* Switched from `digest::digest()` to `rlang::hash()` for hashing. (#3264)
* Switched from internal `Stack` class to `fastmap::faststack()`, and
used `fastmap::fastqueue()`. (#3176)
* Some long-deprecated functions and function parameters were
removed. (#3137)
### Bug fixes
* Closed #3345: Shiny now correctly renders
`htmltools::htmlDependency()`(s) with a `list()` of `script`
attributes when used in a dynamic UI context. This fairly new
`htmlDependency()` feature was added in `{htmltools}`
v0.5.1. (#3395)
* Fixed [#2666](https://github.com/rstudio/shiny/issues/2666) and
[#2670](https://github.com/rstudio/shiny/issues/2670):
`nearPoints()` and `brushedPoints()` weren't properly account for
missing values (#2666 was introduced in
v1.4.0). ([#2668](https://github.com/rstudio/shiny/pull/2668))
* Closed #3374: `quoToFunction()` now works correctly with nested
quosures; and as a result, quasi-quotation with rendering function
(e.g., `renderPrint()`, `renderPlot()`, etc) now works as expected
with nested quosures. (#3373)
* Exported `register_devmode_option()`. This method was described in
the documentation for `devmode()` but was never exported. See
`?devmode()` for more details on how to register Shiny Developer
options using `register_devmode_option()`. (#3364)
* Closed #3484: In the RStudio IDE on Mac 11.5, selected checkboxes
and radio buttons were not visible. (#3485)
### Library updates
* Closed #3286: Updated to Font-Awesome 5.15.2. (#3288)
* Updated to jQuery 3.6.0. (#3311)
|
|
httpuv 1.6.5
============
* Added support for R on Windows UCRT. (#324)
* When using a system-wide copy of libuv, httpuv will now compile
using the system-wide headers for libuv, instead of the local copy
of the libuv headers. (#327)
httpuv 1.6.4
============
* Added zlib to SystemRequirements in DESCRIPTION file. (#315)
* Closed #280: Fix builds on Alpine Linux (and other versions which
have automake >1.16.1). (#319)
|
|
|
|
|
|
|
|
|
|
New features
You can visit subdomains and limit how deep you want to go inside them
using --ext-depth
Now you can include or excludes pages to visit with --include-visit and
--exclude-visit instead of including or excluding pages to download
--visit-filter-is-download-filter can be used to use the same regex for both
visiting and downloading pages
Updated dependencies
Breaking changes
Some options changed names:
--include -> --include-download
--exclude -> --exclude-download
Bug fixes
Charset detection was not working when surrounded with single quotes
Some symlinks where broken and/or outside of the specified output directory
What's Changed
Lib bin initial by @pinkforest in #141
Introduces external depth (#74) & a few fixes (incl. #69) by
@marchellodev in #146
Fix with single quotes by @lhvy in #152
Fix clippy warnings and add clippy ci check by @Skallwar in #168
Filter links before downloading / adding to the queue by @raphCode in #175
Fix symlinks (relative link, argument order, folder creation) by
@raphCode in #182
misc: Fix all clippy warnings by @Skallwar in #186
misc: Update dependencies in Cargo.lock by @Skallwar in #187
ci: Add riscv64 and aarch64 for release by @Skallwar in #185
misc: Prepare for release by @Skallwar in #188
|