py-flask-cors: updated to 4.0.1
4.0.1
Fix Read the Docs builds
Update extension.py to clean request.path before logging it
Update CI to include Python 3.12 and flask 3.0.3
Release 4.0.1
py-jsonschema: updated to 4.22.0
v4.22.0
* Improve ``best_match`` (and thereby error messages from ``jsonschema.validate``) in cases where there are multiple *sibling* errors from applying ``anyOf`` / ``allOf`` -- i.e. when multiple elements of a JSON array have errors, we now do prefer showing errors from earlier elements rather than simply showing an error for the full array.
* (Micro-)optimize equality checks when comparing for JSON Schema equality by first checking for object identity, as ``==`` would.
sysutils/onefetch: update to 2.21.0
New Features 🎉
Add CLI option to force URL format to HTTP instead of SSH by @0spotter0 in #1314
Add CLI flag to hide token from repository URL by @o2sh in #1319
Make Lua logo more readable on dark terminal by @o2sh in #1337
Bug Fixes 🐛
Fix deadlock in Churn computation by @Nettifani in #1316
Exclude bot commits from churn when --no-bots option is used by @o2sh in #1335
Chores 🧹
[onefetch.dev] switch to dark theme by @o2sh in #1297
RUSTSEC-2024-0320: remove yaml-rust dependency by @Suyun114 in #1309
Refactor --no-bots CLI option by @o2sh in #1340
net/unison: Update to 2.53.5
packaging changes: align comments to wip
## Changes in 2.53.5
Released 2024-05-06
* Various minor bugfixes.
* Recovery from errors during repeat mode (enabled in 2.53.1) is disabled
for time being.
cad/kicad: Update to 8.0.2
Upstream changes are bug fixes and minor improvements.
8.0.1 failed to build on NetBSD 10 amd64 with a complaint about const
pointer promotions, but this is problem is not present in 8.0.2.
Builds and starts on NetBSD 10 amd64.
py-tenacity: updated to 8.3.0
8.3.0
New Features
Added a new stop function: stop_before_delay, which will stop execution if the next sleep time would cause overall delay to exceed the specified delay. Useful for use cases where you have some upper bound on retry times that you must not exceed, so returning before that timeout is preferable than returning after that timeout.
Bug Fixes
Preserve defaults and kwdefaults through retry decorator
Other Notes
Add a "test" extra
py-validate-pyproject: updated to 0.17
v0.17
Update version regex according to latest packaging version
Remove duplicate # ruff: noqa
Remove invalid top-of-the-file # type: ignore statement
Align tool.setuptools.dynamic.optional-dependencies with `project.optional-dependencies
Bump min Python version to 3.8
py-werkzeug: updated to 3.0.3
Version 3.0.3
- Only allow ``localhost``, ``.localhost``, ``127.0.0.1``, or the specified
hostname when running the dev server, to make debugger requests. Additional
hosts can be added by using the debugger middleware directly. The debugger
UI makes requests using the full URL rather than only the path.
:ghsa:`2g68-c3qc-8985`
- Make reloader more robust when ``""`` is in ``sys.path``. :pr:`2823`
- Better TLS cert format with ``adhoc`` dev certs. :pr:`2891`
- Inform Python < 3.12 how to handle ``itms-services`` URIs correctly, rather
than using an overly-broad workaround in Werkzeug that caused some redirect
URIs to be passed on without encoding. :issue:`2828`
- Type annotation for ``Rule.endpoint`` and other uses of ``endpoint`` is
``Any``. :issue:`2836`
go: update to 1.21.10 and 1.22.3 (security)
These minor releases include 2 security fixes following the security policy:
- cmd/go: arbitrary code execution during build on darwin
On Darwin, building a Go module which contains CGO can trigger arbitrary code execution when using the Apple
version of ld, due to usage of the -lto_library flag in a "#cgo LDFLAGS" directive.
Thanks to Juho Forsén of Mattermost for reporting this issue.
This is CVE-2024-24787 and Go issue https://go.dev/issue/67119.
- net: malformed DNS message can cause infinite loop
A malformed DNS message in response to a query can cause the Lookup functions to get stuck in an infinite
loop.
Thanks to @long-name-let-people-remember-you on GitHub for reporting this issue, and to Mateusz Poliwczak
[3 lines not shown]
nodejs20: updated to 20.13.0
Node.js v20.13.0
buffer: improve base64 and base64url performance
crypto: deprecate implicitly shortened GCM tags
events,doc: mark CustomEvent as stable
fs: add stacktrace to fs/promises
report: add --report-exclude-network option
src: add uv_get_available_memory to report and process
stream: support typed arrays
util: support array of formats in util.styleText
v8: implement v8.queryObjects() for memory leak regression testing
watch: mark as stable