NetBSD/pkgsrc v2Uw0Njdoc CHANGES-2026 TODO

   Updated devel/py-ruff, devel/py-dulwich
VersionDeltaFile
1.4515+3-1doc/CHANGES-2026
1.27598+1-2doc/TODO
+4-32 files

NetBSD/pkgsrc MZ7wIXDdevel/py-dulwich distinfo Makefile

   py-dulwich: updated to 1.2.11

   1.2.11  2026-07-16

   * Let porcelain functions that consult the environment take an ``env``
     argument overriding ``os.environ``. As a side effect ``tag_create`` now
     honours ``GIT_COMMITTER_NAME``/``GIT_COMMITTER_EMAIL`` for the tagger line
     and ``merge``/``revert`` honour ``GIT_AUTHOR_NAME``/``GIT_AUTHOR_EMAIL``,
     matching git. (Jelmer Vernooij)

   * Honour the ``core.worktree`` configuration option, so the working tree can
     live somewhere other than the parent of the control directory. Relative
     paths are resolved against the control directory, and ``core.bare`` and
     ``core.worktree`` are now rejected as incompatible. (Jelmer Vernooij)

   * Clear ``core.bare`` when setting up a submodule's working tree.
     ``submodule_update`` cloned the submodule bare and then set
     ``core.worktree`` on it, leaving a configuration git considers invalid.
     (Jelmer Vernooij)

    [61 lines not shown]
VersionDeltaFile
1.81+4-4devel/py-dulwich/distinfo
1.86+2-2devel/py-dulwich/Makefile
+6-62 files

NetBSD/pkgsrc C2HzsyQdevel/py-ruff distinfo cargo-depends.mk

   py-ruff: updated to 0.15.22

   0.15.22

   Preview features

   [pycodestyle] Add an autofix for E402
   [refurb] Allow subclassing builtins in stub files (FURB189)
   [ruff] Add rule to replace noqa comments with ruff:ignore (RUF105)
   [ruff] Add rule to use human-readable names in ruff:ignore comments (RUF106)
   [ruff] Add rule to use human-readable names in configuration selectors (RUF201)

   Bug fixes

   [flake8-pyi] Fix false positive in __all__ (PYI053)

   Rule changes

   [pylint] Ignore mutable type updates in redefined-loop-name (PLW2901)

    [14 lines not shown]
VersionDeltaFile
1.113+46-46devel/py-ruff/distinfo
1.107+14-14devel/py-ruff/cargo-depends.mk
1.116+3-3devel/py-ruff/Makefile
+63-633 files

NetBSD/pkgsrc S8Qwo7Sdoc CHANGES-2026

   doc: Updated textproc/p5-YAML-Syck to 1.47
VersionDeltaFile
1.4514+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc tvSxAOPtextproc/p5-YAML-Syck Makefile distinfo

   p5-YAML-Syck: update to 1.47.

   1.47 Jul 13 2026

     [Security]
     - Fix four libsyck memory-safety CVEs reachable from the default
       YAML::Syck::Load() path on untrusted input with no special flags
       (reported by Paul Johnson via CPANSec, PR #213):
       - CVE-2026-57075 (CWE-125): out-of-bounds read in the base64 decoder
         caused by signed-char indexing of the decode table on !!binary input
       - CVE-2026-57076 (CWE-416): use-after-free of an anchor key string
         shared between the node and the anchors table
       - CVE-2026-57077 (CWE-125): one-byte out-of-bounds read in the lexer
         newline scan during block-scalar parsing (incomplete-fix follow-on
         to CVE-2025-11683)
       - CVE-2026-13713 (CWE-416/CWE-415): use-after-free / double-free of an
         anchor node on anchor redefinition, a remote-crash DoS from a
         7-byte input
     - Harden syck_base64dec() to bounds-check each read so it cannot run past

    [32 lines not shown]
VersionDeltaFile
1.43+5-3textproc/p5-YAML-Syck/Makefile
1.24+4-4textproc/p5-YAML-Syck/distinfo
+9-72 files

NetBSD/pkgsrc CunFaJalang/nqp PLIST Makefile, lang/rakudo Makefile

   nqp: update for perl 5.44

   Noted by Marc Baudoin.
VersionDeltaFile
1.6+3-3lang/nqp/PLIST
1.47+3-3lang/rakudo/Makefile
1.61+2-1lang/nqp/Makefile
+8-73 files

NetBSD/pkgsrc 0bklc64doc TODO CHANGES-2026

   doc: Updated www/webkit-gtk to 2.36.8nb30
VersionDeltaFile
1.27597+3-3doc/TODO
1.4513+2-1doc/CHANGES-2026
+5-42 files

NetBSD/pkgsrc uNS7Rhewww/webkit-gtk Makefile distinfo, www/webkit-gtk/patches patch-Source_cmake_WebKitMacros.cmake

   webkit-gtk: fix cmake syntax error

   Broke build with cmake 4.4.

   Bump PKGREVISION.

   Clean up references to non-existent files while here.
VersionDeltaFile
1.1+15-0www/webkit-gtk/patches/patch-Source_cmake_WebKitMacros.cmake
1.282+2-6www/webkit-gtk/Makefile
1.182+2-1www/webkit-gtk/distinfo
+19-73 files

NetBSD/pkgsrc TT2F9N3doc CHANGES-2026

   doc: Updated sysutils/dua-cli to 2.38.0
VersionDeltaFile
1.4512+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc c7laCArsysutils/dua-cli distinfo Makefile

   sysutils/dua-cli: update to 2.38.0

   New Features

       notify after interactive work when unfocused
       Interactive scans, refreshes, deletion, and trash operations can take long
       enough that users leave the terminal, but dua previously had no way to signal
       completion without exiting the TUI.

       Track terminal focus events and emit sanitized OSC 777 notifications only when
       the terminal is unfocused. Include concise entry, byte, duration, and error
       statistics, and add a notifications config section whose scan_finished and
       delete_finished switches default to true.
VersionDeltaFile
1.50+4-4sysutils/dua-cli/distinfo
1.50+2-2sysutils/dua-cli/Makefile
1.38+0-0sysutils/dua-cli/cargo-depends.mk
+6-63 files

NetBSD/pkgsrc 89UsgN4doc CHANGES-2026

   doc: Updated shells/oh-my-posh to 29.31.1
VersionDeltaFile
1.4511+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc c0CuXfcshells/oh-my-posh distinfo Makefile

   shells/oh-my-posh: update to 29.31.1

   v29.31.1
   Bug Fixes

       init: isolate strict init scripts (439202c)
       zsh: keep the prompt on multi-line loop headers (4bda0c3)

   v29.31.0
   Features

       segment: add Uno Platform support (de6ce37)
       shell: add on-demand prompt repaint for zsh and pwsh (971e150), closes #7427

   v29.30.0
   Features

       palette: support templates as color values (dc94c11), closes #7572
       template: add .Executed global property (ede9d54), closes #7679

    [27 lines not shown]
VersionDeltaFile
1.313+4-4shells/oh-my-posh/distinfo
1.345+2-2shells/oh-my-posh/Makefile
+6-62 files

NetBSD/pkgsrc TT41mVodoc CHANGES-2026

   doc: Updated devel/hexpatch to 1.13.0
VersionDeltaFile
1.4510+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc LbKhcuvdevel/hexpatch distinfo cargo-depends.mk

   devel/hexpatch: update to 1.13.0

   What's Changed

       Added support for EBPF deasm and patching by @Lorenzinco in #156
       Changed license to AGPL-3.0
VersionDeltaFile
1.18+262-298devel/hexpatch/distinfo
1.18+86-98devel/hexpatch/cargo-depends.mk
1.18+6-6devel/hexpatch/Makefile
+354-4023 files

NetBSD/pkgsrc wY8FBuldoc CHANGES-2026

   doc: Updated devel/gitpane to 0.9.1
VersionDeltaFile
1.4509+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc FB5Yrbtdevel/gitpane distinfo cargo-depends.mk

   devel/gitpane: update to 0.9.1

   [0.9.1] - 2026-07-14
   Added

       Custom keybindings. Define [[keybindings]] blocks in the config to bind a single key to a shell command that runs against the selected repository or worktree. Each binding takes a key, a command where {path} expands to the target directory, an optional placement that reuses the [open] vocabulary (command, inline, ask, split-window, new-window), and an optional desc shown in the ? help overlay. Keys already claimed by the built-in global actions stay reserved, a key a panel uses for navigation can be bound but then stops navigating that panel, and gitpane diagnostic lists the bindings that were loaded so a key that does not fire is easy to trace.
       CI status on GitHub pull request rows. Each PR in the GitHub panel now shows its rolled-up checks result, fetched through gh's statusCheckRollup: a green ✓ when checks passed, a red ✗ when any failed, and a yellow ● while checks are still running. A PR with no checks shows nothing, and issues are unaffected. Failure takes precedence over a still-running or passing check, matching how GitHub itself summarizes a mixed run.
       Right-click graph commits for quick actions including copying commit hashes, opening changed files, search, branch collapse, and graph filters. Filters can include or exclude branches, authors, refs, and first-parent view settings with visible all/none/invert controls and mouse or keyboard navigation.

   [0.9.0] - 2026-07-09
   Added

       A GitHub panel that shows the selected repository's open issues and pull requests, fetched through the gh CLI so it reuses gh's authentication and needs no token of its own. It appears as an optional fourth panel only when the selected repository has a github.com origin with open items, and stays out of the way otherwise; press p to force it open on any repository, and turn it off entirely with [github] enabled = false. Select an item and press Enter to preview its body and comment thread, and for a pull request its file changes, then Enter again to open it in the browser. c cycles the list between open, all, and closed items, and the panel resizes by dragging its border like the others. When gh is missing, the origin is not on github.com, or the network is down, gitpane keeps its usual three panels with a clear message.

   Changed

       Darkened the selected-row background across the repository, changes, and GitHub panels so a selected row's title and dimmed metadata stay legible.
       Updated crossbeam-epoch to 0.9.20 to clear RUSTSEC-2026-0204, an invalid pointer dereference advisory pulled in transitively through the directory walker.
       Updated ratatui to 0.30.2 and the ignore crate to 0.4.27.
VersionDeltaFile
1.6+273-270devel/gitpane/distinfo
1.6+90-89devel/gitpane/cargo-depends.mk
1.6+1-1devel/gitpane/Makefile
+364-3603 files

NetBSD/pkgsrc wpFgzDtdoc CHANGES-2026

   doc: Updated devel/cargo-edit to 0.13.13
VersionDeltaFile
1.4508+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc VoZm6Kqdevel/cargo-edit distinfo Makefile

   devel/cargo-edit: update to 0.13.13

   v0.13.13 - 2026-07-15
   Fixes

    - (upgrade) Point single---verbose users to --verbose --verbose when more dependencies are hidden

   v0.13.12 - 2026-07-14
   Fixes

    - (set-version) Error on -p invalid package names
VersionDeltaFile
1.10+4-4devel/cargo-edit/distinfo
1.14+2-2devel/cargo-edit/Makefile
1.10+0-0devel/cargo-edit/cargo-depends.mk
+6-63 files

NetBSD/pkgsrc HB2f4nrdoc CHANGES-2026

   doc: Updated devel/bacon to 3.24.0
VersionDeltaFile
1.4507+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc XAIIPy8devel/bacon distinfo cargo-depends.mk

   devel/bacon: update to 3.24.0

    - MSRV bumped from 1.77 to 1.85
    - add a clear-output action - Fix #419
VersionDeltaFile
1.38+367-343devel/bacon/distinfo
1.37+121-113devel/bacon/cargo-depends.mk
1.39+3-3devel/bacon/Makefile
+491-4593 files

NetBSD/pkgsrc dhMjmr5doc CHANGES-pkgsrc-2026Q2

   doc: add some entries
VersionDeltaFile
1.1.2.5+49-1doc/CHANGES-pkgsrc-2026Q2
+49-11 files

NetBSD/pkgsrc IsPa70Csecurity/ap-modsecurity2 Makefile distinfo, security/ap-modsecurity2/files README.pkgsrc README.pkgsrc

   Pullup ticket #7186 - requested by taca
   security/ap-modsecurity2: Security fix

   Revisions pulled up:
   - security/ap-modsecurity2/MESSAGE                              deleted
   - security/ap-modsecurity2/Makefile                             1.76
   - security/ap-modsecurity2/PLIST                                1.9
   - security/ap-modsecurity2/distinfo                             1.13
   - security/ap-modsecurity2/files/README.pkgsrc                  1.1
   - security/ap-modsecurity2/patches/patch-apache2_msc__crypt.c   deleted
   - security/ap-modsecurity2/patches/patch-apache2_msc__crypt.h   deleted

   ---
      Module Name:      pkgsrc
      Committed By:     drixter
      Date:             Mon Jul  6 19:05:05 UTC 2026

      Modified Files:
        pkgsrc/security/ap-modsecurity2: Makefile PLIST distinfo

    [134 lines not shown]
VersionDeltaFile
1.1.2.2+26-0security/ap-modsecurity2/files/README.pkgsrc
1.1.2.1+0-26security/ap-modsecurity2/files/README.pkgsrc
1.75.2.1+13-12security/ap-modsecurity2/Makefile
1.12.38.1+4-6security/ap-modsecurity2/distinfo
1.8.100.1+2-1security/ap-modsecurity2/PLIST
1.3.68.1+1-1security/ap-modsecurity2/MESSAGE
+46-462 files not shown
+48-488 files

NetBSD/pkgsrc 5qA3BkRsecurity/adguardhome distinfo go-modules.mk

   Pullup ticket #7183 - requested by taca
   security/adguardhome: Security fix

   Revisions pulled up:
   - security/adguardhome/Makefile                                 1.21
   - security/adguardhome/distinfo                                 1.11
   - security/adguardhome/go-modules.mk                            1.9

   ---
      Module Name:      pkgsrc
      Committed By:     adam
      Date:             Mon Jul 13 19:17:24 UTC 2026

      Modified Files:
        pkgsrc/security/adguardhome: Makefile distinfo go-modules.mk

      Log Message:
      adguardhome: updated to 0.107.78


    [44 lines not shown]
VersionDeltaFile
1.10.2.1+265-229security/adguardhome/distinfo
1.8.2.1+86-74security/adguardhome/go-modules.mk
1.19.2.2+2-3security/adguardhome/Makefile
+353-3063 files

NetBSD/pkgsrc rscXVOBmail/dmarc-report-viewer distinfo cargo-depends.mk

   Pullup ticket #7181 - requested by taca
   mail/dmarc-report-viewer

   Revisions pulled up:
   - mail/dmarc-report-viewer/Makefile                             1.2-1.3
   - mail/dmarc-report-viewer/cargo-depends.mk                     1.2-1.3
   - mail/dmarc-report-viewer/distinfo                             1.2-1.3

   ---
      Module Name:      pkgsrc
      Committed By:     wiz
      Date:             Mon Jul  6 08:56:35 UTC 2026

      Modified Files:
        pkgsrc/mail/dmarc-report-viewer: Makefile cargo-depends.mk distinfo

      Log Message:
      dmarc-report-viewer: update to 2.5.2.


    [26 lines not shown]
VersionDeltaFile
1.1.2.1+189-192mail/dmarc-report-viewer/distinfo
1.1.2.1+62-63mail/dmarc-report-viewer/cargo-depends.mk
1.1.2.1+1-1mail/dmarc-report-viewer/Makefile
+252-2563 files

NetBSD/pkgsrc QwbHEHnwww/firefox mozilla-common.mk

   www/firefox: Update checksum of patched file

   * I had confused with upcoming 153 package.
VersionDeltaFile
1.317+2-2www/firefox/mozilla-common.mk
+2-21 files

NetBSD/pkgsrc Pi20YCpwww/p5-Mojolicious distinfo Makefile

   Pullup ticket #7185 - requested by taca
   www/p5-Mojolicious: Security fix

   Revisions pulled up:
   - www/p5-Mojolicious/Makefile                                   1.160
   - www/p5-Mojolicious/distinfo                                   1.144

   ---
      Module Name:      pkgsrc
      Committed By:     wiz
      Date:             Tue Jul 14 17:29:45 UTC 2026

      Modified Files:
        pkgsrc/www/p5-Mojolicious: Makefile distinfo

      Log Message:
      p5-Mojolicious: update to 9.48.

      9.48  2026-07-14

    [32 lines not shown]
VersionDeltaFile
1.143.4.1+4-4www/p5-Mojolicious/distinfo
1.159.4.1+3-3www/p5-Mojolicious/Makefile
+7-72 files

NetBSD/pkgsrc KUkLCkGsecurity/p5-Crypt-OpenSSL-X509 Makefile distinfo

   Pullup ticket #7184 - requested by taca
   security/p5-Crypt-OpenSSL-X509: Security fix

   Revisions pulled up:
   - security/p5-Crypt-OpenSSL-X509/Makefile                       1.3
   - security/p5-Crypt-OpenSSL-X509/distinfo                       1.2

   ---
      Module Name:      pkgsrc
      Committed By:     wiz
      Date:             Tue Jul 14 09:17:17 UTC 2026

      Modified Files:
        pkgsrc/security/p5-Crypt-OpenSSL-X509: Makefile distinfo

      Log Message:
      p5-Crypt-OpenSSL-X509: update to 2.1.3.

      ## 2.1.3 2026-07-12

    [119 lines not shown]
VersionDeltaFile
1.2.2.1+3-4security/p5-Crypt-OpenSSL-X509/Makefile
1.1.2.1+3-3security/p5-Crypt-OpenSSL-X509/distinfo
+6-72 files

NetBSD/pkgsrc ypKysGhlang/perl5 distinfo, lang/perl5/patches patch-pp__pack.c patch-pp__pack.c

   Pullup ticket #7182 - requested by taca
   lang/perl5: Security fix

   Revisions pulled up:
   - lang/perl5/Makefile                                           1.295
   - lang/perl5/distinfo                                           1.200
   - lang/perl5/patches/patch-dist_Storable_Storable.xs            1.1
   - lang/perl5/patches/patch-pp__pack.c                           1.1
   - lang/perl5/patches/patch-regcomp__study.c                     1.2

   ---
      Module Name:      pkgsrc
      Committed By:     wiz
      Date:             Mon Jul 13 18:44:25 UTC 2026

      Modified Files:
        pkgsrc/lang/perl5: Makefile distinfo
        pkgsrc/lang/perl5/patches: patch-regcomp__study.c
      Added Files:

    [7 lines not shown]
VersionDeltaFile
1.2.2.2+36-0lang/perl5/patches/patch-pp__pack.c
1.2.2.1+0-36lang/perl5/patches/patch-pp__pack.c
1.1.4.1+23-1lang/perl5/patches/patch-regcomp__study.c
1.2.2.1+0-20lang/perl5/patches/patch-dist_Storable_Storable.xs
1.2.2.2+20-0lang/perl5/patches/patch-dist_Storable_Storable.xs
1.199.2.1+4-2lang/perl5/distinfo
+83-591 files not shown
+85-617 files

NetBSD/pkgsrc na1gn4pdevel/py-codespell Makefile

   py-codespell: add some test dependencies
VersionDeltaFile
1.21+4-3devel/py-codespell/Makefile
+4-31 files

NetBSD/pkgsrc 5xkdkcSdoc CHANGES-2026

   doc: Added devel/py-test-dependency version 0.6.1
VersionDeltaFile
1.4506+2-1doc/CHANGES-2026
+2-11 files