www/chromium: update to 145.0.7632.159
* 145.0.7632.159
This update includes 10 security fixes. Please see the
Chrome Security Page for more information.
[$33,000][485622239] Critical CVE-2026-3536: Integer overflow in ANGLE.
Reported by cinzinga on 2026-02-18
[$32,000][474266014] Critical CVE-2026-3537: Object lifecycle issue
in PowerVR. Reported by Zhihua Yao of KunLun Lab on 2026-01-08
[TBD][484983991] Critical CVE-2026-3538: Integer overflow in Skia.
Reported by Symeon Paraschoudis on 2026-02-17
[TBD][483853098] High CVE-2026-3539: Object lifecycle issue in DevTools.
Reported by Zhenpeng (Leo) Lin at depthfirst on 2026-02-12
[TBD][484088917] High CVE-2026-3540: Inappropriate implementation
in WebAudio. Reported by Davi Antônio Cruz on 2026-02-14
[TBD][484811719] High CVE-2026-3541: Inappropriate implementation
in CSS. Reported by Syn4pse on 2026-02-16
[TBD][485152421] High CVE-2026-3542: Inappropriate implementation
in WebAssembly. Reported by qymag1c on 2026-02-17
[6 lines not shown]
digikam: update to 9.0.0.
After months of intensive development, bug triage, and feature
integration, the digiKam team is thrilled to announce the stable
release of digiKam 9.0.0. This major version introduces groundbreaking
improvements in performance, usability, and workflow efficiency,
with a strong focus on modernizing the user interface, enhancing
metadata management, and expanding support for new camera models
and file formats.
lowdown: update to 3.0.0.
Added initial support for outputting modern Unix manpages with
-tmdoc. This is intended as a replacement for the legacy -tman.
Supplement this with --roff-manpage, which accepts a markdown file
that looks like a Unix manpage and attempts to convert it into a
well-formed mdoc or man. Most of this is purely syntactic, but
several sections in Unix manpages (e.g., the NAME and SYNOPSIS)
have a rigorous syntax that this mode attempts to output.
Several minor (but breaking) changes to the API to take up fewer
bits in the oflags field of struct lowdown_opts: consolidate all
XXX_NOLINK, XXX_RELLINK, and XXX_SHORTLINK as LOWDOWN_NOLINK,
LOWDOWN_RELLINK, and LOWDOWN_SHORTLINK. This only applies to the
LOWDOWN_MAN, LOWDOWN_MS, and LOWDOWN_TERM output modes. The earlier
LOWDOWN_NROFF output mode is deprecated and is now an alias for
LOWDOWN_MS, which should be used moving forward.
Do the same with the various XXX_SKIP_HTML bits.
[30 lines not shown]
py-textual: update to 8.0.2.
8.0.2
Changed
Themes are now in alphabetical order in command palette #6405
Fixed
Fixed issues with Directory Tree #6405
8.0.1
Fixed
DirectoryTree runs more operations in a thread to avoid micro-freezes
Changes
[2 lines not shown]
py-ruff: update to 0.15.5.
Preview features
Discover Markdown files by default in preview mode (#23434)
[perflint] Extend PERF102 to comprehensions and generators (#23473)
[refurb] Fix FURB101 and FURB103 false positives when I/O variable is used later (#23542)
[ruff] Add fix for none-not-at-end-of-union (RUF036) (#22829)
[ruff] Fix false positive for re.split with empty string pattern (RUF055) (#23634)
Bug fixes
[fastapi] Handle callable class dependencies with __call__ method (FAST003) (#23553)
[pydocstyle] Fix numpy section ordering (D420) (#23685)
[pyflakes] Fix false positive for names shadowing re-exports (F811) (#23356)
[pyupgrade] Avoid inserting redundant None elements in UP045 (#23459)
Documentation
[6 lines not shown]
py-googleapis-common-protos: update to 1.73.0.
Features
Add a new field to support Dataplex integration configuration (PiperOrigin-RevId: 878006289) (6120fb0d)
Add API fields related to GKE Pods and Network Policies (PiperOrigin-RevId: 875021492) (6120fb0d)
Add API fields related to GKE Pods and Network Policies (PiperOrigin-RevId: 875021492) (6120fb0d)
Update Compute Engine v1beta API to revision 20260213 (6120fb0d)
A new field right_child_digest_hex is added to message .google.cloud.universalledger.v1.ProofOfInclusion, which replaces right_child_hash_hex (PiperOrigin-RevId: 875734641) (6120fb0d)
A new field inference_generation_config is added to message .google.cloud.aiplatform.v1beta1.EvaluationConfig (PiperOrigin-RevId: 875384529) (6120fb0d)
Added a field for enabling image and table annotation for layout parser processor (PiperOrigin-RevId: 877500954) (6120fb0d)
Added a field for enabling image and table annotation for layout parser processor (PiperOrigin-RevId: 877500954) (6120fb0d)
[48 lines not shown]
py-google-auth: update to 2.49.0.
2.49.0 (2026-03-05)
Features
mTLS configuration via x.509 for asynchronous session in google-auth (#1959) (7b70feade1d336b49f66de55d776a5e6ebcc5928)
Support timeout as aiohttp.ClientTimeout and total_attempts (max retries) in AsyncAuthorizedSession (#1961) (4d818b93a6c9a5a2526264174b368d47728b513b)
Add helper methods for asynchronous x.509 certificate discovery (#1956) (3368f27c3267c744ffb067f612c1202954b9b14b)
support an alternative env to decide if mtls should be enabled (#1945) (89fc6f2e1fd6c6fcf4b3945961b2dfde98631e72)
Bug Fixes
gracefully fallback if workload fields are missing from cert config (#16022) (3ed2d6804bcacfdfd74e223d30492d90e606ea98)
py-dotenv: update to 1.2.2.
Added
Support for Python 3.14, including the free-threaded (3.14t) build. (#)
Changed
The dotenv run command now forwards flags directly to the specified command by @bbc2 in #607
Improved documentation clarity regarding override behavior and the reference page.
Updated PyPy support to version 3.11.
Documentation for FIFO file support.
Support for Python 3.9.
Fixed
Improved set_key and unset_key behavior when interacting with symlinks by @bbc2 in #790c5
Corrected the license specifier and added missing Python 3.14 classifiers in package metadata by @JYOuyang in #590
[22 lines not shown]
