net/bind918: update to 9.18.48
9.18.48 (2026-04-01)
Security Fixes
* Fix crash when reconfiguring zone update policy during active updates.
We fixed a crash that could occur when running rndc reconfig to change a
zone's update policy (e.g., from allow-update to update-policy) while DNS
UPDATE requests were being processed for that zone.
ISC would like to thank Vitaly Simonovich for bringing this issue to our
attention. [GL #5817]
Bug Fixes
* Fix a crash triggered by rndc modzone on a zone from a configuration file.
[10 lines not shown]
python: add PY_RENAME_BINARIES variable
This will rename the listed binaries in ${PREFIX}/bin from "foo" to
"foo-${PYVERSSUFFIX}", e.g. "foo-3.14.
This will allow us to get rid of a lot of post-install targets in
Python packages.
py-uv-dynamic-versioning: update to 0.14.0.
Improve Version Source Docs by @ninoseki in #85
ci: update actions by @ninoseki in #86
docs: update README by @ninoseki in #87
feat: support highest-tag option by @ninoseki in #89
docs: update tips by @ninoseki in #90
harfbuzz: update to 14.0.0.
Overview of changes leading to 14.0.0
Wednesday, April 1, 2026
=====================================
- New `libharfbuzz-gpu` library: GPU text rasterization based on the
Slug algorithm by Eric Lengyel. Encodes glyph outlines on the CPU
into compact blobs that the GPU decodes and rasterizes directly in
the fragment shader, with no intermediate bitmap atlas.
Shader sources provided in GLSL, WGSL, MSL, and HLSL.
New `hb-gpu` installed utility for interactive GPU text rendering.
Live web demo: https://harfbuzz.github.io/hb-gpu-demo/
- New `harfbuzz-world.cc` amalgamated source for building a subset of
all HarfBuzz libraries into one compilation unit, driven by a custom
`hb-features.h`.
- Updated README with libraries overview and project description.
- Various bug fixes.
- New API:
+ hb_gpu_draw_t
[14 lines not shown]
arti: update to 2.2.0.
Arti 2.2.0 continues our work on relay development,
and brings us even closer to a working middle relay.
This release also adds some useful client-side features,
and includes various bugfixes and cleanups.
fonts/nerd-fonts-Monaspace: import nerd-fonts-Monaspace-1.400
The Monaspace type system is a monospaced type superfamily with
some modern tricks up its sleeve. It consists of five variable axis
typefaces. Each one has a distinct voice, but they are all
metrics-compatible with one another, allowing you to mix and match
them for a more expressive typographical palette.
This is the nerd-fonts variant of Monaspace.
www/ruby-rack: update to 3.2.6
3.2.6 (2026-04-01)
Security
* CVE-2026-34763 Root directory disclosure via unescaped regex interpolation
in Rack::Directory.
* CVE-2026-34230 Avoid O(n^2) algorithm in Rack::Utils.select_best_encoding
which could lead to denial of service.
* CVE-2026-32762 Forwarded header semicolon injection enables Host and
Scheme spoofing.
* CVE-2026-26961 Raise error for multipart requests with multiple boundary
parameters.
* CVE-2026-34786 Rack::Static header_rules bypass via URL-encoded path mismatch.
[23 lines not shown]
ndiff nmap zenma: updated to 7.99
Nmap 7.99 [2026-03-26]
o Integrated many of the most-frequently-submitted IPv4 and IPv6 OS
fingerprints, as well as dozens of updated service fingerprints.
o Upgraded included libraries: OpenSSL 3.0.19, libpcap 1.10.6, libpcre2 10.47,
liblinear 2.50, zlib 1.3.2
o [Windows] Upgraded the included version of Npcap from 1.83 to 1.87, resolving
several crashes and stability-related issues. See https://npcap.com/changelog
o [Zenmap][GH-3182] Zenmap is now distributed as a universal wheel
(zenmap-7.99-py3-none-any.whl) instead of an RPM package so that it can be
installed on any system with Python 3. [Daniel Miller]
o [Ncat][Windows] Limited the number of handles inherited by subprocesses
launched with -e, preventing interference between clients when -e and
[75 lines not shown]
py-setuptools-gettext: added version 0.1.16
This plugin adds build_mo, clean_mo and install_mo subcommands for setup.py as
well as hooking those into standard commands.
py-sphobjinv: updated to 2.4
2.4
Merge v2.3.1.3 release branch back into main
Fix GitHub badge
Convert most remote inventory fetch tests to use a local server; bump Pythons and dev Sphinx
Lints config maintenance
Implement sphobjinv-textconv and remove CLI implementation section from docs
Update test infra & migrate http:// links to https://