sysutils/btop: Update to 1.4.7
Changes since 1.4.6:
Changelog v1.4.7
* Feat: Process following and following mode improvements.
* feat: Add Apple Silicon GPU support via IOReport API.
* feat: add Kanagawa Dragon theme.
* Add twilight theme.
* Add Swap upload/download speed graph option, Fix network graphs
overlap.
* Add Flexoki dark and light themes.
* Menu option to disable presets.
* Create orange.theme.
* Add E hotkey to collapse/expand all processes in tree mode.
* fix: restore Apple Silicon temp reporting on M2 Pro.
* fix regression from a switch to kIOMainPortDefault.
* Fix hide and info buttons.
* Fix mouse mapping for process kill buttons with vim keys enabled.
[22 lines not shown]
www/chromium: update to 147.0.7727.137
* 147.0.7727.116
This update includes 19 security fixes. Below, we highlight fixes
that were contributed by external researchers. Please see the
Chrome Security Page for more information.
[TBD][493652473] High CVE-2026-6919: Use after free in DevTools.
Reported by c6eed09fc8b174b0f3eebedcceb1e792 on 2026-03-18
[TBD][499891888] High CVE-2026-6920: Out of bounds read in GPU.
Reported by tatiwari of Microsoft on 2026-04-06
[TBD][493315759] Medium CVE-2026-6921: Race in GPU.
Reported by soiax on 2026-03-17
* 147.0.7727.137
This update includes 30 security fixes. Below, we highlight fixes
that were contributed by external researchers. Please see the
Chrome Security Page for more information.
[$7000][494352590] Critical CVE-2026-7363: Use after free in Canvas.
Reported by heapracer on 2026-03-19
[58 lines not shown]
net/xfr: update to 0.9.11
UDP TUI clarity. Two issues from real users — @brettowe (#70) and @pythonwood (#72) — pointed at the same weakness: the running TUI was confusing about what its UDP numbers meant. This release rewires the live data path so the values you see during a test match what the test actually saw.
Fixed
Live UDP packet-loss counter during the run (#70) — the Packet Loss line was stuck at 0.0% for the entire test and only updated to the real value at completion. With -t 0 (infinite mode) the real value was never visible. Server now ships cumulative UdpIntervalProgress { packets_received, packets_lost } on every Interval message; client derives the percent locally and the TUI updates it live. Reported by @brettowe.
Final UDP loss accounting only counts valid xfr packets — UdpStats.packets_received and packets_sent now exclude short, malformed, or foreign datagrams that can't be header-decoded. Previously such datagrams inflated packets_received and silently understated the final loss percent.
Added
Throughput sparkline tints by per-interval loss severity (#70) — clean intervals stay the graph color, light loss (<1% per-interval rate) tints warning, heavy loss (≥1%) tints error. A single-packet hiccup and a heavy drop burst no longer collapse to the same flat tint. Magnitude unknown stays the graph color — honest "no signal."
Freshness signal for the Packet Loss line — renders dimmed --% when paired against a pre-0.9.11 server or before any UDP traffic has been observed, so unknown is visually distinct from a fresh 0.0% reading.
Changed
Jitter rolling-window label (#72) — the running display now reads Jitter: 0.86 ms (10s avg: 0.03 ms). The previous (10s: …) form read like a stuck timer; @pythonwood opened an issue thinking the display was broken on a v0.9.10-client → v0.9.6-server pairing.
Wire-protocol note
AggregateInterval gains an optional udp_progress field (raw counts, not a derived percent — the client owns the math). Cross-version compatibility preserved with serde(default, skip_serializing_if = "Option::is_none"). Verified for both 0.9.10 ↔ 0.9.11 directions in tests; pythonwood's mismatched-version pairing in #72 is a deliberate compat target.
devel/cargo-c: update to 0.10.22
- Fix wrong dylib install name on macOS (Thank you @thewildtree !)
- Update implib, object and cargo to the latest version
kew: update to 4.0.0
New:
- Discord RPC integration
- kew play \<path\> \<path2\> command
- Support for macOS media keys
- You can now dequeue m3u playlists and they are sorted first
- Lyrics page now centers the current lyric once it reaches the
center of the screen
- Smoother gradient for non default sized spectrum visualizers
- Added a Nix Flake
- Expandable directories in search view
- miniaudio bumped to version 0.11.24.
- Hide footer option, hideFooter=1
- Hide time status (elapsed seconds, song length and so on) option,
hideTimeStatus=1
- Add option to disable the stripping of track numbers from file
names in the library: stripTrackNumbers=0
- Add AIFF support
[26 lines not shown]
mu: update to 1.14.1
- Improvements in documentation
- Improvements in display of attachments / MIME-parts
- Better HTML toggling
- Support MIME icons
- Bug fixes
chafa: update to 1.18.2
- Support BigTIFF images
- Integer overflow and OOB write with big output size (@Captainjack-kor).
- OOB write in symbol-mode Floyd-Steinberg dithering.
- CLI: Incomplete sanitization of filenames printed to terminal.
- CLI: Integer overflow in XWD header validation.
- CLI: Pointer arithmetic past end of GIF file allocation.
- OOB reading canvas cell colors in FGBG mode.
- Compiler warnings from headers with C99 and -Wpedantic.
security:gcr: update to 3.41.2
# changes (since 3.40.0)
gcr 3.41.2:
- ui: Add gcr.gresource.xml back into the build
- misc: Several memory leaks were fixed
- ci: Several CI fixes
- Updated translations
gcr 3.41.1:
- meson: Fix unknown kw argument in gnome.generate_gir [GNOME/gcr!68]
- gcr: Add G_SPAWN_CLOEXEC_PIPES flag to all the g_spawn commands
- docs: Port from gtk-doc to gi-docgen [GNOME/gcr!76]
- Unbreak build without systemd [GNOME/gcr!75]
- Several CI fixes
- Updated translations
gcr 3.41.0:
[5 lines not shown]
security/libdecaf: Update to v1.0.3
Changes since v1.0.2:
No upstream release notes; changes derived from commit log.
* Allow long scalars to be null, mostly so that you can
deserialize a zero-length null scalar without causing UB.
* Signature context can be null.
* Fix runtime errors.
* Fix C++ test build with recent compilers.
* CMake improvements and add enable sanitizer option.
* Add SER_BYTES to gf_serialize prototype.
* Adjust comments in ristretto.sage.
* Indicate that x86 word_is_zero affects the carry flag.
* Test for subgroup membership in ed448 (sage).
* Document how to run tests.
audio/fasttracker2: Update to 2.18
Changes since 2.17:
v2.18 - 28.04.2026
* The windowed-sinc interpolation kernels are now calculated with
unity gain
* The scopes now use windowed-sinc interpolation again (previously
buggy)
editors/msedit: Update to 2.0.0
Changes since 1.2.1:
⚠️ If you're a package maintainer, please read the last section
at the end.
Syntax Highlighting
Edit v2 adds the Lightweight Syntax Highlighter. It has a ~40kB
footprint for a dozen languages plus runtime, barely grows with each
language added, and runs at >100MB/s.
The highlighter is based on a simple programming language that combines
regular expressions with explicit control flow. It's designed such that
the runtime can be easily ported to other languages, including
JavaScript.
The list of languages will surely grow over time, and contributions for
[147 lines not shown]