NetBSD/pkgsrc ShZjTJBdevel/git-base options.mk Makefile

   git-base: add default-off rust option
VersionDeltaFile
1.9+9-2devel/git-base/options.mk
1.138+1-2devel/git-base/Makefile
+10-42 files

NetBSD/pkgsrc Bs7zGqddoc CHANGES-2026 TODO

   doc: Updated textproc/enchant2 to 2.8.17
VersionDeltaFile
1.4175+2-1doc/CHANGES-2026
1.27523+1-2doc/TODO
+3-32 files

NetBSD/pkgsrc hY36Xigtextproc/enchant2 distinfo Makefile

   enchant2: update to 2.8.17.

   2.8.17 (June 29, 2026)
   ----------------------

   Make enchant silently ignore -C flag, for better Emacs compatibility.
VersionDeltaFile
1.41+4-4textproc/enchant2/distinfo
1.57+2-2textproc/enchant2/Makefile
+6-62 files

NetBSD/pkgsrc Qso4soFdoc CHANGES-2026

   doc: Updated devel/py-libevent-rpcgen to 2.1.13
VersionDeltaFile
1.4174+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc IxNVWMmdoc CHANGES-2026 TODO

   doc: Updated devel/libevent to 2.1.13
VersionDeltaFile
1.4173+2-1doc/CHANGES-2026
1.27522+1-2doc/TODO
+3-32 files

NetBSD/pkgsrc L1hIklVdevel/libevent builtin.mk Makefile

   libevent: update to 2.1.13.

   Fix pkglint while here.

   Changes in version 2.1.13-stable (01 July 2026)

    This release contains several security fixes, affecting users of the
    following modules: evbuffer, bufferevent, evtag, evrpc, evdns, evhttp.
    If you have a program that uses one of those modules,
    or if you distribute libevent, you should upgrade.

    Additionally, this release backports some small modernizations to
    the libevent codebase, to aid in compiling with the compilers
    released over the last few years.

    Security Fixes (evtag, evrpc):
    - Fix an out-of-bounds read in decode_tag_internal.
      (Found by @Brubbish. GHSA-fj29-64w6-73h6)
    - Fix an integer overflow in evtag_unmarshal_header.

    [33 lines not shown]
VersionDeltaFile
1.22+5-5devel/libevent/builtin.mk
1.61+5-3devel/libevent/Makefile
1.43+4-4devel/libevent/distinfo
1.7+2-2devel/libevent/Makefile.common
+16-144 files

NetBSD/pkgsrc hzXlfL6textproc/enca Makefile

   enca: add CHECK_PORTABILITY_SKIP
VersionDeltaFile
1.12+3-1textproc/enca/Makefile
+3-11 files

NetBSD/pkgsrc 3KbXmb0doc TODO

   doc/TODO: + libevent-2.1.13.
VersionDeltaFile
1.27521+2-1doc/TODO
+2-11 files

NetBSD/pkgsrc owjFGhUdoc CHANGES-2026

   doc: Updated geography/proj-doc to 9.8
VersionDeltaFile
1.4172+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc Fcgp3MIgeography/proj-doc distinfo Makefile

   geography/proj-doc: Update to 9.8
VersionDeltaFile
1.8+4-4geography/proj-doc/distinfo
1.12+2-2geography/proj-doc/Makefile
+6-62 files

NetBSD/pkgsrc 4KLSW8Gdoc CHANGES-2026

   doc: Updated geography/py-qgc to 1.0.0
VersionDeltaFile
1.4171+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc 3oh4T5Vgeography/py-qgc Makefile distinfo

   geography/py-qgc: Update to 1.0.0

   pkgsrc changes: prune no-longer-needed DIST_SUBDIR

   Upstream NEWS:

   # RELEASE 1.0.0

   1. Add support for LG580P v1.3 firmware - additional QTM NAV message types:

       - b"\x08\x01": "NAV-POS",  # output
       - b"\x08\x11": "NAV-VEL",  # output
       - b"\x08\x21": "NAV-TIME",  # output
       - b"\x08\x41": "NAV-NAV",  # output
       - b"\x08\x51": "NAV-EVENTTIME",  # output
       - b"\x08\x52": "NAV-EVENTPOS",  # output
       - b"\x08\x31": "NAV-TAR",  # output
       - b"\x09\x01": "NAV2-POS",  # output
       - b"\x09\x11": "NAV2-VEL",  # output
VersionDeltaFile
1.3+2-10geography/py-qgc/Makefile
1.3+4-4geography/py-qgc/distinfo
1.3+3-0geography/py-qgc/PLIST
+9-143 files

NetBSD/pkgsrc fYNg1mudoc CHANGES-2026

   doc: Updated geography/mapserver to 8.6.4
VersionDeltaFile
1.4170+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc u7Ve6jLgeography/mapserver distinfo Makefile

   geography/mapserver: Update to 8.6.4

   Upstream NEWS: missing - apparent micro
VersionDeltaFile
1.18+4-4geography/mapserver/distinfo
1.148+2-3geography/mapserver/Makefile
+6-72 files

NetBSD/pkgsrc DgadyG4net/powerdns distinfo Makefile.common

   powerdns: Update to version 5.1.3

   5.1.3
   Released: 30th of June 2026
   This is release 5.1.3 of the Authoritative Server.
   It contains one new double feature and a few bug fixes.

   New Features
   Implement SOA-EDIT spreading + RRSIG expiry extension setting.

   Bug Fixes
   REST API: escaping issue with generic record syntax
   pdnsutil: non-interactive zone edit
   set version in meson.build in autoconf make dist path
   declare enable-lua-record-updates unconditionally
   meson: fix missing symbols for backend dylibs
VersionDeltaFile
1.61+4-4net/powerdns/distinfo
1.50+2-2net/powerdns/Makefile.common
+6-62 files

NetBSD/pkgsrc KARVW0Udoc CHANGES-2026

   doc: Updated net/powerdns to 5.1.3
VersionDeltaFile
1.4169+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc iRVIIbQdoc CHANGES-2026

   doc: Updated graphics/vulkan-loader to 1.4.350.1nb1
VersionDeltaFile
1.4168+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc BXs54uDgraphics/vulkan-loader Makefile

   vulkan-loader: force gnu99

   compilation warning suggests using it for proper alloca()

   Bump PKGREVISION.
VersionDeltaFile
1.2+6-1graphics/vulkan-loader/Makefile
+6-11 files

NetBSD/pkgsrc DWdRV8hdoc CHANGES-2026

   Updated graphics/py-Pillow, devel/py-rpds-py, security/py-asyncssh
VersionDeltaFile
1.4167+4-1doc/CHANGES-2026
+4-11 files

NetBSD/pkgsrc ktY1uF2security/py-asyncssh Makefile distinfo

   py-asyncssh: updated to 2.24.0

   2.24.0 (27 Jun 2026)

   * Added support for creating and validating SSHSIG signatures, as well
     as OpenSSH "allowed signers" files.

   * Added support for ML-KEM key exchange from the PyCA cryptography
     package when it is available. This avoids the need to have the
     liboqs library installed to use ML-KEM. However, liboqs is still
     required to support SNTRUP kex exchange.

   * Fixed an issue with handling of SSH maximum packet size when opening
     a new SSH channel, aborting with a protocol error if a peer attempts
     to set this size to 0. Thanks go to GitHub user afldl for reporting
     this issue and providing analysis and reproduction code.

   * Fixed an issue with include directives in OpenSSH config files.
     Thanks go to GitHub users sethholmes and tazle for reporting this
     issue and providing analysis and a proposed fix.
VersionDeltaFile
1.60+7-4security/py-asyncssh/Makefile
1.51+4-4security/py-asyncssh/distinfo
1.18+4-1security/py-asyncssh/PLIST
+15-93 files

NetBSD/pkgsrc eyxJVG6devel/py-rpds-py distinfo cargo-depends.mk

   py-rpds-py: updated to 2026.6.3

   2026.6.3
   Unknown changes
VersionDeltaFile
1.28+19-31devel/py-rpds-py/distinfo
1.19+5-9devel/py-rpds-py/cargo-depends.mk
1.31+2-2devel/py-rpds-py/Makefile
+26-423 files

NetBSD/pkgsrc hJhuqRPgraphics/py-Pillow distinfo Makefile

   py-Pillow: updated to 12.3.0

   12.3.0

   Security
   Prevent decompression bomb when parsing PDF
   CVE 2026-55798: WindowsViewer.get_command injection
   EPS image infinite loop
   JPEG2000 image memory usage
   McIdas out-of-bounds (OOB) read
   Out-of-bounds (OOB) read when saving 1 mode TGA images
   Out-of-bounds (OOB) write from large RankFilter sizes
   Out-of-bounds (OOB) write from Image.paste()
   Out-of-bounds (OOB) write in ImageCmsTransform
   CVE 2026-54059, CVE 2026-54060, CVE 2026-55379: Prevent FontFile decompression bomb
   CVE 2026-55380: Prevent GD decompression bomb
VersionDeltaFile
1.74+4-4graphics/py-Pillow/distinfo
1.103+3-3graphics/py-Pillow/Makefile
+7-72 files

NetBSD/pkgsrc dgs2Fl1doc CHANGES-2026

   Removed devel/py-subprocess32
VersionDeltaFile
1.4166+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc DpdQWpDdevel Makefile, devel/py-subprocess32 Makefile distinfo

   py-subprocess32: removed; already included in Python 3
VersionDeltaFile
1.4647+1-2devel/Makefile
1.14+1-1devel/py-subprocess32/Makefile
1.12+1-1devel/py-subprocess32/distinfo
1.3+1-1devel/py-subprocess32/PLIST
1.3+1-1devel/py-subprocess32/patches/patch-configure
1.2+0-0devel/py-subprocess32/DESCR
+5-66 files

NetBSD/pkgsrc AJ0e6JKmk/tools defaults.mk

   mk/tools/defaults.mk: Document that TOOL bash must be >= 4.0

   macOS ships bash 3 (despite bash4 being released in 2009), and pkgsrc
   had a few accomodations for packages that needed bash where bash 3 did
   not work.  pkgsrc no longer uses macOS system bash as a tool, as such
   workarounds being in packages is not reasonable.

   Requiring system bash >= 5 to allow use as TOOL would seem reasonable,
   as bash 5.0 was released in 2019.  However, SmartOS uses bash 4, and
   years of bulk builds have turned up no problems from bash 4 as a tool.
   Therefore, there is no reason to exclude 4, as the point of setting
   minimums is to limit human effort and secondarily reduce needless
   machine resource use.

   While this commit only adds a comment, it provides a basis to
     - remove any workarounds for bash 3 as a tool
     - disable TOOLS_PLATFORM.bash settings on platforms where bash is < 4
     - add a workaround to a package if it needs TOOL bash but is not ok
       with bash 4

    [2 lines not shown]
VersionDeltaFile
1.67+2-1mk/tools/defaults.mk
+2-11 files

NetBSD/pkgsrc Vr4uiDwwww/py-flask-wtf Makefile

   py-flask-wtf: remove py-flask-babelex from TEST_DEPENDS as it is not supported anymore
VersionDeltaFile
1.32+1-2www/py-flask-wtf/Makefile
+1-21 files

NetBSD/pkgsrc h3Bmt3Mdevel/py-pydispatcher Makefile PLIST

   py-pydispatcher: converted to wheel.mk
VersionDeltaFile
1.9+7-4devel/py-pydispatcher/Makefile
1.3+5-6devel/py-pydispatcher/PLIST
+12-102 files

NetBSD/pkgsrc 0003Ys9devel/py-pretend PLIST Makefile

   py-pretend: converted to wheel.mk
VersionDeltaFile
1.2+6-5devel/py-pretend/PLIST
1.5+5-3devel/py-pretend/Makefile
+11-82 files

NetBSD/pkgsrc Qvz4labdoc CHANGES-2026

   Updated www/py-hishel, textproc/py-humanize
VersionDeltaFile
1.4165+3-1doc/CHANGES-2026
+3-11 files

NetBSD/pkgsrc Ca4iNxbdoc TODO

   doc/TODO: + arti-2.5.0, enchant2-2.8.17, plasma-6.7.2, rumdl-0.2.27.
VersionDeltaFile
1.27520+5-3doc/TODO
+5-31 files