Update security/py-trezor-agent to 0.13.0
Note: The version number is lower now because the version number was wrong
before. Although both libagent and trezor-agent are distributed in the same
tarball, the version name in the tarball name is only for libagent.
Update security/py-libagent to 0.16.0
- Test on Python 3.13 by @romanz in #492
- Support SSH CA generation by @romanz in #493
- replace pkg_resources for python 3.12 by @branchv in #480
- Dedup sending age response by @romanz in #497
- Parse SSH server host key as well by @romanz in #507
- Drop keepkey support by @romanz in #511
- Drop ledger support by @romanz in #513
- libagent: Add USB IDs for Jade Plus by @nitramiz in #510
- Switch to trezorlib 0.20 to support TS7 by @romanz in #512
Additionally, two patches have been applied on top of 0.16.0:
- Lookup GnuPG user ID (instead of assuming it's the first one) in #517
- Fix passphrase support on Trezor in #519
textproc/rumdl: update to 0.1.33
[0.1.33] - 2026-02-28
Added
CLI: Add --fixable and --unfixable flags to control which rules are allowed to auto-fix. --fixable acts as an allowlist (only listed rules can fix), --unfixable acts as a blocklist (takes precedence). Both accept comma-separated rule names or aliases (#472)
Fixed
CLI: Resolve rule name aliases in fixable/unfixable config lists so that aliases like commands-show-output correctly match canonical names like MD014
Rules: Detect links and images inside MkDocs admonitions, content tabs, and markdown HTML blocks
Docs: Fix incorrect MD014 documentation that claimed the rule cannot be auto-fixed — it removes $ prompts from commands without output, matching markdownlint-cli behavior (#473)
Changed
Docs: Add feature comparison matrix and cold start benchmarks for all 8 comparison tools
[0.1.32] - 2026-02-27
[67 lines not shown]
py-lxml-html-clean: updated to 0.4.4
0.4.4 (2026-02-26)
Bugs fixed
* Fixed a bug where Unicode escapes in CSS were not properly decoded
before security checks. This prevents attackers from bypassing filters
using escape sequences.
* Fixed a security issue where ``<base>`` tags could be used for URL
hijacking attacks. The ``<base>`` tag is now automatically removed
whenever the ``<head>`` tag is removed (via ``page_structure=True``
or manual configuration), as ``<base>`` must be inside ``<head>``
according to HTML specifications.
mail/postfix: update to 3.10.8
3.10.8 (2026-02-19)
Fixes for all supported Postfix releases:
* Improved Milter error handling for messages that arrive over a
long-lived SMTP connection, by changing the default
milter_default_action from "tempfail" to the new "shutdown"
action (i.e. disconnect the remote SMTP client).
The problem was that after a single Milter error, Postfix could
tempfail all messages that the client sends over a long-lived
connection, even if the Milter error was only temporary. This
problem was reported by Ankit Kulkarni.
* Bugfix (defect introduced: Postfix 2.11): "posttls-finger -v
-v -v" terminated with a panic, caused by recursive logging.
Reported by Geert Hendrickx, diagnosed by Viktor Dukhovni, and
fixed by Wietse.
www/ruby-aws-partitions: update to 1.1220.0
1.1220.0 (2026-02-25)
* Feature - Updated the partitions source data the determines the AWS
service regions and endpoints.
1.1219.0 (2026-02-24)
* Feature - Added support for enumerating regions for
Aws::ElementalInference.
1.1218.0 (2026-02-23)
* Feature - Updated the partitions source data the determines the AWS
service regions and endpoints.
