NetBSD/pkgsrc DN7kh2Xdoc CHANGES-2026

   doc: Updated textproc/p5-XML-Bare to 0.53nb14
VersionDeltaFile
1.4503+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc i3I75cwtextproc/p5-XML-Bare Makefile distinfo

   p5-XML-Bare: fix CVE-2026-13401

   using upstream patch

   Bump PKGREVISION.
VersionDeltaFile
1.22+6-3textproc/p5-XML-Bare/Makefile
1.8+4-1textproc/p5-XML-Bare/distinfo
+10-42 files

NetBSD/pkgsrc t22buBmwww/firefox distinfo, www/firefox/patches patch-third__party_rust_mtu_src_bindings_netbsd.rs

   www/firefox: Try to fix builds under both of NetBSD/{i386,amd64}
VersionDeltaFile
1.2+13-13www/firefox/patches/patch-third__party_rust_mtu_src_bindings_netbsd.rs
1.585+2-2www/firefox/distinfo
+15-152 files

NetBSD/pkgsrc 5KjjgPxwww/p5-HTTP-Date Makefile distinfo

   Pullup ticket #7180 - requested by taca
   www/p5-HTTP-Date: Security fix

   Revisions pulled up:
   - www/p5-HTTP-Date/Makefile                                     1.25-1.26
   - www/p5-HTTP-Date/distinfo                                     1.8-1.9

   ---
      Module Name:      pkgsrc
      Committed By:     wiz
      Date:             Sun Jun 28 06:21:36 UTC 2026

      Modified Files:
        pkgsrc/www/p5-HTTP-Date: Makefile distinfo

      Log Message:
      p5-HTTP-Date: update to 6.07.

      6.07      2026-06-25 15:12:09Z

    [30 lines not shown]
VersionDeltaFile
1.24.8.1+5-4www/p5-HTTP-Date/Makefile
1.7.22.1+4-4www/p5-HTTP-Date/distinfo
+9-82 files

NetBSD/pkgsrc HnpkGIzsecurity/p11-kit distinfo PLIST

   Pullup ticket #7179 - requested by taca
   security/p11-kit: Security fix

   Revisions pulled up:
   - security/p11-kit/Makefile                                     1.45
   - security/p11-kit/PLIST                                        1.16
   - security/p11-kit/distinfo                                     1.36

   ---
      Module Name:      pkgsrc
      Committed By:     adam
      Date:             Fri Jul 10 15:41:45 UTC 2026

      Modified Files:
        pkgsrc/security/p11-kit: Makefile PLIST distinfo

      Log Message:
      p11-kit: updated to 0.26.4


    [12 lines not shown]
VersionDeltaFile
1.35.4.1+4-4security/p11-kit/distinfo
1.15.4.1+2-2security/p11-kit/PLIST
1.44.4.1+2-2security/p11-kit/Makefile
+8-83 files

NetBSD/pkgsrc BAzW5Fytextproc/p5-ack Makefile distinfo

   Pullup ticket #7178 - requested by taca
   textproc/p5-ack: Security fix

   Revisions pulled up:
   - textproc/p5-ack/Makefile                                      1.44
   - textproc/p5-ack/distinfo                                      1.22

   ---
      Module Name:      pkgsrc
      Committed By:     wiz
      Date:             Wed Jul  8 22:19:44 UTC 2026

      Modified Files:
        pkgsrc/textproc/p5-ack: Makefile distinfo

      Log Message:
      p5-ack: update to 3.10.0.

      v3.10.0     Sun Jun  7 11:50:37 CDT 2026

    [51 lines not shown]
VersionDeltaFile
1.43.8.1+4-4textproc/p5-ack/Makefile
1.21.26.1+4-4textproc/p5-ack/distinfo
+8-82 files

NetBSD/pkgsrc HQzyGTatextproc/p5-YAML-PP Makefile distinfo

   Pullup ticket #7177 - requested by taca
   textproc/p5-YAML-PP: Security fix

   Revisions pulled up:
   - textproc/p5-YAML-PP/Makefile                                  1.17
   - textproc/p5-YAML-PP/distinfo                                  1.10

   ---
      Module Name:      pkgsrc
      Committed By:     wiz
      Date:             Wed Jul  8 22:07:06 UTC 2026

      Modified Files:
        pkgsrc/textproc/p5-YAML-PP: Makefile distinfo

      Log Message:
      p5-YAML-PP: update to 0.41.0.

      v0.41.0 2026-06-17 22:01:34+02:00

    [33 lines not shown]
VersionDeltaFile
1.16.8.1+4-5textproc/p5-YAML-PP/Makefile
1.9.24.1+4-4textproc/p5-YAML-PP/distinfo
+8-92 files

NetBSD/pkgsrc J4SqKV1devel/p5-String-Util distinfo Makefile

   Pullup ticket #7176 - requested by taca
   devel/p5-String-Util: Security fix

   Revisions pulled up:
   - devel/p5-String-Util/Makefile                                 1.17
   - devel/p5-String-Util/distinfo                                 1.9

   ---
      Module Name:      pkgsrc
      Committed By:     wiz
      Date:             Wed Jul  8 08:04:59 UTC 2026

      Modified Files:
        pkgsrc/devel/p5-String-Util: Makefile distinfo

      Log Message:
      p5-String-Util: update to 1.36.

      Changes not available, but:

    [2 lines not shown]
VersionDeltaFile
1.8.4.1+4-4devel/p5-String-Util/distinfo
1.16.4.1+2-2devel/p5-String-Util/Makefile
+6-62 files

NetBSD/pkgsrc g3Eh17Bdatabases/p5-DBI distinfo Makefile

   Pullup ticket #7175 - requested by taca
   databases/p5-DBI: Security fix

   Revisions pulled up:
   - databases/p5-DBI/Makefile                                     1.97-1.99
   - databases/p5-DBI/distinfo                                     1.61-1.63

   ---
      Module Name:      pkgsrc
      Committed By:     wiz
      Date:             Sun Jun 28 06:19:22 UTC 2026

      Modified Files:
        pkgsrc/databases/p5-DBI: Makefile distinfo

      Log Message:
      p5-DBI: update to 1.649.

      1.649 - 2026-06-22, H.Merijn Brand

    [38 lines not shown]
VersionDeltaFile
1.60.2.1+4-4databases/p5-DBI/distinfo
1.96.2.1+2-2databases/p5-DBI/Makefile
+6-62 files

NetBSD/pkgsrc 7zBLYcemail/postfix distinfo Makefile.common

   Pullup ticket #7174 - requested by taca
   mail/postfix: Security fix

   Revisions pulled up:
   - mail/postfix/Makefile                                         1.358
   - mail/postfix/Makefile.common                                  1.66-1.67
   - mail/postfix/distinfo                                         1.225-1.226

   ---
      Module Name:      pkgsrc
      Committed By:     taca
      Date:             Sat Jul  4 04:13:48 UTC 2026

      Modified Files:
        pkgsrc/mail/postfix: Makefile Makefile.common distinfo

      Log Message:
      mail/postfix: update to 3.11.4


    [51 lines not shown]
VersionDeltaFile
1.224.2.1+4-4mail/postfix/distinfo
1.65.2.1+2-2mail/postfix/Makefile.common
1.357.2.1+1-2mail/postfix/Makefile
+7-83 files

NetBSD/pkgsrc hYFrLswnet/libcares distinfo Makefile

   Pullup ticket #7173 - requested by taca
   net/libcares: Security fix

   Revisions pulled up:
   - net/libcares/Makefile                                         1.55
   - net/libcares/PLIST                                            1.36
   - net/libcares/distinfo                                         1.47

   ---
      Module Name:      pkgsrc
      Committed By:     wiz
      Date:             Mon Jul  6 21:03:09 UTC 2026

      Modified Files:
        pkgsrc/net/libcares: Makefile PLIST distinfo

      Log Message:
      libcares: update to 1.34.7.


    [72 lines not shown]
VersionDeltaFile
1.46.6.1+4-4net/libcares/distinfo
1.54.6.1+2-2net/libcares/Makefile
1.35.6.1+2-2net/libcares/PLIST
+8-83 files

NetBSD/pkgsrc BoVnBQ0security/openssh distinfo Makefile

   Pullup ticket #7172 - requested by taca
   security/openssh: Security fix

   Revisions pulled up:
   - security/openssh/Makefile                                     1.293
   - security/openssh/distinfo                                     1.131

   ---
      Module Name:      pkgsrc
      Committed By:     wiz
      Date:             Mon Jul  6 16:31:47 UTC 2026

      Modified Files:
        pkgsrc/security/openssh: Makefile distinfo

      Log Message:
      openssh: update to 10.4p1.

      Changes since OpenSSH 10.3

    [196 lines not shown]
VersionDeltaFile
1.130.2.1+4-4security/openssh/distinfo
1.292.2.1+2-2security/openssh/Makefile
+6-62 files

NetBSD/pkgsrc cBA3R7edoc CHANGES-2026

   doc: Updated www/firefox-l10n to 152.0.6
VersionDeltaFile
1.4502+2-1doc/CHANGES-2026
+2-11 files

NetBSD/pkgsrc su714QNwww/firefox-l10n distinfo Makefile

   www/firefox-l10n: Update to 152.0.6

   * Sync with www/firefox-152.0.6.
VersionDeltaFile
1.294+310-310www/firefox-l10n/distinfo
1.312+2-2www/firefox-l10n/Makefile
+312-3122 files

NetBSD/pkgsrc xLAOfNLdoc CHANGES-2026 TODO

   doc: Updated www/firefox to 152.0.6
VersionDeltaFile
1.4501+2-1doc/CHANGES-2026
1.27594+1-2doc/TODO
+3-32 files

NetBSD/pkgsrc 6CAumMEwww/firefox mozilla-common.mk distinfo, www/firefox/patches patch-dom_media_platforms_ffmpeg_FFmpegVulkanVideoDecoder.cpp patch-third__party_rust_mtu_src_bindings_netbsd.rs

   www/firefox: Update to 152.0.6

   * WebGL does not work. webgl.out-of-process workaround was removed.
     Disable WebGL by default.

   Cnangelog:
   152.0.6:
   New
     * Smart Window includes several enhancements:

   Fixed

     * Fixed an issue that prevented email tracking protection from being disabled
       in the redesigned Firefox Settings. (Bug 2049331)

     * Fixed a hang that could occur after using a file picker dialog on macOS 26.
       (Bug 2053177)

     * Fixed the homepage not loading for some enterprise configurations that set

    [189 lines not shown]
VersionDeltaFile
1.1+85-0www/firefox/patches/patch-dom_media_platforms_ffmpeg_FFmpegVulkanVideoDecoder.cpp
1.1+69-0www/firefox/patches/patch-third__party_rust_mtu_src_bindings_netbsd.rs
1.316+17-14www/firefox/mozilla-common.mk
1.584+11-9www/firefox/distinfo
1.665+4-5www/firefox/Makefile
1.3+4-4www/firefox/patches/patch-python_sites_mach.txt
+190-323 files not shown
+196-379 files

NetBSD/pkgsrc 1i33WgZdoc CHANGES-2026

   Updated devel/py-subvertpy, devel/py-gitpython
VersionDeltaFile
1.4500+3-1doc/CHANGES-2026
+3-11 files

NetBSD/pkgsrc 4C9jmQ6devel/py-gitpython distinfo Makefile

   py-gitpython: updated to 3.1.52

   3.1.52

   A security fix for
   https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-rwj8-pgh3-r573.

   3.1.51

   This is primarily a security release. It prevents additional argument-injection
   paths that could allow execution of arbitrary commands or writing to arbitrary
   files through unsafe Git options (GHSA-956x-8gvw-wg5v), and closes bypasses of
   the existing protections using abbreviated long options or joined short options
   (GHSA-2f96-g7mh-g2hx).

   The release also improves support for relative worktree paths and diffs against
   the empty tree, preserves stderr from failed diff processes, supports relative
   configuration include paths, and includes assorted documentation, typing, test,
   and CI improvements.
VersionDeltaFile
1.30+4-4devel/py-gitpython/distinfo
1.34+2-2devel/py-gitpython/Makefile
+6-62 files

NetBSD/pkgsrc sV85Lzcdevel/py-subvertpy PLIST Makefile

   py-subvertpy: updated to 0.11.1

   0.11.1
   Unknown changes
VersionDeltaFile
1.7+15-3devel/py-subvertpy/PLIST
1.70+8-7devel/py-subvertpy/Makefile
1.13+4-4devel/py-subvertpy/distinfo
1.1+1-0devel/py-subvertpy/ALTERNATIVES
+28-144 files

NetBSD/pkgsrc 1qNqRxMdoc CHANGES-2026

   Updated net/py-cloudflare, misc/py-tibs
VersionDeltaFile
1.4499+3-1doc/CHANGES-2026
+3-11 files

NetBSD/pkgsrc X68nHLomisc/py-tibs distinfo Makefile

   py-tibs: updated to 1.0.0

   1.0.0

   This is the first stable release. The documented public API is now intended
   to remain compatible across future 1.x releases.

   Backwardly incompatible changes

   * Tightened automatic promotion to `Tibs` and `Mutibs`. Constructors and other
     bit-sequence arguments now accept only unambiguous inputs: existing
     `Tibs`/`Mutibs` objects, strings, `bytes`/`bytearray`/`memoryview`, and strict
     list or tuple bit patterns containing only `True`, `False`, `0` or `1`.
     Arbitrary iterables, file-like objects such as `io.BytesIO`, `array.array`,
     and numeric lists such as `[1, 2, 3]` no longer silently convert through
     truthiness. Use `from_bools(...)` for truthy iterables, `from_bytes(...)` for
     explicit byte data, and `from_values(...)` for fixed-width numeric values.
VersionDeltaFile
1.8+4-4misc/py-tibs/distinfo
1.8+2-2misc/py-tibs/Makefile
+6-62 files

NetBSD/pkgsrc DuqJetjnet/py-cloudflare PLIST distinfo

   py-cloudflare: updated to 5.5.0

   5.5.0 (2026-07-10)

   Breaking Changes

   * **ssl:** The `recommendations` sub-resource has been removed. `client.ssl.recommendations.get()` and the `RecommendationGetResponse` type are no longer available.
   * **email_routing:** The `list` method has been removed from `client.email_routing.rules`. Only `create`, `update`, `delete`, and `get` remain. The `RuleListParams` type has been removed.
   * **zero_trust:** The `UserPolicyCheckGeo` type has been removed from `cloudflare.types.zero_trust.access.applications`. The geo information is now inlined as `UserIdentityGeo` within `UserPolicyCheckListResponse`.
   * **zero_trust:** The pagination type for `client.zero_trust.devices.ip_profiles.list()` changed from `SyncSinglePage` to `SyncV4PagePaginationArray`. Code that relied on single-page iteration semantics may need adjustment.
   * **aisearch:** The `SourceParamsWebCrawlerStoreOptions` type and the `store_options` field on `SourceParamsWebCrawler` have been removed from instance create/update params and responses. The `parse_type` enum value `"feed-rss"` has been removed (only `"sitemap"` and `"crawl"` remain). The `search_query` field on `InstanceSearchResponse` and `NamespaceSearchResponse` changed from required `str` to `Optional[str]`. A new required `query_kind` field (`Literal["text", "image", "multimodal"]`) has been added to search responses.
   * **zero_trust:** In `Organization` and related params, `MfaSSHPivKeyRequirements` has been renamed to `MfaPivKeyRequirements`, the `mfa_ssh_piv_key_requirements` field has been renamed to `mfa_piv_key_requirements`, and the `allowed_authenticators` enum value `"ssh_piv_key"` has been changed to `"piv_key"`.

   Features

   * **email_auth:** add email_auth resource
   * **moq:** add moq resource
   * **logs:** add log_explorer sub-resource with query, datasets, and available datasets
   * **email_security:** add bulk message operations to investigate

    [10 lines not shown]
VersionDeltaFile
1.5+4,871-337net/py-cloudflare/PLIST
1.4+4-4net/py-cloudflare/distinfo
1.6+3-3net/py-cloudflare/Makefile
+4,878-3443 files

NetBSD/pkgsrc vpFZd4bdoc CHANGES-2026

   Updated databases/py-peewee, devel/py-typer, lang/py-python-discovery, devel/py-jinxed
VersionDeltaFile
1.4498+5-1doc/CHANGES-2026
+5-11 files

NetBSD/pkgsrc emhVRtHdevel/py-jinxed distinfo Makefile

   py-jinxed: updated to 2.1.0

   2.1.0
   Add missing "extended" capabilities
VersionDeltaFile
1.2+4-4devel/py-jinxed/distinfo
1.2+2-2devel/py-jinxed/Makefile
+6-62 files

NetBSD/pkgsrc EALqzB7lang/py-python-discovery distinfo Makefile

   py-python-discovery: updated to 1.4.4

   Bug fixes - 1.4.4

   - Parse the debug build flag in interpreter specs - ``python3.13d`` and Debian's ``python3.13-dbg`` /
     ``python3.13-debug`` now select a ``Py_DEBUG`` interpreter instead of being misread as an ISA named ``dbg``.
     Resolving a virtualenv to its base interpreter also checks the free-threaded and debug ABI flags, so a debug or
     free-threaded environment no longer resolves to a release build of the same version
VersionDeltaFile
1.9+4-4lang/py-python-discovery/distinfo
1.9+2-2lang/py-python-discovery/Makefile
+6-62 files

NetBSD/pkgsrc 3N4quyZdevel/py-typer distinfo Makefile

   py-typer: updated to 0.27.0

   0.27.0

   Breaking Changes

   Update metavar printing.
VersionDeltaFile
1.11+4-4devel/py-typer/distinfo
1.11+2-2devel/py-typer/Makefile
+6-62 files

NetBSD/pkgsrc 2Ze8T66databases/py-peewee distinfo Makefile

   py-peewee: updated to 4.2.3

   4.2.3

   * Fix a compound select (`UNION`/`INTERSECT`/`EXCEPT`) used as a correlated
     subquery emitting a phantom alias for the correlated outer table in every
     branch but the left-most, producing invalid SQL (e.g. `no such column:
     t4.id`). The right-hand branch renders in a fresh alias scope that no longer
     resolved the outer source's existing alias, it now inherits the enclosing
     scope's aliases while still assigning fresh aliases to its own sources.
   * Fix full-text search `weights` passed as a `dict` being mis-applied to the
     wrong columns. For FTS3/4 the implicit `docid` primary-key was included when
     building the weight list, shifting every column by one (raising `IndexError`
     with the Python ranking UDF, silently mis-scoring with the Cython one), for
     FTS5, `UNINDEXED` columns were skipped even though `bm25()` weights are
     positional across all columns. The list form of `weights` was unaffected.
   * Fix `.cte()` clearing the source query's CTE list in place: converting a query
     that carried a `with_cte(...)` clause into a CTE stripped the clause from that
     query, so reusing it afterward referenced an undeclared CTE. The query is now

    [25 lines not shown]
VersionDeltaFile
1.102+4-4databases/py-peewee/distinfo
1.137+2-2databases/py-peewee/Makefile
+6-62 files

NetBSD/pkgsrc PefB0Tkdoc CHANGES-2026

   Updated net/opentofu, databases/py-lmdb, www/py-uvicorn
VersionDeltaFile
1.4497+4-1doc/CHANGES-2026
+4-11 files

NetBSD/pkgsrc FgvvwUSwww/py-uvicorn distinfo Makefile

   py-uvicorn: updated to 0.51.0

   0.51.0

   Restart workers with overlap on SIGHUP for near-zero-downtime reloads
   Remove colorama from the standard extra
VersionDeltaFile
1.59+4-4www/py-uvicorn/distinfo
1.68+2-2www/py-uvicorn/Makefile
+6-62 files

NetBSD/pkgsrc v2Fq58Sdatabases/py-lmdb distinfo Makefile

   py-lmdb: updated to 2.3.0

   2.3.0

   Bug fixes

   - ``lmdb.aio``: an async write transaction is now pinned to a private
       single-thread executor, so its ``begin``, operations, and
       ``commit``/``abort`` all run on one OS thread. Previously they were
       dispatched across the shared, multi-threaded default executor, which could
       release LMDB's thread-bound robust write mutex on the wrong thread (the
       failure mode of 465). ``AsyncCursor``/``AsyncEnvironment`` close on
       context exit now also acquire the lock and run on the executor, so closing
       can no longer race an in-flight operation on the same transaction.

   - Fix committing values larger than ~2 GiB. A single LMDB value is written
       in one call, exceeding per-call platform write limits: on POSIX,
       ``write()`` returns a short count that was treated as fatal, so the
       commit failed with ``mdb_txn_commit: Input/output error``; the bundled

    [63 lines not shown]
VersionDeltaFile
1.12+4-4databases/py-lmdb/distinfo
1.14+2-2databases/py-lmdb/Makefile
+6-62 files