py-pyobjc: updated to 12.2
12.2
Update framework bindings for macOS 26.5 SDK
The following code failed at the last line in previous versions:
class MyObject(NSObject):
pass
obj = MyObject()
obj.alloc = MyObject.alloc
print(obj.alloc) # Raised AttributeError
Backward incompatible changes: CFBagCreate and CFBagCreateMutable now match the API in Objective-C, that is, a value for the callbacks argument must be passed (must be kCFTypeBagCallBacks).
* Fix retain count management for the callbacks registered with DARegisterDiskEjectApprovalCallback, DARegisterDiskMountApprovalCallback, and DARegisterDiskUnmountApprovalCallback in DiskArbitration bindings.
“Hidden” instance methods were not hidden when looking them up as an attribute on the class, but found an unbound method as if the method was not hidden.
[77 lines not shown]
py-idna: updated to 3.18
3.18
- When decoding a domain, add a `display` argument that will pass
through invalid labels rather than raising an exception.
py-service_identity: updated to 26.1.0
26.1.0
Added
- Python 3.14 and 3.15 are now officially supported.
Changed
- *service-identity* now uses *cryptography*'s Rust-based ASN.1 decoder and doesn't depend on *pyasn1* and *pyasn1-modules* anymore.
As a result, the oldest supported pyOpenSSL backend combination is now *pyOpenSSL* 26.1.0 with *cryptography* 47.0.0.
Fixed
- Verifying a single-label hostname (e.g. `localhost`) against a wildcard certificate pattern now raises `VerificationError` cleanly instead of crashing with an opaque `ValueError`.
py-syrupy: updated to 5.3.1
5.3.1
Fixes
fix(test): mark pydantic and attrs as dependencies for running internal tests
5.3.0
Features
feat: add --snapshot-update-new-only flag
py-kubernetes: updated to 36.0.2
36.0.2
Kubernetes API Version: v1.36.1
Uncategorized
- Restored backward compatibility for `Configuration.auth_settings()`:
the legacy `api_key['authorization']` lookup is honored as a fallback
when `api_key['BearerToken']` is not set, fixing 401 Unauthorized
regressions seen after upgrading to v36.0.0
grpc py-grpcio py-grpcio-testing py-grpcio-tools: updated to 1.81.0
1.81.0
Core
[EventEngine] Fix a potential use-after-free error on Windows.
[ssl] Server side handshaker factory stores a map of key signers.
[Core] Fix completion queue shutdown race on weak memory models (ARM).
[EventEngine] Fix a Windows race that causes an assertion error.
[grpc_error] enable error_flatten experiment in OSS.
[Python] Trim Python2 backward compatiblity syntax - removed (object) inheritance.
Objective-C
[ObjC] Add receiveNextMessage to GRPCUnaryProtoCall.
Python
[12 lines not shown]
postgresql-timescaledb: updated to 2.27.2
2.27.2
Bugfixes
Remove refresh policy check when adding columnstore policy
Fix wrong results and crashes when grouping by columns that are not in the SELECT list with vectorized aggregation or columnar index scan
Skip ColumnarIndexScan when the qual contains a SubPlan
nushell: updated to 0.113.1
0.113.1
This patch release fixes issues introduced in 0.113.0, including YAML string
quoting behavior, reliability problems across the idx command family, and a
REPL regression in commandline edit.
py-snowballstemmer: updated to 3.1.1
3.1.1
+ Skip classifier for Sesotho which isn't yet in the official list of
trove classifiers.
+ Add classifier to indicate support for Python 3.14.
py-distlib: updated to 0.4.1
0.4.1
- scripts
- Fix path traversal bug in handling entry points which allowed escaping the scripts directory.
Thanks to tonghuaroot for the comprehensive report.
- tests
- Fix: Change test function following a reorganization which happened in the Python stdlib.
harfbuzz: updated to 14.2.1
14.2.1
Various AAT shaping fixes: legacy mort contextual offsets (which could produce out-of-font glyph IDs), in-place deleted-glyph replacements, and overflow in obsolete offset math.
Fix Arabic PUA fallback shaping for the isolated lam-alef-maksura ligature.
Fix float-to-int overflow in avar2 mapping with malformed fonts.
Harden buffer verification after detecting non-monotone clusters.
Various COLR v1 fixes: fix handling of .notdef without paint, round alpha consistently, and report the root clip under the font transform.
Various Glyph-extents fixes: inclusive rounding, and floating-point scaling before rounding so the reported box always covers the glyph.
Various Subsetting fixes: keep the palt spacing feature by default, raise the repacker MAX_SPACES limit, fix a repacker crash on shared LigatureSet nodes, guard gvar size overflow on 32-bit, and fix the post glyph-name sort comparator on macOS.
Replace std::sort with an internal quicksort, removing leaked std:: symbols from the libharfbuzz ABI.
Harden size computations with saturating arithmetic against 32-bit overflow.
Various improvements to the experimental Rust shaper (HarfRust) and font functions (fontations): honor custom font funcs, key shape plans on features, faster buffer handling, and update to HarfRust 0.8.
Various fixes to the experimental harfbuzz-gpu and harfbuzz-vector libraries, including a harfbuzz-vector heap buffer overflow and Windows build fixes.
Map the Hrkt (Katakana or Hiragana) script tag to the kana OpenType tag.
Build configuration: new HB_CONFIG_OVERRIDE_LAST_H override header, decouple HB_NO_DRAW from HB_NO_CFF, and an optional hb-allocator Cargo feature.
Various build, CI, and fuzzing fixes.
adguardhome: updated to 0.107.77
0.107.77
Security
Authorization in GLiNET mode is no longer vulnerable to path traversal attacks.
NOTE: This is CVE-2026-41448. We thank @djnnvx for reporting this security issue.
Added
New reason query parameter in GET /control/querylog. See openapi/openapi.yaml for the full description.
Deprecated
Query parameter response_status in GET /control/querylog is now deprecated. Use new reason query parameter instead.
