BSD Commit Log Search

   (graphics/R-interp) Missing file added

   Updated net/ndpi, net/ntopng

   fix clickhouse-cpp buildlink

   ntopng: updated to 6.6

   6.6

   Breakthroughs

   New Autonomous Systems Dashboards, Sankeys, and comprehensive AS statistics
   Enhanced flow exporters and probes statistics with dedicated pages
   Improved SNMP devices polling
   Major flow collection code rework and optimizations
   Native support for ClickHouse Cloud with SSL connections
   Direct flows dump mode for real-time ClickHouse export

   Improvements

   Add comprehensive AS ranking detection and alerting with configurable thresholds
   Implement ASN traffic rules for better AS-level traffic management
   Enhance ASN live flow aggregation
   Add conditional ASN aggregation type based on ASN mode

    [37 lines not shown]

   (textproc/R-readxl) fix build against R-4.6.0

   ndpi: updated to 5.0

   5.0

   Major Changes

   Create a new nDPI fingerprint, combining TCP fingerprint, JA4 fingepriint and TLS SHA1 certificate (or JA3S if SHA1 is missing). See: https://www.ntop.org/beyond-ja3-ja4-introducing-ndpi-traffic-fingerprint/
   Add detection of (TLS/QUIC/HTTP) flows whose hostname was not previously resolved via DNS. See: https://www.ntop.org/when-snis-cannot-be-trusted/
   Add support for an unlimited number of (custom) protocols.
   Extend custom rules (see https://github.com/ntop/nDPI/blob/dev/example/protos.txt for some examples):
   match via JA4
   match via nDPI fingerprint
   match via HTTP URL
   support for category and breed in custom rules

   py-tqdm: updated to 4.68.2

   4.68.2

   revert accidental change to ascii default
   UnicodeEncodeError: 'charmap' codec can't encode characters in position 6-7: character maps to <undefined> can be fixed by installing tqdm!=4.68.0,!=4.68.1
   misc docs updates
   fix links
   replace stray rst -> md syntax
   consistent "progress bar" terminology
   tests: fix coverage

   Updated security/py-asyncssh, textproc/py-pdf, devel/py-jupyter_client, databases/py-lmdb

   py-lmdb: updated to 2.2.1

   2.2.1

   Improvements

   - ``lmdb.aio`` async wrapper methods (on ``AsyncEnvironment``,
       ``AsyncTransaction``, and ``AsyncCursor``) are now real class
       attributes rather than synthesized by ``__getattr__``, making them
       visible to ``dir()``, ``inspect.signature()``, ``help()``, IPython,
       and stubtest. Non-callable attributes still proxy through.

   - Added type stubs for the ``lmdb.aio`` module.

   Fixes

   - Fix a segmentation fault on Linux/aarch64 when an ``Environment`` is
       closed from a different thread than the one holding an active write
       transaction. ``Environment.close()`` now waits for the owning thread

    [18 lines not shown]

   py-jupyter_client: updated to 8.9.1

   8.9.1

   Bugs fixed
   - Fix restart with curve encryption enabled

   py-pdf: updated to 6.13.1

   6.13.1, 2026-06-08

   Security (SEC)
   - Prevent infinite loops when processing threads/articles

   py-asyncssh: updated to 2.23.1

   2.23.1 (6 Jun 2026)

   * Fixed an SCP path traversal issue. Thanks go to Jaden Furtado for
     reporting this issue.

   * Expanded previous fix to block unsafe user substitutions in server
     config. Thanks go to GitHub user cesabici-bit for reporting this
     issue.

   * Fixed default value for reuse_address and reuse_port, matching
     the behaavior of asyncio.create_server(). Thanks go to Alexander
     Shlemin for reporting the inconsistency.

   (graphics/R-interp) Fix build against R-4.6.0

   (lang/R-cpp11) API/ABI requirement updated

   doc: Updated lang/R-cpp11 to 0.5.5

   (lang/R-cpp11) Updated 0.5.1 to 0.5.5

   # cpp11 0.5.5

   * Fixed an issue where `cpp11::stop()` and `cpp11::warning()` calls
     with the same template instantiation could cause a crash on some
     systems (#491, #295).

   * `cpp_source()` now works with multiple `file`s (#492).

   # cpp11 0.5.4

   * Removed non-API usage of `R_NamespaceRegistry`.

   * Fixed a bug with `CPP11_USE_FMT` where the input was not being
     correctly wrapped in `fmt::runtime()`.

   # cpp11 0.5.3


    [13 lines not shown]

   Updated databases/clickhouse-cpp, archivers/py-zopfli

   py-zopfli: updated to 0.4.3

   0.4.3
   Add Windows ARM64 wheel to CI build matrix

   clickhouse-cpp: updated to 2.6.2

   2.6.2

   Add experimental Bazel support

   Implement interactive, pull based (BeginSelect and NextBlock) API for selecting data

   Bind the new ColumnBool to Bool columns instead of ColumnUInt8
   NOTE: If you are using CMake, ColumnBool is not enabled by default to avoid breaking existing clients. Use -DCH_MAP_BOOL_TO_UINT8=OFF to bind ColumnBool to ClickHouse Bool columns. In the future, this option will be set to OFF by default and later removed completely.

   Fix parsing of quoted identifiers, e.g. Tuple(`a.b` Int8)

   Add support for named tuples such as Tuple(foo Int8, bar String)

   Allow access to raw data of ColumnArray

   Remove support for nested exceptions


    [5 lines not shown]

   doc: Updated databases/mariadb1011-server to 10.11.18

   mariadb1011: Update to 10.6.27

   This update fixes various stability and security issues.

   Verified to build on NetBSD, FreeBSD, macOS, and Linux, with the
   exception of mariadb1011-embedded (quite messy).

   doc: Updated shells/oh-my-posh to 29.15.0

   shells/oh-my-posh: update to 29.15.0

   Bug Fixes

       docs: correct async setting reference and ETag caching note (94f627c)
       docs: resolve markdownlint violations (36d285f)
       mcp: harden endpoint and add discovery file (91e647d)
       mcp: hoist message var and add isError to tool responses (20fc648)
       website: use dangerouslySetInnerHTML for JSON-LD scripts (a43f4bc)

   Features

       dsc: add skipExistingInit (33c72f0), closes #7560
       website: add AI agent discovery files (74d3656)
       website: improve agent readiness meta and MCP CORS (31c53cd)

   editres: make sure build finds the correct app-defaults dir.

   wget: fix build with nettle-4

   Updated net/yt-dlp, devel/py-xbe

   py-xbe: updated to 1.0.4

   1.0.4
   Unknown changes

   yt-dlp: updated to 2026.6.9

   yt-dlp 2026.06.09

   Important changes

   The minimum supported versions of Deno, Node, and Bun have been raised.
   The minimum required version of Deno is now v2.3.0; supported Node versions are v22 and up; Bun support has been deprecated and limited to versions 1.2.11 through 1.3.14.
   Security
   Usage of vulnerable conversions (e.g. %()s) with the --exec option is an all-too-common pitfall. To remedy this, --exec now only allows safe conversions in its command templates.
   Most users can simply replace %(...)s with %(...)q in their --exec argument(s). Numeric conversions are unaffected by this change. Using unsafe conversions with --exec poses a significant security risk. Read more
   [CVE-2026-50019] File Downloader cookie leak with curl
   Impact is limited to users of --downloader curl; cookies are now properly passed to curl so that it respects their scope
   [CVE-2026-50023] Dangerous file type creation via insufficient filename sanitization
   Writing files with the extensions .desktop, .url, or .webloc is now only allowed in the context of --write-link functionality
   [CVE-2026-50574] Arbitrary code execution via manifest downloads with aria2c
   Impact is limited to users of --downloader aria2c
   Support for downloading HLS and DASH formats with aria2c has been removed. Users affected by this change should migrate to use -N for concurrent fragment downloads via the native downloader

   Updated net/libtorrent-rasterbar, net/bird

   bird: updated to 3.3.1

   3.3.1
   Many fixes, several security issues