aboutsummaryrefslogtreecommitdiff
path: root/lang
Commit message (Collapse)AuthorAge
* rust: Update to 1.78.0Tianling Shen2024-05-05
| | | | | | | - Switch back to .gz tarball - Replace local bootstrap cache hack with upstreamed option Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* lua-eco: update to 3.5.0Jianhui Zhao2024-05-04
| | | | | | | MQTT code refactoring has been done since 3.5.0 that mqtt.so no longer exists. Signed-off-by: Jianhui Zhao <zhaojh329@gmail.com>
* lua: add new package with version 5.4Christian Marangi2024-04-28
| | | | | | | | | | | | Add new lua version 5.4 required by new version of nmap. Patches are copied from lua 5.3. - Readline patch has to be reworked as lua 5.4 now supports no readline for Linux but still needs some tweaks for macOS and bsd systems. - Patch shared lib required some rework. Signed-off-by: Christian Marangi <ansuelsmth@gmail.com>
* lua-eco: update to 3.4.1Jianhui Zhao2024-04-24
| | | | Signed-off-by: Jianhui Zhao <zhaojh329@gmail.com>
* node: bump to v20.12.2Hirokazu MORIKAWA2024-04-24
| | | | | | | | | This is a security release. Notable Changes * CVE-2024-27980 - Command injection via args parameter of child_process.spawn without shell option enabled on Windows Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* perl: fix not a Mach-O file on macOSGeorgi Valkov2024-04-23
| | | | | | | | | | | | | Reverts [1] to resolve the following build error on macOS: /Volumes/wrt3200/openwrt/staging_dir/hostpkg/usr/bin/perl installperl --destdir=/Volumes/wrt3200/openwrt/build_dir/target-arm_cortex-a9+vfpv3-d16_musl_eabi/perl/perl-5.38.2/ipkg-install WARNING: You've never run 'make test' or some tests failed! (Installing anyway.) /usr/bin/perl5.38.2 error: /Applications/Xcode.app/Contents/Developer/Toolchains/XcodeDefault.xctoolchain/usr/bin/install_name_tool: input file: /Volumes/wrt3200/openwrt/build_dir/target-arm_cortex-a9+vfpv3-d16_musl_eabi/perl/perl-5.38.2/ipkg-install/usr/bin/perl5.38.2 is not a Mach-O file [1] https://github.com/Perl/perl5/commit/88efce38149481334db7ddb932f9b74eaaa9765b Signed-off-by: Georgi Valkov <gvalkov@gmail.com>
* luasocket: switch to local tarballsRosen Penev2024-04-23
| | | | Signed-off-by: Rosen Penev <rosenp@gmail.com>
* luaexpat: use local tarballsRosen Penev2024-04-23
| | | | | | Smaller and avoids badly named tarball with just the version. Signed-off-by: Rosen Penev <rosenp@gmail.com>
* lua-eco: update to 3.4.0Jianhui Zhao2024-04-22
| | | | Signed-off-by: Jianhui Zhao <zhaojh329@gmail.com>
* python-lxml: bump to version 5.2.1Alexandru Ardelean2024-04-21
| | | | | | Also added python-cython/host as a build dependency. Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
* lua-eco: Fix compilation with musl libc 1.2.5Hauke Mehrtens2024-04-19
| | | | | | Support POSIX basename used in musl libc 1.2.5. Signed-off-by: Hauke Mehrtens <hauke@hauke-m.de>
* Merge pull request #23939 from commodo/python-updates1Alexandru Ardelean2024-04-19
|\ | | | | django,django-restframework: bump versions
| * django-restframework: bump to version 3.15.1Alexandru Ardelean2024-04-16
| | | | | | | | Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
| * django: bump to version 5.0.4Alexandru Ardelean2024-04-16
| | | | | | | | Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
* | Merge pull request #23955 from mhei/php8-update-to-8.3.6Michael Heimpold2024-04-19
|\ \ | | | | | | php8: update to 8.3.6
| * | php8: update to 8.3.6Michael Heimpold2024-04-17
| |/ | | | | | | | | | | | | | | | | | | This fixes: - CVE-2024-1874 - CVE-2024-2756 - CVE-2024-2757 - CVE-2024-3096 Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | Merge pull request #23953 from commodo/cython-update1Josef Schlehofer2024-04-18
|\ \ | | | | | | python-cython: bump to version 3.0.10
| * | python-cython: bump to version 3.0.10Alexandru Ardelean2024-04-17
| |/ | | | | | | Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
* | python-jinja2: create /host targetMarcus Folkesson2024-04-18
| | | | | | | | | | | | | | | | | | Make the python-jinja2/host target available for the build environment to be used with e.g. the PKG_BUILD_DEPENDS list. This is needed for an upcoming package (libcamera). Signed-off-by: Marcus Folkesson <marcus.folkesson@gmail.com>
* | python-yaml: create /host targetMarcus Folkesson2024-04-18
|/ | | | | | | | | Make the python-yaml/host target available for the build environment to be used with e.g. the PKG_BUILD_DEPENDS list. This is needed for an upcoming package (libcamera). Signed-off-by: Marcus Folkesson <marcus.folkesson@gmail.com>
* erlang: update to 26.2.4krant2024-04-14
| | | | Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* Merge pull request #23837 from krant/numpyAlexandru Ardelean2024-04-09
|\ | | | | numpy: update to 1.26.4
| * numpy: update to 1.26.4krant2024-04-07
| | | | | | | | | | | | - Refresh patches Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* | Merge pull request #23824 from JiaY-shi/goJosef Schlehofer2024-04-08
|\ \ | |/ |/| golang: update to 1.22.2
| * golang: update to 1.22.2Shi JiaYang2024-04-06
| | | | | | | | | | | | | | | | | | | | | | | | | | | | go1.22.2 (released 2024-04-03) includes a security fix to the net/http package, as well as bug fixes to the compiler, the go command, the linker, and the encoding/gob, go/types, net/http, and runtime/trace packages. View the release notes for more information: https://go.dev/doc/devel/release#go1.22.2 Find out more: https://github.com/golang/go/issues?q=milestone%3AGo1.22.2 Signed-off-by: Shi JiaYang <shi05275@163.com>
* | treewide: refresh hashes after move to use ZSTD as defaultRobert Marko2024-04-07
| | | | | | | | | | | | | | | | With the recent move to using ZSTD as the default compression format for packaging git repo clones we must refresh all of the hashes for the packages feed as well. Signed-off-by: Robert Marko <robimarko@gmail.com>
* | node: April 3, 2024 Security ReleasesHirokazu MORIKAWA2024-04-07
|/ | | | | | | | | | | | | This is a security release Notable Changes * CVE-2024-27983 - Assertion failed in node::http2::Http2Session::~Http2Session() leads to HTTP/2 server crash- (High) * CVE-2024-27982 - HTTP Request Smuggling via Content Length Obfuscation - (Medium) * llhttp version 9.2.1 * undici version 5.28.4 Changed to use gz according to main-snapshot Signed-off-by: Hirokazu MORIKAWA <morikw2@gmail.com>
* python-orjson: update to version 3.10.0Timothy M. Ace2024-04-03
| | | | | | | | | | | | | Relevant changes since previous 3.9.13: - FIXED: Fix crash serializing str introduced in 3.9.11 - FIXED: Implement recursion limit of 1024 on orjson.loads() - FIXED: Use byte-exact read on str formatting SIMD path to avoid crash - Build now depends on Rust 1.72 or later - Support serializing numpy.float16 (numpy.half) - sdist uses metadata 2.3 instead of 2.1 - Improve Windows PyPI builds Signed-off-by: Timothy M. Ace <openwrt@timothyace.com>
* luajit2: update to v2.1-20240314Javier Marcet2024-04-01
| | | | Signed-off-by: Javier Marcet <javier@marcet.info>
* lua-eco: update to 3.3.0Jianhui Zhao2024-04-01
| | | | Signed-off-by: Jianhui Zhao <zhaojh329@gmail.com>
* perl-text-csv_xs: Update to 1.53Philip Prindeville2024-03-29
| | | | Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
* rust: update to 1.77.0krant2024-03-26
| | | | | | | | - Restore patch hunk mis-deleted in dccb910 - Refresh patches - Remove --enable-missing-tools configure option deleted in the upstream Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* perl-cgi: Update to 4.64Philip Prindeville2024-03-25
| | | | Signed-off-by: Philip Prindeville <philipp@redfish-solutions.com>
* erlang: update to 26.2.3krant2024-03-22
| | | | Signed-off-by: krant <aleksey.vasilenko@gmail.com>
* Merge pull request #23695 from mhei/php8-update-to-8.3.4Michael Heimpold2024-03-21
|\ | | | | php8: update to 8.3.4
| * php8: update to 8.3.4Michael Heimpold2024-03-17
| | | | | | | | Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* | lualanes: update to version 3.16.3 and use tarballJosef Schlehofer2024-03-21
| | | | | | | | | | | | | | | | | | | | | | | | 1. Update it to version 3.16.3 Release notes: https://github.com/LuaLanes/lanes/releases/tag/v3.16.3 2. Change to download tarball instead of checking out Git sources In the previous commit (in the Fixes tag), it was changed to Git sources without any reason. Let's revert it back. Let's use again tagged release. Fixes: b93e5b45b1daac827d429b51d8763226268f2b9a ("lualanes: Version bump to v3.16.2") Signed-off-by: Josef Schlehofer <pepe.schlehofer@gmail.com>
* | golang: Update to 1.22.1Zephyr Lykos2024-03-20
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Go 1.22.1 contains the following security fixes: - CVE-2024-24783: crypto/x509: Verify panics on certificates with an unknown public key algorithm - CVE-2023-45290 net/http: memory exhaustion in Request.ParseMultipartForm - CVE-2023-45289 net/http, net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect - CVE-2024-24785 html/template: errors returned from MarshalJSON methods may break template escaping - CVE-2024-24784 net/mail: comments in display names are incorrectly handled https://go.dev/doc/devel/release#go1.22.1 https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg Signed-off-by: Zephyr Lykos <git@mochaa.ws>
* | golang: Update to 1.22.0Zephyr Lykos2024-03-20
| | | | | | | | | | | | | | | | | | Added a third bootstrap stage since go1.22 (and onwards) requires at least go1.20.14 to build.[1] [1]: https://go.dev/doc/go1.22#bootstrap Signed-off-by: Zephyr Lykos <git@mochaa.ws>
* | Merge pull request #23648 from commodo/python-updates1Alexandru Ardelean2024-03-19
|\ \ | | | | | | python-{pytz,dateutil,evdev},django: bump versions
| * | django: bump to version 5.0.3Alexandru Ardelean2024-03-14
| | | | | | | | | | | | Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
| * | python-evdev: bump to version 1.7.0Alexandru Ardelean2024-03-14
| | | | | | | | | | | | Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
| * | python-dateutil: bump to version 2.9.0.post0Alexandru Ardelean2024-03-14
| | | | | | | | | | | | Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
| * | python-pytz: bump to version 2024.1Alexandru Ardelean2024-03-14
| |/ | | | | | | Signed-off-by: Alexandru Ardelean <alex@shruggie.ro>
* / luafilesystem: add missing license informationFlorian Eckert2024-03-19
|/ | | | Signed-off-by: Florian Eckert <fe@dev.tdt.de>
* lua-struct: add packagejasle2024-03-04
| | | | | | | | | lua-struct is a implementation of binary packing/unpacking in pure lua. Resulting-package: * lua-struct Signed-off-by: jasle <jasle@riseup.net>
* python-bcrypt: Update to 4.1.2Fabian Lipken2024-03-02
| | | | Signed-off-by: Fabian Lipken <dynasticorpheus@gmail.com>
* golang: Update to 1.21.7Tianling Shen2024-03-02
| | | | | | | | | | go1.21.6 (released 2024-01-09) includes fixes to the compiler, the runtime, and the crypto/tls, maps, and runtime/pprof packages. go1.21.7 (released 2024-02-06) includes fixes to the compiler, the go command, the runtime, and the crypto/x509 package. Signed-off-by: Tianling Shen <cnsztl@immortalwrt.org>
* php8/pecl8-pecl-*: use https URLs for PKG_SOURCE_URLsMichael Heimpold2024-02-26
| | | | | | | Most packages already use https URLs and for PHP and PECL package downloads https is working properly. Signed-off-by: Michael Heimpold <mhei@heimpold.de>
* rust: update to 1.76.0krant2024-02-25
| | | | | | | - Use .xz for source archive - Refresh patches Signed-off-by: krant <aleksey.vasilenko@gmail.com>
Powered by cgit, Themed by Ted Yin.