Make staging-next from cherry-picked last staging-next-26.05#534248
Merged
Conversation
Changelog: https://github.com/libexpat/libexpat/blob/R_2_8_1/expat/Changes Diff: libexpat/libexpat@R_2_8_0...R_2_8_1 Fixes: CVE-2026-45186 (cherry picked from commit fe1ca2c) (cherry picked from commit d7c0b19)
Upstream diff: linux-audit/audit-userspace@cb13fe7...v4.1.4 Adds support for io_uring and syscalls of Linux 7.0 kernels. (cherry picked from commit 2b8ed1f) (cherry picked from commit 5aece02)
changelog: https://github.com/AcademySoftwareFoundation/openexr/releases/tag/v3.4.11 diff: AcademySoftwareFoundation/openexr@v3.4.10...v3.4.11 (cherry picked from commit 32f67f0) (cherry picked from commit 34b3da5)
changelog: https://github.com/AcademySoftwareFoundation/openapv/releases/tag/v0.2.1.3-fix diff: AcademySoftwareFoundation/openapv@v0.2.1.2...v0.2.1.3-fix (cherry picked from commit 02d2fdd) (cherry picked from commit ce58349)
https://github.com/saghul/aiodns/releases/tag/v4.0.1 https://github.com/saghul/aiodns/releases/tag/v4.0.2 https://github.com/saghul/aiodns/releases/tag/v4.0.3 (cherry picked from commit 78f51bc) (cherry picked from commit aea1edb)
https://github.com/martinblech/xmltodict/blob/v1.0.4/CHANGELOG.md (cherry picked from commit 70d339f) (cherry picked from commit 3a75354)
Diff: Kludex/python-multipart@0.0.22...0.0.29 Changelog: https://github.com/Kludex/python-multipart/blob/0.0.29/CHANGELOG.md (cherry picked from commit 83594b9) (cherry picked from commit 5010b8e)
Diff: aio-libs/aiodns@v4.0.3...v4.0.4 Changelog: https://github.com/saghul/aiodns/releases/tag/v4.0.4 (cherry picked from commit a53c6a3) (cherry picked from commit 10cf133)
Diff: doctest/doctest@v2.5.0...v2.5.2 Changelog: https://github.com/doctest/doctest/releases/tag/v2.5.2 (cherry picked from commit 7bd3d8d) (cherry picked from commit be6ec59)
invoke is not a required dependency of duplicity. It does not appear in upstream's requirements.txt nor pyproject.toml: - https://gitlab.com/duplicity/duplicity/-/blob/dev/requirements.txt - https://gitlab.com/duplicity/duplicity/-/blob/dev/pyproject.toml (cherry picked from commit b6254c4) (cherry picked from commit 747ba2d)
Changes: - https://github.com/simdjson/simdjson/releases/tag/v4.6.1 - https://github.com/simdjson/simdjson/releases/tag/v4.6.2 - https://github.com/simdjson/simdjson/releases/tag/v4.6.3 - https://github.com/simdjson/simdjson/releases/tag/v4.6.4 (cherry picked from commit 3803be5) (cherry picked from commit c0e4b6b)
changelog: https://github.com/assimp/assimp/blob/master/CHANGES.md diff: assimp/assimp@v6.0.4...v6.0.5 (cherry picked from commit b0af552) (cherry picked from commit cfdafe6)
Not-cherry-picked-because: Guarded to darwin, will remove guard on staging/staging-26.05 (cherry picked from commit c10ba49)
https://hydra.nixos.org/build/331199232 (cherry picked from commit 3b6967c) (cherry picked from commit ffc75d7)
.starlette upgrade in 83ece5c broke compatibility: https://hydra.nixos.org/build/331250021/nixlog/6/tail Upstream fixes that v0.13.0 and updating past 0.13.3 would need resolving - fastcore>=1.12.41 not satisfied by version 1.12.39 (which isn't great approach for stable 26.05 which motivates this commit) https://github.com/AnswerDotAI/fasthtml/releases (cherry picked from commit 6a56b38) (from PR NixOS#533848 ) (cherry picked from commit 18a1ef9)
Contributor
Member
Author
|
4 tasks
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Why? We can get those security fixes pretty fast, as the whole estimated rebuild work seems to be only a fraction of the usual
staging-nextiteration thanks to 26.05 not diverging from master too much yet.How? Basically cherry-picked all non-merge commits introduced during the last staging-next-26.05, with minor manual adjustments. (some were already applied, some didn't make sense to pick; basically all were cherry-picked from
stagingnot long ago, so it wasn't lot of work)Details: