Le Thu, Sep 19, 2024 at 02:31:40PM +0100, Stuart Henderson a écrit :
> On 2024/09/19 09:21, K R wrote:
> > Hi ports@,
> > 
> > On Mon, Jun 10, 2024 at 12:07 PM Kirill A. Korinsky <kirill@korins.ky> wrote:
> > >
> > > ports@,
> > >
> > > I've noticed that devel/py-twisted had missed test dependencies.
> > 
> > Speaking of Twisted, the current version (24.7.0) fixes two CVEs:
> > 
> > CVE-2024-41810
> > CVE-2024-41671
> > 
> > The version available on 7.5 is py3-twisted-22.10.0.  Any chance to
> > have an updated version for the 7.6 release?
> 
> No, not for 7.6. If it was a simple update with just security fixes then
> maybe we could still get it in, but in the versions between 22.10.0 and
> now there are a lot of deprecations and removals and there are too
> many other ports depending on this to check to see whether they need
> adjusting.
> 
> Update diff below if someone wants to help testing for post-release
> (py-incremental must be updated too).

Fwiw, devel/py-buildot still runs fine with that twisted/incremental
version. thanks for the update !

Landry