PowerDNS Authoritative Server 4.6.4 in trunk is EOL since 03/2024 #399
Comments
github-actions bot
pushed a commit
that referenced
this issue
Jan 2, 2025
# dtplyr 1.3.1 * Fix for failing R CMD check. * `dtplyr` no longer directly depends on `crayon`. # dtplyr 1.3.0 ## Breaking changes * dplyr and tidyr verbs no longer dispatch to dtplyr translations when used directly on data.table objects. `lazy_dt()` must now explicitly be called by the user (#312). ## New features * `across()` output can now be used as a data frame (#341). * `.by`/`by` has been implemented for `mutate()`, `summarise()`, `filter()`, and the `slice()` family (#399). * New translations for `add_count()`, `pick()` (#341), and `unite()`. * `min_rank()`, `dense_rank()`, `percent_rank()`, & `cume_dist()` are now mapped to their `data.table` equivalents (#396). ## Performance improvements * `arrange()` now utilizes `setorder()` when possible for improved performance (#364). * `select()` now drops columns by reference when possible for improved performance (#367). * `slice()` uses an intermediate variable to reduce computation time of row selection (#377). ## Minor improvements and bug fixes * dtplyr no longer directly depends on `ellipsis`. * Chained operations properly prevent modify-by-reference (#210). * `across()`, `if_any()`, and `if_all()` evaluate the `.cols` argument in the environment from which the function was called. * `count()` properly handles grouping variables (#356). * `desc()` now supports use of `.data` pronoun inside in `arrange()` (#346). * `full_join()` now produces output with correctly named columns when a non-default value for `suffix` is supplied. Previously the `suffix` argument was ignored (#382). * `if_any()` and `if_all()` now work without specifying the `.fns` argument (@mgirlich, #325) and for a list of functions specified in the (@mgirlich, #335). * `pivot_wider()`'s `names_glue` now works even when `names_from` contains `NA`s (#394). * In `semi_join()` the `y` table is again coerced to a lazy table if `copy = TRUE` (@mgirlich, #322). * `mutate()` can now use `.keep`. * `mutate()`/`summarize()` correctly translates anonymous functions (#362). * `mutate()`/`transmute()` now supports `glue::glue()` and `stringr::str_glue()` without specifying `.envir`. * `where()` now clearly errors because dtplyr doesn't support selection by predicate (#271). # dtplyr 1.2.2 * Hot patch release to resolve R CMD check failures.
github-actions bot
pushed a commit
that referenced
this issue
Jan 5, 2025
### Changes in 0.4.25 (2023-08-21)
1. Fix `getQuote.yahoo()` for API changes. Thanks to Ethan B. Smith for the
report and patch! Also add error message for users in GDPR countries, since
we cannot automatically consent to GDPR and the request fails without
consent.
[#392](joshuaulrich/quantmod#392)
[#393](joshuaulrich/quantmod#393)
[#395](joshuaulrich/quantmod#395)
1. Fix `getQuote.yahoo()` when the user only requested metrics that do not have
have a value for 'regularMarketTime'. Set the value to NA in these cases
so the output remains the same regardless of whether the endpoint returns
a 'regularMarketTime' or not. Thanks to @mehdiMBH for the report!
[#255](joshuaulrich/quantmod#255)
1. Add fields to `getQuote.yahoo()` that are returned when no fields are
explicitly requested. Thanks to @Courvoisier13 for the report!
[#335](joshuaulrich/quantmod#335)
1. Add intraday endpoint to `getSymbols.yahoo()`. Thanks to @kapsner for the
report and patch! Also allow suppressing the warning if more than 7 days
of data are requested (@eddelbuettel).
[#351](joshuaulrich/quantmod#351)
[#381](joshuaulrich/quantmod#381)
[#399](joshuaulrich/quantmod#399)
1. Add warning if `getSymbols()` is called with tickers that are reserved words
because accessing them requires back-quotes (e.g. ``NA``).
[#401](joshuaulrich/quantmod#401)
1. Fix `allReturns()` when 'subset' is specified. Thanks to @Panagis1980 for
the report!
[#402](joshuaulrich/quantmod#402)
### Changes in 0.4.24 (2023-07-17)
1. Fix `getSymbols.oanda()` URL. Thanks to @macray76 for the report.
[#387](joshuaulrich/quantmod#387)
### Changes in 0.4.23 (2023-06-14)
1. Fix `getQuote.yahoo()` error. Thanks to Ethan B. Smith for the report and
patch!
[#382](joshuaulrich/quantmod#382)
[#383](joshuaulrich/quantmod#383)
1. Add `name` argument to `add_TA()`. Thanks to @SamoPP for the suggestion!
[#377](joshuaulrich/quantmod#377)
[#205](joshuaulrich/quantmod#205)
github-actions bot
pushed a commit
that referenced
this issue
Feb 9, 2025
0.5.6 (2025-02-08) Security Fix Fixes CVE-2025-25186 (GHSA-7fc5-f82f-cx69): A malicious server can exhaust client memory by sending APPENDUID or COPYUID responses with very large uid-set ranges. Net::IMAP::UIDPlusData expands these ranges into arrays of integers. Fix with minor API changes Set config.parser_use_deprecated_uidplus_data to false to replace UIDPlusData with AppendUIDData and CopyUIDData. These classes store their UIDs as Net::IMAP::SequenceSet objects (not expanded into arrays of integers). Code that does not handle APPENDUID or COPYUID responses should not see any difference. Code that does handle these responses may need to be updated. For v0.3.8, this option is not available For v0.4.19, the default value is true. For v0.5.6, the default value is :up_to_max_size. For v0.6.0, the only allowed value will be false (UIDPlusData will be removed from v0.6). Mitigate with backward compatible API Adjust config.parser_max_deprecated_uidplus_data_size to limit the maximum UIDPlusData UID set size. When config.parser_use_deprecated_uidplus_data == true, larger sets will crash. When config.parser_use_deprecated_uidplus_data == :up_to_max_size, larger sets will use AppendUIDData or CopyUIDData. For v0.3,8, this limit is hard-coded to 10,000. For v0.4.19, this limit defaults to 1000. For v0.5.6, this limit defaults to 100. For v0.6.0, the only allowed value will be 0 (UIDPlusData will be removed from v0.6). Please Note: unhandled responses If the client does not add response handlers to prune unhandled responses, a malicious server can still eventually exhaust all client memory, by repeatedly sending malicious responses. However, net-imap has always retained unhandled responses, and it has always been necessary for long-lived connections to prune these responses. This is not significantly different from connecting to a trusted server with a long-lived connection. To limit the maximum number of retained responses, a simple handler might look something like the following: limit = 1000 imap.add_response_handler do |resp| next unless resp.respond_to?(:name) && resp.respond_to?(:data) name = resp.name code = resp.data.code&.name if resp.data.in?(Net::IMAP::ResponseText) imap.responses(name) { _1.slice!(0...-limit) } imap.responses(code) { _1.slice!(0...-limit) } end Added * Ensure ResponseParser config is mutable and non-global by @nevans in #381 * Add SequenceSet methods for querying about duplicates by @nevans in #384 * Add SequenceSet#each_ordered_number by @nevans in #386 * Add SequenceSet#find_ordered_index by @nevans in #396 * Add SequenceSet#ordered_at by @nevans in #397 * Add AppendUIDData and CopyUIDData classes by @nevans in #400 * Add parser config for APPENDUID/COPYUID, Deprecate UIDPlusData by @nevans in #401 Fixed * Fix SequenceSet#append when its @string is nil by @nevans in #376 * Fix SequenceSet merging in another SequenceSet by @nevans in #377 * Fix SequenceSet count dups with multiple "*" by @nevans in #387 * Re-raise #starttls error from receiver thread by @nevans in #395 Documentation * Fix SequenceSet#cover? documentation by @nevans in #379 * Document COPYUID in tagged vs untagged responses by @nevans in #398 Other Changes * Move UIDPlusData to its own file by @nevans in #391 * Parse uid-set as sequence-set without * by @nevans in #393 Miscellaneous * Bump step-security/harden-runner from 2.10.2 to 2.10.3 by @dependabot in #375 * Bump step-security/harden-runner from 2.10.3 to 2.10.4 by @dependabot in #380 * Improve test coverage for SequenceSet enums by @nevans in #383 * Refactor SequenceSet enumerator tests by @nevans in #385 * Add "irb" to Gemfile to silence warning by @nevans in #388 * Omit flaky test with macOS platform by @hsbt in #389 * Improve UIDPlusData test coverage by @nevans in #392 * Rename UIDPLUS test file for consistency by @nevans in #399
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Would it be possible to get a supported version of PowerDNS in trunk? Current version is 4.9.3. I would really like to switch back from lx to trunk :-)
The text was updated successfully, but these errors were encountered: