Hi, The below patch updates stagit 1.1 to 1.2.
libgit2 recently added an option GIT_OPT_SET_OWNER_VALIDATION which prevented other users from reading a repository. In the case of stagit it is not a security issue and broke a normal use-case. This new version disables the option. Also stagit makes use of OpenBSD pledge and unveil and locks down reading other files from the filesystem or writing to them etc. For more information see: https://git.codemadness.org/stagit/commit/1357ad5181f80a99fe9c436af134e947ec7f4d29.html https://github.blog/2022-04-12-git-security-vulnerability-announced/ Patch: diff --git www/stagit/Makefile www/stagit/Makefile index 17811d07b2e..dbee855efb8 100644 --- www/stagit/Makefile +++ www/stagit/Makefile @@ -1,6 +1,6 @@ COMMENT = static git page generator -DISTNAME = stagit-1.1 +DISTNAME = stagit-1.2 CATEGORIES = www diff --git www/stagit/distinfo www/stagit/distinfo index f654e79ccc0..c35a8ab11a4 100644 --- www/stagit/distinfo +++ www/stagit/distinfo @@ -1,2 +1,2 @@ -SHA256 (stagit-1.1.tar.gz) = ZvatG+PWtkVfr5z90pMpZEt/8qoxI/vxN1FpxgvadcU= -SIZE (stagit-1.1.tar.gz) = 19648 +SHA256 (stagit-1.2.tar.gz) = Vlm9i6fhQX7dQPe3eBqOomk5q2qlE0CQI4NfBIdZIcU= +SIZE (stagit-1.2.tar.gz) = 19818 -- Kind regards, Hiltjo
