[EPEL-devel] Fedora EPEL 10.1 updates-testing report

[updates]

The following Fedora EPEL 10.1 Security updates need testing:
 Age  URL
   4  https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2025-1d38cae5ee   
yasm-1.3.0^20250625git121ab15-1.el10_1


The following builds have been pushed to Fedora EPEL 10.1 updates-testing

    cairomm-1.14.5-10.el10_1
    dist-git-client-1.2-1.el10_1
    image-builder-24-1.el10_1
    mosquitto-2.0.22-1.el10_1
    plantuml-1.2025.4-1.el10_1
    python-absl-py-2.3.1-1.el10_1
    python-cppheaderparser-2.7.4-18.el10_1
    python-hvac-2.3.0-1.el10_1
    root-6.36.02-1.el10_1
    rust-onefetch-2.25.0-1.el10_1
    rust-onefetch-ascii-2.25.0-1.el10_1
    rust-onefetch-image-2.25.0-1.el10_1
    rust-onefetch-manifest-2.25.0-1.el10_1
    rust-owo-colors-4.2.2-1.el10_1
    snapd-2.70-1.el10_1
    trivy-0.64.1-2.el10_1

Details about builds:


================================================================================
 cairomm-1.14.5-10.el10_1 (FEDORA-EPEL-2025-7d954cfca7)
 C++ API for the cairo graphics library
--------------------------------------------------------------------------------
Update Information:

Initial package for EPEL10
--------------------------------------------------------------------------------
ChangeLog:

* Fri Apr 25 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 1.14.5-9
- Backport FSF address removal and related corrections
* Thu Jan 16 2025 Fedora Release Engineering <rel...@fedoraproject.org> - 
1.14.5-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Wed Dec 11 2024 Benjamin A. Beasley <c...@musicinmybrain.net> - 1.14.5-7
- Add a SourceLicense field
* Thu Oct 31 2024 Benjamin A. Beasley <c...@musicinmybrain.net> - 1.14.5-6
- Invoke %meson in %conf rather than in %build
* Wed Jul 17 2024 Fedora Release Engineering <rel...@fedoraproject.org> - 
1.14.5-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Tue Jan 23 2024 Fedora Release Engineering <rel...@fedoraproject.org> - 
1.14.5-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Fri Jan 19 2024 Fedora Release Engineering <rel...@fedoraproject.org> - 
1.14.5-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Thu Sep 28 2023 Benjamin A. Beasley <c...@musicinmybrain.net> - 1.14.5-1
- Update to 1.14.5 (close RHBZ#2240942)
* Wed Jul 19 2023 Fedora Release Engineering <rel...@fedoraproject.org> - 
1.14.4-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
* Sat Jun 17 2023 Benjamin A. Beasley <c...@musicinmybrain.net> - 1.14.4-9
- Use new (rpm 4.17.1+) bcond style
* Thu Jun 15 2023 Björn Persson <Bjorn@Rombobjörn.se> - 1.14.4-8
- Removed superfluous processing of the OpenPGP key.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2374177 - Please branch and build cairomm for EPEL 10
        https://bugzilla.redhat.com/show_bug.cgi?id=2374177
--------------------------------------------------------------------------------


================================================================================
 dist-git-client-1.2-1.el10_1 (FEDORA-EPEL-2025-28a573245d)
 Get sources for RPM builds from DistGit repositories
--------------------------------------------------------------------------------
Update Information:

Add configuration for CentOS SIG DistGit
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jul 14 2025 Jakub Kadlcik <fros...@email.cz> 1.2-1
- Add configuration for CentOS SIG packages
--------------------------------------------------------------------------------


================================================================================
 image-builder-24-1.el10_1 (FEDORA-EPEL-2025-6ae9bb61a5)
 An image building executable using osbuild
--------------------------------------------------------------------------------
Update Information:

Automatic update for image-builder-24-1.el10_1.
Changelog for image-builder
* Mon Jul 14 2025 Packit <he...@packit.dev> - 24-1
Changes with 24
----------------
  * Always set rhsm.Facts when generating manifests (#239)
    * Author: Tomáš Hozza, Reviewers: Achilleas Koutsou, Simon de Vlieger
  * doc/01-usage.md: avoid multiple h1 in one document (#235)
    * Author: Florian Schüller, Reviewers: Michael Vogt, Simon de Vlieger
  * doc/10-faq.md: add image types documentation (#236)
    * Author: Florian Schüller, Reviewers: Michael Vogt, Simon de Vlieger
  * docs: subscription basic info (#205)
    * Author: Lukáš Zapletal, Reviewers: Brian C. Lane, Michael Vogt
  * readme: mention mount for container (#232)
    * Author: Simon de Vlieger, Reviewers: Brian C. Lane, Jelle van der Waa,
Michael Vogt
— Somewhere on the Internet, 2025-07-09
* Wed Jun 25 2025 Packit <he...@packit.dev> - 23-1
Changes with 23
----------------
  * cmd/describe: ensure that all image types can be described (HMS-7044) (#231)
    * Author: Tomáš Hozza, Reviewers: Achilleas Koutsou, Simon de Vlieger
— Somewhere on the Internet, 2025-06-25
Automatic update for image-builder-23-1.el10_1.
Changelog for image-builder
* Wed Jun 25 2025 Packit <he...@packit.dev> - 23-1
Changes with 23
----------------
  * cmd/describe: ensure that all image types can be described (HMS-7044) (#231)
    * Author: Tomáš Hozza, Reviewers: Achilleas Koutsou, Simon de Vlieger
— Somewhere on the Internet, 2025-06-25
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jul 14 2025 Packit <he...@packit.dev> - 24-1
Changes with 24
----------------
  * Always set rhsm.Facts when generating manifests (#239)
    * Author: Tomáš Hozza, Reviewers: Achilleas Koutsou, Simon de Vlieger
  * doc/01-usage.md: avoid multiple h1 in one document (#235)
    * Author: Florian Schüller, Reviewers: Michael Vogt, Simon de Vlieger
  * doc/10-faq.md: add image types documentation (#236)
    * Author: Florian Schüller, Reviewers: Michael Vogt, Simon de Vlieger
  * docs: subscription basic info (#205)
    * Author: Lukáš Zapletal, Reviewers: Brian C. Lane, Michael Vogt
  * readme: mention mount for container (#232)
    * Author: Simon de Vlieger, Reviewers: Brian C. Lane, Jelle van der Waa, 
Michael Vogt

— Somewhere on the Internet, 2025-07-09
* Wed Jun 25 2025 Packit <he...@packit.dev> - 23-1
Changes with 23
----------------
  * cmd/describe: ensure that all image types can be described (HMS-7044) (#231)
    * Author: Tomáš Hozza, Reviewers: Achilleas Koutsou, Simon de Vlieger

— Somewhere on the Internet, 2025-06-25
--------------------------------------------------------------------------------


================================================================================
 mosquitto-2.0.22-1.el10_1 (FEDORA-EPEL-2025-806aaae925)
 Open Source MQTT v5/v3.1.x Broker
--------------------------------------------------------------------------------
Update Information:

Update to 2.0.22
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jul 14 2025 Peter Robinson <pbrobin...@fedoraproject.org> - 2.0.22-1
- Update to 2.0.22
- Update for older releases to address sbin dir
* Thu Mar  6 2025 Peter Robinson <pbrobin...@fedoraproject.org> - 2.0.21-1
- Update to 2.0.21
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2056989 - Incorrect library path in libmosquitto.pc and 
libmosquittopp.pc
        https://bugzilla.redhat.com/show_bug.cgi?id=2056989
  [ 2 ] Bug #2318146 - CVE-2024-8376 mosquitto: sending specific sequences of 
packets may trigger memory leak [epel-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=2318146
  [ 3 ] Bug #2322946 - CVE-2024-10525 mosquitto: heap buffer overflow in 
my_subscribe_callback [epel-9]
        https://bugzilla.redhat.com/show_bug.cgi?id=2322946
--------------------------------------------------------------------------------


================================================================================
 plantuml-1.2025.4-1.el10_1 (FEDORA-EPEL-2025-8142f79474)
 Program to generate UML diagram from a text description
--------------------------------------------------------------------------------
Update Information:

Update to version 1.2025.4
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jul 14 2025 blinxen <h-k...@hotmail.com> - 1:1.2025.4-1
- Update to version 1.2025.4 (rhbz#2375331)
* Sun Jun 15 2025 blinxen <h-k...@hotmail.com> - 1:1.2025.3-1
- Update to version 1.2025.3 (rhbz#2369629)
* Sat Jun 14 2025 blinxen <h-k...@hotmail.com> - 1:1.2025.2-2
- Add runtime dependency on graphviz
--------------------------------------------------------------------------------


================================================================================
 python-absl-py-2.3.1-1.el10_1 (FEDORA-EPEL-2025-dc8d2c8e2c)
 Abseil Python Common Libraries
--------------------------------------------------------------------------------
Update Information:

2.3.1 (2025-07-03)
Changed
(cleanup) Removed leftover code supporting Python < 3.8, as well as other
references to older Python versions.
Fixed
(typechecking) Fixed typechecking errors that appeared under mypy release 1.16
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jul 14 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.3.1-1
- Update to 2.3.1 (close RHBZ#2376130)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2376130 - python-absl-py-2.3.1 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376130
--------------------------------------------------------------------------------


================================================================================
 python-cppheaderparser-2.7.4-18.el10_1 (FEDORA-EPEL-2025-f8da7bd8f5)
 Parse C++ header files and generate a data structure
--------------------------------------------------------------------------------
Update Information:

New package
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jul 14 2025 Tom Rix <tom....@amd.com> - 2.7.4-18
- Use pyproject macros
* Mon Jun  2 2025 Python Maint <python-ma...@redhat.com> - 2.7.4-17
- Rebuilt for Python 3.14
* Mon Jan 20 2025 Fedora Release Engineering <rel...@fedoraproject.org> - 
2.7.4-16
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Fri Jul 19 2024 Fedora Release Engineering <rel...@fedoraproject.org> - 
2.7.4-15
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Fri Jun  7 2024 Python Maint <python-ma...@redhat.com> - 2.7.4-14
- Rebuilt for Python 3.13
* Fri Jan 26 2024 Fedora Release Engineering <rel...@fedoraproject.org> - 
2.7.4-13
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Mon Jan 22 2024 Fedora Release Engineering <rel...@fedoraproject.org> - 
2.7.4-12
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Thu Jan 11 2024 Tom Rix <t...@redhat.com> - 2.7.4-11
- Silence invalid escape sequence warnings
- Use spdx license
* Fri Jul 21 2023 Fedora Release Engineering <rel...@fedoraproject.org> - 
2.7.4-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 python-hvac-2.3.0-1.el10_1 (FEDORA-EPEL-2025-bc73a132d8)
 HashiCorp Vault API client for Python
--------------------------------------------------------------------------------
Update Information:

New package.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jul 14 2025 Simone Caronni <negativ...@gmail.com> - 2.3.0-1
- Update to 2.3.0
* Tue Jun  3 2025 Python Maint <python-ma...@redhat.com> - 1.2.1-8
- Rebuilt for Python 3.14
* Fri Apr 18 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 1.2.1-7
- Do not spuriously attempt to generate BuildRequires from tox
  (fix RHBZ#2354110)
- Add an import-only smoke test, and document why we cannot run tests
- Fix missing license file
- Remove language about Python 3 in the description, left over from when we
  also had Python 2
* Sat Jan 18 2025 Fedora Release Engineering <rel...@fedoraproject.org> - 
1.2.1-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Fri Jul 19 2024 Fedora Release Engineering <rel...@fedoraproject.org> - 
1.2.1-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_41_Mass_Rebuild
* Fri Jun  7 2024 Python Maint <python-ma...@redhat.com> - 1.2.1-4
- Rebuilt for Python 3.13
* Fri Jan 26 2024 Fedora Release Engineering <rel...@fedoraproject.org> - 
1.2.1-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Mon Jan 22 2024 Fedora Release Engineering <rel...@fedoraproject.org> - 
1.2.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_40_Mass_Rebuild
* Tue Sep 12 2023 Andrew Heath <aheath1...@gmail.com> - 1.2.1-1
- Update to 1.2.1
* Fri Sep  8 2023 Andrew Heath <aheath1...@gmail.com> - 1.2.0-1
- Update to 1.2.0
* Fri Jul 21 2023 Fedora Release Engineering <rel...@fedoraproject.org> - 
1.1.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_39_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 root-6.36.02-1.el10_1 (FEDORA-EPEL-2025-2147883490)
 Numerical data analysis framework
--------------------------------------------------------------------------------
Update Information:

ROOT 6.36.02
--------------------------------------------------------------------------------
ChangeLog:

* Sun Jul 13 2025 Mattias Ellert <mattias.ell...@physics.uu.se> - 6.36.02-1
- Update to 6.36.02
* Thu Jul 10 2025 Stephen Gallagher <sgall...@redhat.com> - 6.36.00-3
- Rebuilt for libarrow 20
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2378895 - root-6.36.02 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2378895
--------------------------------------------------------------------------------


================================================================================
 rust-onefetch-2.25.0-1.el10_1 (FEDORA-EPEL-2025-6b8834c391)
 Command-line Git information tool
--------------------------------------------------------------------------------
Update Information:

onefetch 2.25.0
There are no changelogs for this release yet; the upstream source diff is
https://github.com/o2sh/onefetch/compare/2.24.0...2.25.0.
rust-owo-colors 4.2.2
Fixed applying a background color and a text effect (like underline or italic)
at the same time.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul  8 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.25.0-1
- Update to version 2.25.0; Fixes RHBZ#2376537
* Tue Jul  8 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.24.0-7
- Do not misidentify license.cache.zstd as a license file
* Tue Jul  8 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.24.0-6
- No longer loosen MSRV from 1.82.0 to 1.79.0; 1.82+ is everywhere
* Tue Jul  8 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.24.0-5
- No longer patch to allow older insta
* Tue Jul  8 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.24.0-3
- Expand the Cargo.toml patch, dropping the tomcli dependency
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2374517 - rust-owo-colors-4.2.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2374517
  [ 2 ] Bug #2376537 - rust-onefetch-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376537
  [ 3 ] Bug #2376538 - rust-onefetch-image-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376538
  [ 4 ] Bug #2376539 - rust-onefetch-ascii-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376539
  [ 5 ] Bug #2376540 - rust-onefetch-manifest-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376540
--------------------------------------------------------------------------------


================================================================================
 rust-onefetch-ascii-2.25.0-1.el10_1 (FEDORA-EPEL-2025-6b8834c391)
 Display colorized ascii art to the terminal
--------------------------------------------------------------------------------
Update Information:

onefetch 2.25.0
There are no changelogs for this release yet; the upstream source diff is
https://github.com/o2sh/onefetch/compare/2.24.0...2.25.0.
rust-owo-colors 4.2.2
Fixed applying a background color and a text effect (like underline or italic)
at the same time.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Jul  6 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.25.0-1
- Update to version 2.25.0; Fixes RHBZ#2376539
* Mon May 12 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.24.0-2
- Remove no-longer-necessary .rpmlintrc file
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2374517 - rust-owo-colors-4.2.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2374517
  [ 2 ] Bug #2376537 - rust-onefetch-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376537
  [ 3 ] Bug #2376538 - rust-onefetch-image-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376538
  [ 4 ] Bug #2376539 - rust-onefetch-ascii-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376539
  [ 5 ] Bug #2376540 - rust-onefetch-manifest-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376540
--------------------------------------------------------------------------------


================================================================================
 rust-onefetch-image-2.25.0-1.el10_1 (FEDORA-EPEL-2025-6b8834c391)
 Display images in the terminal
--------------------------------------------------------------------------------
Update Information:

onefetch 2.25.0
There are no changelogs for this release yet; the upstream source diff is
https://github.com/o2sh/onefetch/compare/2.24.0...2.25.0.
rust-owo-colors 4.2.2
Fixed applying a background color and a text effect (like underline or italic)
at the same time.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Jul  6 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.25.0-1
- Update to version 2.25.0; Fixes RHBZ#2376538
* Wed May 14 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.24.0-3
- No longer need to patch for old Rust in EPEL9
* Mon May 12 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.24.0-2
- Remove no-longer-necessary .rpmlintrc file
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2374517 - rust-owo-colors-4.2.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2374517
  [ 2 ] Bug #2376537 - rust-onefetch-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376537
  [ 3 ] Bug #2376538 - rust-onefetch-image-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376538
  [ 4 ] Bug #2376539 - rust-onefetch-ascii-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376539
  [ 5 ] Bug #2376540 - rust-onefetch-manifest-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376540
--------------------------------------------------------------------------------


================================================================================
 rust-onefetch-manifest-2.25.0-1.el10_1 (FEDORA-EPEL-2025-6b8834c391)
 Detect and parse manifest files
--------------------------------------------------------------------------------
Update Information:

onefetch 2.25.0
There are no changelogs for this release yet; the upstream source diff is
https://github.com/o2sh/onefetch/compare/2.24.0...2.25.0.
rust-owo-colors 4.2.2
Fixed applying a background color and a text effect (like underline or italic)
at the same time.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul  8 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.25.0-1
- Update to version 2.25.0; Fixes RHBZ#2376540
* Tue May 13 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 2.24.0-2
- Remove no-longer-necessary .rpmlintrc file
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2374517 - rust-owo-colors-4.2.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2374517
  [ 2 ] Bug #2376537 - rust-onefetch-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376537
  [ 3 ] Bug #2376538 - rust-onefetch-image-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376538
  [ 4 ] Bug #2376539 - rust-onefetch-ascii-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376539
  [ 5 ] Bug #2376540 - rust-onefetch-manifest-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376540
--------------------------------------------------------------------------------


================================================================================
 rust-owo-colors-4.2.2-1.el10_1 (FEDORA-EPEL-2025-6b8834c391)
 Zero-allocation terminal colors that'll make people go owo
--------------------------------------------------------------------------------
Update Information:

onefetch 2.25.0
There are no changelogs for this release yet; the upstream source diff is
https://github.com/o2sh/onefetch/compare/2.24.0...2.25.0.
rust-owo-colors 4.2.2
Fixed applying a background color and a text effect (like underline or italic)
at the same time.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Jul  6 2025 Benjamin A. Beasley <c...@musicinmybrain.net> - 4.2.2-1
- Update to version 4.2.2; Fixes RHBZ#2374517
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #2374517 - rust-owo-colors-4.2.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2374517
  [ 2 ] Bug #2376537 - rust-onefetch-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376537
  [ 3 ] Bug #2376538 - rust-onefetch-image-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376538
  [ 4 ] Bug #2376539 - rust-onefetch-ascii-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376539
  [ 5 ] Bug #2376540 - rust-onefetch-manifest-2.25.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=2376540
--------------------------------------------------------------------------------


================================================================================
 snapd-2.70-1.el10_1 (FEDORA-EPEL-2025-1a66475580)
 A transactional software package manager
--------------------------------------------------------------------------------
Update Information:

New upstream release 2.70
FDE: Fix reseal with v1 hook key format
FDE: set role in TPM keys
AppArmor prompting (experimental): add handling for expired
  requests or listener in the kernel
AppArmor prompting: log the notification protocol version
  negotiated with the kernel
AppArmor prompting: implement notification protocol v5 (manually
  disabled for now)
AppArmor prompting: register listener ID with the kernel and
  resend notifications after snapd restart (requires protocol v5+)
AppArmor prompting: select interface from metadata tags and set
  request interface accordingly (requires protocol v5+)
AppArmor prompting: include request PID in prompt
AppArmor prompting: move the max prompt ID file to a subdirectory
  of the snap run directory
AppArmor prompting: avoid race between closing/reading socket fd
Confdb (experimental): make save/load hooks mandatory if affecting
  ephemeral
Confdb: clear tx state on failed load
Confdb: modify 'snap sign' formats JSON in assertion bodies (e.g.
  confdb-schema)
Confdb: add NestedEphemeral to confdb schemas
Confdb: add early concurrency checks
Simplify building Arch package
Enable snapd.apparmor on Fedora
Build snapd snap with libselinux
Emit snapd.apparmor warning only when using apparmor backend
When running snap, on system key mismatch e.g. due to network
  attached HOME, trigger and wait for a security profiles
  regeneration
Avoid requiring state lock to get user, warnings, or pending
  restarts when handling API requests
Start/stop ssh.socket for core24+ when enabling/disabling the ssh
  service
Allow providing a different base when overriding snap
Modify snap-bootstrap to mount snapd snap directly to /snap
Modify snap-bootstrap to mount /lib/{modules,firmware} from snap
  as fallback
Modify core-initrd to use systemctl reboot instead of /sbin/reboot
Copy the initramfs 'manifest-initramfs.yaml' to initramfs file
  creation directory so it can be copied to the kernel snap
Build the early initrd from installed ucode packages
Create drivers tree when remodeling from UC20/22 to UC24
Load gpio-aggregator module before the helper-service needs it
Run 'systemctl start' for mount units to ensure they are run also
  when unchanged
Update godbus version to 'v5 v5.1.0'
Add support for POST to /v2/system-info with system-key-mismatch
  indication from the client
Add 'snap sign --update-timestamp' flag to update timestamp before
  signing
Add vfs support for snap-update-ns to use to simulate and evaluate
  mount sequences
Add refresh app awareness debug logging
Add snap-bootstrap scan-disk subcommand to be called from udev
Add feature to inject proxy store assertions in build image
Add OP-TEE bindings, enable by default in ARM and ARM65 builds
Fix systemd dependency options target to go under 'unit' section
Fix snap-bootstrap reading kernel snap instead of base resulting
  in bad modeenv
Fix a regression during seeding when using early-config
LP: #2107443 reset SHELL to /bin/bash in non-classic snaps
Make Azure kernels reboot upon panic
Fix snap-confine to not drop capabilities if the original user is
  already root
Fix data race when stopping services
Fix task dependency issue by temporarily disable re-refresh on
  prerequisite updates
Fix compiling against op-tee on armhf
Fix dbx update when not using FDE
Fix potential validation set deadlock due to bases waiting on
  snaps
LP: #2104066 Only cancel notices requests on stop/shutdown
Interfaces: bool-file | fix gpio glob pattern as required for
  '[XXXX]*' format
Interfaces: system-packages-doc | allow access to
  /usr/local/share/doc
Interfaces: ros-snapd-support interface | added new interface
Interfaces: udisks2 | allow chown capability
Interfaces: system-observe | allow reading cpu.max
Interfaces: serial-port | add ttyMAXX to allowed list
Interfaces: modified seccomp template to disallow
  'O_NOTIFICATION_PIPE'
Interfaces: fwupd | add support for modem-manager plugin
Interfaces: gpio-chardev | make unsupported and remove
  experimental flag to hide this feature until gpio-aggregator is
  available
Interfaces: hardware-random | fix udev match rule
Interfaces: timeserver-control | extend to allow timedatectl
  timesync commands
Interfaces: add symlinks backend
Interfaces: system key mismatch handling
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  3 2025 Ernest Lotter <ernest.lot...@canonical.com>
- New upstream release 2.70
 - FDE: Fix reseal with v1 hook key format
 - FDE: set role in TPM keys
 - AppArmor prompting (experimental): add handling for expired
   requests or listener in the kernel
 - AppArmor prompting: log the notification protocol version
   negotiated with the kernel
 - AppArmor prompting: implement notification protocol v5 (manually
   disabled for now)
 - AppArmor prompting: register listener ID with the kernel and
   resend notifications after snapd restart (requires protocol v5+)
 - AppArmor prompting: select interface from metadata tags and set
   request interface accordingly (requires protocol v5+)
 - AppArmor prompting: include request PID in prompt
 - AppArmor prompting: move the max prompt ID file to a subdirectory
   of the snap run directory
 - AppArmor prompting: avoid race between closing/reading socket fd
 - Confdb (experimental): make save/load hooks mandatory if affecting
   ephemeral
 - Confdb: clear tx state on failed load
 - Confdb: modify 'snap sign' formats JSON in assertion bodies (e.g.
   confdb-schema)
 - Confdb: add NestedEphemeral to confdb schemas
 - Confdb: add early concurrency checks
 - Simplify building Arch package
 - Enable snapd.apparmor on Fedora
 - Build snapd snap with libselinux
 - Emit snapd.apparmor warning only when using apparmor backend
 - When running snap, on system key mismatch e.g. due to network
   attached HOME, trigger and wait for a security profiles
   regeneration
 - Avoid requiring state lock to get user, warnings, or pending
   restarts when handling API requests
 - Start/stop ssh.socket for core24+ when enabling/disabling the ssh
   service
 - Allow providing a different base when overriding snap
 - Modify snap-bootstrap to mount snapd snap directly to /snap
 - Modify snap-bootstrap to mount /lib/{modules,firmware} from snap
   as fallback
 - Modify core-initrd to use systemctl reboot instead of /sbin/reboot
 - Copy the initramfs 'manifest-initramfs.yaml' to initramfs file
   creation directory so it can be copied to the kernel snap
 - Build the early initrd from installed ucode packages
 - Create drivers tree when remodeling from UC20/22 to UC24
 - Load gpio-aggregator module before the helper-service needs it
 - Run 'systemctl start' for mount units to ensure they are run also
   when unchanged
 - Update godbus version to 'v5 v5.1.0'
 - Add support for POST to /v2/system-info with system-key-mismatch
   indication from the client
 - Add 'snap sign --update-timestamp' flag to update timestamp before
   signing
 - Add vfs support for snap-update-ns to use to simulate and evaluate
   mount sequences
 - Add refresh app awareness debug logging
 - Add snap-bootstrap scan-disk subcommand to be called from udev
 - Add feature to inject proxy store assertions in build image
 - Add OP-TEE bindings, enable by default in ARM and ARM64 builds
 - Fix systemd dependency options target to go under 'unit' section
 - Fix snap-bootstrap reading kernel snap instead of base resulting
   in bad modeenv
 - Fix a regression during seeding when using early-config
 - LP: #2107443 reset SHELL to /bin/bash in non-classic snaps
 - Make Azure kernels reboot upon panic
 - Fix snap-confine to not drop capabilities if the original user is
   already root
 - Fix data race when stopping services
 - Fix task dependency issue by temporarily disable re-refresh on
   prerequisite updates
 - Fix compiling against op-tee on armhf
 - Fix dbx update when not using FDE
 - Fix potential validation set deadlock due to bases waiting on
   snaps
 - LP: #2104066 Only cancel notices requests on stop/shutdown
 - Interfaces: bool-file | fix gpio glob pattern as required for
   '[XXXX]*' format
 - Interfaces: system-packages-doc | allow access to
   /usr/local/share/doc
 - Interfaces: ros-snapd-support interface | added new interface
 - Interfaces: udisks2 | allow chown capability
 - Interfaces: system-observe | allow reading cpu.max
 - Interfaces: serial-port | add ttyMAXX to allowed list
 - Interfaces: modified seccomp template to disallow
   'O_NOTIFICATION_PIPE'
 - Interfaces: fwupd | add support for modem-manager plugin
 - Interfaces: gpio-chardev | make unsupported and remove
   experimental flag to hide this feature until gpio-aggregator is
   available
 - Interfaces: hardware-random | fix udev match rule
 - Interfaces: timeserver-control | extend to allow timedatectl
   timesync commands
 - Interfaces: add symlinks backend
 - Interfaces: system key mismatch handling
* Tue Apr  8 2025 Ernest Lotter <ernest.lot...@canonical.com>
- New upstream release 2.69
 - FDE: re-factor listing of the disks based on run mode model and
   model to correctly resolve paths
 - FDE: run snapd from snap-failure with the correct keyring mode
 - Snap components: allow remodeling back to an old snap revision
   that includes components
 - Snap components: fix remodel to a kernel snap that is already
   installed on the system, but not the current kernel due to a
   previous remodel.
 - Snap components: fix for snapctl inputs that can crash snapd
 - Confdb (experimental): load ephemeral data when reading data via
   snapctl get
 - Confdb (experimental): load ephemeral data when reading data via
   snap get
 - Confdb (experimental): rename {plug}-view-changed hook to observe-
   view-{plug}
 - Confdb (experimental): rename confdb assertion to confdb-schema
 - Confdb (experimental): change operator grouping in confdb-control
   assertion
 - Confdb (experimental): add confdb-control API
 - AppArmor: extend the probed features to include the presence of
   files, as well as directories
 - AppArmor prompting (experimental): simplify the listener
 - AppArmor metadata tagging (disabled): probe parser support for
   tags
 - AppArmor metadata tagging (disabled): implement notification
   protocol v5
 - Confidential VMs: sysroot.mount is now dynamically created by
   snap-bootstrap instead of being a static file in the initramfs
 - Confidential VMs: Add new implementation of snap integrity API
 - Non-suid snap-confine: first phase to replace snap-confine suid
   with capabilities to achieve the required permissions
 - Initial changes for dynamic security profiles updates
 - Provide snap icon fallback for /v2/icons without requiring network
   access at runtime
 - Add eMMC gadget update support
 - Support reexec when using /usr/libexec/snapd on the host (Arch
   Linux, openSUSE)
 - Auto detect snap mount dir location on unknown distributions
 - Modify snap-confine AppArmor template to allow all glibc HWCAPS
   subdirectories to prevent launch errors
 - LP: #2102456 update secboot to bf2f40ea35c4 and modify snap-
   bootstrap to remove usage of go templates to reduce size by 4MB
 - Fix snap-bootstrap to mount kernel snap from
   /sysroot/writable/system-data
 - LP: #2106121 fix snap-bootstrap busy loop
 - Fix encoding of time.Time by using omitzero instead of omitempty
   (on go 1.24+)
 - Fix setting snapd permissions through permctl for openSUSE
 - Fix snap struct json tags typo
 - Fix snap pack configure hook permissions check incorrect file mode
 - Fix gadget snap reinstall to honor existing sizes of partitions
 - Fix to update command line when re-executing a snapd tool
 - Fix 'snap validate' of specific missing newline and add error on
   missed case of 'snap validate --refresh' without another action
 - Workaround for snapd-confine time_t size differences between
   architectures
 - Disallow pack and install of snapd, base and os with specific
   configure hooks
 - Drop udev build dependency that is no longer required and add
   missing systemd-dev dependency
 - Build snap-bootstrap with nomanagers tag to decrease size by 1MB
 - Interfaces: polkit | support custom polkit rules
 - Interfaces: opengl | LP: #2088456 fix GLX on nvidia when xorg is
   confined by AppArmor
 - Interfaces: log-observe | add missing udev rule
 - Interfaces: hostname-control | fix call to hostnamectl in core24
 - Interfaces: network-control | allow removing created network
   namespaces
 - Interfaces: scsi-generic | re-enable base declaration for scsi-
   generic plug
 - Interfaces: u2f | add support for Arculus AuthentiKey
* Wed Apr  2 2025 Ernest Lotter <ernest.lot...@canonical.com>
- New upstream release 2.68.4
 - Snap components: LP: #2104933 workaround for classic 24.04/24.10
   models that incorrectly specify core22 instead of core24
 - Update build dependencies
--------------------------------------------------------------------------------


================================================================================
 trivy-0.64.1-2.el10_1 (FEDORA-EPEL-2025-2204a45ab0)
 Vulnerability and license scanner
--------------------------------------------------------------------------------
Update Information:

branch for epel10
--------------------------------------------------------------------------------
ChangeLog:

* Sun Jul 13 2025 Maxwell G <maxw...@gtmx.me> - 0.64.1-2
- Make go-vendor-tools optional at buildtime for EPEL
* Fri Jul 11 2025 Maxwell G <maxw...@gtmx.me> - 0.64.1-1
- Update to 0.64.1.
* Fri Jun 27 2025 Maxwell G <maxw...@gtmx.me> - 0.63.0-1
- Update to 0.63.0. Fixes rhbz#2355701.
* Sun Mar 23 2025 Maxwell G <maxw...@gtmx.me> - 0.60.0-1
- Update to 0.60.0. Fixes rhbz#2350075.
* Sun Mar 23 2025 Maxwell G <maxw...@gtmx.me> - 0.59.1-3
- Add missing licensing files not detected by trivy
* Wed Feb 12 2025 Maxwell G <maxw...@gtmx.me> - 0.59.1-2
- Skip failing test on %ix86
* Tue Feb 11 2025 Maxwell G <maxw...@gtmx.me> - 0.59.1-1
- Update to 0.59.1. Fixes rhbz#2316625.
* Tue Feb 11 2025 Maxwell G <maxw...@gtmx.me> - 0.58.1-1
- Update to 0.58.1. Fixes rhbz#2316625.
* Sun Jan 19 2025 Fedora Release Engineering <rel...@fedoraproject.org> - 
0.55.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_42_Mass_Rebuild
* Sat Sep 21 2024 Maxwell G <maxw...@gtmx.me> - 0.55.2-1
- Update to 0.55.2. Fixes rhbz#2309677.
* Wed Aug 21 2024 Maxwell G <maxw...@gtmx.me> - 0.54.1-1
- Update to 0.54.1. Fixes rhbz#2302505.
* Fri Jul 19 2024 Maxwell G <maxw...@gtmx.me> - 0.53.0-3
- Adjust for test file changes
* Wed Jul 17 2024 Maxwell G <maxw...@gtmx.me> - 0.53.0-2
- Add missing git-core test dependency
* Wed Jul 17 2024 Maxwell G <maxw...@gtmx.me> - 0.53.0-1
- Update to 0.53.0. Fixes rhbz#2277210.
* Thu May  2 2024 Maxwell G <maxw...@gtmx.me> - 0.50.4-1
- Update to 0.50.4. Fixes rhbz#2277210.
* Tue Apr 23 2024 Maxwell G <maxw...@gtmx.me> - 0.50.2-1
- Update to 0.50.2. Fixes rhbz#2276563.
* Sat Apr 13 2024 Maxwell G <maxw...@gtmx.me> - 0.50.1-2
- Enable i686 builds
* Sat Apr  6 2024 Maxwell G <maxw...@gtmx.me> - 0.50.1-1
- Update to 0.50.1.
* Sat Apr  6 2024 Maxwell G <maxw...@gtmx.me> - 0.50.0-1
- Initial import (rhbz#2272258)
--------------------------------------------------------------------------------



-- 
_______________________________________________
epel-devel mailing list -- epel-devel@lists.fedoraproject.org
To unsubscribe send an email to epel-devel-le...@lists.fedoraproject.org
Fedora Code of Conduct: 
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: 
https://lists.fedoraproject.org/archives/list/epel-devel@lists.fedoraproject.org
Do not reply to spam, report it: 
https://pagure.io/fedora-infrastructure/new_issue