Accepting request 967163 from network

- Update to version 2.5.0
Deprecated
  * v2.5.x will be the last release of qutebrowser 2. For the
    upcoming 3.0.0 release, it's planned to drop support for
    various legacy platforms and libraries which are unsupported
    upstream, such as:
    + Qt before 5.15 LTS (plus adding support for Qt 6.2+)
    + Python 3.6
    + The QtWebKit backend
    + macOS 10.14 (via Homebrew)
    + 32-bit Windows (via Qt)
    + Windows 8 (via Qt)
    + Windows 10 before 1809 (via Qt)
    + Possibly other more minor dependency changes
  * The :rl-unix-word-rubout command (<Ctrl-W> in command/prompt
    modes) has been deprecated. Use :rl-rubout " " instead.
  * The :rl-unix-filename-rubout command has been deprecated.
    Use either :rl-rubout "/ " (classic readline behavior) or
    :rl-filename-rubout (using OS path separator and ignoring
    spaces) instead.
Changed
  * Improved message if a spawned process wasn't found and a
    Flatpak container is in use.
  * The :tab-move command now takes start and end as index to move
    a tab to the first/last position.
  * Tests now automatically pick the backend (QtWebKit/QtWebEngine)
    based on what's available. The QUTE_BDD_WEBENGINE environment
    variable and --qute-bdd-webengine argument got replaced by
    QUTE_TESTS_BACKEND and --qute-backend respectively, which can
    be set to either webengine or webkit.

OBS-URL: https://build.opensuse.org/request/show/967163
OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/qutebrowser?expand=0&rev=57

qutebrowser-2.4.0.tar.gz

@@ -1,3 +0,0 @@
-version https://git-lfs.github.com/spec/v1
-oid sha256:f2cd9abb14ebabf9630573b2fb8447be192877787dc4e3964e1b55f72a8592ec
-size 6074001

qutebrowser-2.4.0.tar.gz.asc

@@ -1,16 +0,0 @@
------BEGIN PGP SIGNATURE-----
-
-iQIzBAABCAAdFiEE4E5WAAJAG47w528KkW6wyP1VoHIFAmFxn68ACgkQkW6wyP1V
-oHK3ORAAsw8n9ZRh6kBV2OKJWPqK6/vtf7Y2izeWOPM9acwsFhp/QpEo6MDFVjYV
-xNRC9k+IFNVcf7TC3F15VNN0i4/JBMnlaxnRqbCac5Q4YxT1fPevx6qY5HQEvTB3
-lESGfA7Rca08pPyU27j+iZc3ZqqdoMaarb3/GJpejLpeMw086EqJ77hdWf024xMW
-jzngjJJeabJ9C7e7GvouDj0Or+fF83XOfIwWhD8GykKeGi+pSEjdwEXcIbddTwqR
-6ND6pbneHZ1u78OALBsd1G2Sn+R2C8jXzVSkIogMj5X+fZVZsYiMdzBBNV6Dc0oh
-PVbFBDQTGbgQVi7ir8fN5bNeb0jr6TejBse+ZNKTivQGMVDy1lNZnNNfivNzWfpO
-f+NUKR6UDaXE2TqoaGbFIGfHNUOPgM2WTG9m/2plqw5pHhzHatP9xyPJLPguubxV
-XTIdTxdMZIMjkEiBhmpwlsqKDjDzKyeBlpw3zmrwuDmf9XCGvjxNfeo8tiyolzvO
-X1yqYtDCE93tDxEy3ElsFh7Dkg60EALLzAf5tjgYjS8X6fE0yPhdwe+4agLHyfsI
-bgcUL7+lfmXw2wbMh75DBm9ztPsrLzlqH2pN0AoyzYj1oJIQkcEhRarKir4j+12p
-hIOzdgx/aLo+Wt/IPccPPX+E5bmQKNg0tOiRhPV3pz7dxFK8p/E=
-=9fQ4
------END PGP SIGNATURE-----

qutebrowser-2.5.0.tar.gz

@@ -0,0 +1,3 @@
+version https://git-lfs.github.com/spec/v1
+oid sha256:e18442a230570f25918a2e89ad4d073ace46c4f59b5fdda2e80ab3c4764451fd
+size 6086105

qutebrowser-2.5.0.tar.gz.asc

@@ -0,0 +1,16 @@
+-----BEGIN PGP SIGNATURE-----
+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+=tC3+
+-----END PGP SIGNATURE-----

qutebrowser.changes

@@ -1,3 +1,143 @@
+-------------------------------------------------------------------
+Tue Apr  5 23:54:02 UTC 2022 - Mia Herkt <mia@0x0.st>
+
+- Update to version 2.5.0
+Deprecated
+  * v2.5.x will be the last release of qutebrowser 2. For the
+    upcoming 3.0.0 release, it's planned to drop support for
+    various legacy platforms and libraries which are unsupported
+    upstream, such as:
+    + Qt before 5.15 LTS (plus adding support for Qt 6.2+)
+    + Python 3.6
+    + The QtWebKit backend
+    + macOS 10.14 (via Homebrew)
+    + 32-bit Windows (via Qt)
+    + Windows 8 (via Qt)
+    + Windows 10 before 1809 (via Qt)
+    + Possibly other more minor dependency changes
+  * The :rl-unix-word-rubout command (<Ctrl-W> in command/prompt
+    modes) has been deprecated. Use :rl-rubout " " instead.
+  * The :rl-unix-filename-rubout command has been deprecated.
+    Use either :rl-rubout "/ " (classic readline behavior) or
+    :rl-filename-rubout (using OS path separator and ignoring
+    spaces) instead.
+Changed
+  * Improved message if a spawned process wasn't found and a
+    Flatpak container is in use.
+  * The :tab-move command now takes start and end as index to move
+    a tab to the first/last position.
+  * Tests now automatically pick the backend (QtWebKit/QtWebEngine)
+    based on what's available. The QUTE_BDD_WEBENGINE environment
+    variable and --qute-bdd-webengine argument got replaced by
+    QUTE_TESTS_BACKEND and --qute-backend respectively, which can
+    be set to either webengine or webkit.
+  * Using :tab-give or :tab-take on the last tab in a window now
+    always closes that window, no matter what tabs.last_close is
+    set to.
+  * Redesigned qute://settings (:set) page with buttons for options
+    with fixed values.
+  * The default hint.selectors now match more ARIA roles (tab,
+    checkbox, menuitem, menuitemcheckbox and menuitemradio).
+  * Using e.g. :bind --mode=passthrough now scrolls to the
+    passthrough section on the qute://bindings page.
+  * Clicking on a notification now tries to focus the tab where the
+    notification is coming from. Note this might not work properly
+    if there is more than one tab from the same host open.
+  * Improvements to userscripts:
+    + qute-bitwarden understands a new
+      --password-prompt-invocation, which can be used to specify a
+      tool other than rofi to ask for a password.
+    + cast now uses yt-dlp if available (falling back to youtube-dl
+      if not). It also lets users override the tool to use via a
+      QUTE_CAST_YTDL_PROGRAM environment variable.
+    + qute-pass now understands a new --prefix argument if used in
+      gopass mode, which gets passed as subfolder prefix to gopass.
+    + open_download now supports Flatpak by using its XDG Desktop
+      Portal.
+    + open_download now waits for the exit status of xdg-open,
+      causing qutebrowser to report any issues with it.
+    + The content.headers.custom setting now accepts empty strings
+      as values, resulting in an empty header being sent.
+  * Renamed settings:
+    + qt.low_end_device_mode -> qt.chromium.low_end_device_mode
+    + qt.process_model -> qt.chromium.process_model
+  * System-wide userscripts are now discovered from the correct
+    location when running via Flatpak (/app/share rather than
+    /usr/share).
+  * Filename prompts now don't display a .. entry in the list of
+    files anymore. To get back to the parent directory, either type
+    ../ manually, or use the new :rl-filename-rubout command,
+    bound to <Ctrl-Shift-W> by default.
+Added
+  * New input.match_counts option which allows to turn off count
+    matching for more emacs-like bindings.
+  * New {relative_index} field for tabs.title.format
+    (and .pinned_format) which shows relative tab numbers.
+  * New input.mode_override option which allows overriding the
+    current mode based on the new URL when navigating or switching
+    tabs.
+  * New qt.chromium.sandboxing setting which allows to disable
+    Chromium's sandboxing (mainly intended for development and
+    testing).
+  * New QUTE_TAB_INDEX variable for userscripts, containing the
+    index of the current tab.
+  * New editor.remove_file setting which can be set to False to
+    keep all temporary editor files after closing the external
+    editor.
+  * New :rl-rubout command replacing :rl-unix-word-rubout
+    (and optionally :rl-unix-filename-rubout), taking a delimiter
+    as argument.
+  * New :rl-filename-rubout command, using the OS path separator
+    and ignoring spaces. The command also gets shown in the
+    suggested commands for a download filename prompt now.
+Fixed
+  * When search.incremental is disabled, searching using /text
+    followed by a backwards search via ?text (or vice-versa) now
+    correctly changes the search direction.
+  * Elements getting a hint due to a tabindex now are skipped if
+    it's set to -1, reducing some false-positives.
+  * The audible indicator ([A]) now uses a 2s cooldown when the
+    audio goes silent, equivalent with the behavior of older
+    QtWebEngine versions.
+  * With confirm_quit set to downloads, the confirmation dialog is
+    now only shown when closing the last window (rather than
+    closing any window, which would continue running that window's
+    downloads). Unfortunately, more issues with confirm_quit and
+    multiple windows remain.
+  * Crash when a previous crash-log file contains non-ASCII
+    characters (which should never happen unless it was edited
+    manually)
+  * Due to changes in Debian, an old workaround (for broken
+    QtWebEngine patching on Debian) caused the inferior qutebrowser
+    error page to be displayed, when Chromium's would have worked
+    fine. The workaround was now dropped.
+  * Crash when using <Ctrl-D> (:completion-item-del) in the
+    :tab-focus list, rather than :tab-select.
+  * Work around a Qt issue causing :spawn to run executables from
+    the current directory if no system-wide executable was found.
+    The underlying Qt bug is tracked as CVE-2022-25255, though the
+    impact with typical qutebrowser usage is low: Normally,
+    qutebrowser is run from a fixed location (usually the users
+    home directory), and :spawn is not typically used with
+    executables that don't exist. The main security impact of this
+    bug is in tools like text editors, which are often executed in
+    untrusted directories and might attempt to run auxiliary tools
+    automatically.
+  * When :rl-rubout or :rl-filename-rubout
+    (formerly :rl-unix-word-rubout and :rl-unix-filename-rubout)
+    were used on a string not starting with the given delimiter,
+    they failed to delete the first character, which is now fixed.
+  * Fixes in userscripts:
+    + ripbang now works again (it got blocked due to a missing user
+      agent and used outdated qutebrowser commands before)
+    + keepassxc now has a properly working --insecure flag
+  * Speculative fix for a qutebrowser crash when the notification
+    daemon crashes while showing the notification.
+  * Fix crash when using :screenshot with an invalid --rect
+    argument.
+  * Added a site-specific quirk to make cookie dialogs on
+    StackExchange pages (such as Stack Overflow) work on Qt 5.12.
+
 -------------------------------------------------------------------
 Thu Oct 21 19:58:09 UTC 2021 - Mia Herkt <mia@0x0.st>
 

qutebrowser.spec

@@ -1,7 +1,7 @@
 #
 # spec file for package qutebrowser
 #
-# Copyright (c) 2021 SUSE LLC
+# Copyright (c) 2022 SUSE LLC
 #
 # All modifications and additions to the file contributed by third parties
 # remain the property of their copyright owners, unless otherwise agreed
@@ -17,7 +17,7 @@
 
 
 Name:           qutebrowser
-Version:        2.4.0
+Version:        2.5.0
 Release:        0
 Summary:        Keyboard-driven vim-like browser based on Qt5
 License:        GPL-3.0-or-later
@@ -106,8 +106,9 @@ rm %{buildroot}%{python3_sitelib}/%{name}/git-commit-id
 # NOTE: test suite disabled because the BDD tests are too unreliable
 # %%check
 # NOTE: test suite is slow but doesn’t run reliably with xdist
-# PYTHONPATH=. QUTE_BDD_WEBENGINE=true pytest -v \
-#    -k 'not importlib'
+# PYTHONPATH=. pytest -v \
+#     -k 'not importlib' \
+#     --qute-backend webengine
 
 %files
 %license LICENSE