Closed Bug 1857646 Opened 7 months ago Closed 7 days ago

[wpt-sync] Sync PR 42409 - Bump fonttools from 4.39.4 to 4.43.1 in /tools

Categories

(Testing :: web-platform-tests, task, P4)

Product:
Testing
Component:
web-platform-tests
Type:
task

Tracking

(Not tracked)

Status:
RESOLVED INVALID

People

(Reporter: wpt-sync, Unassigned)

References

(
URL
)

Details

(Whiteboard: [wptsync downstream])

Sync web-platform-tests PR 42409 into mozilla-central (this bug is closed when the sync is complete).

PR: https://github.com/web-platform-tests/wpt/pull/42409
Details from upstream follow.

dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> wrote:

Bump fonttools from 4.39.4 to 4.43.1 in /tools

Bumps fonttools from 4.39.4 to 4.43.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a href="https://github.com/fonttools/fonttools/releases">fonttools's releases</a>.</em></p>
<blockquote>
<h2>4.43.1</h2>
<ul>
<li>[EBDT] Fixed TypeError exception in <code>_reverseBytes</code> method triggered when dumping some bitmap fonts with <code>ttx -z bitwise</code> option (<a href="https://redirect.github.com/fonttools/fonttools/issues/3162">#3162</a>).</li>
<li>[v/hhea] Fixed UnboundLocalError exception in <code>recalc</code> method when no vmtx or hmtx tables are present (<a href="https://redirect.github.com/fonttools/fonttools/issues/3290">#3290</a>).</li>
<li>[bezierTools] Fixed incorrectly typed cython local variable leading to TypeError when calling <code>calcQuadraticArcLength</code> (<a href="https://redirect.github.com/fonttools/fonttools/issues/3288">#3288</a>).</li>
<li>[feaLib/otlLib] Better error message when building Coverage table with missing glyph (<a href="https://redirect.github.com/fonttools/fonttools/issues/3286">#3286</a>).</li>
</ul>
<h2>4.43.0</h2>
<ul>
<li>[subset] Set up lxml <code>XMLParser(resolve_entities=False)</code> when parsing OT-SVG documents to prevent XML External Entity (XXE) attacks (9f61271dc): <a href="https://codeql.github.com/codeql-query-help/python/py-xxe/">https://codeql.github.com/codeql-query-help/python/py-xxe/</a></li>
<li>[varLib.iup] Added workaround for a Cython bug in <code>iup_delta_optimize</code> that was leading to IUP tolerance being incorrectly initialised, resulting in sub-optimal deltas (60126435d, <a href="https://redirect.github.com/cython/cython/issues/5732">cython/cython#5732</a>).</li>
<li>[varLib] Added new command-line entry point <code>fonttools varLib.avar</code> to add an <code>avar</code> table to an existing VF from axes mappings in a .designspace file (0a3360e52).</li>
<li>[instancer] Fixed bug whereby no longer used variation regions were not correctly pruned after VarData optimization (<a href="https://redirect.github.com/fonttools/fonttools/issues/3268">#3268</a>).</li>
<li>Added support for Python 3.12 (<a href="https://redirect.github.com/fonttools/fonttools/issues/3283">#3283</a>).</li>
</ul>
<h2>4.42.1</h2>
<ul>
<li>[t1Lib] Fixed several Type 1 issues (<a href="https://redirect.github.com/fonttools/fonttools/issues/3238">#3238</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3240">#3240</a>).</li>
<li>[otBase/packer] Allow sharing tables reached by different offset sizes (<a href="https://redirect.github.com/fonttools/fonttools/issues/3241">#3241</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3236">#3236</a>, 457f11c2).</li>
<li>[varLib/merger] Fix Cursive attachment merging error when all anchors are NULL (<a href="https://redirect.github.com/fonttools/fonttools/issues/3248">#3248</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3247">#3247</a>).</li>
<li>[ttLib] Fixed warning when calling <code>addMultilingualName</code> and <code>ttFont</code> parameter was not passed on to <code>findMultilingualName</code> (<a href="https://redirect.github.com/fonttools/fonttools/issues/3253">#3253</a>).</li>
</ul>
<h2>4.42.0</h2>
<ul>
<li>[varLib] Use sentinel value 0xFFFF to mark a glyph advance in hmtx/vmtx as non participating, allowing sparse masters to contain glyphs for variation purposes other than {H,V}VAR (<a href="https://redirect.github.com/fonttools/fonttools/issues/3235">#3235</a>).</li>
<li>[varLib/cff] Treat empty glyphs in non-default masters as missing, thus not participating in CFF2 delta computation, similarly to how varLib already treats them for gvar (<a href="https://redirect.github.com/fonttools/fonttools/issues/3234">#3234</a>).</li>
<li>Added varLib.avarPlanner script to deduce 'correct' avar v1 axis mappings based on glyph average weights (<a href="https://redirect.github.com/fonttools/fonttools/issues/3223">#3223</a>).</li>
</ul>
<h2>4.41.1</h2>
<ul>
<li>[subset] Fixed perf regression in v4.41.0 by making <code>NameRecordVisitor</code> only visit tables that do contain nameID references (<a href="https://redirect.github.com/fonttools/fonttools/issues/3213">#3213</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3214">#3214</a>).</li>
<li>[varLib.instancer] Support instancing fonts containing null ConditionSet offsets in FeatureVariationRecords (<a href="https://redirect.github.com/fonttools/fonttools/issues/3211">#3211</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3212">#3212</a>).</li>
<li>[statisticsPen] Report font glyph-average weight/width and font-wide slant.</li>
<li>[fontBuilder] Fixed head.created date incorrectly set to 0 instead of the current timestamp, regression introduced in v4.40.0 (<a href="https://redirect.github.com/fonttools/fonttools/issues/3210">#3210</a>).</li>
<li>[varLib.merger] Support sparse <code>CursivePos</code> masters (<a href="https://redirect.github.com/fonttools/fonttools/issues/3209">#3209</a>).</li>
</ul>
<h2>4.41.0</h2>
<ul>
<li>[fontBuilder] Fixed bug in setupOS2 with default panose attribute incorrectly being set to a dict instead of a Panose object (<a href="https://redirect.github.com/fonttools/fonttools/issues/3201">#3201</a>).</li>
<li>[name] Added method to <code>removeUnusedNameRecords</code> in the user range (<a href="https://redirect.github.com/fonttools/fonttools/issues/3185">#3185</a>).</li>
<li>[varLib.instancer] Fixed issue with L4 instancing (moving default) (<a href="https://redirect.github.com/fonttools/fonttools/issues/3179">#3179</a>).</li>
<li>[cffLib] Use latin1 so we can roundtrip non-ASCII in {Full,Font,Family}Name (<a href="https://redirect.github.com/fonttools/fonttools/issues/3202">#3202</a>).</li>
<li>[designspaceLib] Mark <!-- raw HTML omitted --> as optional in docs (as it is in the code).</li>
<li>[glyf-1] Fixed drawPoints() bug whereby last cubic segment becomes quadratic (<a href="https://redirect.github.com/fonttools/fonttools/issues/3189">#3189</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3190">#3190</a>).</li>
<li>[fontBuilder] Propagate the 'hidden' flag to the fvar Axis instance (<a href="https://redirect.github.com/fonttools/fonttools/issues/3184">#3184</a>).</li>
<li>[fontBuilder] Update setupAvar() to also support avar 2, fixing <code>_add_avar()</code> call site (<a href="https://redirect.github.com/fonttools/fonttools/issues/3183">#3183</a>).</li>
<li>Added new <code>voltLib.voltToFea</code> submodule (originally Tiro Typeworks' "Volto") for converting VOLT OpenType Layout sources to FEA format (<a href="https://redirect.github.com/fonttools/fonttools/issues/3164">#3164</a>).</li>
</ul>
<h2>4.40.0</h2>
<ul>
<li>Published native binary wheels to PyPI for all the python minor versions and platform and architectures currently supported that would benefit from this. They will include precompiled Cython-accelerated modules (e.g. cu2qu) without requiring to compile them from source. The pure-python wheel and source distribution will continue to be published as always (pip will automatically chose them when no binary wheel is available for the given platform, e.g. pypy). Use <code>pip install --no-binary=fonttools fonttools</code> to expliclity request pip to install from the pure-python source.</li>
<li>[designspaceLib|varLib] Add initial support for specifying axis mappings and build <code>avar2</code> table from those (<a href="https://redirect.github.com/fonttools/fonttools/issues/3123">#3123</a>).</li>
<li>[feaLib] Support variable ligature caret position (<a href="https://redirect.github.com/fonttools/fonttools/issues/3130">#3130</a>).</li>
<li>[varLib|glyf] Added option to --drop-implied-oncurves; test for impliable oncurve points either before or after rounding (<a href="https://redirect.github.com/fonttools/fonttools/issues/3146">#3146</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3147">#3147</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3155">#3155</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3156">#3156</a>).</li>
<li>[TTGlyphPointPen] Don't error with empty contours, simply ignore them (<a href="https://redirect.github.com/fonttools/fonttools/issues/3145">#3145</a>).</li>
<li>[sfnt] Fixed str vs bytes remnant of py3 transition in code dealing with de/compiling WOFF metadata (<a href="https://redirect.github.com/fonttools/fonttools/issues/3129">#3129</a>).</li>
<li>[instancer-solver] Fixed bug when moving default instance with sparse masters (<a href="https://redirect.github.com/fonttools/fonttools/issues/3139">#3139</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3140">#3140</a>).</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Changelog</summary>
<p><em>Sourced from <a href="https://github.com/fonttools/fonttools/blob/main/NEWS.rst">fonttools's changelog</a>.</em></p>
<blockquote>
<h2>4.43.1 (released 2023-10-06)</h2>
<ul>
<li>[EBDT] Fixed TypeError exception in <code>_reverseBytes</code> method triggered when dumping
some bitmap fonts with <code>ttx -z bitwise</code> option (<a href="https://redirect.github.com/fonttools/fonttools/issues/3162">#3162</a>).</li>
<li>[v/hhea] Fixed UnboundLocalError exception in <code>recalc</code> method when no vmtx or hmtx
tables are present (<a href="https://redirect.github.com/fonttools/fonttools/issues/3290">#3290</a>).</li>
<li>[bezierTools] Fixed incorrectly typed cython local variable leading to TypeError when
calling <code>calcQuadraticArcLength</code> (<a href="https://redirect.github.com/fonttools/fonttools/issues/3288">#3288</a>).</li>
<li>[feaLib/otlLib] Better error message when building Coverage table with missing glyph (<a href="https://redirect.github.com/fonttools/fonttools/issues/3286">#3286</a>).</li>
</ul>
<h2>4.43.0 (released 2023-09-29)</h2>
<ul>
<li>[subset] Set up lxml <code>XMLParser(resolve_entities=False)</code> when parsing OT-SVG documents
to prevent XML External Entity (XXE) attacks (9f61271dc):
<a href="https://codeql.github.com/codeql-query-help/python/py-xxe/">https://codeql.github.com/codeql-query-help/python/py-xxe/</a></li>
<li>[varLib.iup] Added workaround for a Cython bug in <code>iup_delta_optimize</code> that was
leading to IUP tolerance being incorrectly initialised, resulting in sub-optimal deltas
(60126435d, <a href="https://redirect.github.com/cython/cython/issues/5732">cython/cython#5732</a>).</li>
<li>[varLib] Added new command-line entry point <code>fonttools varLib.avar</code> to add an
<code>avar</code> table to an existing VF from axes mappings in a .designspace file (0a3360e52).</li>
<li>[instancer] Fixed bug whereby no longer used variation regions were not correctly pruned
after VarData optimization (<a href="https://redirect.github.com/fonttools/fonttools/issues/3268">#3268</a>).</li>
<li>Added support for Python 3.12 (<a href="https://redirect.github.com/fonttools/fonttools/issues/3283">#3283</a>).</li>
</ul>
<h2>4.42.1 (released 2023-08-20)</h2>
<ul>
<li>[t1Lib] Fixed several Type 1 issues (<a href="https://redirect.github.com/fonttools/fonttools/issues/3238">#3238</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3240">#3240</a>).</li>
<li>[otBase/packer] Allow sharing tables reached by different offset sizes (<a href="https://redirect.github.com/fonttools/fonttools/issues/3241">#3241</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3236">#3236</a>).</li>
<li>[varLib/merger] Fix Cursive attachment merging error when all anchors are NULL (<a href="https://redirect.github.com/fonttools/fonttools/issues/3248">#3248</a>, <a href="https://redirect.github.com/fonttools/fonttools/issues/3247">#3247</a>).</li>
<li>[ttLib] Fixed warning when calling <code>addMultilingualName</code> and <code>ttFont</code> parameter was not
passed on to <code>findMultilingualName</code> (<a href="https://redirect.github.com/fonttools/fonttools/issues/3253">#3253</a>).</li>
</ul>
<h2>4.42.0 (released 2023-08-02)</h2>
<ul>
<li>[varLib] Use sentinel value 0xFFFF to mark a glyph advance in hmtx/vmtx as non
participating, allowing sparse masters to contain glyphs for variation purposes other
than {H,V}VAR (<a href="https://redirect.github.com/fonttools/fonttools/issues/3235">#3235</a>).</li>
<li>[varLib/cff] Treat empty glyphs in non-default masters as missing, thus not participating
in CFF2 delta computation, similarly to how varLib already treats them for gvar (<a href="https://redirect.github.com/fonttools/fonttools/issues/3234">#3234</a>).</li>
<li>Added varLib.avarPlanner script to deduce 'correct' avar v1 axis mappings based on
glyph average weights (<a href="https://redirect.github.com/fonttools/fonttools/issues/3223">#3223</a>).</li>
</ul>
<h2>4.41.1 (released 2023-07-21)</h2>
<ul>
<li>[subset] Fixed perf regression in v4.41.0 by making <code>NameRecordVisitor</code> only visit</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a href="https://github.com/fonttools/fonttools/commit/f8857f6256f1331f97861071c3df22742b61a48a"><code>f8857f6</code></a> Release 4.43.1</li>
<li><a href="https://github.com/fonttools/fonttools/commit/bfd5e5675cb38fd4f0e0036a72e7a62aec9da3d9"><code>bfd5e56</code></a> Update changelog [skip ci]</li>
<li><a href="https://github.com/fonttools/fonttools/commit/5c8bce194b4767b3599c0796cad9e292b84be70d"><code>5c8bce1</code></a> Merge pull request <a href="https://redirect.github.com/fonttools/fonttools/issues/3162">#3162</a> from robhagemans/bugfix-ebdt-reversebytes</li>
<li><a href="https://github.com/fonttools/fonttools/commit/6288e9e3dea23485c3b9905feeafcbc9dfa48499"><code>6288e9e</code></a> Merge pull request <a href="https://redirect.github.com/fonttools/fonttools/issues/3290">#3290</a> from fonttools/vhhea-without-vhmtx</li>
<li><a href="https://github.com/fonttools/fonttools/commit/442576fb1ff5ebaa466e9c46ec35154c73089db8"><code>442576f</code></a> Fix UnbouldLocalError and let {h,v}hea be no-op when no {v,h}mtx is present</li>
<li><a href="https://github.com/fonttools/fonttools/commit/4e2f80cc08da9c22c033f2c644039598401104dc"><code>4e2f80c</code></a> Merge pull request <a href="https://redirect.github.com/fonttools/fonttools/issues/3288">#3288</a> from fonttools/fix-calc-quadratic-arc-length</li>
<li><a href="https://github.com/fonttools/fonttools/commit/21dea1e18d5e329c47cb7329880c9aca774894dd"><code>21dea1e</code></a> fix incorrectly typed cython local variable</li>
<li><a href="https://github.com/fonttools/fonttools/commit/c5295d2f162de47a98746d7aa28cb5ccd9a25d97"><code>c5295d2</code></a> Better OTL builder errors (<a href="https://redirect.github.com/fonttools/fonttools/issues/3286">#3286</a>)</li>
<li><a href="https://github.com/fonttools/fonttools/commit/05dc231072c6ee04c42cbc496f22ae4e74270aa8"><code>05dc231</code></a> Create SECURITY.md</li>
<li><a href="https://github.com/fonttools/fonttools/commit/f95105b669f0f3d60719b7b151bed269287a3a4f"><code>f95105b</code></a> Bump version: 4.43.0 → 4.43.1.dev0</li>
<li>Additional commits viewable in <a href="https://github.com/fonttools/fonttools/compare/4.39.4...4.43.1">compare view</a></li>
</ul>
</details>
<br />

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

</details>

Status: NEW → RESOLVED
Closed: 7 days ago
Resolution: --- → INVALID
You need to log in before you can comment on or make changes to this bug.