libio-stty-perl (0.08-1) unstable; urgency=medium
 .
   * Team upload.
   * New upstream version 0.08.
   * Declare compliance with Debian Policy 4.7.4.

node-concat-stream (2.0.0+~2.0.3-2) unstable; urgency=medium
 .
   * Team upload.
   * Declare compliance with policy 4.7.4
   * Use native stream module instead of readable-stream

python-cryptography (46.0.6-1) unstable; urgency=medium
 .
   * New upstream version.

python-cryptography-vectors (46.0.6-1) unstable; urgency=medium
 .
   * New upstream release.

python-openstackclient (9.0.0-3) unstable; urgency=medium
 .
   * Removed python3-keyring from (build-)depends.
python-openstackclient (9.0.0-2) unstable; urgency=medium
 .
   * Uploading to unstable.
python-openstackclient (9.0.0-1) experimental; urgency=medium
 .
   * New upstream release.
   * Fixed (build-)depends for this release.
   * Removed patches applied upstream:
     - Fix_openstack_quota_show_without_cinder.patch
     - add-missing-backup_id-field.patch

python-tornado (6.5.5-1) unstable; urgency=medium
 .
   * Team upload.
   * New upstream release.
     - CVE-2026-31958: Introduces new limits on the size and complexity of
       multipart bodies, including a default limit of 100 parts per request
       to mitigate a possible DoS. It is also possible to disable parsing
       multipart/form-data entirely if not required (closes: #1130507).
     - The domain, path, and samesite arguments to RequestHandler.set_cookie
       are now validated for illegal characters, which could be abused to
       inject other attributes on the cookie.
     - Carriage return characters are no longer accepted in multipart/form-data
       headers.
   * d/python3-tornado.lintian-overrides: Fix matches.



REMOVED: python-certbot-dns-digitalocean 4.0.0-2