Weblate - Package Updates

Package Updates

[1.34.0]

• Update weblate to 5.14.1
• Full Changelog
• String context are now tracked in changes histoy and displayed when available.
• ICU MessageFormat correctly handles implicit plurals.
• Avoid storing inviting user information in the invited user audit log (CVE 2025-64326 / GHSA-gr35-vpx2-qxhc).
• Omit admin IP address from audit log.
• Counting outgoing commits in the repository status.
• Listing of other translations.
• Commit Policy could miss some changes in certain situations.

Package Updates

[1.34.1]

• Update weblate to 5.14.2
• Full Changelog
• Performance when adding strings.
• Adding terms to glossary was not working in some situations.

Package Updates

[1.34.2]

• Update weblate to 5.14.3
• Full Changelog

Package Updates

[1.35.0]

• Update weblate to 5.15
• Full Changelog
• Batch automatic translation can now be manually triggered at project language, category or component level, see Automatic translation.
• Added ability to completely disable the admin contact form by setting CONTACT_FORM to "disabled".
• Added new Ollama machinery tool for local Ollama AI model integration, see Ollama.
• Added GET /api/units/(int:id)/comments/ to get a list of comments for the given translation unit.
• Memory contents imported from TMX files include string context.
• XLIFF 2.0, Nextcloud Apps JSON files, JavaScript Resource Files (RESJSON), and TOML are now supported file formats.
• Fedora Messaging integration is now available as add-on.
• Added Laravel format quality check.
• Improper invitation validation upon accepting (CVE 2025-64725 / GHSA-m6hq-f4w9-qrjj).
• Server-Side Request Forgery while cloning repository (CVE 2025-66407 / GHSA-hfpv-mc5v-p9mm).

Package Updates

[1.36.0]

• Update weblate to 5.15.1
• Full Changelog
• Added GET /api/projects/(string:project)/languages/(string:language_code)/file/ to download a ZIP file of all component translations of a project for a specified language.
• Updated list of OpenAI models.
• Added Migrating to Weblate guide to help users migrate from other localization platforms.
• Gracefully handle unreachable authentication providers.
• Update language definitions to CLDR 48.
• Git config file overwrite remote code execution (CVE 2025-68398 / GHSA-8vcg-cfxj-p5m3).
• Arbitrary file read via symbolic links (CVE 2025-68279 / GHSA-g925-f788-4jh7).
• Locking error that prevented updating linked components.
• Invitations on sites with required authentication.