Zstandard v1.3.1
New license : BSD + GPLv2
perf: substantially decreased memory usage in Multi-threading mode
perf: Multi-threading supports up to 256 threads. Cap at 256 when more are requested
cli : improved and fixed --list command
cli : command -vV lists supported formats
build : fixed binary variants
build : fix Visual compilation for non x86/x64 targets
API exp : breaking change : ZSTD_getframeHeader() provides more information
API exp : breaking change : pinned down values of error codes
doc : fixed huffman example
new : contrib/adaptive-compression, I/O driven compression strength
new : contrib/long_distance_matching
updated : contrib/linux-kernel

(adam)

nghttp2 v1.25.0
lib: add nghttp2_rcbuf_is_static()
nghttpx: Fix bug that forwarded for is not affected by proxy protocol
nghttpx: Update mruby to 1.3.0

(adam)

Updated textproc/py-markdown to 2.6.9, archivers/lz4 to 1.8.0

(adam)

LZ4 v1.8.0
cli : fix : do not modify /dev/null permissions, reported by @Maokaman1
cli : added GNU separator -- specifying that all following arguments are files
cli : restored -BX command enabling block checksum
API : added LZ4_compress_HC_destSize(), by @remittor
API : added LZ4F_resetDecompressionContext()
API : lz4frame : negative compression levels trigger fast acceleration, request by @llchan
API : lz4frame : can control block checksum and dictionary ID
API : fix : expose obsolete decoding functions, reported by @cyfdecyf
API : experimental : lz4frame_static.h : new dictionary compression API
build : fix : static lib installation, by @ido
build : dragonFlyBSD, OpenBSD, NetBSD supported
build : LZ4_MEMORY_USAGE can be modified at compile time, through external define
doc : Updated LZ4 Frame format to v1.6.0, restoring Dictionary-ID field in header
doc : lz4's API manual in .html format, by @inikep

(adam)

version 2.6.9:
a bug-fix release

(adam)

Updated devel/py-hypothesis to 3.18.5, devel/py-typing to 3.6.2

(adam)

Sync with Python 3.6.2

(adam)

Depend on py-typing only for Python < 3.6

(adam)

Re-written backports.abc condition for Python < 3.5

(adam)

3.18.5:
This is a bugfix release for ~hypothesis.strategies.integers. Previously the strategy would hit an internal assertion if passed non-integer bounds for min_value and max_value that had no integers between them. The strategy now raises InvalidArgument instead.

(adam)

Updated math/glpk to 4.63, textproc/grep to 3.1, security/libtasn1 to 4.12, www/cgicc to 3.2.19, games/gnuchess to 6.2.5

(adam)

Version 6.2.5:
- Command history based on readline.
- New commands: coords/nocoords to enable/disable coordinates
when printing the board.
- Command pgnsave will prompt the user to overwrite or not an existing
file instead of appending the current game to the file.
- New languages.
- Bug fixes.

(adam)

3.2.19:
* Correction of bugs

(adam)

release 4.12:
- Corrected so-name version

release 4.11:
- Introduced the ASN1_TIME_ENCODING_ERROR error code to indicate
  an invalid encoding in the DER time fields.
- Introduced flag ASN1_DECODE_FLAG_ALLOW_INCORRECT_TIME. This flag
  allows decoding errors in time fields even when in strict DER mode.
  That is introduced in order to allow toleration of invalid times in
  X.509 certificates (which are common) even though strict DER adherence
  is enforced in other fields.
- Added safety check in asn1_find_node(). That prevents a crash
  when a very long variable name is provided by the developer.
  Note that this to be exploited requires controlling the ASN.1
  definitions used by the developer, i.e., the 'name' parameter of
  asn1_write_value() or asn1_read_value(). The library is
  not designed to protect against malicious manipulation of the
  developer assigned variable names.

(adam)

release 3.1:

** Improvements

  grep '[0-9]' is now just as fast as grep '[[:digit:]]' when run
  in a multi-byte locale.  Before, it was several times slower.

** Changes in behavior

  Context no longer excludes selected lines omitted because of -m.
  For example, 'grep "^" -m1 -A1' now outputs the first two input
  lines, not just the first line.  This fixes a glitch that has been
  present since -m was added in grep 2.5.

  The following changes affect only MS-Windows platforms.  First, the
  --binary (-U) option now governs whether binary I/O is used, instead
  of a heuristic that was sometimes incorrect.  Second, the
  --unix-byte-offsets (-u) option now has no effect on MS-Windows too.

(adam)

GLPK 4.63:

A "smart" LP perturbation was implemented in the primal and
dual simplex solvers. Now LP is perturbed only if it is
necessary, and by default perturbation is not activated.
The sum of primal infeasibilites that appears in the terminal
output of the primal simplex solver (as "inf = ...") now
corresponds to the original bounds of variables. This allows to
see how much perturbed solution violates the original bounds.

The long-step technique was implemented for phase I of the
primal simplex solver. This feature can be enabled by
specifying --flip option for glpsol or by specifying
glp_smcp.r_test = GLP_RT_FLIP on api level. For many LP
instances the long-step technique allows reducing the number
of simplex iterations to 30-70%. Please note that unlike the
dual simplex, where this technique can be used on both phase I
and II, for the primal simplex it can be used only on phase I,
where the sum of primal infeasibilities (which is a convex
piecewise linear function) is minimized.

An internal objective scaling was included in both primal and
dual simplex solvers. For many LP/MIP instances this feature
improves numerical stability (for the dual solver) and prevents
cycling near the optimum (for the primal solver).

The Posix version of glp_time (glpk/src/env/time.c) was changed
to resolve time_t issue on msys2.

Three new example models in MathProg were added:
life_goe.mod (Conway's Game of Life garden of eden checker);
tiling.mod (Rectifiable polyomino tilings generator);
toto.mod (Covering code generator).

(adam)

Fix crash on macOS 10.13 (Darwin 7).

(adam)

Fix crash on macOS 10.13 (Darwin 7).

(adam)

Requires devel/gettext-lib

(adam)

Updated archivers/lzip to 1.19, archivers/lziprecover to 1.19, devel/libidn2 to 2.0.3

(adam)

Version 2.0.3 (released 2017-07-24) [beta]

** %IDN2_USE_STD3_ASCII_RULES disabled by default.
Previously we were eliminating non-STD3 characters from domain strings
such as _443._tcp.example.com, or IPs 1.2.3.4/24 provided to libidn2
functions. That was an unexpected regression for applications switching
from libidn and thus it is no longer applied by default.
Use %IDN2_USE_STD3_ASCII_RULES to enable that behavior again.

** Fix several documentation issues

** Fix build issues

** Modernize gtk-doc build infrastructure.

(adam)

Changes in version 1.19:

'--merge' is now able to fix files with thousands of scattered errors
per member by grouping the errors into clusters and then merging the
files as if each cluster were a single error.

The option '-a, --trailing-error' now works with '-l, --list' and
'-D, --range-decompress'.

The output of option '-l, --list' has been simplified to make it easier
to read.

In test mode, lziprecover now continues checking the rest of the files
if any input file is a terminal.

Trailing data are now shown both in hexadecimal and as a string of
printable ASCII characters.

(adam)

Changes in version 1.19:

The option '-l, --list' has been ported from lziprecover.

It is now an error to specify two or more different operations in the
command line (--decompress, --list or --test).

Compression time of option '-0' has been slightly reduced.

Decompression time has been reduced by 2%.

In test mode, lzip now continues checking the rest of the files if any
input file is a terminal.

Trailing data are now shown both in hexadecimal and as a string of
printable ASCII characters.

(adam)

Added devel/gettext-lib/buildlink3.mk

(adam)

Fixed BUILD_DEPENDS typo

(adam)

Updated devel/libuv to 1.14.0, graphics/openjpeg to 2.2.0

(adam)

OpenJPEG 2.2.0:

This new release includes a significant number of improvements and bug fixes. In particular:
* Multi-threading support at decoding side
* Several speed optimisations both at encoder and decoder, and both on Wavelet Transform and Entropy Coding parts. On our test set, a single-threaded execution is now around 20% faster (encoding or decoding).
* Huge memory consumption reduction at decoding side (~60% reduction on large images)
* Several important bug fixes, in particular the one that was preventing OpenJPEG to encode lossless in some specific situations, as well as those related to mode switches (BYPASS/LAZY, RESTART/TERMALL, etc).
* Several security fixes thanks to the inclusion of OpenJPEG in the Google OSS Fuzz project.

Beside that, several improvements have been brought to the project maintenance, like inclusion of benchmarking scripts to compare speed with latest available kakadu binaries.

And, last but not least, API and ABI are 100% compatible with previous version.

(adam)

Version 1.14.0:
* unix: check for NULL in uv_os_unsetenv for parameter name (Andr辿 Klitzing)
* doc: add thread safety warning for process title (Matthew Taylor)
* unix: always copy process title into local buffer (Matthew Taylor)
* poll: add support for OOB TCP and GPIO interrupts (CurlyMoo)
* win,build: fix appveyor properly (Refael Ackermann)
* win: include filename in dlopen error message (Ben Noordhuis)
* aix: add netmask, mac address into net interfaces (Gireesh Punathil)
* unix, windows: map EREMOTEIO errno (Ben Noordhuis)
* unix: fix wrong MAC of uv_interface_address (XadillaX)
* win,build: fix building from Windows SDK or VS console (Sa炭l Ibarra Corretg辿)
* github: fix link to help repo in issue template (Ben Noordhuis)
* zos: remove nonexistent include from autotools build (Sa炭l Ibarra Corretg辿)
* misc: remove reference to pthread-fixes.h from LICENSE (Sa炭l Ibarra Corretg辿)
* docs: fix guide source code example paths (Anticrisis)
* android: fix compilation with new NDK versions (Sa炭l Ibarra Corretg辿)
* misc: add android-toolchain to .gitignore (Sa炭l Ibarra Corretg辿)
* win, fs: support unusual reparse points (Bartosz Sosnowski)
* android: fix detection of pthread_condattr_setclock (Sa炭l Ibarra Corretg辿)
* android: remove no longer needed check (Sa炭l Ibarra Corretg辿)
* doc: update instructions for building on Android (Sa炭l Ibarra Corretg辿)
* win, process: support semicolons in PATH variable (Bartosz Sosnowski)
* doc: document uv_async_(init|send) return values (Ben Noordhuis)
* doc: add Android as a tier 3 supported platform (Sa炭l Ibarra Corretg辿)
* unix: add missing semicolon (jBarz)
* win, test: fix double close in test runner (Bartosz Sosnowski)
* doc: update supported windows version baseline (Ben Noordhuis)
* test,zos: skip chown root test (jBarz)
* test,zos: use gid=-1 to test spawn_setgid_fails (jBarz)
* zos: fix hr timer resolution (jBarz)
* android: fix blocking recvmsg due to netlink bug (Jacob Segal)
* zos: read more accurate rss info from RSM (jBarz)
* win: allow bound/connected socket in uv_tcp_open() (Maciej Szeptuch
  (Neverous))
* doc: differentiate SmartOS and SunOS support (cjihrig)
* unix: make uv_poll_stop() remove fd from pollset (Ben Noordhuis)
* unix, windows: add basic uv_fs_copyfile() (cjihrig)

(adam)

Updated databases/py-redis to 2.10.6

(adam)

2.10.6
* Various performance improvements. Thanks cjsimpson
* Fixed a bug with SRANDMEMBER where
* Added HSTRLEN command. Thanks Alexander Putilin
* Added the TOUCH command. Thanks Anis Jonischkeit
* Remove unnecessary calls to the server when registering Lua scripts.
  Thanks Ben Greenberg
* SET's EX and PX arguments now allow values of zero. Thanks huangqiyin
* Added PUBSUB {CHANNELS, NUMPAT, NUMSUB} commands. Thanks Angus Pearson
* PubSub connections that that encounter `InterruptedError`s now
  retry automatically. Thanks Carlton Gibson and Seth M. Larson
* LPUSH and RPUSH commands run on PyPy now correctly returns the number
  of items of the list. Thanks Jeong YunWon
* Added support to automatically retry socket EINTR errors. Thanks
  Thomas Steinacher
* PubSubWorker threads started with `run_in_thread` are now daemonized
  so the thread shuts down when the running process goes away. Thanks
  Keith Ainsworth
* Added support for GEO commands. Thanks Pau Freixes, Alex DeBrie and
  Abraham Toriz
* Made client construction from URLs smarter. Thanks Tim Savage
* Added support for CLUSTER * commands. Thanks Andy Huang
* The RESTORE command now accepts an optional `replace` boolean.
  Thanks Yoshinari Takaoka
* Attempt to connect to a new Sentinel if a TimeoutError occurs. Thanks
  Bo Lopker
* Fixed a bug in the client's `__getitem__` where a KeyError would be
  raised if the value returned by the server is an empty string.
  Thanks Javier Candeira.
* Socket timeouts when connecting to a server are now properly raised
  as TimeoutErrors.

(adam)

Updated emulators/vice to 3.1, lang/py-js2py to 0.50, www/py-cfscrape to 1.8.1, devel/py-wrapt to 1.10.11

(adam)

Version 1.10.11

Bugs Fixed
* When wrapping a @classmethod in a class used as a base class, when the method was called via the derived class type, the base class type was being passed for the cls argument instead of the derived class type through which the call was made.

New Features
* The C extension can be disabled at runtime by setting the environment variable WRAPT_DISABLE_EXTENSIONS. This may be necessary where there is currently a difference in behaviour between pure Python implementation and C extension and the C extension isn't having the desired result.

(adam)

1.8.1:
Bug fix: Handle relative Location headers

(adam)

Changes 0.50:
Bug fixes.

(adam)

Changes in VICE 3.1

General
- New support for double sided 1571 g64 and p64 images.
- SID filter improvements.

C64(SC)/SCPU64/C64DTV/C128 changes
- New joyport script64 dongle emulation.
- New joyport vizawrite64 dongle emulation.
- Fixed joyport paperclip64 dongle emulation.
- Fixed StarDOS emulation.

XVIC
- Fixed VIA emulation.

C1541
- Fixed commands and added new commands.

BeOS/Haiku changes
- New drag & drop support: dragging a file from Tracker into the window
  now autostarts it, and dragging text into the window pastes it.

(adam)

Updated devel/py-requests to 2.18.4

(adam)

2.18.4:
Improvements
* Error messages for invalid headers now include the header name for easier debugging

Dependencies
* We now support idna v2.6.

(adam)

Updated audio/faac to 1.29.4

(adam)

1.29.4:
- new option(--tag) to add named tags (iTunes '----')
- faster and better short/long window type switch
- Don't build DRM(Digital Radio Mondiale) by default.
  Use ./configure --enable-drm to build DRM version.
- fixed bugs
  * rounding in QuantizeReflectionCoeffs (tns.c)
  * use +60 value for scalefactor.
  * use clipped diff instead of original value (huffman.c)

(adam)

Updated net/py-botocore to 1.6.1, net/py-awscli to 1.11.134, net/py-boto3 to 1.4.6

(adam)

1.11.134
api-change:batch: Update batch command to latest version
api-change:cloudhsmv2: Update cloudhsmv2 command to latest version
api-change:efs: Update efs command to latest version
api-change:ssm: Update ssm command to latest version
api-change:storagegateway: Update storagegateway command to latest version
api-change:mgh: Update mgh command to latest version
api-change:glue: Update glue command to latest version

1.11.133
api-change:ec2: Update ec2 command to latest version
api-change:cognito-idp: Update cognito-idp command to latest version
api-change:codedeploy: Update codedeploy command to latest version

(adam)

1.4.6
enhancement:Logging: Switch log levels from INFO to DEBUG

(adam)

1.6.1
api-change:cloudhsmv2: Update cloudhsmv2 client to latest version
api-change:ssm: Update ssm client to latest version
api-change:glue: Update glue client to latest version
api-change:mgh: Update mgh client to latest version
api-change:efs: Update efs client to latest version
api-change:storagegateway: Update storagegateway client to latest version
api-change:batch: Update batch client to latest version

1.6.0
api-change:ec2: Update ec2 client to latest version
feature:retries: Add ability to configure the maximum amount of retry attempts a client call can make.
api-change:cognito-idp: Update cognito-idp client to latest version
api-change:codedeploy: Update codedeploy client to latest version

(adam)

Updated misc/rhash to 1.3.5

(adam)

Version 1.3.5:
* look for locales directory at PROGRAM_DIRECTORY\locale on Windows
* look for config at PROGRAM_DIRECTORY\rhashrc on Windows
* support LibRhash bindings to PHP7
* Bugfix: illegal instruction error on macOS
* improve utf-8 support on Windows
* Bugfix: fix access to long paths on Windows
* add ca, fr, ro translations
* full Spanish translation
* correct build/install command for freebsd
* compilation fixes for aarch64 and musl
* improve support of clang on macOS

(adam)

Updated www/curl to 7.55.1, graphics/libimagequant to 2.10.2

(adam)

2.10.2:
Bug fixes.

(adam)

Curl and libcurl 7.55.1

This release includes the following bugfixes:
o build: fix 'make install' with configure, install docs/libcurl/* too
o make install: add 8 missing man pages to the installation
o curl: do bounds check using a double comparison [1]
o dist: Add dictserver.py/negtelnetserver.py to release [2]
o digest_sspi: Don't reuse context if the user/passwd has changed [3]
o gitignore: ignore top-level .vs folder [4]
o build: check out *.sln files with Windows line endings [5]
o travis: verify "make install" [6]
o dist: fix the cmake build by shipping cmake_uninstall.cmake.in too [7]
o metalink: fix error: ‘*’ in boolean context, suggest ‘&&’ instead
o configure: use the threaded resolver backend by default if possible [8]
o mkhelp.pl: allow executing this script directly [9]
o maketgz: remove old *.dist files before making the tarball [10]
o openssl: remove CONST_ASN1_BIT_STRING [11]
o openssl: fix "error: this statement may fall through"
o proxy: fix memory leak in case of invalid proxy server name [12]
o curl/system.h: support more architectures (OpenRISC, ARC) [13]
o docs: fix typos [14]
o curl/system.h: add Oracle Solaris Studio [15]
o CURLINFO_TOTAL_TIME: could wrongly return 4200 seconds [16]
o docs: --connect-to clarified
o cmake: allow user to override CMAKE_DEBUG_POSTFIX [17]
o travis: test cmake build on tarball too
o redirect: make it handle absolute redirects to IDN names [18]
o curl/system.h: fix for gcc on PowerPC [19]
o curl --interface: fixed for IPV6 unique local addresses [20]
o cmake: threads detection improvements [21]

(adam)

Updated lang/python35 to 3.5.4, lang/python34 to 3.4.7

(adam)

Python 3.4.7:

Security
* bpo-29591: Update expat copy from 2.1.1 to 2.2.0 to get fixes of CVE-2016-0718 and CVE-2016-4472. See https://sourceforge.net/p/expat/bugs/537/ for more information.
* bpo-30694: Upgrade expat copy from 2.2.0 to 2.2.1 to get fixes of multiple security vulnerabilities including: CVE-2017-9233 (External entity infinite loop DoS), CVE-2016-9063 (Integer overflow, re-fix), CVE-2016-0718 (Fix regression bugs from 2.2.0窶冱 fix to CVE-2016-0718) and CVE-2012-0876 (Counter hash flooding with SipHash). Note: the CVE-2016-5300 (Use os- specific entropy sources like getrandom) doesn窶冲 impact Python, since Python already gets entropy from the OS to set the expat secret using XML_SetHashSalt().
* bpo-26657: Fix directory traversal vulnerability with http.server on Windows. This fixes a regression that was introduced in 3.3.4rc1 and 3.4.0rc1. Based on patch by Philipp Hagemeister.
* bpo-30500: Fix urllib.parse.splithost() to correctly parse fragments. For example, splithost('//127.0.0.1#@evil.com/') now correctly returns the 127.0.0.1 host, instead of treating @evil.com as the host in an authentification (login@host).
* bpo-30730: Prevent environment variables injection in subprocess on Windows. Prevent passing other invalid environment variables and command arguments.

(adam)

Python 3.5.4:

Security
* bpo-30730: Prevent environment variables injection in subprocess on Windows. Prevent passing other environment variables and command arguments.
* bpo-30694: Upgrade expat copy from 2.2.0 to 2.2.1 to get fixes of multiple security vulnerabilities including: CVE-2017-9233 (External entity infinite loop DoS), CVE-2016-9063 (Integer overflow, re-fix), CVE-2016-0718 (Fix regression bugs from 2.2.0窶冱 fix to CVE-2016-0718) and CVE-2012-0876 (Counter hash flooding with SipHash). Note: the CVE-2016-5300 (Use os- specific entropy sources like getrandom) doesn窶冲 impact Python, since Python already gets entropy from the OS to set the expat secret using XML_SetHashSalt().
* bpo-30500: Fix urllib.parse.splithost() to correctly parse fragments. For example, splithost('//127.0.0.1#@evil.com/') now correctly returns the 127.0.0.1 host, instead of treating @evil.com as the host in an authentification (login@host).
* bpo-29591: Update expat copy from 2.1.1 to 2.2.0 to get fixes of CVE-2016-0718 and CVE-2016-4472. See https://sourceforge.net/p/expat/bugs/537/ for more information.

(adam)

Updated databases/postgresql9[23456] to latest

(adam)

The PostgreSQL Global Development Group has released an update to all supported versions of our database system, including 9.6.4, 9.5.8, 9.4.13, 9.3.18, and 9.2.22. This release fixes three security issues. It also patches over 50 other bugs reported over the last three months. Users who are affected by the below security issues should update as soon as possible. Users affected by CVE-2017-7547 will need to perform additional steps after upgrading to resolve the issue. Other users should plan to update at the next convenient downtime.

Three security vulnerabilities have been closed by this release:
* CVE-2017-7546: Empty password accepted in some authentication methods
* CVE-2017-7547: The "pg_user_mappings" catalog view discloses passwords to users lacking server privileges
* CVE-2017-7548: lo_put() function ignores ACLs

(adam)

Updated security/libsodium to 1.0.13, net/zeromq to 4.2.2

(adam)

version 4.2.2:
* Improve compatibility with GNU Hurd
* Fixed 2286 - improve CMake on Windows documentation
* Fixed 1235 - improved compatibility with mingw64
* Improve zmq_proxy documentation to state it can return ETERM as well
* Fixed 1442 - SO_NOSIGPIPE and connection closing by peer race condition
* Improve CMake functionality on Windows: ZeroMQConfig.cmake generation CPack
  option, correct static library filename, ship FindSodium.cmake in tarball
* Fixed 2228 - setting HWM after connect on inproc transport leads to infinite
  HWM
* Add support for Visual Studio 2017
* New DRAFT (see NEWS for 4.2.0) zmq_has option "draft" option that returns
  true if the library was built with DRAFT enabled. Useful for FFI bindings.
  See doc/zmq_has.txt for more information
* Fixed 2321 - zmq_z85_decode does not validate its input. The function has
  been fixed to correctly follow RFC32 and return NULL if the input is invalid
* Fixed 2323 - clock_t related crash on Apple iOS 9.3.2 and 9.3.5
* Fixed 1801 - OSX: Cmake installs libzmq in a weird PATH
* Fixed potential divide by zero in zmq::lb_t::sendpipe
* Improve compatibility with OpenIndiana by skipping epoll and using poll/select
* Fix IPv4-in-IPv6 mapped addresses parsing error

(adam)

Version 1.0.13
- Javascript: the sumo builds now include all symbols. They were
previously limited to symbols defined in minimal builds.
- The public `crypto_pwhash_argon2i_MEMLIMIT_MAX` constant was
incorrectly defined on 32-bit platforms. This has been fixed.
- Version 1.0.12 didn't compile on OpenBSD/i386 using the base gcc
compiler. This has been fixed.
- The Android compilation scripts have been updated for NDK r14b.
- armv7s-optimized code was re-added to iOS builds.
- An AVX2 optimized implementation of the Argon2 round function was
added.
- The Argon2id variant of Argon2 has been implemented. The
high-level `crypto_pwhash_str_verify()` function automatically detects
the algorithm and can verify both Argon2i and Argon2id hashed passwords.
The default algorithm for newly hashed passwords remains Argon2i in
this version to avoid breaking compatibility with verifiers running
libsodium <= 1.0.12.
- A `crypto_box_curve25519xchacha20poly1305_seal*()` function set was
implemented.
- scrypt was removed from minimal builds.
- libsodium is now available on Nuget.

(adam)

Updated devel/py-hypothesis to 3.17.0, devel/py-test to 3.2.1

(adam)

Pytest 3.2.1
Bug Fixes:
* Fixed small terminal glitch when collecting a single test item.
* Correctly consider / as the file separator to automatically mark plugin files for rewrite on Windows.
* Properly escape test names when setting PYTEST_CURRENT_TEST environment variable.
* Fix error on Windows and Python 3.6+ when sys.stdout has been replaced with a stream-like object which does not implement the full io module buffer protocol. In particular this affects pytest-xdist users on the aforementioned platform.

Improved Documentation
* Explicitly document which pytest features work with unittest.

(adam)

3.17.0:
This release documents the previously undocumented phases feature”, making it part of the official public API. It also updates how the example database is used. Principally:
* A Phases.reuse argument will now correctly control whether examples from the database are run (it previously did exactly the wrong thing and controlled whether examples would be saved).
* Hypothesis will no longer try to rerun all previously failing examples. Instead it will replay the smallest previously failing example and a selection of other examples that are likely to trigger any other bugs that will found. This prevents a previous failure from dominating your tests unnecessarily.
* As a result of the previous change, Hypothesis will be slower about clearing out old examples from the database that are no longer failing (because it can only clear out ones that it actually runs).

(adam)

Updated devel/subversion to 1.9.7, devel/git to 2.14.1

(adam)

Git v2.14.1:
This release forward-ports the fix for "ssh://..." URL from Git v2.7.6

(adam)

Subversion 1.9.7:

This is a stable security release of the Apache Subversion open source
version control system.  It fixes one security issue:

    CVE-2017-9800:
    Arbitrary code execution on clients through malicious svn+ssh URLs in
    svn:externals and svn:sync-from-url
    http://subversion.apache.org/security/CVE-2017-9800-advisory.txt

(adam)

Updated devel/cmake to 3.9.1

(adam)

Changes in 3.9.1 since 3.9.0:

Utilities/Sphinx: Restore compatibility with Sphinx pre-1.2
Help: Silence warning about document not included in toctree
UseSWIG: Fix when Java is enabled as a language
VS: Fix VCTargetsPath detection
Android: Fix support for CMAKE_SYSROOT without CMAKE_SYSROOT_COMPILE
expat: Update script to get Expat 2.2.3
expat: Update CMake build for 2.2.3
Tests: Simplify RunCMake.find_package PackageRoot case regexes
find_*: Disable the PACKAGE_ROOT search path group for CMake 3.9
find_package: Add missing PACKAGE_ROOT_PATH search path implementation.
find_package: Fix PACKAGE_ROOT test to check find_pacakge(CONFIG) mode.
find_package: Split PACKAGE_ROOT tests to work with smaller regex
FindJava: Allow early access version trailing string to be mixed case
FindBoost: pop policy stack before returning
expat 2017-08-02 (97c6bd01)
server: Fix crash on missing cache entries
FindJava: fix hint for windows jre 1.6
Help: Fix module and function names in CMP0069 examples
Autogen: Always create AUTOMOC/AUTOUIC include directory

(adam)

Updated graphics/gdk-pixbuf2 to 2.36.8

(adam)

2.36.8:
* jpeg: restore grayscale image support
* bmp: Tighten image dimension checks
* ico: Fixo icon quality sorting
* Various other leak and overflow fixes
* Add some assertion to help static analysis
* Remove support for building on various obsolete platforms
* Translation updates

2.36.7:
* Add tests for recent bug fixes
* ico, bmp, tiff: avoid integer overflows
* jpeg: error out if wrong number of channels
* Misc.bugfixes
* Support mimetypes: image/wmf, image/emf
* Translation updates

(adam)

Updated devel/pango to 1.40.8, x11/gtk3 to 3.22.17

(adam)

Changes in GTK+ 3.22.17

* Add native file chooser support for OS X

* Bug fixes:
766517 GtkAboutDialog should use https:// license URLs
781583 gtk_image_new_from_resource does not work
781935 Add nullable return annotation to gtk_notebook_get_tab_label
781936 Add nullable return annotation to gtk_text_mark_get_name
782040 Wacom pen calibration application responds to mouse input
782325 wayland: Add possibility to get the exported handle multiple times
784323 Quartz backend: gtk_clipboard_get_default not implemented
784723 macOS: native file chooser dialog
784888 gtkapplication: Mark gtk_application_get_active_window() as nullable

* Translation updates:
Friulian
Kazakh

(adam)

Overview of changes between 1.40.7 and 1.40.8
=============================================
- Support emoji sequences in boundary determination
- Choose emoji font for color emoji

Overview of changes between 1.40.6 and 1.40.7
=============================================
- Some fixes for meson build support
- Don't change fonts for variation selectors
- Fix some bugs in the libthai glue layer
- Pass text along when calling into cairo

Overview of changes between 1.40.5 and 1.40.6
=============================================
- Don't use deprecated harfbuzz api
- Correctly implement min-required/max-allowed support
- Avoid compiler warnings
- Drop -uninstalled.pd files
- Add support for building with meson

(adam)

Updated devel/include-what-you-use to 0.8, devel/git to 2.14.0, devel/py-hypothesis to 3.16.1

(adam)

3.16.1:
This release makes an implementation change to how Hypothesis handles certain internal constructs.

The main effect you should see is improvement to the behaviour and performance of collection types, especially ones with a min_size parameter. Many cases that would previously fail due to being unable to generate enough valid examples will now succeed, and other cases should run slightly faster.

3.16.0:
This release introduces a deprecation of the timeout feature. This results in the following changes:

Creating a settings object with an explicit timeout will emit a deprecation warning.
If your test stops because it hits the timeout (and has not found a bug) then it will emit a deprecation warning.
There is a new value unlimited which you can import from hypothesis. settings(timeout=unlimited) will not cause a deprecation warning.
There is a new health check, hung_test, which will trigger after a test has been running for five minutes if it is not suppressed.

(adam)

Git 2.14 Release Notes
======================

Backward compatibility notes and other notable changes.

* Use of an empty string as a pathspec element that is used for
  'everything matches' is still warned and Git asks users to use a
  more explicit '.' for that instead.  The hope is that existing
  users will not mind this change, and eventually the warning can be
  turned into a hard error, upgrading the deprecation into removal of
  this (mis)feature.  That is not scheduled to happen in the upcoming
  release (yet).

* Git now avoids blindly falling back to ".git" when the setup
  sequence said we are _not_ in Git repository.  A corner case that
  happens to work right now may be broken by a call to die("BUG").
  We've tried hard to locate such cases and fixed them, but there
  might still be cases that need to be addressed--bug reports are
  greatly appreciated.

* The experiment to improve the hunk-boundary selection of textual
  diff output has finished, and the "indent heuristics" has now
  become the default.

* Git can now be built with PCRE v2 instead of v1 of the PCRE
  library. Replace USE_LIBPCRE=YesPlease with USE_LIBPCRE2=YesPlease
  in existing build scripts to build against the new version.  As the
  upstream PCRE maintainer has abandoned v1 maintenance for all but
  the most critical bug fixes, use of v2 is recommended.

Updates since v2.13
-------------------

UI, Workflows & Features

* The colors in which "git status --short --branch" showed the names
  of the current branch and its remote-tracking branch are now
  configurable.

* "git clone" learned the "--no-tags" option not to fetch all tags
  initially, and also set up the tagopt not to follow any tags in
  subsequent fetches.

* "git archive --format=zip" learned to use zip64 extension when
  necessary to go beyond the 4GB limit.

* "git reset" learned "--recurse-submodules" option.

* "git diff --submodule=diff" now recurses into nested submodules.

* "git repack" learned to accept the --threads=<n> option and pass it
  to pack-objects.

* "git send-email" learned to run sendemail-validate hook to inspect
  and reject a message before sending it out.

* There is no good reason why "git fetch $there $sha1" should fail
  when the $sha1 names an object at the tip of an advertised ref,
  even when the other side hasn't enabled allowTipSHA1InWant.

* The "[includeIf "gitdir:$dir"] path=..." mechanism introduced in
  2.13.0 would canonicalize the path of the gitdir being matched,
  and did not match e.g. "gitdir:~/work/*" against a repo in
  "~/work/main" if "~/work" was a symlink to "/mnt/storage/work".
  Now we match both the resolved canonical path and what "pwd" would
  show. The include will happen if either one matches.

* The "indent" heuristics is now the default in "diff". The
  diff.indentHeuristic configuration variable can be set to "false"
  for those who do not want it.

* Many commands learned to pay attention to submodule.recurse
  configuration.

* The convention for a command line is to follow "git cmdname
  --options" with revisions followed by an optional "--"
  disambiguator and then finally pathspecs.  When "--" is not there,
  we make sure early ones are all interpretable as revs (and do not
  look like paths) and later ones are the other way around.  A
  pathspec with "magic" (e.g. ":/p/a/t/h" that matches p/a/t/h from
  the top-level of the working tree, no matter what subdirectory you
  are working from) are conservatively judged as "not a path", which
  required disambiguation more often.  The command line parser
  learned to say "it's a pathspec" a bit more often when the syntax
  looks like so.

* Update "perl-compatible regular expression" support to enable JIT
  and also allow linking with the newer PCRE v2 library.

* "filter-branch" learned a pseudo filter "--setup" that can be used
  to define common functions/variables that can be used by other
  filters.

* Using "git add d/i/r" when d/i/r is the top of the working tree of
  a separate repository would create a gitlink in the index, which
  would appear as a not-quite-initialized submodule to others.  We
  learned to give warnings when this happens.

* "git status" learned to optionally give how many stash entries there
  are in its output.

* "git status" has long shown essentially the same message as "git
  commit"; the message it gives while preparing for the root commit,
  i.e. "Initial commit", was hard to understand for some new users.
  Now it says "No commits yet" to stress more on the current status
  (rather than the commit the user is preparing for, which is more in
  line with the focus of "git commit").

* "git send-email" now has --batch-size and --relogin-delay options
    which can be used to overcome limitations on SMTP servers that
    restrict on how many of e-mails can be sent in a single session.

* An old message shown in the commit log template was removed, as it
  has outlived its usefulness.

* "git pull --rebase --recurse-submodules" learns to rebase the
  branch in the submodules to an updated base.

* "git log" learned -P as a synonym for --perl-regexp, "git grep"
  already had such a synonym.

* "git log" didn't understand --regexp-ignore-case when combined with
  --perl-regexp. This has been fixed.

Performance, Internal Implementation, Development Support etc.

* The default packed-git limit value has been raised on larger
  platforms to save "git fetch" from a (recoverable) failure while
  "gc" is running in parallel.

* Code to update the cache-tree has been tightened so that we won't
  accidentally write out any 0{40} entry in the tree object.

* Attempt to allow us notice "fishy" situation where we fail to
  remove the temporary directory used during the test.

* Travis CI gained a task to format the documentation with both
  AsciiDoc and AsciiDoctor.

* Some platforms have ulong that is smaller than time_t, and our
  historical use of ulong for timestamp would mean they cannot
  represent some timestamp that the platform allows.  Invent a
  separate and dedicated timestamp_t (so that we can distingiuish
  timestamps and a vanilla ulongs, which along is already a good
  move), and then declare uintmax_t is the type to be used as the
  timestamp_t.

* We can trigger Windows auto-build tester (credits: Dscho &
  Microsoft) from our existing Travis CI tester now.

* Conversion from uchar[20] to struct object_id continues.

* Simplify parse_pathspec() codepath and stop it from looking at the
  default in-core index.

* Add perf-test for wildmatch.

* Code from "conversion using external process" codepath has been
  extracted to a separate sub-process.[ch] module.

* When "git checkout", "git merge", etc. manipulates the in-core
  index, various pieces of information in the index extensions are
  discarded from the original state, as it is usually not the case
  that they are kept up-to-date and in-sync with the operation on the
  main index.  The untracked cache extension is copied across these
  operations now, which would speed up "git status" (as long as the
  cache is properly invalidated).

* The internal implementation of "git grep" has seen some clean-up.

* Update the C style recommendation for notes for translators, as
  recent versions of gettext tools can work with our style of
  multi-line comments.

* The implementation of "ref" API around the "packed refs" have been
  cleaned up, in preparation for further changes.

* The internal logic used in "git blame" has been libified to make it
  easier to use by cgit.

* Our code often opens a path to an optional file, to work on its
  contents when we can successfully open it.  We can ignore a failure
  to open if such an optional file does not exist, but we do want to
  report a failure in opening for other reasons (e.g. we got an I/O
  error, or the file is there, but we lack the permission to open).

  The exact errors we need to ignore are ENOENT (obviously) and
  ENOTDIR (less obvious).  Instead of repeating comparison of errno
  with these two constants, introduce a helper function to do so.

* We often try to open a file for reading whose existence is
  optional, and silently ignore errors from open/fopen; report such
  errors if they are not due to missing files.

* When an existing repository is used for t/perf testing, we first
  create bit-for-bit copy of it, which may grab a transient state of
  the repository and freeze it into the repository used for testing,
  which then may cause Git operations to fail.  Single out "the index
  being locked" case and forcibly drop the lock from the copy.

* Three instances of the same helper function have been consolidated
  to one.

* "fast-import" uses a default pack chain depth that is consistent
  with other parts of the system.

* A new test to show the interaction between the pattern [^a-z]
  (which matches '/') and a slash in a path has been added.  The
  pattern should not match the slash with "pathmatch", but should
  with "wildmatch".

* The 'diff-highlight' program (in contrib/) has been restructured
  for easier reuse by an external project 'diff-so-fancy'.

* A common pattern to free a piece of memory and assign NULL to the
  pointer that used to point at it has been replaced with a new
  FREE_AND_NULL() macro.

* Traditionally, the default die() routine had a code to prevent it
  from getting called multiple times, which interacted badly when a
  threaded program used it (one downside is that the real error may
  be hidden and instead the only error message given to the user may
  end up being "die recursion detected", which is not very useful).

* Introduce a "repository" object to eventually make it easier to
  work in multiple repositories (the primary focus is to work with
  the superproject and its submodules) in a single process.

* Optimize "what are the object names already taken in an alternate
  object database?" query that is used to derive the length of prefix
  an object name is uniquely abbreviated to.

* The hashmap API has been updated so that data to customize the
  behaviour of the comparison function can be specified at the time a
  hashmap is initialized.

* The "collision detecting" SHA-1 implementation shipped with 2.13 is
  now integrated into git.git as a submodule (the first submodule to
  ship with git.git). Clone git.git with --recurse-submodules to get
  it. For now a non-submodule copy of the same code is also shipped
  as part of the tree.

* A recent update made it easier to use "-fsanitize=" option while
  compiling but supported only one sanitize option.  Allow more than
  one to be combined, joined with a comma, like "make SANITIZE=foo,bar".

* Use "p4 -G" to make "p4 changes" output more Python-friendly
  to parse.

* We started using "%" PRItime, imitating "%" PRIuMAX and friends, as
  a way to format the internal timestamp value, but this does not
  play well with gettext(1) i18n framework, and causes "make pot"
  that is run by the l10n coordinator to create a broken po/git.pot
  file.  This is a possible workaround for that problem.

* It turns out that Cygwin also needs the fopen() wrapper that
  returns failure when a directory is opened for reading.

(adam)

iwyu 0.8:
Add support for IWYU pragma: associated
Better validation of pragma syntax in general.
Improve support for out-of-tree builds, especially with MSVC.
Add more compiler-like output for iwyu_tool.py
Further improve location reporting in macros.
Stricter requirements for arrays of templates.
Better recognition of typedef types for by-value arguments.
Better function pointers support.
Documentation improvements.
Extend IWYU pragma: keep to work with forward declarations.
Fix Windows path handling in fix_includes.py
Better libc++ container support.

(adam)

Updated devel/msgpack to 2.1.5, security/py-asn1 to 0.3.2, www/py-cheroot to 5.8.1, time/py-icalendar to 3.11.6, devel/py-rope to 0.10.5

(adam)

Makefile clean-up

(adam)

0.10.5:
Update to 0.10.4 to fix issue with package in pypi

(adam)

3.11.6:
Bug fixes:
Fix VTIMEZONEs including RDATEs

(adam)

v5.8.1
- CI improvements:
  * Add basic working Circle CI v2 config
- Fix URI encoding bug introduced in 39
  * Improve cheroot.test.helper.Controller to properly match unicode

v5.8.0
- CI improvements:
  * Switch to native PyPy support in Travis CI
  * Take into account PEP 257 compliant modules
  * Build wheel in Appveyor and store it as an artifact
- Improve urllib support in ``_compat`` module
- 38 via 39: Improve URI parsing:
  * Make it compliant with RFC 7230, RFC 7231 and RFC 2616
  * Fix setting of ``environ['QUERY_STRING']`` in WSGI
  * Introduce ``proxy_mode`` and ``strict_mode`` argument in ``server.HTTPRequest``
  * Fix decoding of unicode URIs in WSGI 1.0 gateway

(adam)

Revision 0.3.2:
- Fixed SequenceOf/SetOf types initialization syntax to remain
  backward compatible with pyasn1 0.2.*
- Rectified thread safety issues by moving lazy, run-time computation
  into object initializer.
- Fixed .isValue property to return True for empty SetOf/SequenceOf
  objects
- Fixed GeneralizedTime/UTCTime CER/DER codecs to actually get invoked
- Fixed DER/CER encoders handling optional SEQUENCE/SET fields containing
  nested SEQUENCE/SET with optional fields.
- Fixed crash in SequenceOf/SetOf pretty printing and decoding (in some
  cases)
- Fixed documentation markup issues.

(adam)

version 2.1.5
* Improve cross platform configuration
* Add boost asio examples (including zlib)
* Remove some warnings
* Fix unpack visitor to treat float32/64 correctly
* Improve documents
* Fix alignment problem on some platform
* Fix conflict std::tuple, std::pair, and boost::fusion::sequence problem

(adam)

Updated devel/py-hypothesis to 3.14.2, devel/py-flakes to 1.6.0, devel/py-requests to 2.18.3, www/py-aiohttp to 2.2.5, security/py-cryptography_vectors to 2.0.3,  security/py-cryptography to 2.0.3, sysutils/py-crontab to 2.2.4

(adam)

2.2.4:
Bug fixes

(adam)

2.0.3:
Fixed an issue with weak linking symbols when compiling on macOS versions older than 10.12.

(adam)

2.2.5:
Don窶冲 raise deprecation warning on loop.run_until_complete(client.close())

(adam)

2.18.3:

Improvements
* Running $ python -m requests.help now includes the installed version of idna.

Bugfixes
* Fixed issue where Requests would raise ConnectionError instead of SSLError when encountering SSL problems when using urllib3 v1.22.

(adam)

1.6.0:
- Process function scope variable annotations for used names
- Find Python files without extensions by their shebang

(adam)

3.14.2:
This fixes a bug where Hypothesis would not work correctly on Python 2.7 if you had the typing module backport installed.

(adam)

Updated databases/py-sqlalchemy to 1.1.13

(adam)

SQLAlchemy release 1.1.13:
This release modifies the just-released fix for Oracle "WITH_UNICODE" mode based on feedback from cx_Oracle developers, to resolve a performance regression caused by this change.

(adam)

Updated net/nmap to 7.60, devel/py-rply to 0.7.5

(adam)

0.7.5:
Bug fixes.

(adam)

Nmap 7.60

o Updated the bundled Npcap from 0.91 to 0.93, fixing several issues
  with installation and compatibility with the Windows 10 Creators Update.

o NSE scripts now have complete SSH support via libssh2,
  including password brute-forcing and running remote commands, thanks to the
  combined efforts of three Summer of Code students.

o Added 14 NSE scripts from 6 authors, bringing the total up to 579!
  They are all listed at https://nmap.org/nsedoc/, and the summaries are below:

  + ftp-syst sends SYST and STAT commands to FTP servers to get system version
    and connection information.

  + http-vuln-cve2017-8917 checks for an SQL injection vulnerability affecting
    Joomla! 3.7.x before 3.7.1.

  + iec-identify probes for the IEC 60870-5-104 SCADA protocol.

  + openwebnet-discovery retrieves device identifying information and
    number of connected devices running on openwebnet protocol.

  + puppet-naivesigning checks for a misconfiguration in the Puppet CA where
    naive signing is enabled, allowing for any CSR to be automatically signed.

  + smb-protocols discovers if a server supports dialects NT LM 0.12
    (SMBv1), 2.02, 2.10, 3.00, 3.02 and 3.11. This replaces the old
    smbv2-enabled script.

  + smb2-capabilities lists the supported capabilities of SMB2/SMB3
    servers.

  + smb2-time determines the current date and boot date of SMB2
    servers.

  + smb2-security-mode determines the message signing configuration of
    SMB2/SMB3 servers.

  + smb2-vuln-uptime attempts to discover missing critical patches in
    Microsoft Windows systems based on the SMB2 server uptime.

  + ssh-auth-methods lists the authentication methods offered by an SSH server.

  + ssh-brute performs brute-forcing of SSH password credentials.

  + ssh-publickey-acceptance checks public or private keys to see if they could
    be used to log in to a target. A list of known-compromised key pairs is
    included and checked by default.

  + ssh-run uses user-provided credentials to run commands on targets via SSH.

o Removed smbv2-enabled, which was incompatible with the new SMBv2/3
  improvements. It was fully replaced by the smb-protocols script.

o Added Datagram TLS (DTLS) support to Ncat in connect (client)
  mode with --udp --ssl. Also added Application Layer Protocol Negotiation
  (ALPN) support with the --ssl-alpn option.

o Updated the default ciphers list for Ncat and the secure ciphers list for
  Nsock to use "!aNULL:!eNULL" instead of "!ADH". With the addition of ECDH
  ciphersuites, anonymous ECDH suites were being allowed.

o Fix ndmp-version and ndmp-fs-info when scanning Veritas Backup
  Exec Agent 15 or 16.

o Added wildcard detection to dns-brute. Only hostnames that
  resolve to unique addresses will be listed.

o FTP scripts like ftp-anon and ftp-brute now correctly handle
  TLS-protected FTP services and use STARTTLS when necessary.

o Function url.escape no longer encodes so-called "unreserved"
  characters, including hyphen, period, underscore, and tilde, as per RFC 3986.

o Function http.pipeline_go no longer assumes that persistent
  connections are supported on HTTP 1.0 target (unless the target explicitly
  declares otherwise), as per RFC 7230.

o The HTTP response object has a new member, version, which
  contains the HTTP protocol version string returned by the server, e.g. "1.0".

o Fix handling of the objectSID Active Directory attribute
  by ldap.lua.

o Fix line endings in the list of Oracle SIDs used by oracle-sid-brute.
  Carriage Return characters were being sent in the connection packets, likely
  resulting in failure of the script.

o http-useragent-checker now checks for changes in HTTP status
  (usually 403 Forbidden) in addition to redirects to indicate forbidden User
  Agents.

(adam)

Updated databases/py-ldap3 to 2.3

(adam)

2.3:
compatible with the pyasn1 library from version 0.1.8 up to latest (0.3.1 for now) version
MockAsync strategy is available
added __ne__ method to Attribute in abstraction layer (thank Rodrigo)
added LDAPUserNameIsMandatoryError exception in simple bind when user name is empty
search referrals are properly decoded with fast decoder
paged search works in mock strategies
paged_search in extend.standard namespace raises an exception of class LDAPOperationResult if the search returns an error
search_paged() method of Cursor object now return the whole list of entries if generator=False
updated docs for defaults parameters (thanks Guarnacciaa)
fixed mockBase for integer matching (thanks Jijo)
boolean values are now uppercase in LDIF (thanks Linus)
fixed timeout in ssl connection on Linux and Mac (thanks Allan)
changed some internal functions to private in ldap3.utils.dn
operational attribute entryDN is properly managed in Mock strategies (thanks Mark)
new rdn in renamed entry is properly set in Mock strategies (thanks Mark)
metrics are now updated for Mock strategies, except that for received bytes (thanks joehy)
better managing of missing schema from the server (thanks Deborah)
fixed error while schema is not in string format (thanks Alexandre)
SNI support added when the underlying python library allows it (thanks Edmund)
added pool_keepalive parameter to Connection object for REUSABLE strategy
connection.extend.microsoft.modify_password returns False when change is not successful (thanks Ashley)
added validators for uuid and uuid_le
fixed error while searching for bytes
fixed pickling and unpickling of datetime values (thanks David)
fixed error that resulted in valid generalizedTime strings not being parsed (thanks Busuwe)
fixed error with modify operation on referrals (thanks Busuwe)
fixed error in mockBase add_entry() with raw rdn (thanks Chad)
fixed error when stdin has not encoding in config.py (thanks cronicryo)
fixed error when optional field are not present in pyasn1 requests (thanks Ilya)
added DEFAULT_SERVER_ENCODING config parameter, should always be utf-8
DEFAULT_ENCODING config parameter renamed to DEFAULT_CLIENT_ENCODING
ADDITIONAL_ENCODINGS config parameter renamed to ADDITIONAL_SERVER_ENCONDINGS
additional encodings are applied to all data received from the server
additional encodings are not applied to client data
added from_server=False parameter to to_unicode() to not try client encoding while decoding data from server

(adam)

Updated devel/py-setuptools to 36.2.7, devel/py-hypothesis to 3.14.1, devel/py-test to 3.2.0, devel/git to 2.13.4, www/py-sanic to 0.6.0, net/py-botocore to 1.5.92, net/py-boto3 to 1.4.5, net/py-awscli to 1.11.129

(adam)

1.11.129
api-change:config: Update config command to latest version
api-change:codedeploy: Update codedeploy command to latest version
api-change:pinpoint: Update pinpoint command to latest version
api-change:ses: Update ses command to latest version

1.11.128
api-change:ssm: Update ssm command to latest version
api-change:inspector: Update inspector command to latest version

(adam)

1.4.5
enhancement:s3: Add a LifecycleConfiguration resource to resolve issues with the existing Lifecycle resource.

(adam)

1.5.92
api-change:ses: Update ses client to latest version
api-change:pinpoint: Update pinpoint client to latest version
api-change:codedeploy: Update codedeploy client to latest version
api-change:config: Update config client to latest version

1.5.91
api-change:ssm: Update ssm client to latest version
api-change:inspector: Update inspector client to latest version

(adam)

0.6.0:
Fix error where transport.get_extra_info returned None
Remove uvloop requirement for gunicorn worker
Fix error where request.token() would fail if Authorization headers were not provided
Added an abort function to easily exit out of route handlers
Added a file_stream response handler
Add support for streaming large static files
Added streaming requests
Added websocket max_size and max_queue configuration
Fixed test client not working with HTTP2
Added match_info property to request class
Added support for recycling the gunicorn worker
Added an Unauthorized exception
Added a Forbidden exception
Added a graceful timeout when shutdown

(adam)

2.2.4:
Fix issue with synchronous session closing when using ClientSession as an asynchronous context manager.

(adam)

Git v2.13.4:

* Update the character width tables.

* A recent update broke an alias that contained an uppercase letter,
  which has been fixed.

* On Cygwin, similar to Windows, "git push //server/share/repository"
  ought to mean a repository on a network share that can be accessed
  locally, but this did not work correctly due to stripping the double
  slashes at the beginning.

* The progress meter did not give a useful output when we haven't had
  0.5 seconds to measure the throughput during the interval.  Instead
  show the overall throughput rate at the end, which is a much more
  useful number.

* We run an early part of "git gc" that deals with refs before
  daemonising (and not under lock) even when running a background
  auto-gc, which caused multiple gc processes attempting to run the
  early part at the same time.  This is now prevented by running the
  early part also under the GC lock.

(adam)

Pytest 3.2.0:
Deprecations and Removals
pytest.approx no longer supports >, >=, < and <= operators to avoid surprising/inconsistent behavior. See the docs for more information.
All old-style specific behavior in current classes in the pytest窶冱 API is considered deprecated at this point and will be removed in a future release. This affects Python 2 users only and in rare situations.
A deprecation warning is now raised when using marks for parameters in pytest.mark.parametrize. Use pytest.param to apply marks to parameters instead.

Features
Add support for numpy arrays (and dicts) to approx.
Now test function objects have a pytestmark attribute containing a list of marks applied directly to the test function, as opposed to marks inherited from parent classes or modules.
Collection ignores local virtualenvs by default; 窶田ollect-in-virtualenv overrides this behavior.
Allow class methods decorated as @staticmethod to be candidates for collection as a test function. (Only for Python 2.7 and above. Python 2.6 will still ignore static methods.)
Introduce mark.with_args in order to allow passing functions/classes as sole argument to marks.
New cache_dir ini option: sets the directory where the contents of the cache plugin are stored. Directory may be relative or absolute path: if relative path, then directory is created relative to rootdir, otherwise it is used as is. Additionally path may contain environment variables which are expanded during runtime.
Introduce the PYTEST_CURRENT_TEST environment variable that is set with the nodeid and stage (setup, call and teardown) of the test being currently executed. See the documentation for more info.
Introduced @pytest.mark.filterwarnings mark which allows overwriting the warnings filter on a per test, class or module level. See the docs for more information.
--last-failed now remembers forever when a test has failed and only forgets it if it passes again. This makes it easy to fix a test suite by selectively running files and fixing tests incrementally.
New pytest_report_collectionfinish hook which allows plugins to add messages to the terminal reporting after collection has been finished successfully.
Added support for PEP-415窶冱 Exception.__suppress_context__. Now if a raise exception from None is caught by pytest, pytest will no longer chain the context in the test report. The behavior now matches Python窶冱 traceback behavior.
Exceptions raised by pytest.fail, pytest.skip and pytest.xfail now subclass BaseException, making them harder to be caught unintentionally by normal code.

Bug Fixes
Set stdin to a closed PIPE in pytester.py.Testdir.popen() for avoid unwanted interactive pdb
Add missing encoding attribute to sys.std* streams when using capsys capture mode.
Fix terminal color changing to black on Windows if colorama is imported in a conftest.py file.
Fix line number when reporting summary of skipped tests.
capture: ensure that EncodedFile.name is a string.
The options --fixtures and --fixtures-per-test will now keep indentation within docstrings.
doctests line numbers are now reported correctly, fixing pytest-sugar.
Fix non-determinism in order of fixture collection. Adds new dependency (ordereddict) for Python 2.6.

(adam)

3.14.1
Fix bad header that somehow made it in

(adam)

v36.2.7
Fix handling of requirements with environment markers when declared in setup.cfg.

v36.2.6
Don't assume a directory is an egg by the .egg extension alone.

v36.2.5
Fix test command handler with extras_require.
Now using Trusty containers in Travis for CI and CD.

(adam)

Updated databases/sqlite3 to 3.20.0

(adam)

Release 3.20.0:

1. Update the text of error messages returned by sqlite3_errmsg() for some error codes.
2. Add new pointer passing interfaces.
3. Backwards-incompatible changes to some extensions in order to take advantage of the improved security offered by the new pointer passing interfaces:
  a. Extending FTS5 → requires sqlite3_bind_pointer() to find the fts5_api pointer.
  b. carray(PTR,N) → requires sqlite3_bind_pointer() to set the PTR parameter.
  c. remember(V,PTR) → requires sqlite3_bind_pointer() to set the PTR parameter.
4. Added the SQLITE_STMT virtual table extension.
5. Added the COMPLETION extension - designed to suggest tab-completions for interactive user interfaces. This is a work in progress. Expect further enhancements in future releases.
6. Added the UNION virtual table extension.
7. The built-in date and time functions have been enhanced so that they can be used in CHECK constraints, in indexes on expressions, and in the WHERE clauses of partial indexes, provided that they do not use the 'now', 'localtime', or 'utc' keywords. Futher information.
8. Added the sqlite3_prepare_v3() and sqlite3_prepare16_v3() interfaces with the extra "prepFlags" parameters.
9. Provide the SQLITE_PREPARE_PERSISTENT flag for sqlite3_prepare_v3() and use it to limit lookaside memory misuse by FTS3, FTS5, and the R-Tree extension.
10. Added the PRAGMA secure_delete=FAST command. When secure_delete is set to FAST, old content is overwritten with zeros as long as that does not increase the amount of I/O. Deleted content might still persist on the free-page list but will be purged from all b-tree pages.
11. Enhancements to the command-line shell:
  a. Add support for tab-completion using the COMPLETION extension, for both readline and linenoise.
  b. Add the ".cd" command.
  c. Enhance the ".schema" command to show the schema of all attached databases.
  d. Enhance ".tables" so that it shows the schema names for all attached if the name is anything other than "main".
  e. The ".import" command ignores an initial UTF-8 BOM.
  f. Added the "--newlines" option to the ".dump" command to cause U+000a and U+000d characters to be output literally rather than escaped using the replace() function.
12. Query planner enhancements:
  a. When generating individual loops for each ORed term of an OR scan, move any constant WHERE expressions outside of the loop, as is done for top-level loops.
  b. The query planner examines the values of bound parameters to help determine if a partial index is usable.
  c. When deciding between two plans with the same estimated cost, bias the selection toward the one that does not use the sorter.
  d. Evaluate WHERE clause constraints involving correlated subqueries last, in the hope that they never have be evaluated at all.
  e. Do not use the flattening optimization for a sub-query on the RHS of a LEFT JOIN if that subquery reads data from a virtual table as doing so prevents the query planner from creating automatic indexes on the results of the sub-query, which can slow down the query.
13. Add SQLITE_STMTSTATUS_REPREPARE, SQLITE_STMTSTATUS_RUN, and SQLITE_STMTSTATUS_MEMUSED options for the sqlite3_stmt_status() interface.
14. Provide PRAGMA functions for PRAGMA integrity_check, PRAGMA quick_check, and PRAGMA foreign_key_check.
15. Add the -withoutnulls option to the TCL interface eval method.
16. Enhance the sqlite3_analyzer.exe utility program so that it shows the number of bytes of metadata on btree pages.
17. The SQLITE_DBCONFIG_ENABLE_QPSG run-time option and the SQLITE_ENABLE_QPSG compile-time option enable the query planner stability guarantee. See also ticket 892fc34f173e99d8
18. Miscellaneous optimizations result in a 2% reduction in CPU cycles used.

Bug Fixes:

19. Fix the behavior of sqlite3_column_name() for queries that use the flattening optimization so that the result is consistent with other queries that do not use that optimization, and with PostgreSQL, MySQL, and SQLServer. Ticket de3403bf5ae.
20. Fix the query planner so that it knows not to use automatic indexes on the right table of LEFT JOIN if the WHERE clause uses the IS operator. Fix for ce68383bf6aba.
21. Ensure that the query planner knows that any column of a flattened LEFT JOIN can be NULL even if that column is labeled with "NOT NULL". Fix for ticket 892fc34f173e99d8.
22. Fix rare false-positives in PRAGMA integrity_check when run on a database connection with attached databases. Ticket a4e06e75a9ab61a12
23. Fix a bug (discovered by OSSFuzz) that causes an assertion fault if certain dodgy CREATE TABLE declarations are used.

(adam)

Updated www/py-django to 1.11.4

(adam)

Django 1.11.4:

Bugfixes:

Fixed a regression in 1.11.3 on Python 2 where non-ASCII format values for date/time widgets results in an empty value in the widget窶冱 HTML.
Fixed QuerySet.union() and difference() when combining with a queryset raising EmptyResultSet.
Fixed a regression in pickling of LazyObject on Python 2 when the wrapped object doesn窶冲 have __reduce__().
Fixed crash in runserver窶冱 autoreload with Python 2 on Windows with non-str environment variables.
Corrected Field.has_changed() to return False for disabled form fields: BooleanField, MultipleChoiceField, MultiValueField, FileField, ModelChoiceField, and ModelMultipleChoiceField.
Fixed QuerySet.count() for union(), difference(), and intersection() queries..
Fixed ClearableFileInput rendering as a subwidget of MultiWidget. Custom clearable_file_input.html widget templates will need to adapt for the fact that context values checkbox_name, checkbox_id, is_initial, input_text, initial_text, and clear_checkbox_label are now attributes of widget rather than appearing in the top-level context.
Fixed queryset crash when using a GenericRelation to a proxy model

(adam)

Updated emulators/libspectrum to 1.3.6, emulators/fuse-emulator to 1.3.8, emulators/fuse-emulator-utils to 1.3.3

(adam)

Fuse 1.3.8:

* Emulation core improvements:
  * Add workaround for Multiface One and 128 clash
  * Limit RZX sentinel warning to once per playback
  * Disable Melodik interface on 128K machines
  * Correct the list of machines for Multiface One

* Miscellaneous improvements:
  * Update compile instructions for win32 UI
  * Check required version of libspectrum is available
  * Document --mdr-len and --mdr-random-len options
  * Document support for the Recreated ZX Spectrum
  * Fix transposed description of AY-3-8912
  * GTK UI: Destroy tape browser dialog on close

(adam)

libspectrum 1.3.6:

* Fix Z80 snapshot writing when +D is enabled
* Export pkgconfig file to publish library version
* Fix offset of keyboard mappings in Z80 v3 snaphots
* Various minor bug fixes/improvements:
  * Replace '*' in boolean context with '&&' in libspectrum_malloc0_n()
  * Fix warning about missing atomic_lock()/atomic_unlock() declarations
    in gslock.c

(adam)

libspectrum 1.3.6:

* Fix Z80 snapshot writing when +D is enabled
* Export pkgconfig file to publish library version
* Fix offset of keyboard mappings in Z80 v3 snaphots
* Various minor bug fixes/improvements:
  * Replace '*' in boolean context with '&&' in libspectrum_malloc0_n()
  * Fix warning about missing atomic_lock()/atomic_unlock() declarations
    in gslock.c

(adam)

Added ALTERNATIVES

(adam)

Removed devel/py-multiprocessing; Updated comms/py-serial to 3.4

(adam)

Removed devel/py-multiprocessing - it is included in Python 2.6+

(adam)

Version 3.4:

Improvements:
* miniterm: suspend function (temporarily release port, Ctrl-T s)
* context manager automatically opens port on __enter__
* list_ports: add interface number to location string
* protocol_socket: Retry if BlockingIOError occurs in reset_input_buffer.

Bugfixes:
* list_ports: option to include symlinked devices
* list_ports: workaround for special characters in port names

Bugfixes (posix):
* allow calling cancel functions w/o error if port is closed
* protocol_socket: sync error handling with posix version
* posix: ignore more blocking errors and EINTR, timeout only applies to blocking I/O
* fix: port_publisher typo

(adam)

Added databases/py-asyncpg version 0.12.0

(adam)

asyncpg is a database interface library designed specifically for PostgreSQL
and Python/asyncio. asyncpg is an efficient, clean implementation of
PostgreSQL server binary protocol for use with Python's asyncio framework.

(adam)

Fixed MASTER_SITES and updated HOMEPAGE

(adam)

Updated audio/py-audioread to 2.1.5, devel/py-modulegraph to 0.15

(adam)

0.15

Features:

* Issue 39: Traceback with for a syntax error when compiling async function

  On Python 3.5 some (invalid) async function definitions caused a modulegraph
  traceback, instead of adding "InvalidSourceModule" nodes to the graph.

* Issue 40: The graph now contains nodes of type "InvalidRelativeImport" for
  attempts to use relative imports that walk outside of a toplevel
  package.

Bugfixes:
* Issue 38: Dot output broken in Python 3
* Issue 36: Make sure test suite works on systems other than macOS
* Add support for "async def" to the AST scanner, needed to
  properly recognize imports in async function definitions.

(adam)

2.1.5
Properly clean up the file handle when a backend fails to decode a file. Fix parsing of "N.M" channel counts in the FFmpeg backend (thanks to @piem). Avoid a crash in the raw backend when a file uses an unsupported number of bits per sample (namely, 24-bit samples in Python < 3.4). Add a __version__ value to the package.

(adam)

Removed databases/py-python-rrdtool successor py-rrdtool; Updated devel/py-lama to 7.4.1, devel/py-pathlib2 to 2.3.0, graphics/py-altgraph to 0.14, devel/py-macholib to 1.8, devel/py-py to 1.4.34

(adam)

1.4.34
- fix issue119 / pytest issue708 where tmpdir may fail to make numbered directories
  when the filesystem is case-insensitive.

(adam)

macholib 1.8
Use the same dependency walk logic as otool
Added support for new load commands
Fix procesing DSYM file from XCODE 6.x
MachOGraph.locate(): When calling dyld_find(), use kwarg 窶詫oader_path窶�, not 窶詫oader窶�.
Add fields to thread_command
Add missing ARM_V7S subtype.
Fix for SymbolTable
Use first Mach-O header as the default header
Issue 17: add LC_LOAD_UPWARD_DYLIB to _RELOCATABLE set
Issue 16: macholib 窶徂angs窶� on invalid input
Issue 18: Bad version parsing in macho_version_helper
Issue 19: Fix aligment issue that prevented code signing
Fix issue 14: Can窶冲 pass endian argument to p_uint64.from_str

(adam)

0.14
Remove use of iteritems in altgraph.GraphAlgo code

0.13
Graph._bfs_subgraph and back_bfs_subgraph return subgraphs with reversed edges

(adam)

Version 2.3.0
- Sync with upstream pathlib from CPython 3.6.1

(adam)

Removed databases/py-python-rrdtool successor py-rrdtool

(adam)

7.4.1
Bug fixes

(adam)

Updated devel/py-docstyle to 2.0.0

(adam)

2.0.0:

Major Updates
* Support for numpy conventions verification has been added.
* Support for Python 2.6 has been dropped.
* Support for PyPy3 has been temporarily dropped, until it will be equivalent to CPython 3.3+ and supported by pip.
* Support for the pep257 console script has been dropped. Only the pydocstyle console script should be used.
* Errors are now printed to stdout instead of stderr.

New Features
* Decorator-based skipping via --ignore-decorators has been added.
* Support for using pycodestyle style wildcards has been added.
* Superfluous opening quotes are now reported as part of D300.
* Fixed a false-positive recognition of D410 and added D412.
* Added --config=<path> flag to override the normal config file discovery and choose a specific config file.
* Support for specifying error codes with partial prefix has been added, e.g., --select=D101,D2.
* All configuration file can now have the .ini extension.
* Added better imperative mood checks using third party stemmer.

Bug Fixes
* Made parser more robust to bad source files
* Modules are now considered private if their name starts with a single underscore. This is a bugfix where ���public module��� (D100) was reported regardless of module name.
* Removed error when __all__ is a list.
* Fixed a bug where the @ sign was used as a matrix multiplication operator in Python 3.5, but was considered a decorator by the parser

(adam)

Updated devel/py-daemon to 2.1.2, devel/py-test-xdist to 1.18.2

(adam)

pytest-xdist 1.18.2:

Bug Fixes
- Removal of unnecessary dependency on incorrect version of py.
- Fix bug in internal event-loop error handler in the master node. This bug
  would shadow the original errors making extremely hard/impossible for users
  to diagnose the problem properly

(adam)

Version 2.1.2
Additions:
* Add a README document for the code base.
Changes:
* Migrate code project hosting to Pagure.
  Record the change of homepage URL in PyPI metadata.
* Raise a warning that the ���runner��� module is pending deprecation.
  This has been an unofficial example module from the beginning, and
  it will be removed in a future version.
Bug Fixes:
* Ensure custom types are part of the Python type hierarchy.
* Avoid a circular dependency for the version string at install time.

(adam)

Updated multimedia/ffmpeg3 to 3.3.3, devel/py-setuptools to 36.2.4, devel/py-flake8 to 3.4.1, security/py-certifi to 2017.7.27.1

(adam)

2017.7.27.1:
PEM changes.

(adam)

3.4.1:
Fix minor regression when users specify only a --select list with items
in the enabled/extended select list.

(adam)

v36.2.4
* ``pkg_resources`` now uses ``inspect.getmro`` to
  resolve classes in method resolution order

(adam)

version 3.3.3:
- avcodec/dirac_dwt: Fix multiple integer overflows in COMPOSE_DD97iH0()
- avcodec/diracdec: Fix integer overflow in divide3()
- avcodec/takdec: Fix integer overflow in decode_subframe()
- avformat/rtmppkt: Convert ff_amf_get_field_value() to bytestream2
- avformat/rtmppkt: Convert ff_amf_tag_size() to bytestream2
- avcodec/diracdec: Fix integer overflow in signed multiplication in UNPACK_ARITH()
- avcodec/pixlet: Simplify nbits computation
- avcodec/dnxhddec: Move mb height check out of non hr branch
- avcodec/hevc_ps: fix integer overflow in log2_parallel_merge_level_minus2
- avformat/oggparsecelt: Do not re-allocate os->private
- avcodec/ylc: Fix shift overflow
- avcodec/aacps: Fix multiple integer overflow in map_val_34_to_20()
- avcodec/aacdec_fixed: fix: left shift of negative value -1
- avcodec/dirac_vlc: Fix undefined shift
- doc/filters: typo in frei0r
- avcodec/cfhd: Fix decoding regression due to height check
- avcodec/aacdec_template (fixed point): Check gain in decode_cce() to avoid undefined shifts later
- avcodec/ffv1dec_template: Fix signed integer overflow
- avcodec/aacdec_template: Fix undefined integer overflow in apply_tns()
- avcodec/magicyuv: Check that vlc len is not too large
- avcodec/mjpegdec: Clip DC also on the negative side.
- avcodec/aacps (fixed point): Fix multiple signed integer overflows
- avcodec/ylc: Fix vlc of 31 bits
- avcodec/sbrdsp_fixed: Fix integer overflow in sbr_hf_apply_noise()
- avcodec/hevcdec: do not let updated extradata corrupt state
- avcodec/wavpack: Fix invalid shift
- avcodec/h264_slice: Fix signed integer overflow
- avcodec/hevc_ps: Fix integer overflow with beta/tc offsets
- avcodec/cfhd: Fix invalid left shift of negative value
- avcodec/vb: Check vertical GMC component before multiply
- avcodec/hevcdec: do basic validity check on delta_chroma_weight and offset
- avcodec/jpeg2000dwt: Fix integer overflow in dwt_decode97_int()
- avcodec/apedec: Fix integer overflow
- avcodec/wavpack: Fix integer overflow in wv_unpack_stereo()
- avcodec/hevc_ps: Fix max_dec_buffer check
- avcodec/mpeg4videodec: Fix GMC with videos of dimension 1
- avcodec/wavpack: Fix integer overflow
- avcodec/takdec: Fix integer overflow
- avcodec/tiff: Update pointer only when the result is used
- avcodec/cfhd: Check bpc before setting bpc in context
- avcodec/cfhd: Fix undefined shift
- avcodec/hevc_filter: Fix invalid shift
- avcodec/mpeg4videodec: Fix overflow in virtual_ref computation
- avcodec/lpc: signed integer overflow in compute_lpc_coefs() (aacdec_fixed)
- avcodec/wavpack: Fix undefined integer negation
- avcodec/aacdec_fixed: Check s for being too small
- avcodec/htmlsubtitles: Replace very slow redundant sscanf() calls by cleaner and faster code
- avcodec/h264: Fix mix of lossless and lossy MBs decoding
- avcodec/h264_mb: Fix 8x8dct in lossless for new versions of x264
- avcodec/h264_cabac: Fix CABAC+8x8dct in 4:4:4
- avcodec/takdec: Fixes: integer overflow in AV_SAMPLE_FMT_U8P output
- avcodec/jpeg2000dsp: Reorder operations in ict_int() to avoid 2 integer overflows
- avcodec/hevcpred_template: Fix left shift of negative value
- avcodec/hevcdec: Fix signed integer overflow in decode_lt_rps()
- avcodec/jpeg2000dec: Check nonzerobits more completely
- avcodec/shorten: Sanity check maxnlpc
- avcodec/truemotion2: Move skip computation after checks
- avcodec/jpeg2000: Fixes integer overflow in ff_jpeg2000_ceildivpow2()
- avcodec/dnxhd_parser: Do not return invalid value from dnxhd_find_frame_end() on error
- avcodec/hevcdec: Check nb_sps
- avcodec/hevc_refs: Check nb_refs in add_candidate_ref()
- avcodec/mpeg4videodec: Check sprite delta upshift against overflowing.
- avcodec/mpeg4videodec: Fix integer overflow in num_sprite_warping_points=2 case
- avcodec/aacsbr_fixed: Check shift in sbr_hf_assemble()
- avcodec/sbrdsp_fixed: Return an error from sbr_hf_apply_noise() if operations are impossible
- avcodec/libvpxdec: Check that display dimensions fit in the storage dimensions
- avcodec/jpeg2000dwt: Fix runtime error: left shift of negative value -123
- avcodec/wavpack: Fix runtime error: signed integer overflow: 1886191616 + 277872640 cannot be represented in type 'int'
- avcodec/snowdec: Fix runtime error: left shift of negative value -1
- avcodec/aacdec_fixed: Fix runtime error: left shift of negative value -1297616
- avcodec/tiff: Fix leak of geotags[].val
- avcodec/ra144: Fix runtime error: signed integer overflow: -2200 * 1033073 cannot be represented in type 'int'
- avcodec/flicvideo: Fix runtime error: signed integer overflow: 4864 * 459296 cannot be represented in type 'int'
- avcodec/cfhd: Check band parameters before storing them
- avcodec/h264_parse: Check picture structure when initializig weight table
- avcodec/indeo4: Check remaining data in Pic hdr extension parsing code
- avcodec/ac3dec_fixed: Fix multiple runtime error: signed integer overflow: -39271008 * 59 cannot be represented in type 'int'
- lavc/aarch64/simple_idct: fix idct_col4_top coefficient

(adam)

Updated net/py-awscli to 1.11.127, net/py-botocore to 1.5.90, devel/py-prompt_toolkit to 1.0.15, devel/py-flake8 to 3.4.0, time/py-iso8601 to 0.1.12

(adam)

0.1.12
Fix class reference for iso8601.Utc in module docstring

(adam)

3.4.0:

You can view the `3.4.0 milestone`_ on GitLab for more details.

- Refine logic around ``--select`` and ``--ignore`` when combined with the
  default values for each.

- Handle spaces as an alternate separate for error codes, e.g.,
  ``--ignore 'E123 E234'``.

- Filter out empty select and ignore codes, e.g., ``--ignore E123,,E234``.

- Specify dependencies appropriately in ``setup.py``

- Fix bug in parsing ``--quiet`` and ``--verbose`` from config files.

- Remove unused import of ``os`` in the git hook template

(adam)

1.0.15:

Fixes:
- Don't shuffle tasks in the event loop. This fixes an issue where lines
  printed from background threads were printed in a different order if
  `patch_stdout=True`.
- Only consider the text before the cursor when activating history search.
- Pressing escape should accept the search, this is closer to how readline works.
- Enable autowrap again when required.

New features:
- Add run_in_terminal option to disable cooked mode.

(adam)

1.11.127
api-change:ec2: Update ec2 command to latest version
api-change:kinesisanalytics: Update kinesisanalytics command to latest version

(adam)

1.5.90
api-change:ec2: Update ec2 client to latest version
api-change:kinesisanalytics: Update kinesisanalytics client to latest version

(adam)

Added lang/py-execjs version 1.4.0; Updated www/py-cfscrape to 1.8.0

(adam)

1.8.0:
Remove insecure Js2Py library (code execution risk)

Please upgrade to 1.8.0 immediately.

Versions 1.6.6 to 1.7.1 are vulnerable to code execution. If you are running a vulnerable version, a malicious website owner could craft a page which executes arbitrary Python code on the machine that runs this script. This can only occur if the website that the user attempts to scrape has specifically prepared a page to exploit vulnerable versions of cfscrape.

(adam)

PyExecJS is a porting of ExecJS from Ruby. PyExecJS automatically picks the
best runtime available to evaluate your JavaScript program.

(adam)

Updated security/py-asn1 to 0.3.1, security/py-cryptography_vectors to 2.0.2, security/py-cryptography to 2.0.2

(adam)

2.0.2:
Marked all symbols as hidden in the manylinux1 wheel to avoid a bug with symbol resolution in certain scenarios.

2.0.1:
Fixed a compilation bug affecting OpenBSD.
Altered the manylinux1 wheels to statically link OpenSSL instead of dynamically linking and bundling the shared object. This should resolve crashes seen when using uwsgi or other binaries that link against OpenSSL independently.
Fixed the stack level for the signer and verifier warnings.

(adam)

Revision 0.3.1:
- ASN.1 types __init__(), .clone() and .subtype() signatures
  refactored into keyword arguments to simplify their signatures.
- ASN.1 types initialization refactored to minimize the use of
  relatively expensive isNoValue() call
- Lazily pre-populate list of values of Sequence/Set/Choice types
- NamedTypes comparison made more efficient
- More efficient constraints computation and code clean up
- The __getitem__() implementation of some ASN.1 types & tag object
  refactored for better performance
- BER/CER/DER value encoders refactored to produce either tuple of
  bytes or octet-stream depending on what is more optimal
- Reduced the frequency of expensive isinstance() calls
- Tag-related classes optimized, refactored into properties and
  documented.
- The NamedValues implementation refactored to mimic Python dict, its use
  in ASN.1 types refactored into properties and better documented.
  WARNING: this change introduces a deviation from original API.
- NamedType family of classes overhauled, optimized and documented.
- The `componentType` attribute of constructed ASN.1 types turned
  read-only on instances.
- Sequence/Set DER/CER/DER decoder optimized to skip the case of
  reordered components handling when not necessary.
- Tags and constraints-related getter methods refactored into read-only
  instance attributes.
- The .hasValue() method refactored into .isValue property. All ASN.1
  objects now support them, not just scalars.
- The Real.{isInfinity, isPlusInfinity, isMinusInfinity} methods
  refactored into properties and renamed into IsInf, IsPlusInf and isMinusInf
- The end-of-octets type refactored to ensure it is a singleton. Codecs
  changed to rely on that for better performance.
- Codecs lookup made more efficient at BER/CER/DER decoder main loop by
  assigning `typeId` to every ASN.1 type, not just ambiguous ones.
- The .getComponent*() methods of constructed ASN.1 types changed
  to lazily instantiate underlying type rather than return `None`.
  This should simplify its API as initialization like `X[0][1] = 2` becomes
  possible.
  WARNING: this change introduces a deviation from the original API.
- The .setComponent*() methods of SetOf/SequenceOf types changed not
  to allow uninitialized "holes" inside the sequences of their components.
  They now behave similarly to Python lists.
  WARNING: this change introduces a deviation from the original API.
- Default and optional components en/decoding of Constructed type
  refactored towards better efficiency and more control.
- OctetsString and Any decoder optimized to avoid creating ASN.1
  objects for chunks of substrate. Instead they now join substrate
  chunks together and create ASN.1 object from it just once.
- The GeneralizedTime and UTCTime types now support to/from Python
  datetime object conversion.
- Unit tests added for the `compat` sub-package.
- Fixed BitString named bits initialization bug.
- Fixed non-functional tag cache (when running Python 2) at DER decoder.
- Fixed chunked encoding restriction on DER encoder.
- Fixed SET components ordering at DER encoder.
- Fixed BIT STRING & OCTET STRING encoding to be always non-chunked (e.g.
  primitive) at DER encoder
- Fixed `compat.integer.from_bytes()` behaviour on empty input.

(adam)

Updated databases/rrdtool to 1.7.0, databases/ruby-rrdtool to 1.7.0; Added databases/py-rrdtool version 1.7.0

(adam)

Makefile.common is also needed

(adam)

RRDtool 1.7.0

Bugfixes
--------
* made rrd_fetch_cb_wrapper in RRDs more careful with its arguments
* many bugfixes to resolve issues identified Coverty scan
* fix build issues with libdbl
* take the ds step into account while caching data in rrd graph DEF statements
* never 'exit' from librrd (even when DEBUG is on)

Features
--------
* new command rrd list to show rrd files in a directory
* configurable log-level for rrdcached
* hungarian translation (hu.po)

API
---
* New Exported funtions: rrd_lcd, rrd_reduce_data, rrd_cf_conf and rrd_list
* rrd_list support for perl and python binding
* all new and much more complete python bindings working on both python 2.6+ and 3.3+
* extended documentation in rrdlib.pod

(adam)

Updated devel/py-lockfile to 0.12.2, devel/py-mako to 1.0.7

(adam)

1.0.7
[bug] Changed the ���print��� in the mako-render command to sys.stdout.write(), avoiding the extra newline at the end of the template output.

(adam)

0.12.2
* Add warning to README.rst

0.12.1
* Remove Python 2.6 classifier
* Remove python 2.6
* Remove two unused variables: fix flake8 F841 warn
* Fix flake8 warnings
* PBR setup requirement only
* Support universal wheels

(adam)

Updated devel/py-setuptools to 36.2.3, devel/py-requests to 2.18.2

(adam)

2.18.2:

Bugfixes
* requests.help no longer fails on Python 2.6 due to the absence of ssl.OPENSSL_VERSION_NUMBER.

Dependencies
* We now support urllib3 v1.22.

(adam)

v36.2.3
Restore behavior for empty extras.

(adam)

Updated net/py-netifaces to 0.10.6, textproc/py-webencodings to 0.5.1, www/py-mechanize to 0.3.5, databases/py-apsw to 3.19.3

(adam)

3.19.3-r1:
No APSW changes.

Now we're in sync with databases/sqlite3

(adam)

0.3.5 release:
* Fix error when trying to open pages that contain HTML entities that
  decode to unicode characters in their <head> sections

(adam)

0.5.1:
Bug fixes.

(adam)

Changes 0.10.6:
Unknown

At least it now works in Python 3.x.

(adam)

Added security/py-argon2_cffi version 16.3.0

(adam)

Argon2 won the Password Hashing Competition and argon2_cffi is the simplest
way to use it in Python and PyPy.

(adam)

Updated sysutils/zabbix to 3.2.7

(adam)

Changes for 3.2.7:

New features:
* updated Catalan, Chinese (China), English (United States), Japanese, Korean, Polish, Portuguese (Brazil), Ukrainian translations

Bug fixes:
* fixed history page to display values in chronological order
* fixed security vulnerability with execution of the remote commands on server; thanks to MATSUDA Daiki, Ron Waisberg for report
* items use global regexps with multiple subexpressions
* fixed memory leak when using UserParameter with suppressed characters passed in arguments
* fixed collecting value of VMware host memory balloon size
* fixed incorrectly escaped IT Service parent name
* fixed sorting of host interfaces; fixed selection of the default host interface
* fixed update in mass update form when inventory mode is not set explicitly
* fixed missed page number in problems export
* fixed unchecked checkboxes after deleting script, mediatype or proxy
* fixed user's access level to display popup content
* removed link from uneditable template and host names in all configuration sections
* improved LDAP authentication module status check for authentication form
* fixed incorrectly displayed calendar date in maintenance edit form
* fixed trigger wizard expressions sorting as well as wizard crash due incorrect expression removal
* fixed nested host group filter in top 100 triggers, item configuration list and dashboard widgets
* fixed permissions and performance issues with event.get and problem.get methods
* fixed handling of database failure during ID selection
* fixed problem with lost IDs of unlinkable templates
* fixed Oracle batch insert return value
* fixed displaying hints with no content inside
* fixed undefined index error in host import form while importing templates
* fixed cookie vulnerability for tabbed forms
* fixed duplicated error messages in screens section

(adam)

Updated databases/py-sqlalchemy-utils to 0.32.14, databases/py-sqlalchemy-i18n to 1.0.3

(adam)

1.0.3
- Set autoincrement as False for translation class inherited primary keys

1.0.2
- Added ``translations_relationship_args`` configuration option
- Added ``foreign_key_args`` parameter to ``translations_base`` function

(adam)

0.32.14
- Fixed drop_database version comparison

0.32.13
- Fixed a DeprecationWarning by using LargeBinary instead of Binary

0.32.12
- Added generic_repr decorator

0.32.11
- TimeZoneType support for static timezones
- Added SQLite support for PasswordType

0.32.10
- Added PhoneNumber as the python_type for PhoneNumberType
- Made auto_delete_orphans support backref tuples

0.32.9
- Added support for multi-column observers

(adam)

Updated databases/py-sqlalchemy to 1.1.12

(adam)

SQLAlchemy release 1.1.12 is now available.

This release repairs an issue in the test suite that would prevent the suite from passing on Python version 3.6.2. The release is made at the same time as that of release 1.0.18 and 1.2.0b2. Also included are fixes related to ORM use of JSON NULL values, subquery eager loading, and a stability enhancement involving the identity map when used under high concurrency.

(adam)

Updated devel/py-txaio to 2.8.1, databases/py-psycopg2 to 2.7.3

(adam)

psycopg 2.7.3
- Restored default :sql:`timestamptz[]` typecasting to Python `!datetime`.
  Regression introduced in Psycopg 2.7.2

(adam)

2.8.1
- fix: the asyncio version of sleep() correctly returns a Future instance

(adam)

Updated net/py-celery to 4.1.0, devel/py-setuptools to 36.2.2, sysutils/py-supervisor to 3.3.3, net/py-botocore to 1.5.87, net/py-awscli to 1.11.124

(adam)

1.11.124
api-change:ec2: Update ec2 command to latest version
api-change:appstream: Update appstream command to latest version

1.11.123
api-change:emr: Update emr command to latest version

1.11.122
api-change:budgets: Update budgets command to latest version

(adam)

1.5.87
api-change:appstream: Update appstream client to latest version
api-change:ec2: Update ec2 client to latest version

1.5.86
api-change:emr: Update emr client to latest version

1.5.85
api-change:budgets: Update budgets client to latest version

(adam)

3.3.3:
- Fixed CVE-2017-11610.  A vulnerability was found where an authenticated
  client can send a malicious XML-RPC request to ``supervisord`` that will
  run arbitrary shell commands on the server.  The commands will be run as
  the same user as ``supervisord``.  Depending on how ``supervisord`` has been
  configured, this may be root.  See
  https://github.com/Supervisor/supervisor/issues/964 for details.

(adam)

v36.2.2
* Revert commit a3ec721, restoring intended purpose of extras as part of a requirement declaration.

v36.2.1
* fix 1086
* fix 1087
* support extras specifiers in install_requires requirements

(adam)

4.1.0

- Configuration: CELERY_SEND_EVENTS instead of CELERYD_SEND_EVENTS for 3.1.x compatibility
- App: Restore behavior so Broadcast queues work.
- Sphinx: Make appstr use standard format
- App: Make id, name always accessible from logging.Formatter via extra
- Worker: Add worker_shutting_down signal
- PyPy: Support PyPy version 5.8.0
- Results: Elasticsearch: Fix serializing keys
- Canvas: Deserialize all tasks in a chain
- Systemd: Recover loglevel for ExecStart in systemd config
- Sphinx: Use the Sphinx add_directive_to_domain API.
- App: Pass properties to before_task_publish signal
- Results: Add SSL option for Redis backends
- Beat: celery.schedule.crontab: fix reduce
- State: Fix celery issues when using flower REST API
- Results: Elasticsearch: Fix serializing document id.
- Beat: Make shallow copy of schedules dictionary
- Beat: Populate heap when periodic tasks are changed
- Task: Allow class methods to define tasks
- Platforms: Always return boolean value when checking if signal is supported.
- Canvas: Avoid duplicating chains in chords
- Canvas: Lookup task only if list has items
- Results: Allow unicode message for exception raised in task
- Python3: Support for Python 3.6
- App: Fix retried tasks with expirations
- * Fixes items format route in docs
- Utils: Fix maybe_make_aware
- Task: Fix task ETA issues when timezone is defined in configuration
- Concurrency: Consumer does not shutdown properly when embedded in gevent application
- Canvas: Fix 3725: Task replaced with group does not complete
- Task: Correct order in chains with replaced tasks
- Result: Enable synchronous execution of sub-tasks
- Task: Fix request context for blocking task apply (added hostname)
- Utils: Fix task argument handling
- Beat: Provide a transparent method to update the Scheduler heap
- Beat: Specify default value for pidfile option of celery beat.
- Results: Elasticsearch: Stop generating a new field every time when a new result is being put
- Results: Elasticsearch now reuses fields when new results are added.
- Results: Fixed MongoDB integration when using binary encodings
- Worker: Making missing ``*args`` and ``kwargs`` in Task protocol 1
return empty value in protocol 2.
- App: Fixed :exc:`TypeError` in AMQP when using deprecated signal
- Beat: Added a transparent method to update the scheduler heap.
- Task: Fixed handling of tasks with keyword arguments on Python 3
- Task: Fixed request context for blocking task apply by adding missing
  hostname attribute.
- Task: Added option to run subtasks synchronously with
  ``disable_sync_subtasks`` argument.
- App: Fixed chaining of replaced tasks.
- Canvas: Fixed bug where replaced tasks with groups were not completing
- Worker: Fixed problem where consumer does not shutdown properly when
  embedded in a gevent application.
- Results: Added support for using AWS DynamoDB as a result backend.
- Testing: Added caching on pip installs.
- Worker: Prevent consuming queue before ready on startup.
- App: Fixed task ETA issues when timezone is defined in configuration
- Utils: ``maybe_make_aware`` should not modify datetime when it is
  already timezone-aware.
- App: Fixed retrying tasks with expirations.
- Results: Allow unicode message for exceptions raised in task
- Canvas: Fixed :exc:`IndexError` raised when chord has an empty header.
- Canvas: Avoid duplicating chains in chords.
- Utils: Allow class methods to define tasks.
- Beat: Populate heap when periodic tasks are changed.
- Results: Added support for Elasticsearch backend options settings.
- Events: Ensure ``Task.as_dict()`` works when not all information about
  task is available.
- Schedules: Fixed pickled crontab schedules to restore properly.
- Results: Added SSL option for redis backends

(adam)

Updated devel/py-mando to 0.6.4, devel/py-pbr to 3.1.1, devel/py-radon to 2.0.2

(adam)

2.0.1:
- Update mando dependency

2.0.1:
- Fix bug in the error message of Flake8's plugin

2.0.0:
- Add ``--sort`` option to ``mi`` command
- Add comment stats summary when using the ``-s, --summary`` option of the
  ``raw`` command
- Fix encoding bug
- Fix raw metrics (ensure that LOC = SLOC + Multi + Single Comments + Blank)
- Python 2.6 is not supported anymore

(adam)

3.1.1
* Restore previous IP binding

3.1.0
* allow user to override the output location of api docs
* fix tests based on API change in Sphinx
* Updated from global requirements
* Add binding option for WSGI server
* Ignore index URL lines in requirements.txt files

(adam)

0.6.4:
Unknown changes.

(adam)

Updated devel/py-decorator to 4.1.2, devel/py-hypothesis to 3.14.0

(adam)

3.14.0:
Hypothesis now understands inline type annotations

(adam)

4.1.2:
Made it possible to define decorators converting coroutines into regular
functions

(adam)

Updated www/nginx-devel to 1.13.3

(adam)

Changes with nginx 1.13.3:

*) Security: a specially crafted request might result in an integer
  overflow and incorrect processing of ranges in the range filter,
  potentially resulting in sensitive information leak (CVE-2017-7529).

Changes with nginx 1.13.2:

*) Change: nginx now returns 200 instead of 416 when a range starting
  with 0 is requested from an empty file.

*) Feature: the "add_trailer" directive.

*) Bugfix: nginx could not be built on Cygwin and NetBSD; the bug had
  appeared in 1.13.0.

*) Bugfix: nginx could not be built under MSYS2 / MinGW 64-bit.

*) Bugfix: a segmentation fault might occur in a worker process when
  using SSI with many includes and proxy_pass with variables.

*) Bugfix: in the ngx_http_v2_module.

Changes with nginx 1.13.1:

*) Feature: now a hostname can be used as the "set_real_ip_from"
  directive parameter.

*) Feature: vim syntax highlighting scripts improvements.

*) Feature: the "worker_cpu_affinity" directive now works on DragonFly
  BSD.

*) Bugfix: SSL renegotiation on backend connections did not work when
  using OpenSSL before 1.1.0.

*) Workaround: nginx could not be built with Oracle Developer Studio
  12.5.

*) Workaround: now cache manager ignores long locked cache entries when
  cleaning cache based on the "max_size" parameter.

*) Bugfix: client SSL connections were immediately closed if deferred
  accept and the "proxy_protocol" parameter of the "listen" directive
  were used.

*) Bugfix: in the "proxy_cache_background_update" directive.

*) Workaround: now the "tcp_nodelay" directive sets the TCP_NODELAY
  option before an SSL handshake.

(adam)

Update distinfo

(adam)

Updated www/nginx to 1.12.1

(adam)

Changes with nginx 1.12.1
*) Security: a specially crafted request might result in an integer
    overflow and incorrect processing of ranges in the range filter,
    potentially resulting in sensitive information leak (CVE-2017-7529).
PkgSrc:
*) Updated external modules
*) Added RTMP module (Media Streaming Server)

(adam)

Updated devel/epydoc to 3.0.1

(adam)

Changes 3.0.1:
Support for Parsing & Introspection
Docstrings for variables
Graphs & Diagrams
Syntax Highlighted Source Code
Improved Output
Improved Documentation Extraction

(adam)

Updated devel/py-test-xdist to 1.18.1

(adam)

1.18.1:

Bug Fixes
- Fixed serialization of ``longrepr.sections`` during error reporting from
  workers.
- Fix ``ReprLocal`` not being unserialized breaking --showlocals usages.

(adam)

Updated math/py-munkres to 1.0.11, textproc/py-Unidecode to 0.04.21, audio/py-beets to 1.4.5

(adam)