2.8.0:
fix: asyncio - remove the hacks for "simulating" chained futures (no longer works - cpy36 has native code for future)
new: run CI on Python 3.5 and 3.6

(adam)

Twisted 17.5.0:

Bugfixes:

spawnProcess no longer opens an unwanted console on Windows
The transition to the hyperlink package adds IPv6 support to twisted.python.url.URL. This is now deprecated and new code should use hyperlink directly
twisted.logger now buffers only 200 events by default (reduced from 65536) while waiting for observers to be configured.
The transition of twisted.python.url to using the hyperlink package enables a URL.click() with no arguments (or 0-length string argument) to resolve dot segments in the path.
twisted.protocols.finger now works on Python 3.
TLS-related tests now pass when run with OpenSSL 1.1.0. This makes tests pass again on macOS and Windows, as cryptography 1.8 and later include OpenSSL 1.1.0.
UNIX socket endpoints now process all messages from recvmsg's ancillary data via twisted.internet.unix.Server.doRead/twisted.internet.unix.Client.doRead, while discarding and logging ones that don't contain file descriptors.
twisted.internet.endpoints.HostnameEndpoint and twisted.web.client.Agent work again with reactors that do not provide IReactorPluggableNameResolver. This undoes the changes that broke downstream users such as treq.testing. Note that passing reactors that do not provide IReactorPluggableNameResolver to either is deprecated.
A Python 3 Perspective Broker server which receives a remote call with keyword arguments from a Python 2 client will now decode any keys which are binary to strings instead of crashing. This fixes interoperability between Python 2 Buildbot clients and Python 3 Buildbot servers.
twisted.internet._threadedselect now works on both Python 2 and 3.
twisted.internet.interfaces.IResolverSimple implementers will now always be passed bytes, properly IDNA encoded if required, on Python 2. On Python 3, they will now be passed correctly IDNA-encoded Unicode forms of the domain, taking advantage of the idna library from PyPI if possible. This is to avoid Python's standard library (which has an out of date idna module) from mis- encoding domain names when non-ASCII Unicode is passed to it.

(adam)

The humble, but powerful, URL runs everything around us. Chances are you've
used several just to read this text.

Hyperlink is a featureful, pure-Python implementation of the URL, with
an emphasis on correctness.

(adam)

PLIST.Darwin is not needed any more

(adam)

Updated archivers/py-brotlipy; devel/py-configargparse; devel/py-construct; www/py-hyperframe; www/py-h2; textproc/py-jsbeautifier; security/py-passlib; devel/py-argh

(adam)

0.26.2:
This is a maintenance release. Just a few changes:
* Removed official support for Python 3.4, added for 3.5.
* Various tox-related improvements for development.
* Improved documentation.

(adam)

1.7.1:
Argon2 & Scrypt hash support
TOTP support
PBKDF2 now has faster builtin backend, and utilizes other backends where available
Lots of API cleanups and internal refactoring
HtpasswdFile reader is now more flexible, and with improved security options.
Refreshed documentation

(adam)

1.6.14:
Closed issues / bugs fixed.

(adam)

3.0.1:

Bugfixes
- CONTINUATION frames sent on closed streams previously caused stream errors
  of type STREAM_CLOSED. RFC 7540 則 6.10 requires that these be connection
  errors of type PROTOCOL_ERROR, and so this release changes to match that
  behaviour.
- Remote peers incrementing their inbound connection window beyond the maximum
  allowed value now cause stream-level errors, rather than connection-level
  errors, allowing connections to stay up longer.
- h2 now rejects receiving and sending request header blocks that are missing
  any of the mandatory pseudo-header fields (:path, :scheme, and :method).
- h2 now rejects receiving and sending request header blocks that have an empty
  :path pseudo-header value.
- h2 now rejects receiving and sending request header blocks that contain
  response-only pseudo-headers, and vice versa.
- h2 now correct respects user-initiated changes to the HEADER_TABLE_SIZE
  local setting, and ensures that if users shrink or increase the header
  table size it is policed appropriately.

(adam)

5.1.0:
**API Changes (Backward-compatible)**
- Added support for ``DataFrame.data`` being a ``memoryview`` object.

(adam)

USE_LANGUAGES is not needed

(adam)

2.8.12:
Bugfixes

(adam)

0.12.0:
Bug fixes.

(adam)

0.7.0:
- Update to v0.6.0 of the Brotli library.

(adam)

PLIST fix for non-f90 builds

(adam)

Updated devel/py-game to 1.9.3

(adam)

Pygame 1.9.3:
This is a bugfix release which fixes a couple of key issues which came up with 1.9.2. It also adds wheels for Python 3.6 on Linux, Mac and Windows.

(adam)

Updated audio/libmikmod to 3.3.11; audio/mikmod to 3.2.8

(adam)

Changes 3.2.8:
- Fixed several warnings from clang static analyzer.
- Fixed a misleading indentation warning from gcc6.
- A few minor OS/2 fixes.
- Support for building the Windows version using Open Watcom compiler.
- Other minor fix/tidy-ups.

(adam)

Changes 3.3.11:
- Fixed lots of possible crashes in the IT, XM, S3M, STM, STX, AMF, IMF,
  GDM and MED module loaders.
- Fixed a possible endless loop in the IT loader with malformed files.
- Fixed signed integer overflow leading to crashes in the sample loader.
- Fixed a possible crash in MMCMP depacker with malformed files.
- Fixed the broken fixed-line comment reader which might possibly lead
  to crashes, and also badly translated several song messages. The new
  code is adapted from libopenmpt.
- Support for building the Windows version using Open Watcom compiler.
- A few minor OS/2 fixes.
- CMake updates.
- Other minor fixes/tidy-ups.

(adam)

Updated audio/py-mutagen to 1.38. Removed audio/mutagen-tools.

(adam)

Removed audio/mutagen-tools successor audio/py-mutagen

(adam)

Changes 1.38:
* Note: New release tarballs are now hosted on github:
  https://github.com/quodlibet/mutagen/releases
* ID3:
  * Add iTunes grouping frame `id3.GRP1`
  * Fix exposing text frames where the text can't be encoded with the
    reported encoding due to merging of frames
* OGG: Fix wrong StreamInfo.length (small negative value) for all
  ogg based formats in rare cases.

(adam)

Updated devel/py-hypothesis to 3.11.6; www/py-django-reversion to 2.0.9; databases/py-sqlalchemy to 1.1.11

(adam)

1.1.11

orm

[orm] [bug] Fixed issue with subquery eagerloading which continues on from the series of issues fixed in 2699, 3106, 3893 involving that the “subquery” contains the correct FROM clause when beginning from a joined inheritance subclass and then subquery eager loading onto a relationship from the base class, while the query also includes criteria against the subclass. The fix in the previous tickets did not accommodate for additional subqueryload operations loading more deeply from the first level, so the fix has been further generalized.

sql

[sql] [bug] Fixed AttributeError which would occur in WithinGroup construct during an iteration of the structure.

postgresql

[postgresql] [bug] Continuing with the fix that correctly handles Postgresql version string “10devel” released in 1.1.8, an additional regexp bump to handle version strings of the form “10beta1”. While Postgresql now offers better ways to get this information, we are sticking w/ the regexp at least through 1.1.x for the least amount of risk to compatibility w/ older or alternate Postgresql databases.

[postgresql] [bug] Fixed bug where using ARRAY with a string type that features a collation would fail to produce the correct syntax within CREATE TABLE.

mysql

[mysql] [bug] MySQL 5.7 has introduced permission limiting for the “SHOW VARIABLES” command; the MySQL dialect will now handle when SHOW returns no row, in particular for the initial fetch of SQL_MODE, and will emit a warning that user permissions should be modified to allow the row to be present.

mssql

[mssql] [bug] Fixed bug where SQL Server transaction isolation must be fetched from a different view when using Azure data warehouse, the query is now attempted against both views and then a NotImplemented is raised unconditionally if failure continues to provide the best resiliency against future arbitrary API changes in new SQL Server versions.

[mssql] [bug] Added a placeholder type mssql.XML to the SQL Server dialect, so that a reflected table which includes this type can be re-rendered as a CREATE TABLE. The type has no special round-trip behavior nor does it currently support additional qualifying arguments.

oracle

[oracle] [bug] Support for two-phase transactions has been removed entirely for cx_Oracle when version 6.0b1 or later of the DBAPI is in use. The two- phase feature historically has never been usable under cx_Oracle 5.x in any case, and cx_Oracle 6.x has removed the connection-level “twophase” flag upon which this feature relied.

(adam)

2.0.9:
Bugfix: Deleted inline admin instances no longer added to revision.
Bugfix: M2M relations correctly added to revision
Improved performance of 0003 migration
Documentation improvements
Django 1.11 support
Added atomic=True parameter to create_revision

(adam)

3.11.6:
This release involves no functionality changes, but is the first to ship wheels as well as an sdist.

3.11.5:
This release provides a performance improvement to shrinking. For cases where there is some non-trivial "boundary" value (e.g. the bug happens for all values greater than some other value), shrinking should now be substantially faster. Other types of bug will likely see improvements too.

This may also result in some changes to the quality of the final examples - it may sometimes be better, but is more likely to get slightly worse in some edge cases. If you see any examples where this happens in practice, please report them.

(adam)

Updated graphics/libimagequant to 2.9.1

(adam)

Changes 2.9.1:
Bug fixes.

(adam)

Updated www/apache24 to 2.4.26

(adam)

Changes with Apache 2.4.26

  *) HTTP/2 support no longer tagged as "experimental" but is instead considered
    fully production ready.

  *) mod_http2: Fix for possible CPU busy loop introduced in v1.10.3 where a stream may keep
    the session in continuous check for state changes that never happen.

  *) mod_mime: Fix error checking for quoted pairs.

  *) mod_proxy_wstunnel: Add "upgrade" parameter to allow upgrade to other
    protocols.

  *) MPMs unix: Place signals handlers and helpers out of DSOs to avoid
    a possible crash if a signal is caught during (graceful) restart.

  *) core: Deprecate ap_get_basic_auth_pw() and add
    ap_get_basic_auth_components().

  *) mod_rewrite: When a substitution is a fully qualified URL, and the
    scheme/host/port matches the current virtual host, stop interpreting the
    path component as a local path just because the first component of the
    path exists in the filesystem.  Adds RewriteOption "LegacyPrefixDocRoot"
    to revert to previous behavior.

  *) core: ap_parse_form_data() URL-decoding doesn't work on EBCDIC
    platforms.

  *) ab: enable option processing for setting a custom HTTP method also for
    non-SSL builds.

  *) core: EBCDIC fixes for interim responses with additional headers.

  *) mod_ssl: Consistently pass the expected bio_filter_in_ctx_t
    to ssl_io_filter_error().

  *) mod_env: when processing a 'SetEnv' directive, warn if the environment
    variable name includes a '='. It is likely a configuration error.

  *) Evaluate nested If/ElseIf/Else configuration blocks.

  *) mod_rewrite: Add 'BNP' (backreferences-no-plus) flag to RewriteRule to
    allow spaces in backreferences to be encoded as %20 instead of '+'.

  *) mod_rewrite: Add the possibility to limit the escaping to specific
    characters in backreferences by listing them in the B flag.

  *) mod_substitute: Fix spurious AH01328 (Line too long) errors on EBCDIC
    systems.

  *) mod_http2: fail requests without ERROR log in case we need to read interim
    responses and see only garbage. This can happen if proxied servers send
    data where none should be, e.g. a body for a HEAD request.

more...

(adam)

Updated multimedia/ffmpeg2 to 2.8.12

(adam)

version 2.8.12:
- avcodec/mjpegdec: Check that reference frame matches the current frame
- avcodec/tiff: Avoid loosing allocated geotag values
- avcodec/cavs: Fix runtime error: signed integer overflow: -12648062 * 256 cannot be represented in type 'int'
- avformat/hls: Check local file extensions
- avcodec/qdrw: Fix null pointer dereference
- avutil/softfloat: Fix sign error in and improve documentation of av_int2sf()
- avcodec/hevc_ps: Fix runtime error: index 32 out of bounds for type 'uint8_t [32]'
- avcodec/pafvideo: Check packet size and frame code before ff_reget_buffer()
- avcodec/ac3dec_fixed: Fix runtime error: left shift of 419 by 23 places cannot be represented in type 'int'
- avcodec/aacps: Fix runtime error: left shift of 1073741824 by 1 places cannot be represented in type 'INTFLOAT' (aka 'int')
- avcodec/wavpack: Fix runtime error: shift exponent 32 is too large for 32-bit type 'int'
- avcodec/wavpack: Fix runtime error: signed integer overflow: 2013265955 - -134217694 cannot be represented in type 'int'
- avcodec/cinepak: Check input packet size before frame reallocation
- avcodec/hevc_ps: Fix runtime error: signed integer overflow: 2147483628 + 256 cannot be represented in type 'int'
- avcodec/ra144: Fixes runtime error: signed integer overflow: 7160 * 327138 cannot be represented in type 'int'
- avcodec/pnm: Use ff_set_dimensions()
- avcodec/cavsdec: Fix runtime error: signed integer overflow: 59 + 2147483600 cannot be represented in type 'int'
- avformat/avidec: Limit formats in gab2 to srt and ass/ssa
- avcodec/acelp_pitch_delay: Fix runtime error: value 4.83233e+39 is outside the range of representable values of type 'float'
- avcodec/wavpack: Check float_shift
- avcodec/wavpack: Fix runtime error: signed integer overflow: 24 * -2147483648 cannot be represented in type 'int'
- avcodec/ansi: Fix frame memleak
- avcodec/jpeg2000dec: Use ff_set_dimensions()
- avcodec/truemotion2: Fix passing null pointer to memset()
- avcodec/truemotion2: Fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int'
- avcodec/ra144: Fix runtime error: signed integer overflow: -2449 * 1398101 cannot be represented in type 'int'
- avcodec/ra144: Fix runtime error: signed integer overflow: 11184810 * 404 cannot be represented in type 'int'
- avcodec/aac_defines: Add missing () to AAC_HALF_SUM() macro
- avcodec/webp: Fixes null pointer dereference
- avcodec/aacdec_fixed: Fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int'
- avcodec/snow: Fix runtime error: signed integer overflow: 1086573993 + 1086573994 cannot be represented in type 'int'
- avcodec/jpeg2000: Fix runtime error: signed integer overflow: 4185 + 2147483394 cannot be represented in type 'int'
- avcodec/jpeg2000dec: Check tile offsets more completely
- avcodec/aacdec_fixed: Fix multiple runtime error: shift exponent 127 is too large for 32-bit type 'int'
- avcodec/wnv1: More strict buffer size check
- avcodec/libfdk-aacdec: Correct buffer_size parameter
- avcodec/sbrdsp_template: Fix: runtime error: signed integer overflow: 849815297 + 1315389781 cannot be represented in type 'int'
- avcodec/ivi_dsp: Fix runtime error: left shift of negative value -2
- doc/filters: Clarify scale2ref example
- avcodec/mlpdec: Do not leave invalid values in matrix_out_ch[] on error
- avcodec/ra144dec: Fix runtime error: left shift of negative value -17
- avformat/mux: Fix copy an paste typo
- avutil/internal: Do not enable CHECKED with DEBUG
more...

(adam)

Updated devel/py-hypothesis to 3.11.4

(adam)

Changes 3.11.4 :
This is a bugfix release: Hypothesis now prints explicit examples when running in verbose mode.

(adam)

Updated www/py-django-cms to 3.4.4

(adam)

Changes 3.4.4:
* Fixed a bug in which cancelling the publishing dialog wasn't respected.
* Fixed a bug causing post-login redirection to an incorrect URL on single-language sites.
* Changed the signature for internal ``cms.plugin_base.CMSPluginBase`` methods ``get_child_classes``
  and ``get_parent_classes`` to take an optional ``instance`` parameter.
* Fixed an error when retrieving placeholder label from configuration.
* Fixed a bug which caused certain translations to display double-escaped text in the page
  list admin view.
* Adjusted the toolbar JavaScript template to escape values coming from the request.
* Added Dropdown class to toolbar items
* Replaced all custom markup on the ``admin/cms/page/includes/fieldset.html`` template
  with an ``{% include %}`` call to Django's built-in ``fieldset.html`` template.
* Fixed a bug which prevented a page from being marked as dirty when a placeholder was cleared.
* Fixed an IntegrityError raised when publishing a page with no public version and whose publisher
  state was pending.
* Fixed an issue with JavaScript not being able to determine correct path to the async bundle
* Fixed a ``DoesNotExist`` database error raised when moving a page marked as published, but whose public
  translation did not exist.
* Fixed a bug in which the menu rendered nodes using the site session variable (set in the admin),
  instead of the current request site.
* Fixed a race condition bug in which the database cache keys were deleted without syncing with the
  cache server, and as a result old menu items would continue to be displayed.
* Fixed a 404 raised when using the ``Delete`` button for a Page or Title extension on Django >= 1.9
* Added "How to serve multiple languages" section to documentation
* Fixed a performance issue with nested pages when using the ``inherit`` flag on the ``{% placeholder %}`` tag.
* Removed the internal ``reset_to_public`` page method in favour of the ``revert_to_live`` method.
* Fixed a bug in which the placeholder cache was not consistently cleared when a page was published.
* Enhanced the plugin menu to not show plugins the user does not have permission to add.
* Fixed a regression which prevented users from setting a redirect to the homepage.

(adam)

Updated devel/py-setuptools_scm to 1.15.6; www/py-django-countries to 4.6.1

(adam)

Version 4.6
Add a CountryFieldMixin Django Rest Framework serializer mixin that automatically picks the right field type for a CountryField (both single and multi-choice).
Validation for Django Rest Framework field (thanks Simon Meers).
Allow case-insensitive .by_name() matching (thanks again, Simon).
Ensure a multiple-choice CountryField.max_length is enough to hold all countries.
Fix inefficient pickling of countries (thanks Craig de Stigter for the report and tests).
Stop adding a blank choice when dealing with a multi-choice CountryField.
Tests now cover multiple Django Rest Framework versions (back to 3.3).

Version 4.6.1
Fix invalid reStructuredText in CHANGES.

(adam)

v1.15.6
* fix issue-171 by unpinning the py version to allow a fixed one to get installed

(adam)

Updated multimedia/x264-devel to 20170615

(adam)

Changes 20170615:
* x86: Avoid self-relative expressions on macho64
* configure: Don't try to detect clang by $CC
* checkasm: Use the right variable in a loop condition
* x86: Fix linking with 8-bit depth shared libx264
* x86: Only enable AVX-512 in 8-bit mode
* x86: AVX-512 cabac_block_residual
* x86: AVX-512 pixel_sad_x3 and pixel_sad_x4
* x86: AVX-512 pixel_sad
* x86: AVX-512 decimate_score
* x86: AVX-512 pixel_var2_8x8 and 8x16
* Rework pixel_var2
* x86: AVX-512 pixel_var_8x8, 8x16, and 16x16
* x86: AVX-512 pixel_sa8d_8x8
* x86: AVX-512 pixel_satd
* x86: AVX-512 deblock_strength
* x86: AVX-512 plane_copy_deinterleave_v210
* x86: AVX-512 memzero_aligned
* x86: AVX and AVX-512 memcpy_aligned
* x86: AVX-512 dequant_8x8_flat16
* x86: AVX-512 dequant_8x8
* x86: AVX-512 dequant_4x4
* x86: AVX-512 mbtree_propagate_cost
* x86: AVX-512 coeff_last
* x86: AVX-512 zigzag_interleave_8x8_cavlc
* x86: AVX-512 zigzag_scan_8x8_field
* x86: AVX-512 zigzag_scan_4x4_field
* x86: AVX-512 zigzag_scan_8x8_frame
* x86: AVX-512 zigzag_scan_4x4_frame
* checkasm: x86: More accurate ymm/zmm measurements
* x86: AVX-512 support
* x86: Change assembler from yasm to nasm
* x86: Add some additional cpuflag relations
* x86: Faster SSE2 pixel_sad_16x16 and 16x8
* msvs/icl: Improve target host detection
* ppc: Optimize add8x8_idct_dc

(adam)

Updated multimedia/libaacs to 0.9.0; multimedia/libbluray to 1.0.1

(adam)

Version 1.0.1
- Add possibility to check whether BD-J is functional without opening a disc.
- Improve main title selection.
- Improve error resilience and stability.
- Fix Windows dll loading.
- Fix JAVA_HOME environment variable handling in Windows.
- Fix build issues when CPPFLAGS is given in make command line.
- Fix MSVC build issues.
- Remove --disable-bdjava and --disable-udf configure options.

(adam)

Version 0.9.0
- Add aacs_decrypt_bus().
- Add aacs_get_bdj_root_cert_hash().
- Add aacs_get_content_cert_id().
- Add support for unencrypted content in AACS-enabled discs.
- Improve error resilience.
- Improve support for broken discs (use on-disc backup files).
- Verify content certificate signature.
- Load and merge multiple KEYDB.cfg files.
- Fix build with gcrypt < 1.6.0.
- Fix possible crash (debug log output that includes discid)
- Fix config file path issues in Windows (non-ASCII paths)
- Fix dll exports in Windows.
- Fix resource leaks.
- Reduced memory footprint.

(adam)

Updated devel/py-requests to 2.18.1; math/py-numpy to 1.13.0

(adam)

NumPy 1.13.0

Highlights
* Operations like a + b + c will reuse temporaries on some platforms,
  resulting in less memory use and faster execution.
* Inplace operations check if inputs overlap outputs and create temporaries
  to avoid problems.
* New __array_ufunc__ attribute provides improved ability for classes to
  override default ufunc behavior.
* New np.block function for creating blocked arrays.

New functions
* New np.positive ufunc.
* New np.divmod ufunc provides more efficient divmod.
* New np.isnat ufunc tests for NaT special values.
* New np.heaviside ufunc computes the Heaviside function.
* New np.isin function, improves on in1d.
* New np.block function for creating blocked arrays.
* New PyArray_MapIterArrayCopyIfOverlap added to NumPy C-API.

(adam)

2.18.1:
Bugfixes
* Fix an error in the packaging whereby the *.whl contained incorrect data that regressed the fix in v2.17.3.

2.18.0:
Improvements
* Response is now a context manager, so can be used directly in a with statement without first having to be wrapped by contextlib.closing().
Bugfixes
* Resolve installation failure if multiprocessing is not available
* Resolve tests crash if multiprocessing is not able to determine the number of CPU cores
* Resolve error swallowing in utils set_environ generator

(adam)

Updated net/nmap to 7.50

(adam)

Nmap 7.50

o [Windows] Updated the bundled Npcap from 0.78 to 0.91, with several bugfixes
  for WiFi connectivity problems and stability issues. [Daniel Miller, Yang Luo]

o Integrated all of your service/version detection fingerprints submitted from
  September to March (855 of them). The signature count went up 2.9% to 11,418.
  We now detect 1193 protocols from apachemq, bro, and clickhouse to jmon,
  slmp, and zookeeper. Highlights: http://seclists.org/nmap-dev/2017/q2/140

o [NSE] Added 14 NSE scripts from 12 authors, bringing the total up to 566!
  They are all listed at https://nmap.org/nsedoc/, and the summaries are below:

o [Ncat] A series of changes and fixes based on feedback from the Red Hat community:

o [NSE][GH-266][GH-704][GH-238][GH-883] NSE libraries smb and msrpc now use
  fully qualified paths. SMB scripts now work against all modern versions
  of Microsoft Windows. [Paulino Calderon]

o [NSE] smb library's share_get_list now properly uses anonymous connections
  first before falling back authenticating as a known user.

o New service probes and matches for Apache HBase and Hadoop MapReduce.
  [Paulino Calderon]

o Extended Memcached service probe and added match for Apache ZooKeeper.
  [Paulino Calderon]

o [NSE] New script argument "vulns.short" will reduce vulns library script
  output to a single line containing the target name or IP, the vulnerability
  state, and the CVE ID or title of the vulnerability. [Daniel Miller]

o [NSE][GH-862] SNMP scripts will now take a community string provided like
  `--script-args creds.snmp=private`, which previously did not work because it
  was interpreted as a username. [Daniel Miller]

o [NSE] Resolved several issues in the default HTTP redirect rules:
    - [GH-826] A redirect is now cancelled if the original URL contains
      embedded credentials
    - [GH-829] A redirect test is now more careful in determining whether
      a redirect destination is related to the original host
    - [GH-830] A redirect is now more strict in avoiding possible redirect
      loops
  [nnposter]

o [NSE][GH-766] The HTTP Host header will now include the port unless it is
  the default one for a given scheme. [nnposter]

o [NSE] The HTTP response object has a new member, fragment, which contains
  a partially received body (if any) when the overall request fails to
  complete. [nnposter]

o [NSE][GH-866] NSE now allows cookies to have arbitrary attributes, which
  are silently ignored (in accordance with RFC 6265). Unrecognized attributes
  were previously causing HTTP requests with such cookies to fail. [nnposter]

o [NSE][GH-844] NSE now correctly parses a Set-Cookie header that has unquoted
  whitespace in the cookie value (which is allowed per RFC 6265). [nnposter]

o [NSE][GH-731] NSE is now able to process HTTP responses with a Set-Cookie
  header that has an extraneous trailing semicolon. [nnposter]

o [NSE][GH-708] TLS SNI now works correctly for NSE HTTP requests initiated
  with option any_af. As an added benefit, option any_af is now available for
  all connections via comm.lua, not just HTTP requests. [nnposter]

o [NSE][GH-781] There is a new common function, url.get_default_port(),
  to obtain the default port number for a given scheme. [nnposter]

o [NSE][GH-833] Function url.parse() now returns the port part as a number,
  not a string. [nnposter]

o No longer allow ICMP Time Exceeded messages to mark a host as down during
  host discovery. Running traceroute at the same time as Nmap was causing
  interference. [David Fifield]

o [NSE][GH-807] Fixed a JSON library issue that was causing long integers
  to be expressed in the scientific/exponent notation. [nnposter]

o [NSE] Fixed several potential hangs in NSE scripts that used
  receive_buf(pattern), which will not return if the service continues to send
  data that does not match pattern. A new function in match.lua, pattern_limit,
  is introduced to limit the number of bytes consumed while searching for the
  pattern. [Daniel Miller, Jacek Wielemborek]

o [Nsock] Handle any and all socket connect errors the same: raise as an Nsock
  error instead of fatal. This prevents Nmap and Ncat from quitting with
  "Strange error from connect:" [Daniel Miller]

o [NSE] Added several commands to redis-info to extract listening addresses,
  connected clients, active channels, and cluster nodes. [Vasiliy Kulikov]

o [NSE][GH-679][GH-681] Refreshed script http-robtex-reverse-ip, reflecting
  changes at the source site (www.robtex.com). [aDoN]

o [NSE][GH-620][GH-715] Added 8 new http-enum fingerprints for Hadoop
  infrastructure components. [Thomas Debize, Varunram Ganesh]

o [NSE][GH-629] Added two new fingerprints to http-default-accounts
  (APC Management Card, older NetScreen ScreenOS) [Steve Benson, nnposter]

o [NSE][GH-716] Fix for oracle-tns-version which was sending an invalid TNS
  probe due to a string escaping mixup. [Alexandr Savca]

o [NSE][GH-694] ike-version now outputs information about supported attributes
  and unknown vendor ids. Also, a new fingerprint for FortiGate VPNs was
  submitted by Alexis La Goutte. [Daniel Miller]

o [GH-700] Enabled support for TLS SNI on the Windows platform. [nnposter]

o [GH-649] New service probe and match lines for the JMON and RSE services of
  IBM Explorer for z/OS. [Soldier of Fortran]

o Removed a duplicate service probe for Memcached added in 2011 (the original
  probe was added in 2008) and reported as duplicate in 2013 by Pavel Kankovsky.

o New service probe and match line for NoMachine NX Server remote desktop.
  [Justin Cacak]

o [Zenmap] Fixed a recurring installation problem on OS X/macOS where Zenmap
  was installed to /Applications/Applications/Zenmap.app instead of
  /Applications/Zenmap.app.

o [Zenmap][GH-639] Zenmap will no longer crash when no suitable temporary
  directory is found. Patches contributed by [Varunram Ganesh] and [Sai Sundhar]

o [Zenmap][GH-626] Zenmap now properly handles the -v0 (no output) option,
  which was added in Nmap 7.10. Previously, this was treated the same as not
  specifying -v at all. [lymanZerga11]

o [GH-630] Updated or removed some OpenSSL library calls that were deprecated
  in OpenSSL 1.1. [eroen]

o [NSE] Script ssh-hostkey now recognizes and reports Ed25519 keys [nnposter]

o [NSE][GH-627] Fixed script hang in several brute scripts due to the "threads"
  script-arg not being converted to a number. Error message was
  "nselib/brute.lua:1188: attempt to compare number with string" [Arne Beer]

(adam)

Updated www/tidy to 5.4.0

(adam)

5.4.0:
Bug fixes

(adam)

Updated www/curl to 7.54.1

(adam)

Changes 7.54.1:
curl: show the libcurl release date in --version output

Bugfixes:
CVE-2017-9502: default protocol drive letter buffer overflow
openssl: fix memory leak in servercert
tests: remove the html and PDF versions from the tarball
mbedtls: enable NTLM (& SMB) even if MD4 support is unavailable
typecheck-gcc: handle function pointers properly
llist: no longer uses malloc
gnutls: removed some code when --disable-verbose is configured
lib: fix maybe-uninitialized warnings
multi: clarify condition in curl_multi_wait
schannel: Don't treat encrypted partial record as pending data
configure: fix the -ldl check for openssl, add -lpthread check
configure: accept -Og and -Ofast GCC flags
Makefile: avoid use of GNU-specific form of $<
if2ip: fix -Wcast-align warning
configure: stop prepending to LDFLAGS, CPPFLAGS
curl: set a 100K buffer size by default
typecheck-gcc: fix _curl_is_slist_info
nss: do not leak PKCS 11 slot while loading a key
nss: load libnssckbi.so if no other trust is specified
examples: ftpuploadfrommem.c
url: declare get_protocol_family() static
examples/cookie_interface.c: changed to example.com
test1443: test --remote-time
curl: use utimes instead of obsolescent utime when available
url: fixed a memory leak on OOM while setting CURLOPT_BUFFERSIZE
curl_rtmp: fix missing-variable-declarations warnings
tests: fixed OOM handling of unit tests to abort test
curl_setup: Ensure no more than one IDN lib is enabled
tool: Fix missing prototype warnings for CURL_DOES_CONVERSIONS
CURLOPT_BUFFERSIZE: 1024 bytes is now the minimum size
curl: non-boolean command line args reject --no- prefixes
telnet: Write full buffer instead of byte-by-byte
typecheck-gcc: add missing string options
typecheck-gcc: add support for CURLINFO_SOCKET
opt man pages: they all have examples now
curl_setup_once: use SEND_QUAL_ARG2 for swrite
test557: set a known good numeric locale
schannel: return a more specific error code for SEC_E_UNTRUSTED_ROOT
tests/server: make string literals const
runtests: use -R for random order
unit1305: fix compiler warning
curl_slist_append.3: clarify a NULL input creates a new list
tests/server: run checksrc by default in debug-builds
tests: fix -Wcast-qual warnings
runtests.pl: simplify the datacheck read section
curl: remove --environment and tool_writeenv.c
buildconf: fix hang on IRIX
tftp: silence bad-function-cast warning
asyn-thread: fix unused macro warnings
tool_parsecfg: fix -Wcast-qual warning
sendrecv: fix MinGW-w64 warning
test537: use correct variable type
rand: treat fake entropy the same regardless of endianness
curl: generate the --help output
tests: removed redundant --trace-ascii arguments
multi: assign IDs to all timers and make each timer singleton
multi: use a fixed array of timers instead of malloc
mbedtls: Support server renegotiation request
pipeline: fix mistakenly trying to pipeline POSTs
lib510: don't write past the end of the buffer if it's too small
CURLOPT_HTTPPROXYTUNNEL.3: clarify, add example
SecureTransport/DarwinSSL: Implement public key pinning
curl.1: clarify --config
curl_sasl: fix build error with CURL_DISABLE_CRYPTO_AUTH + USE_NTLM
darwinssl: Fix exception when processing a client-side certificate
curl.1: mention --oauth2-bearer's argument
mkhelp.pl: do not add current time into curl binary
asiohiper.cpp / evhiperfifo.c: deal with negative timerfunction input
ssh: fix memory leak in disconnect due to timeout
tests: stabilize test 1034
cmake: auto detection of CURL_CA_BUNDLE/CURL_CA_PATH
assert: avoid, use DEBUGASSERT instead
LDAP: using ldap_bind_s on Windows with methods
redirect: store the "would redirect to" URL when max redirs is reached
winbuild: fix the nghttp2 build
examples: fix -Wimplicit-fallthrough warnings
time: fix type conversions and compiler warnings
mbedtls: fix variable shadow warning
test557: fix ubsan runtime error due to int left shift
transfer: init the infilesize from the postfields
docs: clarify NO_PROXY further
build-wolfssl: Sync config with wolfSSL 3.11
curl-compilers.m4: enable -Wshift-sign-overflow for clang
example/externalsocket.c: make it use CLOSESOCKETFUNCTION too
lib574.c: use correct callback proto
lib583: fix compiler warning
curl-compilers.m4: fix compiler_num for clang
typecheck-gcc.h: separate getinfo slist checks from other pointers
typecheck-gcc.h: check CURLINFO_TLS_SSL_PTR and CURLINFO_TLS_SESSION
typecheck-gcc.h: check CURLINFO_CERTINFO
build: provide easy code coverage measuring
test1537: dedicated tests of the URL (un)escape API calls
curl_endian: remove unused functions
test1538: verify the libcurl strerror API calls
MD(4|5): silence cast-align clang warning
dedotdot: fixed output for ".." and "." only input
cyassl: define build macros before including ssl.h
updatemanpages.pl: error out on too old git version
curl_sasl: fix unused-variable warning
x509asn1: fix implicit-fallthrough warning with GCC 7
libtest: fix implicit-fallthrough warnings with GCC 7
BINDINGS: add Ring binding
curl_ntlm_core: pass unsigned char to toupper
test1262: verify ftp download with -z for "if older than this"
test1521: test all curl_easy_setopt options
typecheck-gcc: allow CURLOPT_STDERR to be NULL too
metalink: remove unused printf() argument
file: make speedcheck use current time for checks
configure: fix link with librtmp when specifying path
examples/multi-uv.c: fix deprecated symbol
cmake: Fix inconsistency regarding mbed TLS include directory
setopt: check CURLOPT_ADDRESS_SCOPE option range
gitignore: ignore all vim swap files
urlglob: fix division by zero
libressl: OCSP and intermediate certs workaround no longer needed

(adam)

Updated www/sassc to 3.4.5

(adam)

This is the SassC for LibSass 3.4.5.
Check out LibSass release notes for more information.

(adam)

Updated www/py-flask to 0.12.2; devel/py-hypothesis to 3.11.3

(adam)

Changes 3.11.3:
Ensure we can sample from an OrderedDict without a warning

(adam)

Version 0.12.2
Released on May 16 2017
- Fix a bug in `safe_join` on Windows.

Version 0.12.1
Bugfix release, released on March 31st 2017
- Prevent `flask run` from showing a NoAppException when an ImportError occurs
  within the imported application module.
- Fix encoding behavior of ``app.config.from_pyfile`` for Python 3.
- Call `ctx.auto_pop` with the exception object instead of `None`, in the
  event that a `BaseException` such as `KeyboardInterrupt` is raised in a
  request handler.

(adam)

Added www/py-django-countries

(adam)

A Django application that provides country choices for use with forms, flag
icons static files, and a country field for models.

(adam)

Added BUILD_DEPENDS for 'test' target

(adam)

Updated databases/sqlite3 to 3.19.3; devel/py-hypothesis to 3.11.2; devel/py-test to 3.1.2

(adam)

Pytest 3.1.2 (2017-06-08)
Bug Fixes
* Required options added via pytest_addoption will no longer prevent using 窶塗elp without passing them.
* Respect python_files in assertion rewriting.
* Fix recursion error detection when frames in the traceback contain objects that can窶冲 be compared (like numpy arrays).
* UnicodeWarning is issued from the internal pytest warnings plugin only when the message contains non-ascii unicode (Python 2 only).
* Added a workaround for Python 3.6 WindowsConsoleIO breaking due to Pytests窶冱 FDCapture. Other code using console handles might still be affected by the very same issue and might require further workarounds/fixes, i.e. colorama.

(adam)

Version 3.11.2:
Miscellaneous documentation updates and fixes

(adam)

Release 3.19.3:
Fix a bug associated with auto_vacuum that can lead to database corruption. The bug was introduced in version 3.16.0.

(adam)

Added dependencies for Python 2.7

(adam)

Updated converters/py-chardet to 3.0.4

(adam)

chardet 3.0.4
This minor bugfix release just fixes some packaging and documentation issues:
* Fix issue with setup.py where pytest_runner was always being installed.
* Make sure test.py is included in the manifest
* Fix a bunch of old URLs in the README and other docs.
* Update documentation to no longer imply we test/support Python 3 versions before 3.3

(adam)

Expand __arraycount macro - it is not portable

(adam)

Fix for missing EGL_CAST

(adam)

Updated www/libproxy to 0.4.15

(adam)

Removed USE_LIBTOOL for good

(adam)

Version 0.4.15
Port to, and require, SpiderMonkey 38.
Fix "NetworkManager plugin not being built"
Fix "networkmanager plugin not working
Fix "Invalid read after free"
Fix intermittent unit test failures.

(adam)

Updated security/py-oauth2client to 4.1.1

(adam)

v4.1.1
New features:
Allow passing prompt='consent' via the flow_from_clientsecrets

(adam)

Updated graphics/libepoxy to 1.4.3

(adam)

Changes 1.4.3:
Require Meson 0.39.1; the previous release already had an implicit requirement on this version
Allow disabling EGL support when building Epoxy
Add support for building on Haiku
Update EGL registry from Khronos

(adam)

Added math/py-bottleneck version 1.2.1; Updated math/py-pandas to 0.20.2, multimedia/ffmpeg3 to 3.3.2, mail/dovecot2 to 2.2.30.2

(adam)

Hopefully the last 2.2.30.x..
- auth: Multiple failed authentications within short time caused
  crashes
- push-notification: OX driver crashed at deinit

(adam)

version 3.3.2:
- avcodec/mpeg4videodec: Fix runtime error: signed integer overflow: 53098 * 40448 cannot be represented in type 'int'
- avcodec/pafvideo: Fix assertion failure
- avcodec/takdec: Fix multiple runtime error: signed integer overflow: 637072 * 4096 cannot be represented in type 'int'
- avcodec/mjpegdec: Check that reference frame matches the current frame
- avcodec/tiff: Avoid loosing allocated geotag values
- avcodec/cavs: Fix runtime error: signed integer overflow: -12648062 * 256 cannot be represented in type 'int'
- avformat/hls: Check local file extensions
- avcodec/qdrw: Fix null pointer dereference
- avutil/softfloat: Fix sign error in and improve documentation of av_int2sf()
- avcodec/hevc_ps: Fix runtime error: index 32 out of bounds for type 'uint8_t [32]'
- avcodec/dxv: Check remaining bytes in dxv_decompress_raw()
- avcodec/pafvideo: Check packet size and frame code before ff_reget_buffer()
- avcodec/ac3dec_fixed: Fix runtime error: left shift of 419 by 23 places cannot be represented in type 'int'
- avformat/options: log filename on open
- avcodec/aacps: Fix runtime error: left shift of 1073741824 by 1 places cannot be represented in type 'INTFLOAT' (aka 'int')
- avcodec/wavpack: Fix runtime error: shift exponent 32 is too large for 32-bit type 'int'
- avcodec/cfhd: Fix runtime error: signed integer overflow: 65280 * 65288 cannot be represented in type 'int'
- avcodec/wavpack: Fix runtime error: signed integer overflow: 2013265955 - -134217694 cannot be represented in type 'int'
- avcodec/cinepak: Check input packet size before frame reallocation
- avcodec/hevc_ps: Fix runtime error: signed integer overflow: 2147483628 + 256 cannot be represented in type 'int'
- avcodec/ra144: Fixes runtime error: signed integer overflow: 7160 * 327138 cannot be represented in type 'int'
- avcodec/pnm: Use ff_set_dimensions()
- avcodec/cavsdec: Fix runtime error: signed integer overflow: 59 + 2147483600 cannot be represented in type 'int'
- avcodec/nvenc: fix hw accelerated transcode with bframes
- libavformat/hls: Observe Set-Cookie headers
- libavformat/http: Ignore expired cookies
- avformat/avidec: Limit formats in gab2 to srt and ass/ssa
- avcodec/acelp_pitch_delay: Fix runtime error: value 4.83233e+39 is outside the range of representable values of type 'float'
- avcodec/wavpack: Check float_shift
- avcodec/wavpack: Fix runtime error: signed integer overflow: 24 * -2147483648 cannot be represented in type 'int'
- avcodec/ansi: Fix frame memleak
- avcodec/dds: Fix runtime error: left shift of 145 by 24 places cannot be represented in type 'int'
- avcodec/jpeg2000dec: Use ff_set_dimensions()
- avcodec/truemotion2: Fix passing null pointer to memset()
- avcodec/truemotion2: Fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int'
- avcodec/ra144: Fix runtime error: signed integer overflow: -2449 * 1398101 cannot be represented in type 'int'
- avcodec/ra144: Fix runtime error: signed integer overflow: 11184810 * 404 cannot be represented in type 'int'
- avcodec/aac_defines: Add missing () to AAC_HALF_SUM() macro
- avcodec/webp: Fixes null pointer dereference
- avcodec/aacdec_fixed: Fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int'
- avcodec/ylc: Check count in build_vlc()
- avcodec/snow: Fix runtime error: signed integer overflow: 1086573993 + 1086573994 cannot be represented in type 'int'
- avcodec/jpeg2000: Fix runtime error: signed integer overflow: 4185 + 2147483394 cannot be represented in type 'int'
- avcodec/jpeg2000dec: Check tile offsets more completely
- avcodec/sheervideo: Check input buffer size before allocating and decoding
- avcodec/aacdec_fixed: Fix multiple runtime error: shift exponent 127 is too large for 32-bit type 'int'
- avcodec/wnv1: More strict buffer size check
- avcodec/libfdk-aacdec: Correct buffer_size parameter
- avcodec/sbrdsp_template: Fix: runtime error: signed integer overflow: 849815297 + 1315389781 cannot be represented in type 'int'
- avcodec/ivi_dsp: Fix runtime error: left shift of negative value -2
- doc/filters: Clarify scale2ref example
- avcodec/mlpdec: Do not leave invalid values in matrix_out_ch[] on error
- avcodec/ra144dec: Fix runtime error: left shift of negative value -17
- avcodec/pixlet: Fix runtime error: signed integer overflow: 2147483647 + 32 cannot be represented in type 'int'
- avformat/mux: Fix copy an paste typo
- avutil/internal: Do not enable CHECKED with DEBUG
- avcodec/clearvideo: Check buf_size before decoding frame
- avcodec/aacdec_fixed: Fix runtime error: signed integer overflow: -2147483648 * -1 cannot be represented in type 'int'
- avcodec/smc: Check remaining input
- avcodec/diracdec: Fix off by 1 error in quant check
- avcodec/jpeg2000dec: Fix copy and paste error
- avcodec/jpeg2000dec: Check tile offsets
- avcodec/sanm: Fix uninitialized reference frames
- avcodec/jpeglsdec: Check get_bits_left() before decoding a picture
- avcodec/fmvc: Fix use of uninitialized memory when the first frame is not a keyframe
- avcodec/ivi_dsp: Fix multiple runtime error: left shift of negative value -71
- avcodec/mjpegdec: Fix runtime error: signed integer overflow: -32767 * 130560 cannot be represented in type 'int'
- avcodec/aacdec_fixed: Fix runtime error: shift exponent 34 is too large for 32-bit type 'int'
- avcodec/mpeg4videodec: Check for multiple VOL headers
- avcodec/vp9block: fix runtime error: signed integer overflow: 196675 * 20670 cannot be represented in type 'int'
- avcodec/vmnc: Check location before use
- avcodec/takdec: Fix runtime error: signed integer overflow: 8192 * 524308 cannot be represented in type 'int'
- avcodec/aac_defines: Fix: runtime error: left shift of negative value -2
- avcodec/takdec: Fix runtime error: left shift of negative value -63
- avcodec/mlpdsp: Fix runtime error: signed integer overflow: -24419392 * 128 cannot be represented in type 'int'
- avcodec/sbrdsp_fixed: fix runtime error: left shift of 1 by 31 places cannot be represented in type 'int'
- avcodec/aacsbr_fixed: Fix multiple runtime error: shift exponent 170 is too large for 32-bit type 'int'
- avcodec/mlpdec: Do not leave a invalid num_primitive_matrices in the context
- avcodec/aacsbr_fixed: Fix multiple runtime error: shift exponent 150 is too large for 32-bit type 'int'
- avcodec/mimic: Use ff_set_dimensions() to set the dimensions
- avcodec/fic: Fix multiple runtime error: signed integer overflow: 5793 * 419752 cannot be represented in type 'int'
- avcodec/pixlet: Fix reading invalid numbers of bits
- avcodec/mlpdec: Fix: runtime error: left shift of negative value -8
- avcodec/dfa: Fix: runtime error: signed integer overflow: -14202 * 196877 cannot be represented in type 'int'
- avcodec/aacdec: Fix runtime error: signed integer overflow: 2147483520 + 255 cannot be represented in type 'int'
- avcodec/aacdec_template: Fix fixed point scale in decode_cce()
- avcodec/fmvc: Fix off by 1 error
- avcodec/flicvideo: Check frame_size before decrementing
- avcodec/mlpdec: Fix runtime error: left shift of negative value -1
- avcodec/takdec: Fix  runtime error: left shift of negative value -42
- avcodec/hq_hqa: Fix: runtime error: signed integer overflow: -255 * 10180917 cannot be represented in type 'int'
- avcodec/scpr: mask bits to prevent out of array read
- avcodec/truemotion1: Fix multiple runtime error: signed integer overflow: 1246906962 * 2 cannot be represented in type 'int'
- avcodec/svq3: Fix runtime error: left shift of negative value -6
- avcodec/tiff: reset sampling[] if its invalid
- configure: Fix the msvcrt version check for mingw32
- lavf/mov: make invalid m{d,v}hd time_scale default to 1 instead of erroring out
- lavc/ffjni: add missing '\n'
- lavc/mediacodec_wrapper: do not declare JNIAMedia{Codec,CodecList,Format}Fields on the stack
- lavc/mediacodec_wrapper: fix local reference leaks
- avcodec/nvenc: remove unnecessary alignment
- Use AVOnce as a static variable consistently
- avfilter: take_samples: do not directly return frame when samples are skipped
- avutil/hwcontext_dxva2: Don't improperly free IDirect3DSurface9 objects

(adam)

v0.20.2:
This is a minor bug-fix release in the 0.20.x series and includes some small regression fixes, bug fixes and performance improvements. We recommend that all users upgrade to this version.

(adam)

Bottleneck is a collection of fast NumPy array functions written in C.

(adam)

Fixed a typo

(adam)

Added www/py-django-rest-framework-proxy version 1.6.0

(adam)

Provides views to redirect incoming request to another API server.

Features:
* Masquerade paths
* HTTP Basic Auth (between your API and backend API)
* Token Auth
* Supported methods: GET/POST/PUT/PATCH
* File uploads

(adam)

Updated devel/git to 2.13.1

(adam)

Git v2.13.1 Release Notes
=========================

Fixes since v2.13
-----------------

* The Web interface to gmane news archive is long gone, even though
  the articles are still accessible via NTTP.  Replace the links with
  ones to public-inbox.org.  Because their message identification is
  based on the actual message-id, it is likely that it will be easier
  to migrate away from it if/when necessary.

* Update tests to pass under GETTEXT_POISON (a mechanism to ensure
  that output strings that should not be translated are not
  translated by mistake), and tell TravisCI to run them.

* Setting "log.decorate=false" in the configuration file did not take
  effect in v2.13, which has been corrected.

* An earlier update to test 7400 needed to be skipped on CYGWIN.

* Git sometimes gives an advice in a rhetorical question that does
  not require an answer, which can confuse new users and non native
  speakers.  Attempt to rephrase them.

* "git read-tree -m" (no tree-ish) gave a nonsense suggestion "use
  --empty if you want to clear the index".  With "-m", such a request
  will still fail anyway, as you'd need to name at least one tree-ish
  to be merged.

* The codepath in "git am" that is used when running "git rebase"
  leaked memory held for the log message of the commits being rebased.

* "pack-objects" can stream a slice of an existing packfile out when
  the pack bitmap can tell that the reachable objects are all needed
  in the output, without inspecting individual objects.  This
  strategy however would not work well when "--local" and other
  options are in use, and need to be disabled.

* Clarify documentation for include.path and includeIf.<condition>.path
  configuration variables.

* Tag objects, which are not reachable from any ref, that point at
  missing objects were mishandled by "git gc" and friends (they
  should silently be ignored instead)

* A few http:// links that are redirected to https:// in the
  documentation have been updated to https:// links.

* Make sure our tests would pass when the sources are checked out
  with "platform native" line ending convention by default on
  Windows.  Some "text" files out tests use and the test scripts
  themselves that are meant to be run with /bin/sh, ought to be
  checked out with eol=LF even on Windows.

* Fix memory leaks pointed out by Coverity (and people).

* The receive-pack program now makes sure that the push certificate
  records the same set of push options used for pushing.

* "git cherry-pick" and other uses of the sequencer machinery
  mishandled a trailer block whose last line is an incomplete line.
  This has been fixed so that an additional sign-off etc. are added
  after completing the existing incomplete line.

* The shell completion script (in contrib/) learned "git stash" has
  a new "push" subcommand.

* Travis CI gained a task to format the documentation with both
  AsciiDoc and AsciiDoctor.

* Update the C style recommendation for notes for translators, as
  recent versions of gettext tools can work with our style of
  multi-line comments.

* "git clone --config var=val" is a way to populate the
  per-repository configuration file of the new repository, but it did
  not work well when val is an empty string.  This has been fixed.

* A few codepaths in "checkout" and "am" working on an unborn branch
  tried to access an uninitialized piece of memory.

* "git for-each-ref --format=..." with %(HEAD) in the format used to
  resolve the HEAD symref as many times as it had processed refs,
  which was wasteful, and "git branch" shared the same problem.

* "git interpret-trailers", when used as GIT_EDITOR for "git commit
  -v", looked for and appended to a trailer block at the very end,
  i.e. at the end of the "diff" output.  The command has been
  corrected to pay attention to the cut-mark line "commit -v" adds to
  the buffer---the real trailer block should appear just before it.

* A test allowed both "git push" and "git receive-pack" on the other
  end write their traces into the same file.  This is OK on platforms
  that allows atomically appending to a file opened with O_APPEND,
  but on other platforms led to a mangled output, causing
  intermittent test failures.  This has been fixed by disabling
  traces from "receive-pack" in the test.

* "foo\bar\baz" in "git fetch foo\bar\baz", even though there is no
  slashes in it, cannot be a nickname for a remote on Windows, as
  that is likely to be a pathname on a local filesystem.

* The "collision detecting" SHA-1 implementation shipped with 2.13
  was quite broken on some big-endian platforms and/or platforms that
  do not like unaligned fetches.  Update to the upstream code which
  has already fixed these issues.

* "git am -h" triggered a BUG().

* The interaction of "url.*.insteadOf" and custom URL scheme's
  whitelisting is now documented better.

(adam)

Added DEPENDS for Python 2.7

(adam)

Added devel/py-functools32 version 3.2.3.2

(adam)

This is a backport of the functools standard library module from Python 3.2.3
for use on Python 2.7 and PyPy. It includes new features lru_cache
(Least-recently-used cache decorator).

(adam)

Updated emulators/libspectrum to 1.3.4; emulators/fuse-emulator to 1.3.6

(adam)

Fuse 1.3.6:
Emulation core improvements:
* Add Covox interface emulation
* Disable accelerate loader while recording RZX files

Miscellaneous improvements:
* Fix typo in Opus Discovery option
* WidgetUI: Disable RollbackTo menu option for widget UIs
* Update description of speed option
* List Melodik as supported interface and rearrange audio interfaces
  as a separate item
* Document --volume-covox option and update bash completion

(adam)

libspectrum 1.3.4:
* Work around invalid "used bits in last byte" field in TZX tapes
* Save SpecDrum level as unsigned in SZX snapshots
* Add support for storing Covox interface state
* Replace old ticket numbers from Trac to Allura

(adam)

Updated textproc/py-lxml to 3.8.0; textproc/py-m2r to 0.1.6

(adam)

Version 0.1.6:
* Drop python 3.3 support
* Improve image_link regex

(adam)

3.8.0 (2017-06-03)

Features added
--------------
* ``ElementTree.write()`` has a new option ``doctype`` that writes out a
  doctype string before the serialisation, in the same way as ``tostring()``.

* GH-220: ``xmlfile`` allows switching output methods at an element level.
  Patch by Burak Arslan.

* LP-1595781, GH-240: added a PyCapsule Python API and C-level API for
  passing externally generated libxml2 documents into lxml.

* GH-244: error log entries have a new property ``path`` with an XPath
  expression (if known, None otherwise) that points to the tree element
  responsible for the error. Patch by Bob Kline.

* The namespace prefix mapping that can be used in ElementPath now injects
  a default namespace when passing a None prefix.

Bugs fixed
----------
* GH-238: Character escapes were not hex-encoded in the ``xmlfile`` serialiser.
  Patch by matejcik.

* GH-229: fix for externally created XML documents.  Patch by Theodore Dubois.

* LP-1665241, GH-228: Form data handling in lxml.html no longer strips the
  option values specified in form attributes but only the text values.
  Patch by Ashish Kulkarni.

* LP-1551797: revert previous fix for XSLT error logging as it breaks
  multi-threaded XSLT processing.

* LP-1673355, GH-233: ``fromstring()`` html5parser failed to parse byte strings.

Other changes
-------------
* The previously undocumented ``docstring`` option in ``ElementTree.write()``
  produces a deprecation warning and will eventually be removed.

(adam)

Updated www/squid3 to 3.5.26, databases/openldap to 2.4.45, www/py-django to 1.11.2, net/dnsmasq to 2.77

(adam)

version 2.77
    Generate an error when configured with a CNAME loop,
    rather than a crash. Thanks to George Metz for
    spotting this problem.

    Calculate the length of TFTP error reply packet
    correctly. This fixes a problem when the error
    message in a TFTP packet exceeds the arbitrary
    limit of 500 characters. The message was correctly
    truncated, but not the packet length, so
    extra data was appended. This is a possible
    security risk, since the extra data comes from
    a buffer which is also used for DNS, so that
    previous DNS queries or replies may be leaked.

    Fix logic error in Linux netlink code. This could
    cause dnsmasq to enter a tight loop on systems
    with a very large number of network interfaces.

    Fix problem with --dnssec-timestamp whereby receipt
    of SIGHUP would erroneously engage timestamp checking.

    Bump zone serial on reloading /etc/hosts and friends
    when providing authoritative DNS.

    Handle v4-mapped IPv6 addresses sanely in --synth-domain.
    These have standard representation like ::ffff:1.2.3.4
    and are now converted to names like
    <prefix>--ffff-1-2-3-4.<domain>

    Handle binding upstream servers to an interface
    (--server=1.2.3.4@eth0) when the named interface
    is destroyed and recreated in the kernel.

    Allow wildcard CNAME records in authoritative zones.
    For example --cname=*.example.com,default.example.com

more...

(adam)

OpenLDAP 2.4.45 Release (2017/06/01)
Added slapd support for OpenSSL 1.1.0 series (ITS-8353, ITS-8533, ITS-8634)
Fixed libldap to fail ldap_result if the handle is already bad (ITS-8585)
Fixed libldap to expose error if user specified CA doesn't exist (ITS-8529)
Fixed libldap handling of Diffie-Hellman parameters (ITS-7506)
Fixed libldap GnuTLS use after free (ITS-8385)
Fixed libldap SASL initialization (ITS-8648)
Fixed slapd bconfig rDN escape handling (ITS-8574)
Fixed slapd segfault with invalid hostname (ITS-8631)
Fixed slapd sasl SEGV rebind in same session (ITS-8568)
Fixed slapd syncrepl filter handling (ITS-8413)
Fixed slapd syncrepl infinite looping mods with delta-sync MMR (ITS-8432)
Fixed slapd callback struct so older modules without writewait should function.
                    Custom modules may need to be updated for sc_writewait callback (ITS-8435)
Fixed slapd-ldap/meta broken LDAP_TAILQ macro (ITS-8576)
Fixed slapd-mdb so it passes ITS6794 regression test (ITS-6794)
Fixed slapd-mdb double free with size zero paged result (ITS-8655)
Fixed slapd-meta uninitialized diagnostic message (ITS-8442)
Fixed slapo-accesslog to honor pauses during purge for cn=config update (ITS-8423)
Fixed slapo-accesslog with multiple modifications to the same attribute (ITS-6545)
Fixed slapo-relay to correctly initialize sc_writewait (ITS-8428)
Fixed slapo-sssvlv double free (ITS-8592)
Fixed slapo-unique with empty modifications (ITS-8266)
Build Environment
Added test065 for proxyauthz (ITS-8571)
Fix test008 to be portable (ITS-8414)
Fix test064 to wait for slapd to start (ITS-8644)
Fix its4336 regression test (ITS-8534)
Fix its4337 regression test (ITS-8535)
Fix regression tests to execute on all backends (ITS-8539)
Contrib
Added slapo-autogroup(5) man page (ITS-8569)
Added passwd missing conversion scripts for apr1 (ITS-6826)
Fixed contrib modules where the writewait callback was not correctly initialized (ITS-8435)
Fixed smbk5pwd to build with newer OpenSSL releases (ITS-8525)
Documentation
admin24 fixed tls_cipher_suite bindconf option (ITS-8099)
admin24 fixed typo cn=config to be slapd.d (ITS-8449)
admin24 fixed slapo-syncprov information to be curent (ITS-8253)
admin24 fixed typo in access control docs (ITS-7341, ITS-8391)
admin24 fixed minor typo in tuning guide (ITS-8499)
admin24 fixed information about the limits option (ITS-7700)
admin24 fixed missing options for syncrepl configuration (ITS-7700)
admin24 fixed accesslog documentation to note it should not be replicated (ITS-8344)
Fixed ldap.conf(5) missing information on SASL_NOCANON option (ITS-7177)
Fixed ldapsearch(1) information on the V[V] flag behavior (ITS-7177, ITS-6339)
Fixed slapd-config(5), slapd.conf(5) clarification on interval keyword for refreshAndPersist (ITS-8538)
Fixed slapd-config(5), slapd.conf(5) clarify serverID requirements (ITS-8635)
Fixed slapd-config(5), slapd.conf(5) clarification on loglevel settings (ITS-8123)
Fixed slapo-ppolicy(5) to clearly note rootdn requirement (ITS-8565)
Fixed slapo-memberof(5) to note it is not safe to use with replication (ITS-8613)
Fixed slapo-syncprov(5) documentation to be current (ITS-8253)
Fixed slapadd(8) manpage to note slapd-mdb (ITS-8215)
Fixed various minor grammar issues in the man pages (ITS-8544)
Fixed various typos (ITS-8587)

(adam)

Changes 3.5.26:
* Bug 4653: %st lies about tunneled traffic volumes
* Revert r14161
* Bug 4682: ignoring http_access deny when client-first bumping mode is used
* Fix xstrndup() documentation, callers. Disclosed implementation bugs.
* Docs: Improve formatting of several manual pages
* Bug 4711: SubjectAlternativeNames is missing in some generated certificates
* Bug 4653: %st lies about tunneled traffic volumes
* Add OpenSSL library details to -v output
* Bug 3772: message from FTP server gets mangled
* Bug 3102: FTP directory listing drops fist character of file names
* Bug 4589: ssl_crtd: returning zero on failure
* Bug 4695: squidpurge: GCC 7 build errors
* Bug 4682: Fix ssl_bump "bump" action documentation

(adam)

Django 1.11.2 release notes

Django 1.11.2 adds a minor feature and fixes several bugs in 1.11.1. Also, the latest string translations from Transifex are incorporated.

Minor feature:
* The new LiveServerTestCase.port attribute reallows the use case of binding to a specific port following the bind to port zero change in Django 1.11.

Bugfixes:
* Added detection for GDAL 2.1 and 2.0, and removed detection for unsupported versions 1.7 and 1.8.
* Changed contrib.gis to raise ImproperlyConfigured rather than GDALException if gdal isn窶冲 installed, to allow third-party apps to catch that exception.
* Fixed django.utils.http.is_safe_url() crash on invalid IPv6 URLs.
* Fixed regression causing pickling of model fields to crash.
* Fixed django.contrib.auth.authenticate() when multiple authentication backends don窶冲 accept a positional request argument.
* Fixed introspection of index field ordering on PostgreSQL.
* Fixed a regression where Model._state.adding wasn窶冲 set correctly on multi-table inheritance parent models after saving a child model.
* Allowed DjangoJSONEncoder to serialize django.utils.deprecation.CallableBool.
* Relaxed the validation added in Django 1.11 of the fields in the defaults argument of QuerySet.get_or_create() and update_or_create() to reallow settable model properties.
* Fixed MultipleObjectMixin.paginate_queryset() crash on Python 2 if the InvalidPage message contains non-ASCII.
* Prevented Subquery from adding an unnecessary CAST which resulted in invalid SQL.
* Corrected detection of GDAL 2.1 on Windows.
* Made date-based generic views return a 404 rather than crash when given an out of range date.
* Fixed a regression where file_move_safe() crashed when moving files to a CIFS mount.
* Moved the ImageField file extension validation added in Django 1.11 from the model field to the form field to reallow the use case of storing images without an extension

(adam)

Updated devel/cmake to 3.8.2

(adam)

Changes in 3.8.2 since 3.8.1:
* bootstrap: fix build on mingw-w64
* cmFileCommand: Fix build on mingw-w64
* GNUtoMS: Add search path for VS 2015 environment scripts
* GNUtoMS: Add search path for VS 2017 environment scripts
* FindDevIL: Restore IL_FOUND result variable
* FindOpenSSL: Restore support for crypto-only result
* source_group: Restore TREE support for relative paths
* VS: Fix debugging of C++ executables if CSharp is enabled

(adam)

Updated textproc/py-openpyxl to 2.4.8

(adam)

2.4.8 (2017-05-30)

Bugfixes
* AutoFilter.sortState being assignd to the ws.sortState
* Cannot open files created by Microsoft Dynamics`
* Negative percents not case correctly`
* Runtime imports can cause deadlock`

Minor changes
* Preserve any table styles

(adam)

Updated time/py-jdcal to 1.3

(adam)

jdcal 1.3:
Use setuptools instead of distutils. This enables package managers to
create Python wheels.

(adam)

Updated databases/py-sqlalchemy; Added devel/py-grako, devel/py-expressions, devel/py-cubes

(adam)

Added devel/py-grako, devel/py-expressions, devel/py-cubes

(adam)

Cubes is a light-weight Python framework and set of tools for Online Analytical
Processing (OLAP), multidimensional analysis and browsing of aggregated data.

Features:
* OLAP and aggregated browsing (default backend is for relational databse -
  ROLAP)
* multidimensional analysis
* logical view of analysed data - how analysts look at data, how they think of
  data, not not how the data are physically implemented in the data stores
* hierarchical dimensions (attributes that have hierarchical dependencies, such
  as category-subcategory or country-region)
* localizable metadata and data
* SQL query generator for multidimensional aggregation queries
* OLAP server - HTTP server based on Flask Blueprint, can be easily integrated
  into your application.

(adam)

Arithmetic expression parser library. Embed customized expression evaluation
into your application or library. Example uses:
* Safely process an expression entered through a web application, for example
  some formula to be plotted. The library allows safe translation of such
  expression without exposing any application's internals
* precompiler that checks for allowed and denied identifiers in an expression
* have a common expression language through your application regardless of the
  backend languages
* compile arithmetic expression to any other expression tree (semantic), for
  example SQLAlchemy expression objects

(adam)

Grako (for grammar compiler) is a tool that takes grammars in a variation of
EBNF as input, and outputs memoizing (Packrat) PEG parsers in Python.

Grako can also compile a grammar stored in a string into a Grammar object that
can be used to parse any given input, much like the re module does with
regular expressions.

Grako is different from other PEG parser generators:
* Generated parsers use Python's very efficient exception-handling system to
  backtrack. Grako generated parsers simply assert what must be parsed. There
  are no complicated if-then-else sequences for decision making or
  backtracking. Memoization allows going over the same input sequence several
  times in linear time.
* Positive and negative lookaheads, and the cut element (with its cleaning of
  the memoization cache) allow for additional, hand-crafted optimizations at
  the grammar level.
* Delegation to Python's re module for lexemes allows for (Perl-like) powerful
  and efficient lexical analysis.
* The use of Python's context managers considerably reduces the size of the
  generated parsers for code clarity, and enhanced CPU-cache hits.
* Include files, rule inheritance, and rule inclusion give Grako grammars
  considerable expressive power.
* Automatic generation of Abstract Syntax Trees and Object Models, along with
  Model Walkers and Code Generators make analysis and translation approachable.

(adam)

Release 1.1.10 contains a short series of fixes to specific behaviors, primarily in Core, as well as one issue with "delete orphan" cascade when using inheriting mappers. No regressions were encountered since 1.1.9. Release 1.1.10 is recommended for users who are impacted by the specific issues listed.

(adam)

Updated devel/py-pep8 to 1.7.0; mail/dovecot2 to 2.2.30.1; devel/py-test to 3.1.1; databases/py-ldap to 2.4.39

(adam)

Pytest 3.1.1 (2017-05-30)
Bug Fixes
* pytest warning capture no longer overrides existing warning filters. The previous behaviour would override all filters and caused regressions in test suites which configure warning filters to match their needs. Note that as a side-effect of this is that DeprecationWarning and PendingDeprecationWarning are no longer shown by default.
* Fix issue with non-ascii contents in doctest text files.
* Fix encoding errors for unicode warnings in Python 2.
* pytest.deprecated_call now captures PendingDeprecationWarning in context manager form.

Improved Documentation
* Addition of towncrier for changelog management.

(adam)

Changes 2.4.39:

Lib/
* fixed errno-related ldap.TIMEOUT regression

Lib/slapdtest.py
* Removed obsolete assert statements

(adam)

Changes 2.2.30.1:
- quota_warning scripts weren't working in v2.2.30
- vpopmail still wasn't compiling

(adam)

1.7.0 (2016-01-12)
------------------
Announcements:
* Repository moved to PyCQA Organization on GitHub:
  https://github.com/pycqa/pep8

Changes:
* Reverted the fix in 368, "options passed on command line are only ones
  accepted" feature. This has many unintended consequences in pep8 and flake8
  and needs to be reworked when I have more time.
* Added support for Python 3.5. (Issue 420 & 459)
* Added support for multi-line config_file option parsing. (Issue 429)
* Improved parameter parsing. (Issues 420 & 456)

Bugs:
* Fixed BytesWarning on Python 3.

(adam)

Updated databases/sqlite3 to 3.19.2

(adam)

SQLite Release 3.19.2 On 2017-05-25

Fix more bugs in the LEFT JOIN flattening optimization. Ticket 7fde638e94287d2c.

Changes carried forward from version 3.19.1 (2017-05-24):

Fix a bug in the LEFT JOIN flattening optimization. Ticket cad1ab4cb7b0fc.
Remove a surplus semicolon that was causing problems for older versions of MSVC.

(adam)

Updated www/nghttp2 to 1.23.1; mail/dovecot2 to 2.2.30

(adam)

Changes 2.2.30:
* auth: Use timing safe comparisons for everything related to
  passwords. It's unlikely that these could have been used for
  practical attacks, especially because Dovecot delays and flushes all
  failed authentications in 2 second intervals. Also it could have
  worked only when passwords were stored in plaintext in the passdb.
* master process sends SIGQUIT to all running children at shutdown,
  which instructs them to close all the socket listeners immediately.
  This way restarting Dovecot should no longer fail due to some
  processes keeping the listeners open for a long time.

+ auth: Add passdb { mechanisms=none } to match separate passdb lookup
+ auth: Add passdb { username_filter } to use passdb only if user
  matches the filter. See https://wiki2.dovecot.org/PasswordDatabase
+ dsync: Add dsync_commit_msgs_interval setting. It attempts to commit
  the transaction after saving this many new messages. Because of the
  way dsync works, it may not always be possible if mails are copied
  or UIDs need to change.
+ imapc: Support imapc_features=search without ESEARCH extension.
+ imapc: Add imapc_features=fetch-bodystructure to pass through remote
  server's FETCH BODY and BODYSTRUCTURE.
+ imapc: Add quota=imapc backend to use GETQUOTA/GETQUOTAROOT on the
  remote server.
+ passdb imap: Add allow_invalid_cert and ssl_ca_file parameters.
+ If dovecot.index.cache corruption is detected, reset only the one
  corrupted mail instead of the whole file.
+ doveadm mailbox status: Add "firstsaved" field.
+ director_flush_socket: Add old host's up/down and vhost count as parameters
- More fixes to automatically fix corruption in dovecot.list.index
- dsync-server: Fix support for dsync_features=empty-header-workaround
- imapc: Various bugfixes, including infinite loops on some errors
- IMAP NOTIFY wasn't working for non-INBOX if IMAP client hadn't
  enabled modseq tracking via CONDSTORE/QRESYNC.
- fts-lucene: Fix it to work again with mbox format
- Some internal error messages may have contained garbage in v2.2.29
- mail-crypt: Re-encrypt when copying/moving mails and per-mailbox keys
  are used. Otherwise the copied mails can't be opened.
- vpopmail: Fix compiling

(adam)

Changes 1.23.1:
This release fixes the bug which makes nghttpx crash in OCSP response verification with certain kind of OCSP response.

(adam)

Updated devel/py-requests to 2.17.3; www/py-werkzeug to 0.12.2; www/py-httpbin to 0.5.0; security/py-cryptography_vectors to 1.9

(adam)

Changes 1.9:

BACKWARDS INCOMPATIBLE: Elliptic Curve signature verification no longer returns True on success. This brings it in line with the interface's documentation, and our intent. The correct way to use :meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKey.verify` has always been to check whether or not :class:`~cryptography.exceptions.InvalidSignature` was raised.
BACKWARDS INCOMPATIBLE: Dropped support for macOS 10.7 and 10.8.
BACKWARDS INCOMPATIBLE: The minimum supported PyPy version is now 5.3.
Python 3.3 support has been deprecated, and will be removed in the next cryptography release.
Add support for providing tag during :class:`~cryptography.hazmat.primitives.ciphers.modes.GCM` finalization via :meth:`~cryptography.hazmat.primitives.ciphers.AEADDecryptionContext.finalize_with_tag`.
Fixed an issue preventing cryptography from compiling against LibreSSL 2.5.x.
Added :meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePublicKey.key_size` and :meth:`~cryptography.hazmat.primitives.asymmetric.ec.EllipticCurvePrivateKey.key_size` as convenience methods for determining the bit size of a secret scalar for the curve.
Accessing an unrecognized extension marked critical on an X.509 object will no longer raise an UnsupportedExtension exception, instead an :class:`~cryptography.x509.UnrecognizedExtension` object will be returned. This behavior was based on a poor reading of the RFC, unknown critical extensions only need to be rejected on certificate verification.
The CommonCrypto backend has been removed.
MultiBackend has been removed.
Whirlpool and RIPEMD160 have been deprecated.

(adam)

Changes 0.5.0:
- Allow /redirect-to to work with multiple methods
- Allow MD5 or SHA-256 to be chosen as algorithms for HTTP Digest Auth
- Set a 10MB limit on /drip

(adam)

Version 0.12.2
--------------
- Fix regression: Pull request ``892`` prevented Werkzeug from correctly
  logging the IP of a remote client behind a reverse proxy, even when using
  `ProxyFix`.
- Fix a bug in `safe_join` on Windows.

(adam)

2.17.2 (2017-05-29)
**Improvements**
- Improved ``packages`` namespace identity support, for monkeypatching libraries.

(adam)

On macOS, do not generate debugging symbols; they use lots of disk space, and most of them get stripped off during installation.

(adam)

Minor clean-up

(adam)

Updated graphics/py-matplotlib to 2.0.2

(adam)

Critical bug fixes in 2.0.2:
- fixed Qt4 support
- fixed LogFormatter
- fixed hatched artists in legends
- fixed segfault with large images

(adam)

Updated textproc/py-sphinx to 1.6.2; sysutils/py-psutil to 5.2.2

(adam)

Changes 5.2.2:

Bug fixes
1000: fixed some setup.py warnings.
1002: [SunOS] remove C macro which will not be available on new Solaris versions. (patch by Danek Duvall)
1004: [Linux] Process.io_counters() may raise ValueError.
1006: [Linux] cpu_freq() may return None on some Linux versions does not support the function; now the function is not declared instead.
1009: [Linux] sensors_temperatures() may raise OSError.
1010: [Linux] virtual_memory() may raise ValueError on Ubuntu 14.04.

(adam)

Release 1.6.2:

Incompatible changes
* 3789: Do not require typing module for python>=3.5

Bugs fixed
* 3754: HTML builder crashes if HTML theme appends own stylesheets
* 3756: epub: Entity 窶藁dash窶� not defined
* 3758: Sphinx crashed if logs are emitted in conf.py
* 3755: incorrectly warns about dedent with literalinclude
* 3742: RTD PDF builds of Sphinx own docs are missing an index entry in the bookmarks and table of contents. This is rtfd/readthedocs.org-2857 issue, a workaround is obtained using some extra LaTeX code in Sphinx窶冱 own conf.py
* 3770: Build fails when a 窶彡ode-block窶� has the option emphasize-lines and the number indicated is higher than the number of lines
* 3774: Incremental HTML building broken when using citations
* 3772: 窶�str object窶� has no attribute 窶惑ilename窶�
* 3763: got epubcheck validations error if epub_cover is set
* 3779: 窶露mportError窶� in sphinx.ext.autodoc due to broken 窶�sys.meta_path窶�. Thanks to Tatiana Tereshchenko.
* 3796: env.resolve_references() crashes when non-document node given
* 3803: Sphinx crashes with invalid PO files
* 3791: PDF 窶彡ontinued on next page窶� for long tables isn窶冲 internationalized
* 3788: smartquotes emits warnings for unsupported languages
* 3807: latex Makefile for make latexpdf is only for unixen
* 3781: double hyphens in option directive are compiled as endashes
* 3817: latex builder raises AttributeError

(adam)

Updated devel/py-memcached, devel/py-requests. Added devel/py-apipkg, devel/py-execnet, devel/py-test-xdist

(adam)

2.16.5 (2017-05-28)
- Improvements to ``$ python -m requests.help``.

(adam)

Added py-apipkg, py-execnet, py-test-xdist

(adam)

The pytest-xdist plugin extends py.test with some unique test execution modes:
* test run parallelization: if you have multiple CPUs or hosts you can use
  those for a combined test run. This allows to speed up development or to use
  special resources of remote machines.
* --boxed: (not available on Windows) run each test in a boxed subprocess to
  survive SEGFAULTS or otherwise dying processes
* --looponfail: run your tests repeatedly in a subprocess. After each run
  py.test waits until a file in your project changes and then re-runs the
  previously failing tests. This is repeated until all tests pass after which
  again a full run is performed.
* Multi-Platform coverage: you can specify different Python interpreters or
  different platforms and run tests in parallel on all of them.

(adam)

execnet provides carefully tested means to ad-hoc interact with Python
interpreters across version, platform and network barriers. It provides
a minimal and fast API targetting the following uses:
* distribute tasks to local or remote processes
* write and deploy hybrid multi-process applications
* write scripts to administer multiple hosts

Features
* zero-install bootstrapping: no remote installation required!
* flexible communication: send/receive as well as callback/queue mechanisms
  supported
* simple serialization of python builtin types (no pickling)
* grouped creation and robust termination of processes
* well tested between CPython 2.6-3.X, Jython 2.5.1 and PyPy 2.2 interpreters.
* interoperable between Windows and Unix-ish systems.
* integrates with different threading models, including standard os threads,
  eventlet and gevent based systems.

(adam)

With apipkg you can control the exported namespace of a python package and
greatly reduce the number of imports for your users. It is a small pure python
module that works on virtually all Python versions, including CPython2.3 to
Python3.1, Jython and PyPy. It co-operates well with Python's help() system,
custom importers (PEP302) and common command line completion tools.

(adam)

1.58 release:
*  Fixing a performance regression in v1.54 in Python 2, using cPickle again.
*  Support for "stats slabs".
*  get_stats encoding fix.
*  Pin Six version to >= 1.4
*  setup.py build process pulls version from memcached.py
*  delete() and delete_multi() now default the "time" argument to None,
  since the protocol doesn't allow a time in some implementations.

(adam)

Updated security/py-certifi to 2017.4.17

(adam)

Changes 2017.4.17:
Unknown

(adam)

Updated devel/py-hypothesis to 3.11.1

(adam)

3.11.1:
This is a minor ergonomics release. Tracebacks shown by pytest no longer include Hypothesis internals for test functions decorated with @given.

(adam)

Updated graphics/libepoxy to 1.4.2; www/nghttp2 to 1.23.0

(adam)

Changes 1.23.0:

libnghttp2

Previously, if libnghttp2 received an invalid header field, it is just ignored, and is treated like it was never happened. This release changes this behaviour, and now libnghttp2 treats an incoming invalid header field as error, and resets the stream with PROTOCOL_ERROR.

nghttp2_on_invalid_frame_callback is now called if validation of altsvc header field fails.

nghttpx

nghttpx now verifies that OCSP response received from a program specified by --fetch-ocsp-response-file. The validation can be turned off by using --no-verify-ocsp option. In this validation, it makes sure that the OCSP response is targeted to the expected certificate. This is important because we pass the file path to the external program (see --fetch-ocsp-response-file), and if the file is replaced because of renewal, and nghttpx has not reloaded its configuration, the certificate nghttpx has loaded and the one included in the file differ. Verifying the OCSP response detects this, and avoids to send wrong OCSP response.

(adam)

Updated emulators/libspectrum to 1.3.3; emulators/fuse-emulator to 1.3.5; emulators/fuse-emulator-utils to 1.3.1

(adam)

Version 1.3.1:
* Fix metadata in AVI files and standardise in other formats
* fmfconv: Return proper exit codes from utility

(adam)

Fuse 1.3.5:

Emulation core improvements:
* Disable tape traps when playing/recording RZX files

Miscellaneous improvements:
* Fix typo in LOG disk format
* Replace old ticket numbers from Trac to Allura
* WidgetUI: Fix memory leak in file selector
* Fix allocator sizeof operand mismatch and remove dead assignment
* Remove prototypes of old plus3 disk functions
* Increase allocated memory to keep GCC7 happy

(adam)

Changes 1.3.3:
* Silently skip PLTT blocks in SZX snapshots
* Document missing disk identifiers
* Validate "used bits in last byte" field in TZX tapes
* Fix the load of PZX tapes with malformed strings

(adam)

Changes 1.4.2:
Add C++ guards around generated headers
Add z,relro and z,now to the GCC linker flags
Add explicit version flags for macOS builds
Add missing visibility compiler flags
Prefer using pkg-config files to find GLES
Fix build on MSVC 2013 when using the inline keyword
Fix dlwrap on aarch64
Require Meson ≥ 0.38.1
Allow building Epoxy as a Meson sub-project
Avoid crashes when running Epoxy on X servers without GLX

(adam)

Updated security/py-cryptography_vectors to 1.8.2

(adam)

Changes 1.8.2:
Bug fixes.

(adam)

Updated net/py-boto to 2.47.0

(adam)

boto v2.47.0
Adds features for Google Cloud Storage.
Changes:
* Loosen requirements for ID field in PROJECT_PRIVATE_RE.
* Populate storage class from HEAD Object responses

(adam)

bsd.prefs.mk are not needed here

(adam)

BPython installs man-pages when it finds Sphinx being installed in the system.
Now, Sphinx has been added as build dependency to always make the man-pages.

(adam)

Updated net/openvpn to 2.4.2

(adam)

OpenVPN 2.4.2

Compared to OpenVPN 2.3 this is a major update with a large number of new features, improvements and fixes. Some of the major features are AEAD (GCM) cipher and Elliptic Curve DH key exchange support, improved IPv4/IPv6 dual stack support and more seamless connection migration when client's IP address changes (Peer-ID). Also, the new --tls-crypt feature can be used to increase users' connection privacy.

Compared to OpenVPN 2.4.1 there are several bugfixes and small enhancements. A summary of the changes is available in Changes.rst.

(adam)

Updated devel/lemon to 1.0.3.19.0

(adam)

Match sqlite3 version

(adam)

Updated databases/sqlite3 to 3.19.0; devel/py-attrs to 17.2.0. Removed databases/postgresql91*

(adam)

Removed databases/postgresql91

(adam)

Changes 17.2.0:
Validators are hashable again. Note that validators may become frozen in the future, pending availability of no-overhead frozen classes.

(adam)

SQLite Release 3.19.0
---------------------
The SQLITE_READ authorizer callback is invoked once with a column name that is an empty string for every table referenced in a query from which no columns are extracted.
When using an index on an expression, try to use expression values already available in the index, rather than loading the original columns and recomputing the expression.
Enhance the flattening optimization so that it is able to flatten views on the right-hand side of a LEFT JOIN.
Use replace() instead of char() for escaping newline and carriage-return characters embedded in strings in the .dump output from the command-line shell.
Avoid unnecessary foreign key processing in UPDATE statements that do not touch the columns that are constrained by the foreign keys.
On a DISTINCT query that uses an index, try to skip ahead to the next distinct entry using the index rather than stepping through rows, when an appropriate index is available.
Avoid unnecessary invalidation of sqlite3_blob handles when making changes to unrelated tables.
Transfer any terms of the HAVING clause that use only columns mentioned in the GROUP BY clause over to the WHERE clause for faster processing.
Reuse the same materialization of a VIEW if that VIEW appears more than once in the same query.
Enhance PRAGMA integrity_check so that it identifies tables that have two or more rows with the same rowid.
Enhance the FTS5 query syntax so that column filters may be applied to arbitrary expressions.
Enhance the json_extract() function to cache and reuse parses of JSON input text.
Added the anycollseq.c loadable extension that allows a generic SQLite database connection to read a schema that contains unknown and/or application-specific collating sequences.

Bug Fixes:
----------
Fix a problem in REPLACE that can result in a corrupt database containing two or more rows with the same rowid.
Fix a problem in PRAGMA integrity_check that was causing a subsequent VACUUM to behave suboptimally.
Fix the PRAGMA foreign_key_check command so that it works correctly with foreign keys on WITHOUT ROWID tables.
Disallow leading zeros in numeric constants in JSON.
Disallow control characters inside of strings in JSON.
Limit the depth of recursion for JSON objects and arrays in order to avoid excess stack usage in the recursive descent parser.

(adam)

Updated www/py-django-treebeard to 4.1.1; devel/py-hypothesis to 3.11.0; devel/py-incremental to 17.5.0. Removed devel/py-distribute.

(adam)

Incremental 17.5.0 (2017-05-20)

Deprecations and Removals
-------------------------
- Incremental will no longer attempt to read git or svn repositories to see if
  the project is running from a checkout.

(adam)

Removed devel/py-distribute

(adam)

Changes 3.11.0:

This is a feature release, adding datetime-related strategies to the core strategies.

extra.pytz.timezones allows you to sample pytz timezones from the Olsen database. Use directly in a recipe for tz-aware datetimes, or compose with st.none() to allow a mix of aware and naive output.

The new dates, times, datetimes, and timedeltas strategies in hypothesis.strategies are all constrained by objects of their type. This means that you can generate dates bounded by a single day (i.e. a single date), or datetimes constrained to the microsecond.

times and datetimes take an optional timezones= argument, which defaults to none() for naive times. You can use our extra strategy based on pytz, or roll your own timezones strategy with dateutil or even the standard library.

The old dates, times, and datetimes strategies in hypothesis.extra.datetimes are deprecated in favor of the new core strategies, which are more flexible and have no dependencies.

(adam)

Release 4.1.1
* Removed deprecated templatetag inclusion
* Added support for Python-3.6
* Added support for MS-SQL

(adam)

Updated devel/py-hypothesis to 3.10.0; devel/py-test to 3.1.0

(adam)

Chages 3.1.0:

New Features

* The ``pytest-warnings`` plugin has been integrated into the core, so now ``pytest`` automatica
lly
  captures and displays warnings at the end of the test session.

* Added ``junit_suite_name`` ini option to specify root `<testsuite>` name for JUnit XML reports

* Added an ini option ``doctest_encoding`` to specify which encoding to use for doctest files.

* ``pytest.warns`` now checks for subclass relationship rather than
  class equality.

* ``pytest.raises`` now asserts that the error message matches a text or regex
  with the ``match`` keyword argument.

* ``pytest.param`` can be used to declare test parameter sets with marks and test ids.

(adam)

Changes 3.10.0:
Hypothesis now uses inspect.getfullargspec internally. On Python 2, there are no visible changes.

On Python 3 @given and @composite now preserve annotations on the decorated function. Keyword-only arguments are now either handled correctly (e.g. @composite), or caught in validation instead of silently discarded or raising an unrelated error later (e.g. @given).

(adam)

PkgSrc changes:
* recommended dependencies (from http://www.graphviz.org/Download_source.php)
  are now non-optional: that includes Pango, Cairo and GTS
* enabled Quartz support on macOS
* added Poppler and QT as options
* options are not nested in X11 any more; that allows building on Darwin
* PLIST has been sorted correctly

(adam)

Removed USE_LANGUAGES comment

(adam)

Actually netpbm is not needed in buildlink3.mk

(adam)

Updated print/poppler to 0.55.0; Added graphics/gts version 0.7.6

(adam)

GTS stands for the GNU Triangulated Surface Library. It provides a set of
useful functions to deal with 3D surfaces meshed with interconnected
triangles.

A brief summary of its main features:
* Simple object-oriented structure giving easy access to topological
  properties.
* 2D dynamic Delaunay and constrained Delaunay triangulations.
* Robust geometric predicates (orientation, in circle) using fast adaptive
  floating point arithmetic.
* Robust set operations on surfaces (union, intersection, difference).
* Surface refinement and coarsening (multiresolution models).
* Dynamic view-independent continuous level-of-detail.
* Preliminary support for view-dependent level-of-detail.
* Bounding-boxes trees and Kd-trees for efficient point location and
  collision/intersection detection.
* Graph operations: traversal, graph partitioning.
* Metric operations (area, volume, curvature ...).
* Triangle strips generation for fast rendering.

(adam)

Changes 0.55.0:

core:
* Fix abort in files with broken Decode arrays.
* Fix memory leak (and probably logic bug) parsing broken XRef entries.
* Fix memory leak when reconstructing broken files.
* Minor optimization
* Fix regression in GfxIndexedColorSpace::mapColorToBase.
* Fix memory leak in error condition

cpp:
* Return nullptr if the page at index can't be fetched.

build system:
* Fail by default if libjpeg is not available
* Fail by default if libopenjpeg2/1 is not available

(adam)

Updated net/openvpn to 2.3.16

(adam)

Version 2.3.16:
* fix redirect-gateway behaviour when an IPv4 default route does not exist
* Avoid a 1 byte overcopy in x509_get_subject (ssl_verify_openssl.c)
* Check for errors in the return value of GetModuleFileNameW()
* Fix gateway detection with OpenBSD routing domains

(adam)

Added sysutils/zabbix[-frontend] version 3.2.6

(adam)

Zabbix is the ultimate enterprise-level software designed for monitoring
availability and performance of IT infrastructure components. Zabbix is open
source and comes at no cost.

With Zabbix it is possible to gather virtually limitless types of data from
the network. High performance real-time monitoring means that tens of thousands
of servers, virtual machines and network devices can be monitored
simultaneously. Along with storing the data, visualization features are
available (overviews, maps, graphs, screens, etc), as well as very flexible
ways of analyzing the data for the purpose of alerting.

(adam)

Updated math/liblinear to 2.11

(adam)

Changes 2.11:
We have improved the trust-region update rule in the primal-based Newton method. It's significantly faster (e.g., twice faster or more) on some problems (see the technical report).
We now support scipy objects in the Python interface

(adam)

Updated math/py-numexpr to 2.6.2; math/py-pytables to 3.4.2; math/py-pandas to 0.20.1; math/py-statsmodels to 0.8.0

(adam)

Release 0.8.0

The main features of this release are several new time series models based on the statespace framework, multiple imputation using MICE as well as many other enhancements. The codebase also has been updated to be compatible with recent numpy and pandas releases.

Statsmodels is using now github to store the updated documentation which is available under http://www.statsmodels.org/stable for the last release, and http://www.statsmodels.org/dev/ for the development version.

(adam)

Changes 0.20.1:
New .agg() API for Series/DataFrame similar to the groupby-rolling-resample API窶冱, see here
Integration with the feather-format, including a new top-level pd.read_feather() and DataFrame.to_feather() method, see here.
The .ix indexer has been deprecated, see here
Panel has been deprecated, see here
Addition of an IntervalIndex and Interval scalar type, see here
Improved user API when grouping by index levels in .groupby(), see here
Improved support for UInt64 dtypes, see here
A new orient for JSON serialization, orient='table', that uses the Table Schema spec and that gives the possibility for a more interactive repr in the Jupyter Notebook, see here
Experimental support for exporting styled DataFrames (DataFrame.style) to Excel, see here
Window binary corr/cov operations now return a MultiIndexed DataFrame rather than a Panel, as Panel is now deprecated, see here
Support for S3 handling now uses s3fs, see here
Google BigQuery support now uses the pandas-gbq library, see here

(adam)

Changes 3.4.2:

Improvements
------------
- setup.py detects conda env and uses installed conda (hdf5, bzip2, lzo
  and/or blosc) packages when building from source.

Bugs fixed
----------
- Linux wheels now built against built-in blosc.
- Fixed windows absolute paths in ptrepack, ptdump, ptree.

(adam)

Changes 2.6.2:
Updates to keep with API changes in newer NumPy versions
Removed several warnings
Fix bugs in function stringcontains()
Detection of the POWER processor
Fix pow result casting
Fix integers to negative integer powers
Detect numpy exceptions in expression evaluation
Better handling of RC versions

(adam)

Updated devel/py-testtools to 2.3.0; devel/py-falcon to 1.2.0

(adam)

Changelog for Falcon 1.2.0
New & Improved
- A new `default` kwarg was added to :meth:`~falcon.Request.get_header`.
- A :meth:`~falcon.Response.delete_header` method was added to
  :class:`falcon.Response`.
- Several new HTTP status codes and error classes were added, such as
  :class:`falcon.HTTPFailedDependency`.
- If `ujson` is installed it will be used in lieu of `json` to speed up
  error serialization and query string parsing under CPython. PyPy users
  should continue to use `json`.
- The `independent_middleware` kwarg was added to :class:`falcon.API` to
  enable the execution of `process_response()` middleware methods, even
  when `process_request()` raises an error.
- Single-character field names are now allowed in URL templates when
  specifying a route.
- A detailed error message is now returned when an attempt is made to
  add a route that conflicts with one that has already been added.
- The HTTP protocol version can now be specified when simulating
  requests with the testing framework.
- The :class:`falcon.ResponseOptions` class was added, along with a
  `secure_cookies_by_default` option to control the default value of
  the "secure" attribute when setting cookies. This can make testing
  easier by providing a way to toggle whether or not HTTPS is required.
- `port`, `netloc` and `scheme` properties were added to the
  :class:`falcon.Request` class. The `protocol` property is now
  deprecated and will be removed in a future release.
- The `strip_url_path_trailing_slash` was added
  to :class:`falcon.RequestOptions` to control whether or not to retain
  the trailing slash in the URL path, if one is present. When this
  option is enabled (the default), the URL path is normalized by
  stripping the trailing slash character. This lets the application
  define a single route to a resource for a path that may or may not end
  in a forward slash. However, this behavior can be problematic in
  certain cases, such as when working with authentication schemes that
  employ URL-based signatures. Therefore, the
  `strip_url_path_trailing_slash` option was introduced to make this
  behavior configurable.
- Improved the documentation for :class:`falcon.HTTPError`, particularly
  around customizing error serialization.
- Misc. improvements to the look and feel of Falcon's documentation.
- The tutorial in the docs was revamped, and now includes guidance on
  testing Falcon applications.

(adam)

2.3.0
Improvements
* New ``ResourcedToStreamDecorator`` for tracking lifecycle events of
  test resources, and possibly integrate with subunit.
* Make ``KeysEqual`` usable with no arguments, i.e. match a dict with
  no keys.
* Add ``testtools.assertions`` to the documented API modules.
* Don't add file details without content.
* Make ``testtools.twistedsupport and tests work on Python 3.

(adam)

Updated www/drupal7 to 7.54

(adam)

drupal 7.54
Maintenance release of the Drupal 7 series. Includes a variety of improvements and bug fixes (no major, non-backwards-compatible new functionality).

(adam)

Updated net/fping to 4.0; sysutils/salt to 2016.11.5

(adam)

Salt 2016.11.5:

Due to the critical nature of issue 41230 we have decided to patch the 2016.11.5 packages with P.R.41244. This issue affects all calls to a salt-minion if there is an ipv6 nameserver set on the minion's host. The patched packages on repo.saltstack.com will divert from the v2016.11.5 tag and pypi packages due to the additional PR applied to the packages.

Bug fixes.

(adam)