Add upstream patches for Xen security advisory 355 and 360.
Bump PKGREVSION

(bouyer)

doc: Updated security/tor-browser-https-everywhere to 2021.1.27

(wiz)

tor-browser-https-everywhere: update to 2021.1.27.

2021.1.27
* EASE Mode UI Changes
* NPM Dependency updates
* Geckodriver pull update
* Chromedriver pull update
* Integrate CSS Grid for Options Page and EASE UI
* Put Options in new tab

(wiz)

doc: Updated devel/py-packaging to 20.9

(wiz)

py-packaging: update to 20.9.

20.9 - 2021-01-29
~~~~~~~~~~~~~~~~~

* Run [isort](https://pypi.org/project/isort/) over the code base (:issue:`377`)
* Add support for the ``macosx_10_*_universal2`` platform tags (:issue:`379`)
* Introduce ``packaging.utils.parse_wheel_filename()`` and ``parse_sdist_filename()``
  (:issue:`387` and :issue:`389`)

(wiz)

doc: Updated graphics/ImageMagick to 7.0.10.61

(wiz)

ImageMagick: update to 7.0.10.61.

2021-01-30  7.0.10-61  <quetzlzacatenango@image...>
  * Release ImageMagick version 7.0.10-61 GIT revision 18360:d3bec838c:20210130

2021-01-25  7.0.10-61  <quetzlzacatenango@image...>
  * dng:decode element in delegates.xml quoted incorrectly (reference
    https://github.com/ImageMagick/ImageMagick/issues/3156).
  * Extract GPS info from TIFF images (reference
    https://github.com/ImageMagick/ImageMagick/issues/3167).
  * Revert tieing MagickFloatType to double (reference
    https://github.com/ImageMagick/ImageMagick/pull/2832).

2021-01-25  7.0.10-60  <quetzlzacatenango@image...>
  * Release ImageMagick version 7.0.10-60 GIT revision 18347:9a84e249b:20210125

2021-01-24  7.0.10-60  <quetzlzacatenango@image...>
  * revert configure script for validating JXL delegate library.
  * the distributed pixel cache now properly deserializes the image attributes.

2021-01-24  7.0.10-59  <quetzlzacatenango@image...>
  * Release ImageMagick version 7.0.10-59 GIT revision 18340:d30ae5272:20210124

2021-01-20  7.0.10-59  <quetzlzacatenango@image...>
  * strip EXIF marker from profile (reference
    https://github.com/ImageMagick/ImageMagick/issues/3140).
  * add --enable-opencl to the configure command-line to enable OpenCL
    support.
  * generate histograms by comparing pixel components rather than color
    (reference https://github.com/ImageMagick/ImageMagick/discussions/3142).

(wiz)

doc: Updated audio/libmysofa to 1.2

(wiz)

libmysofa: update to 1.2.

    various smaller security bug fixes
    Steinberg audio enhancements for symmetrical HRTFs

(wiz)

doc: Updated audio/fluidsynth to 2.1.7

(wiz)

fluidsynth: update to 2.1.7.

    a regression introduced in 2.1.0 prevented chorus from being audible when fluid_synth_process() was used (#751, thanks to @chirs241097)
    a regression introduced in 2.0.6 prevented the MIDI player from restarting playback after all files have been played (#755, thanks to @rncbc)
    fix a double-free violation introduced in 2.0.0 after executing the info shell command (#756)

(wiz)

doc: Updated devel/bison to 3.7.5

(wiz)

bison: update to 3.7.5.

* Noteworthy changes in release 3.7.5 (2021-01-24) [stable]

** Bug fixes

*** Counterexample Generation

  In some cases counterexample generation could crash.  This is fixed.

*** Fix Table Generation

  In some very rare conditions, when there are many useless tokens, it was
  possible to generate incorrect parsers.

*** GLR parsers now support %merge together with api.value.type=union.

*** C++ parsers use noexcept in more places.

*** Generated parsers avoid some warnings about signedness issues.

*** C-language parsers now avoid warnings from pedantic clang.

*** C-language parsers now work around quirks of HP-UX 11.23 (2003).

(wiz)

doc: Updated devel/autoconf to 2.71

(wiz)

autoconf: update to 2.71.

* Noteworthy changes in release 2.71 (2021-01-28) [stable]

** Bug fixes, including:

*** Compilers that support C99 but not C2011 are detected correctly.

*** Compatibility improved with clang and Oracle C++.

*** Compatibility restored with automake's rules for regenerating configure.

*** Compatibility restored with old versions of std-gnu11.m4.

  Packages that wish to maintain compatibility with Autoconf 2.69 or
  older, should update their copy of std-gnu11.m4 from Gnulib as soon
  as practical, as the compatibility code bulks up the configure script.

  Packages that require Autoconf 2.70 can drop this file entirely.

(wiz)

doc: Updated net/tor to 0.4.4.7

(wiz)

tor: update to 0.4.4.7.

Changes in version 0.4.4.7 - 2021-02-03
  Tor 0.4.4.7 backports numerous bugfixes from later releases,
  including one that made v3 onion services more susceptible to
  denial-of-service attacks, and a feature that makes some kinds of
  DoS attacks harder to perform.

  o Major bugfixes (onion service v3, backport from 0.4.5.3-rc):
    - Stop requiring a live consensus for v3 clients and services, and
      allow a "reasonably live" consensus instead. This allows v3 onion
      services to work even if the authorities fail to generate a
      consensus for more than 2 hours in a row. Fixes bug 40237; bugfix
      on 0.3.5.1-alpha.

  o Major feature (exit, backport from 0.4.5.5-rc):
    - Re-entry into the network is now denied at the Exit level to all
      relays' ORPorts and authorities' ORPorts and DirPorts. This change
      should help mitgate a set of denial-of-service attacks. Closes
      ticket 2667.

  o Minor feature (build system, backport from 0.4.5.4-rc):
    - New "make lsp" command to generate the compile_commands.json file
      used by the ccls language server. The "bear" program is needed for
      this. Closes ticket 40227.

  o Minor features (compilation, backport from 0.4.5.2-rc):
    - Disable deprecation warnings when building with OpenSSL 3.0.0 or
      later. There are a number of APIs newly deprecated in OpenSSL
      3.0.0 that Tor still requires. (A later version of Tor will try to
      stop depending on these APIs.) Closes ticket 40165.

  o Minor features (crypto, backport from 0.4.5.3-rc):
    - Fix undefined behavior on our Keccak library. The bug only
      appeared on platforms with 32-byte CPU cache lines (e.g. armv5tel)
      and would result in wrong digests. Fixes bug 40210; bugfix on
      0.2.8.1-alpha. Thanks to Bernhard ��belacker, Arnd Bergmann and
      weasel for diagnosing this.

  o Minor bugfixes (compatibility, backport from 0.4.5.1-rc):
    - Strip '\r' characters when reading text files on Unix platforms.
      This should resolve an issue where a relay operator migrates a
      relay from Windows to Unix, but does not change the line ending of
      Tor's various state files to match the platform, and the CRLF line
      endings from Windows end up leaking into other files such as the
      extra-info document. Fixes bug 33781; bugfix on 0.0.9pre5.

  o Minor bugfixes (compilation, backport from 0.4.5.3-rc):
    - Fix a compilation warning about unreachable fallthrough
      annotations when building with "--enable-all-bugs-are-fatal" on
      some compilers. Fixes bug 40241; bugfix on 0.3.5.4-alpha.

  o Minor bugfixes (SOCKS5, backport from 0.4.5.3-rc):
    - Handle partial SOCKS5 messages correctly. Previously, our code
      would send an incorrect error message if it got a SOCKS5 request
      that wasn't complete. Fixes bug 40190; bugfix on 0.3.5.1-alpha.

  o Minor bugfixes (testing, backport from 0.4.5.2-alpha):
    - Fix the `config/parse_tcp_proxy_line` test so that it works
      correctly on systems where the DNS provider hijacks invalid
      queries. Fixes part of bug 40179; bugfix on 0.4.3.1-alpha.
    - Fix our Python reference-implementation for the v3 onion service
      handshake so that it works correctly with the version of hashlib
      provided by Python 3.9. Fixes part of bug 40179; bugfix
      on 0.3.1.6-rc.
    - Fix the `tortls/openssl/log_one_error` test to work with OpenSSL
      3.0.0. Fixes bug 40170; bugfix on 0.2.8.1-alpha.

(wiz)

Updated databases/py-mongo, devel/py-lru-dict

(adam)

py-lru-dict: updated to 1.1.7

1.1.7:
Bug fixes

(adam)

py-mongo: updated to 3.11.3

Changes in Version 3.11.3
-------------------------

Issues Resolved

Version 3.11.3 fixes a bug that prevented PyMongo from retrying writes after
a ``writeConcernError`` on MongoDB 4.4+

(adam)

doc: Added games/pinball version 0.3.20201218

(nia)

add games/pinball.

Emilia Pinball is a libre pinball game simulator.

(nia)

doc: Updated x11/ruby-tk to 0.3.0

(taca)

x11/ruby-tk: update to 0.3.0

0.3.0 (2020-10-09)

No release information nor changelog.  Please refer
<https://github.com/ruby/tk/compare/v0.2.0...v0.3.0> in detail.

(taca)

doc: Updated www/ruby-puma to 5.2.0

(taca)

www/ruby-puma: update to 5.2.0

5.2.0 (2021-01-27)

Features

* 10x latency improvement for MRI on ssl connections by reducing overhead
  ([#2519])
* Add option to specify the desired IO selector backend for libev
  ([#2522])
* Add ability to set OpenSSL verification flags (MRI only) ([#2490])
* Uses flush after writing messages to avoid mutating $stdout and $stderr
  using sync=true ([#2486])

Bugfixes

* MiniSSL - Update dhparam to 2048 bit for use with SSL_CTX_set_tmp_dh
  ([#2535])
* Change 'Goodbye!' message to be output after listeners are closed
  ([#2529])
* Fix ssl bind logging with 0.0.0.0 and localhost ([#2533])
* Fix compiler warnings, but skipped warnings related to ragel state
  machine generated code ([#1953])
* Fix phased restart errors related to nio4r gem when using the Puma
  control server ([#2516])
* Add #string method to Puma::NullIO ([#2520])
* Fix binding via Rack handler to IPv6 addresses ([#2521])

Refactor

* Refactor MiniSSL::Context on MRI, fix MiniSSL::Socket#write ([#2519])
* Remove Server#read_body ([#2531])
* Fail build if compiling extensions raises warnings on GH Actions,
  configurable via MAKE_WARNINGS_INTO_ERRORS ([#1953])

(taca)

doc: Updated www/ruby-mechanize to 2.7.7

(taca)

www/ruby-mechanize: update to 2.7.7

pkgsrc change: add "USE_LANGUAGES= # empty"

2.7.7 / 2021-02-01

* Security fixes for CVE-2021-21289

  Mechanize `>= v2.0`, `< v2.7.7` allows for OS commands to be injected
  into several classes' methods via implicit use of Ruby's `Kernel.open`
  method. Exploitation is possible only if untrusted input is used as a
  local filename and passed to any of these calls:

  - `Mechanize::CookieJar#load`: since v2.0 (see 208e3ed)
  - `Mechanize::CookieJar#save_as`: since v2.0 (see 5b776a4)
  - `Mechanize#download`: since v2.2 (see dc91667)
  - `Mechanize::Download#save` and `#save!` since v2.1 (see 98b2f51, bd62ff0)
  - `Mechanize::File#save` and `#save_as`: since v2.1 (see 2bf7519)
  - `Mechanize::FileResponse#read_body`: since v2.0 (see 01039f5)

  See
  github.com/sparklemotion/mechanize/security/advisories/GHSA-qrqm-fpv6-6r8g
  for more information.

  Also see #547, #548. Thank you, @kyoshidajp!

New Features

* Support for Ruby 3.0 by adding `webrick` as a runtime dependency. (#557)
  @pvalena

Bug fix

* Ignore input fields with blank names (#542, #536)

(taca)

doc: Updated www/ruby-css-parser to 1.8.0

(taca)

www/ruby-css-parser: update to 1.8.0

No release information nor changelog

Please refer
<https://github.com/premailer/css_parser/compare/v1.7.1...v1.8.0>
in detail.

(taca)

doc: Updated www/ruby-capybara to 3.35.3

(taca)

www/ruby-capybara: update to 3.35.3

pkgsrc changes: stop a few warnings of pkglint.

3.35.3 (2021-01-29)

Fixed
* Just a release to have the correct dates in the History.md in released
  gem

3.35.2 (2021-01-29)

Fixed
* Selenium deprecation suppressor with Selenium 3.x

3.35.1 (2021-01-26)

Fixed

* Default chrome driver registrations use chrome - Issue #2442 [Yuriy
  Alekseyev]
* 'Capybara.test_id' usage with the :button selector - Issue #2443

(taca)

doc: Updated textproc/ruby-kramdown-rfc2629 to 1.3.25

(taca)

textproc/ruby-kramdown-rfc2629: update to 1.3.25

pkgsrc changes:
* Add pkg_alternatives support.

1.3.25 (2021-02-02)

* Work around ERB api deprecation.

(taca)

doc: Updated sysutils/ruby-inspec-core to 4.26.4

(taca)

sysutils/ruby-inspec-core: update to 4.26.4

4.26.4 (2021-01-27)

Enhancements
* Add method_missing to nginx_conf #5285 (rgeissert)

Bug Fixes
* Add faraday_middleware to gemspec #5391 (clintoncwolfe)

Merged Pull Requests
* Update oracledb_session.rb #5193 (pacopal)
* Add option for winrm-shell-type #5263 (catriona1)
* Enable programmatic setting of plugin configuration #5393
  (tecracer-theinen)
* Pin back parslet to avoid conflict with toml in chef infra #5394
  (clintoncwolfe)
* Improve programmatic plugin configuration #5395 (tecracer-theinen)

4.25.1 (2021-01-20)

Merged Pull Requests
* Allow for rspec 3.9 in the gemspec #5381 (tas50)
* Build arm packages for Debian/SLES/Ubuntu #5386 (tas50)
* Update json_schemer requirement from >= 0.2.1, < 0.2.12 to >= 0.2.1, <
  0.2.18 #5356 (dependabot-preview[bot])

(taca)

doc: Updated misc/ruby-ohai to 16.10.6

(taca)

misc/ruby-ohai: update to 16.10.6

No release information.

(taca)

doc: note update of sysutils/ruby-chef-config and sysutils/ruby-chef

sysutils/ruby-chef-config 16.9.32
sysutils/ruby-chef 16.9.32

(taca)

sysutils/ruby-chef: update to 16.9.32

No release information.

(taca)

sysutils/ruby-chef-config: update to 16.9.32

No release information.

(taca)

doc: Updated sysutils/ruby-chef-utils to 16.9.32

(taca)

sysutils/ruby-chef-utils: update to 16.9.32

No release information.

(taca)

doc: Updated sysutils/puppet to 7.3.0

(taca)

sysutils/puppet: update to 7.3.0

Puppet 7.3.0

Released 20 January 2021.

New features

* New serverport setting type

The serverport setting is an alias for masterport. PUP-10725

Enhancements

* Multiple logdest locations in puppet.conf accepted

  You can set multiple logdest locations using a comma separated list.
  For example: /path/file1,console,/path/file2. PUP-10795

* The puppet module install command lists unsatisfiable dependencies

  If the puppet module install command fails, Puppet returns a more
  detailed error, including the unsatisfiable module(s) and its
  ranges. PUP-9176

* New --no-legacy option to disable legacy facts

  By default, puppet facts show displays all facts, including legacy
  facts. This release adds a --no-legacy option to disable legacy facts
  when querying all facts. PUP-10850

Resolved issues

* The puppet apply command creates warnings

  This release eliminates Ruby 2.7.x warnings when running puppet apply
  with node statements. PUP-10845

* Remove Pathname#cleanpath workaround

  This release removes an unnecessary workaround when cleaning file paths,
  as Ruby 1.9 is no longer supported. PUP-10840

* The allow * error message shown during PE upgrade

  Puppet no longer prints an error if fileserver.conf contains allow *
  rules. It continues to print an error for all other rules, as Puppet's
  legacy authorization is no longer supported and is superseded by
  Puppetserver's authorization. PUP-10851

* 3x functions cannot be called from deferred functions in Puppet agent

  This release allows deferred 3.x functions, like sprintf, to be called
  during a Puppet agent run. PUP-10819

* Cached catalog contains the result of deferred evaluation instead of the
  deferred function

  Puppet 6.12.0 introduced a regression that caused the result of a
  deferred function to be stored in the cached catalog. As a result, an
  agent running with a cached catalog would not re-evaluate the deferred
  function. This is now fixed. PUP-10818

* puppet facts show fact output differs from facter fact

  The output format is different between Facter and Puppet facts when a
  query for a single fact is provided. This is now fixed. PUP-10847

* Issue with Puppet creating production folder when multiple environment
  paths are set

  Previously, the production environment folder was automatically created
  at every Puppet ran in the first search path, if it did not already
  exist. This release ensures Puppet searches all the given paths before
  creating a new production environment folder. PUP-10842

Puppet 7.2.0

This version of Puppet was never released.

(taca)

doc: Updated security/ruby-sshkit to 1.21.2

(taca)

security/ruby-sshkit: update to 1.21.2

1.21.2 (2021-01-18)

Bug Fixes

* Fix closed connection in pool (#487) @azrle

Documentation

* Update EXAMPLES.md to show how to set the ssh user (#485) @bretweinraub

Housekeeping

* Add latest rubies to CI, including 3.0; drop rubinius CI support (#489)
  @mattbrictson

(taca)

doc: Updated security/ruby-oauth to 0.5.5

(taca)

security/ruby-oauth: update to 0.5.5

0.5.5 (2020-01-19)

* Allow redirect to different host but same path
* Add :allow_empty_params option (#155)
* Fixes ssl-noverify
* Various cleanups

(taca)

doc: Updated security/ruby-rubyntlm to 0.6.3

(taca)

security/ruby-rubyntlm: update to 0.6.3

pkgsrc change: add "USE_LANGUAGES= # none".

0.6.3 (2021-01-26)

Closed issues:

* Timeout issues with mailcatcher #18

Merged pull requests:

* Fix an error showing the key not being set on the DES cypher #41
  (Castone22)

(taca)

doc: Updated security/ruby-metasploit_payloads-mettle to 1.0.6

(taca)

security/ruby-metasploit_payloads-mettle: update to 1.0.6

Update ruby-metasploit_payloads-mettle package to 1.0.6

No release note is available.  Please refer commit log in details:
<https://github.com/rapid7/mettle/compare/v1.0.3...v1.0.6>.

(taca)

doc: Updated security/ruby-metasploit-payloads to 2.0.28

(taca)

security/ruby-metasploit-payloads: update to 2.0.28

No release note is available.  Please refer commit log in details:
<https://github.com/rapid7/metasploit-payloads/compare/v2.0.12...v2.0.28>.

(taca)

doc: Updated security/ruby-metasploit-model to 3.1.3

(taca)

security/ruby-metasploit-model: update to 3.1.3

pkgsrc change: add LICENSE.

No release note nor changelog.  Here are quote from commit log.

3.1.0 (2020-10-05)

* Added Address Format Validator And Updated Spec Testing
* Update app/validators/password_is_strong_validator.rb

3.1.1 (2020-10-05)

* update dummy schema.rb for automation

3.1.2 (2020-10-05)

* update authors and do not include `bin` in gem

3.1.3 (2020-12-01)

* update to support Ruby 2.7

(taca)

doc: Updated security/ruby-metasploit-concern to 3.0.1

(taca)

security/ruby-metasploit-concern: update to 3.0.1

3.0.1 (2020-11-25)

No release information nor changelog.  It updated for Ruby 2.7 support.

(taca)

doc: Updated print/ruby-pdf-reader to 2.4.2

(taca)

print/ruby-pdf-reader: update to 2.4.2

2.4.2 (28th January 2021)
- relax ASCII85 dependency to allow 1.x
- improved support for decompressing objects with slightly malformed zlib
  data

(taca)

doc: Updated net/ruby-winrm to 2.3.6

(taca)

net/ruby-winrm: update to 2.3.6

2.3.6 (2021-01-27)

* Add compatibility with ruby 3.0.0

(taca)

doc: Added net/ruby-winrm-elevated version 1.2.3

(taca)

net/Makefile: add and enable ruby-winrm-elevated

(taca)

net/ruby-winrm-elevated: add package version 1.2.3

Add ruby-winrm-elevated package version 1.2.3.  This is required by new
ruby-winrm package.

Runs PowerShell commands as elevated over Windows Remote Management (WinRM)
via a scheduled task

This gem allows you to break out of the magical WinRM constraints thus
allowing to reach out to network shares and even install Windows updates,
.NET, SQL Server etc.

(taca)

doc: Updated net/ruby-train-winrm to 0.2.12

(taca)

net/ruby-train-winrm: update to 0.2.12

0.2.12 (2021-01-29)

* Use latest winrm for ruby 3 support #29 (clintoncwolfe)

(taca)

doc: Updated net/ruby-train-core to 3.4.9

(taca)

net/ruby-train-core: update to 3.4.9

3.4.9 (2021-01-27)

* Powershell process keep running with local train transport. #660
  (Vasu1105)

3.4.8 (2021-01-26)

* su - USER command execution support & change transport_options to
  attr_accessor #636 (vsingh-msys)

(taca)

doc: Updated misc/ruby-bundler to 2.2.8

(taca)

misc/ruby-bundler: update to 2.2.8

2.2.8 (2021-02-02)

Enhancements:
* Add a CHANGELOG.md file to gems generated by bundle gem #4093
* Support gemified set #4297

Bug fixes:
* Fix standalone Kernel.require visibility #4337

Performance:
* Fix resolver edge cases and speed up bundler #4277

2.2.7 (2021-01-27)

Enhancements:
* Improve error messages when dependency on bundler conflicts with running
  version #4308
* Avoid showing platforms with requirements in error messages #4310
* Introduce disable_local_revision_check config #4237
* Reverse rubygems require mixin with bundler standalone #4299

Bug fixes:
* Fix releasing from a not yet pushed branch #4309
* Install cache only once if it already exists #4304
* Fix force_ruby_platform no longer being respected #4302

Performance:
* Fix resolver dependency comparison #4289

(taca)

doc: Updated mail/ruby-roadie-rails to 2.2.0

(taca)

mail/ruby-roadie-rails: update to 2.2.0

2.2.0 (2020-12-07)

* Support Rails 6.1 - A. Fomera (afomera)

(taca)

doc: Updated devel/ruby-test-unit to 3.4.0

(taca)

devel/ruby-test-unit: update to 3.4.0

3.4.0 - 2021-01-30

Improvements

* Enable deprecated warnings by default.

(taca)

doc: Updated devel/ruby-rspec-mocks to 3.10.2

(taca)

devel/ruby-rspec-mocs: update to 3.10.2

3.10.2 / 2021-01-27

Bug Fixes:

* Support keyword arguments with and_call_original on Ruby 3.0. (Bryan
  Powell, #1385)
* RSpec::Mocks::Constant#previously_defined? is now always a
  boolean. (Phil Pirozhkov, #1397)
* Support keyword arguments on Ruby 3.0 when used with
  expect_any_instance_of or allow_any_instance_of with
  and_call_original. (Jess Hottenstein, #1407)

(taca)

doc: Updated devel/ruby-rspec-support to 3.10.2

(taca)

devel/ruby-rspec-support: update to 3.10.2

3.10.2 / 2021-01-28

Bug Fixes:

* Fix issue with RSpec::Support.define_optimized_require_for_rspec on
  JRuby 9.1.17.0 (Jon Rowe, #492)

(taca)

doc: Added devel/ruby-red-colors version 0.1.1

(taca)

devel/Makefile: add and enable ruby-red-colors

(taca)

devel/ruby-red-colors: add package version 0.1.1

Add ruby-red-colors package version 0.1.1.

Red Colors

Description

Red Colors provides a wide array of features for dealing with colors.
This includes conversion between colorspaces, desaturation, and parsing
colors.

(taca)

doc: Updated devel/ruby-msgpack to 1.4.2

(taca)

devel/ruby-msgpack: update to 1.4.2

2021-02-01 version 1.4.2:

* Add the required Ruby version (>= 2.4) to avoid compilation errors on
  older Ruby runtimes
* Drop the support of old Ruby versions explicitly (1.8, 1.9, 2.0, 2.1,
  2.2, 2.3)

2021-01-27 version 1.4.1:

* Bugfix about the wrong string encoding longer than 256 bytes (#200)

2021-01-27 version 1.4.0:

* Introduce the optimization to use frozen/deduped keys for map objects
* Stop releasing fat gem (pre-built binaries) for mswin32 arch
  environments

(taca)

doc: Updated devel/ruby-i18n to 1.8.8

(taca)

devel/ruby-i18n: update to 1.8.8

1.8.8 (2021-02-02)

* Fixed threadsafety issues in Simple backend: #554
* Re-attempt to fix threadsafety of fallbacks: #548

* Use OpenSSL::Digest instead of usual Digest libraries: #549
* Goodbye, post-install message #552
* Use Rails' main branch, instead of master #553

(taca)

net/yaydl: remove patch

patch merged upstream
https://github.com/mmastrac/rust-ctor/commit/1d741d265eef0d9b8454caf38ede7388cf2c6b9e

(pin)

py-pygit2: fix PLIST

(adam)

doc: Updated audio/ncspot to 0.4.0

(pin)

audio/ncspot: update to 0.4.0

Maintenance:
-Fix multiple tracks in queue being shown as playing (#396)
-Return to search when viewing search results (#397)
-Add support for open.spotify.com links (#392)
-Restart queue if pressing play when stopped (#399)
-Fix not handling changed event (#402)
-Don't handle FinishedTrack as Stopped (#403)
-Fix removing listview item even if not succesfully deleted (#404)
-Open search results in search screen (#413)

Features:
-CI: Publish binary artifacts on release (#393)
-Add simple debian-packaging with cargo-deb (#405)

(pin)

Updated www/nghttp2, www/curl

(adam)

curl: updated to 7.75.0

Changes:

curl: add --create-file-mode [mode]
curl: add new variables to --write-out
dns: extend CURLOPT_RESOLVE syntax for adding non-permanent entries
gopher: implement secure gopher protocol
http: add Hyper as new optional HTTP backend
http: introduce AWS HTTP v4 Signature support

Bugfixes:

badsymbols.pl: add verbose mode -v
badsymbols.pl: ignore stand-alone single hash lines
BUG-BOUNTY: minor language updates
build: fix djgpp builds
cleanup: fix empty expression statement has no effect
cmake: Add an option to disable libidn2
cmake: enable gophers correctly in curl-config
cmake: expose CURL_DISABLE_OPENSSL_AUTO_LOAD_CONFIG
cmdline-opts/gen.pl: return hard on errors
cmdline-opts/retry.d: mention response code 429 as well
configure: set -Wextra-semi-stmt for clang with --enable-debug
connect: defer port selection until connect() time
connect: mark intentional ignores of setsockopt return values
connect: on linux, enable reporting of all ICMP errors on UDP sockets
connect: zero variable on stack to silence valgrind complaint
cookie: avoid the C1001 internal compiler error with MSVC 14
curl.1: fix typo microsft -> microsoft
curl: fix handling of -q option
curl: include the file name in --xattr/--remote-time error msgs
curl: move fprintf outputs to warnf
Curl_chunker: shrink the struct
curl_easy_pause.3: add multiplexed pause effects
CURLINFO_PRETRANSFER_TIME.3: clarify
CURLOPT_URL.3: remove scheme specific details
digest_sspi: Show InitializeSecurityContext errors in verbose mode
docs/examples: adjust prototypes for CURLOPT_READFUNCTION
docs/URL-SYNTAX: the URL syntax curl accepts and works with
docs: enable syntax highlighting in several docs files
docs: fix line length bug in gen.pl
docs: fix typos in NEW-PROTOCOL.md
docs: fix wrong documentation in help.d
docs: remove redundant "better" in --fail help
doh: allocate state struct on demand
examples/libtest: add .checksrc to dist
examples: remove superfluous asterisk uses
failf: remove newline from formatting strings
file: don't provide content-length for directories
getinfo: build with disabled HTTP support
gitattributes: Set batch files to CRLF line endings on checkout
h2: do not wait for RECV on paused transfers
HISTORY: added dates to early history
http: empty reply connection are not left intact
http: get CURLOPT_REQUEST_TARGET working with a HTTP proxy
http: have CURLOPT_FAILONERROR fail after all headers
http: make providing Proxy-Connection header not cause duplicated headers
http: show the request as headers even when split-sending
http_chunks: correct and clarify a comment on hexnumber length
http_proxy: Fix CONNECT chunked encoding race condition
httpauth: make multi-request auth work with custom port
INSTALL: now at 85 operating systems
INSTALL: update the list known OSes and CPU archs curl has run on
lib/unit tests: add missing curl_global_cleanup() calls
lib1564/5: verify that curl_multi_wakeup returns OK
lib: pass in 'struct Curl_easy *' to most functions
lib: remove Curl_ prefix from many static functions
lib: save a bit of space with some structure packing
libssh2: fix "Value stored to 'readdir_len' is never read"
libssh2: move data from connection object to transfer object
libssh: avoid plain free() of libssh-memory
mime: make sure setting MIMEPOST to NULL resets properly
misc: assorted typo fixes
misc: fix "warning: empty expression statement has no effect"
misc: fix typos
mk-ca-bundle.pl: deterministic output when using -t
mqtt: deal with 0 byte reads correctly
mqtt: handle POST/PUBLISH without a set POSTFIELDSIZE
multi: set the PRETRANSFER time-stamp when we switch to PERFORM
multi: skip DONE state if there's no connection left for ftp wildcard
multi: when erroring in TOOFAST state, act as for PERFORM
multi_runsingle: bail out early on data->conn == NULL
ngtcp2: Fix http3 upload stall
ngtcp2: Fix stack buffer overflow
ngtcp2: make it build it current master again
nss: get the run-time version instead of build-time
openssl: lowercase the hostname before using it for SNI
OS400: update ccsidcurl.c
pretransfer: setup the User-Agent header here
quiche: remove fprintf() leftover
Revert "CI/github: work-around for brew breakage on macOS"
runtests: add 'wakeup' as a feature
runtests: add support for %if [feature] conditions
runtests: preprocess DISABLED to allow conditionals
schannel: plug a memory-leak
schannel_verify: fix safefree call typo
select: convert Curl_select() to private static function
socks: use the download buffer instead
speedcheck: exclude paused transfers
strerror: skip errnum >= 0 assertion on windows
test1522: add debug tracing
test1633: set appropriate name
test179: use consistent header line endings
test410: verify HTTPS GET with a 49K request header
tests/mqttd: extract the client id from the correct offset
tests: make --libcurl tests only test FTP options if ftp enabled
tool_doswin: Restore original console settings on CTRL signal
tool_operate: fix the suppression logic of some error messages
tool_operate: spellfix a comment
too頂_writeout: fix the -w time output units
transfer: fix GCC 10 warning with flag '-Wint-in-bool-context'
travis: build ngtcp2 --with-gnutls
travis: limit the tests with quiche builds to HTTPS and FTPS only
travis: restrict the openssl3 job to only run https and ftps tests
url: if IDNA conversion fails, fallback to Transitional
urldata: make magic be the first struct field
urldata: remove 'local_ip' from the connectdata struct
urldata: remove duplicate 'upkeep_interval_ms' from connectdata
urldata: remove duplicate port number storage
urldata: remove the duplicate 'ip_addr_str' field
urldata: store ip version in a single byte
vtls: remove md5sum
warnless: remove curlx_ultosi
wolfssl: add SECURE_RENEGOTIATION support
wolfssl: Support wolfSSL builds missing TLS 1.1

(adam)

nghttp2: updated to 1.43.0

v1.43.0:

doc

Documentations are now built with Sphinx 3.3.0 or later.

python

The python binding now requires Python 3.
All python scripts for nghttp2 development are translated to Python 3 compatible.

nghttpx

This release fixes a potential memory issue that a memory pool gets cleared while it is still in use.
ECDSA certificate is now chosen when compatible signature algorithm is available.
This release adds a workaround to include ‘:’ in backend pattern.

(adam)

doc: Updated graphics/imv to 4.2.0

(nia)

imv: update to 4.2.0. #nice

v4.2.0 - 2020-12-17

* Switched to meson build system
* Added HEIF backend
* Added rotate and flip commands
* Added colour support for overlay
* Added some missing command/config documentation
* Read directories in alphabetical order
* Fixed several memory leaks
* Improved compatibility with non glibc systems
* Fixed several window management bugs for Wayland
* Fixed bug when selecting first/last image

(nia)

added, not updated

(nia)

doc: Updated textproc/inih to 52

(nia)

add textproc/inih.

inih (INI Not Invented Here) is a simple .INI file parser written in C. It's
only a couple of pages of code, and it was designed to be small and simple,
so it's good for embedded systems. It's also more or less compatible with
Python's ConfigParser style of .INI files, including RFC 822-style multi-line
syntax and name: value entries.

(nia)

doc: Updated graphics/feh to 3.6.3

(nia)

feh: Update to 3.6.3

* Release v3.6.3
    * Fix --start-at not handling URL-encoded file:/// paths properly. Notably,
      this also fixes feh not displaying images with spaces or unicode
      elements in their path when opened from a file manager.

(nia)

doc: Updated fonts/terminus-font to 4.49.1

(nia)

terminus-font: Update to 4.49.1

Version 4.49.1:
  * Fixed install-otb and uninstall-otb to use otbdir instead of x11dir.

Version 4.49:
  * Added Open Type Bitmap support.
  * Altered ascii grave in some sizes to be more useful as a back quote.
  * Fixed 21B5, added 21B2 and 21B3.

(nia)

doc: Updated audio/cmus to 2.9.1

(nia)

cmus: Update to 2.9.1

Adel Bordbari (1):
      add amazon.theme (#975)

Alex (1):
      mute/unmute command (#934)

Chris Grahn (1):
      Fix bug on ppc64 caused by narrowing cast (#941)

David Flatz (1):
      play pregaps of songs by adding them at the end of the previous song (#983)

Felipe (1):
      Fix typo: it's->its (#947)

Gregory Petrosyan (3):
      cmus 2.9.0-rc0
      cmus 2.9.0
      cmus 2.9.1

Guillermo Bonveh鱈 (1):
      Make cmus-update*.py use env python and fix pidgin with py3 (#857)

Jinwoo Park (1):
      fixed playlist name searching (#906)

Johannes Lange (1):
      added "exiting" player status (#648)

Jon Higgs (1):
      Add `continue_album` option (#927)

Lucius Martius (1):
      Add support for 'DISCNUMBER' REM-field in CUE-sheets (#982)

Mathieu Lemay (1):
      Fix type of MPRIS2 fields title and album (#972)

MyLegGuy (1):
      properly calculate size of print string (#987)

Nicu Borta (1):
      ip/cdio.c: only declare track_comments_found if (#1030)

Niko E (7):
      Makes save -p consistent with documentation (#859)
      Fixes various compiler warning (#862)
      Fixes ffmpeg deprecations (#861)
      Changes yes_no_query to signal error on cmus exit (#858)
      Fixes incorect bit rate declaration for 24bit flac (#867)
      Makes :quit only prompt if -i is given (#888)
      Fixes truncation warnings by replacing %s with %.s (#1040)

Patrick G (2):
      Add *.lo to clean in Makefile (#864)
      Add note about overriding keybindings using rc (closes #742) (#866)

Patrick Gaskin (15):
      Make mouse behavior on playlist window consistent with library (#1011)
      Update zsh completion (#985) (#1019)
      Add gruvbox-warm.theme (#1014)
      Add -n option to win-add-{l,p,Q,q} to prevent selecting the next item (#1017)
      Add tree width options (#1018)
      Implement mouse events for status bar (#1013)
      Fix whitespace issues (#1021)
      Implement mouse events for title bar (#1025)
      Switch to GitHub Actions (#1026)
      Documentation improvements for keybindings and some commands (#1037)
      Spelling, grammar, and other improvements (#1024)
      Add comments about fg/bg color to gruvbox-warm.theme (#1038)
      Increase help view keybinding width (#1039)
      Remove unused functions in op/sndio.c (#1041)
      Fix playlist track selection (#1044)

Shiba (1):
      Add support for elogind (#846)

Tim Gates (1):
      docs: fix simple typo, speacial -> special (#1002)

amangrewal (1):
      Ensures all data sent on dbus is in utf8 (#847) (#871)

edclements (2):
      Stop after queue (resolves #696) (#1006)
      Shuffle first track (#893) (#1008)

enigmatic-system (1):
      Adding "--server SOCKET --passwd PASSWORD" section (#958)

eshrh (1):
      Add -f, --file to cmus-remote (#984)

gavtroy (1):
      Support R128_TRACK_GAIN / R128_ALBUM_GAIN tags (#994)

jetomit (1):
      Fix a crash when moving all tracks in a view (#916)

lennonhill (1):
      ip/mp4: add metadata support for bpm/tempo (#878)

mrffr (1):
      Allow push to accept no arguments (#937)

tomty89 (4):
      Avoid -I$(pwd) (#820)
      ip/ffmpeg: enable opus support (#865)
      bits-per-sample fixes (#870)
      misc_init: remove variable user_name (#898)

(nia)