doc: Updated sysutils/backuppc to 4.4.0

(tnn)

backuppc: update to 4.4.0

This release contains several new features and some bug fixes.
New features include:
- any full/filled backup can be marked for keeping, which prevents any
  expiry or deletion
- any backup can be annotated with a comment (eg, "prior to upgrade of xyz")
- added metrics CGI that replaces RSS and adds Prometheus support
- tar XferMethod now supports xattrs and acls
- rsync XferMethod now correctly supports xattrs on directories and symlinks
- nightly pool scanning now verifies the md5 digests of a configurable
  fraction of pool files
- code runs through perltidy so format is now uniform

(tnn)

Set MYSQL_VERSION from within mysql.buildlink3.mk simialrly
to what pgsql.buildlink3.mk does for PostgreSQL.

And while here, document PGSQL_VERSION as variable set by
pgsql.buildlink3.mk

(otis)

firefox{,-l10n}

(maya)

firefox{,-l10n}: Update to 82.0

New:

With this release, Firefox introduces a number of improvements that make watching videos more delightful:

    the Picture-In-Picture button has a new look and position, making it easier for you to find and use the feature.
    Picture-In-Picture now has a keyboard shortcut for Mac users (Option + Command + Shift + Right bracket) that works before you start playing the video.
    For Windows users, Firefox now uses DirectComposition for hardware decoded video, which will improve CPU and GPU usage during video playback, improving battery life.

Firefox is faster than ever with improved performance on both page loads and start up time:

    Websites that use flexbox-based layouts load 20% faster than before;
    Restoring a session is 17% quicker, meaning you can more quickly pick up where you left off;
    For Windows users, opening new windows got quicker by 10%.

You can now explore new articles when you save a webpage to Pocket from the Firefox toolbar.

WebRender continues to roll out to more Firefox users on Windows.

Fixed:

Screen reader features which report paragraphs now correctly report paragraphs in Firefox instead of lines.

Various security fixes.

(maya)

mk/compiler/gfortran.mk: bump default from gcc9 to gcc10 on current aarch64

lang/gcc8 has patches for NetBSD/aarch64 and lang/gcc10 has support mostly
upstreamed. Nobody seems interested in fixing gcc9, but the pkgsrc
logic defaults to it when the system compiler is GCC 9 which leads to
broken fortran packages. Let's just skip forward to gcc10.

(tnn)

librespot: convert to CARGO_FEATURES

(tnn)

cargo.mk: move CARGO_FEATURES from lang/ncspot to here

It seems to be a generally useful feature. If a package supports
optional cargo dependencies then you may now (instead of messing with
CARGO_ARGS directly) set in your Makefile for example:

CARGO_NO_DEFAULT_FEATURES= YES
CARGO_FEATURES+= dbus pulseaudio

(tnn)

ncspot: use PKG_OPTIONS framework

In particular allow building w/o dbus and wide curses but also add
options for the various supported audio backends while here (untested).

Also promote libxcb to full dependency because it failed with
"ld: cannot find -lxcb" when disabling dbus.

(tnn)

gcc10: add some missing configure bits for aarch64*-*-netbsd*

(tnn)

net/syncthing: typo

(gdt)

net/syncthing: Further shrink protocol break comment

(gdt)

net/syncthing: Tone down fear of protocol breaks

While the protocol break issue used to be huge, it's been ok for a few
years and likely that upstream now feels obligated to avoid protocol
breaks.

Adjust the text to say that only updates with protocol breaks need
approval.

(gdt)

(security/py-certbot-*) regen distinfo

(mef)

emacs27: add missing file for Darwin cocoa build

Reported by Michael-John Turner on tech-pkg.

(wiz)

doc: Updated www/logswan to 2.1.8

(fcambus)

logswan: update to 2.1.8.

Logswan 2.1.8 (2020-10-19)

- Make displayUsage() static
- Removing some leading whitespace characters
- Constify methods and protocols names array
- Constify countries and continents names and ID arrays
- Enable FORTIFY_SOURCE level 2
- Call memset() to set all entry_data struct fields to zero

(fcambus)

doc: Updated converters/bdf2sfd to 1.1.5

(fcambus)

bdf2sfd: update to 1.1.5.

bdf2sfd 1.1.5 (2020-10-20)

- Enable FORTIFY_SOURCE level 2
- Check strdup() return value and error out on failed allocations

(fcambus)

clisp: Remove iconv warning avoidance.

This breaks the build on Darwin when using pkgsrc libiconv.

(jperkin)

bsnes: Check standard defines from <sys/endian.h>

Should let this build on NetBSD/aarch64.

(nia)

nhc98: Fails on aarch64 due to a lack of -m32

(nia)

libva-driver-vdpau: Skip if there's no VDPAU support

(nia)

intel-vaapi-driver: Only for x86

(nia)

g95: Not for aarch64

(nia)

go14: Not for aarch64

(nia)

mame: Install the correct executable name

(nia)

doc: Updated sysutils/onefetch to 2.5.0

(pin)

sysutils/onefetch: update to 2.5.0

v2.5.0
Summary: Lots of code refactoring and ASCII re-touching.

Bug Fixes:
-Identify author by email @yoichi
-Fix #180 @o2sh
-Fix layout with sixel image backend @yoichi

New features:
-Show number of Tags and Branches @reime005

Misc:
-Reduce size of Lua, Clojure, Jupyter-Notebooks, Tex, Zig ASCII logo @maash3r
-Reduce size of Swift, Objective-C ASCII logo @atluft
-Reduce size of Php @rootEnginear
-Reduce size of Nim @tianlangwu
-Better CI/CD @spenserblack
-New Go and Rust ASCII logo @nguyenquannnn
-Enable image backends on macOS @yoichi

(pin)

Add NetBSD/aarch64eb support.

Patch provided by ryo@.
No objections when proposed on tech-pkg@.

(rin)

Updated lang/nodejs, databases/prometheus

(adam)

prometheus: updated to 2.22.0

2.22.0

As announced in the 2.21.0 release notes, the experimental gRPC API v2 has been
removed.

[CHANGE] web: Remove APIv2.
[ENHANCEMENT] React UI: Implement missing TSDB head stats section.
[ENHANCEMENT] UI: Add Collapse all button to targets page.
[ENHANCEMENT] UI: Clarify alert state toggle via checkbox icon.
[ENHANCEMENT] Add rule_group_last_evaluation_samples and prometheus_tsdb_data_replay_duration_seconds metrics.
[ENHANCEMENT] Gracefully handle unknown WAL record types.
[ENHANCEMENT] Issue a warning for 64 bit systems running 32 bit binaries.
[BUGFIX] Adjust scrape timestamps to align them to the intended schedule, effectively reducing block size. Workaround for a regression in go1.14+.
[BUGFIX] promtool: Ensure alert rules are marked as restored in unit tests.
[BUGFIX] Eureka: Fix service discovery when compiled in 32-bit.
[BUGFIX] Don't do literal regex matching optimisation when case insensitive.
[BUGFIX] Fix classic UI sometimes running queries for instant query when in range query mode.

(adam)

nodejs: updated to 14.14.0

Version 14.14.0 (Current)

Notable Changes

- crypto: update certdata to NSS 3.56
- doc: add aduh95 to collaborators
- (SEMVER-MINOR) fs: add rm method
- (SEMVER-MINOR) http: allow passing array of key/val into writeHead
- (SEMVER-MINOR) src: expose v8::Isolate setup callbacks

(adam)

exiv2: extend list of platforms where GCC does not support -fcf-protection

(tnn)

libunwind: Remove patch .orig file, fix install.

(jperkin)

syncthing: Remove go1.14 requirement

(nia)

p5-DateTime-TimeZone: fix dependency

devel/p5-namespace-autoclean is a runtime dependency, not a tool or
test dependency. Ride previous update; this would have already been
broken before my commit.

(gutteridge)

doc: Updated time/p5-DateTime-TimeZone to 2.42

(gutteridge)

p5-DateTime-TimeZone: update to 2.42

pkgsrc-specific change: while here, express test dependencies as such.

2.42    2020-10-16

- This release is based on version 2020c of the Olson database. This release
  includes contemporary changes for Fiji.

2.41    2020-10-07

- The last release was missing all the generated data files. Oops! Reported by
  Paul Howarth. GH #43.

- Added a custom dzil plugin to make sure that the release has all of the
  generated data files.

2.40    2020-10-07

- This release is based on version 2020b of the Olson database. This release
  includes contemporary changes for Morocco, Casey Station, and the
  Yukon. This release also removes the very long-deprecated "US/Pacific-New"
  zone name.

(gutteridge)

doc: Updated textproc/xfce4-dict to 0.8.4

(gutteridge)

xfce4-dict: update to 0.8.4

Change log:

0.8.4
======
- Update URLs and use https where possible
- Fix font size in speedreader (#3)
- Added new icons and use reverse DNS file names
- Translation Updates:
  Albanian, Arabic, Armenian (Armenia), Basque, Belarusian, Bulgarian,
  Catalan, Chinese (China), Chinese (Taiwan), Croatian, Czech, Danish,
  Dutch, Eastern Armenian, English (Australia), English (United Kingdom),
  Estonian, Finnish, French, German, Greek, Hebrew, Hungarian, Icelandic,
  Indonesian, Italian, Japanese, Kazakh, Korean, Latvian, Lithuanian,
  Malay, Norwegian Bokm奪l, Occitan (post 1500), Polish, Portuguese,
  Russian, Serbian, Slovak, Slovenian, Spanish, Swedish, Thai, Turkish,
  Uighur, Ukrainian, Urdu, Urdu (Pakistan), Vietnamese

(gutteridge)

doc: Updated net/unison-snapshot to 2.51.3rc3

(gdt)

unison-snapshot: update to rc3

This is only a change in version, to the rc3 tag, rather than the sha1
of the commit that was later tagged.

(gdt)

powerdns-recursor: Remove patches not needed in 4.4.0

(otis)

Updated devel/py-argcomplete, textproc/py-lxml, www/py-urllib3, www/py-uvicorn

(adam)

py-uvicorn: updated to 0.12.2

0.12.2

Added

Adding ability to decrypt ssl key file
Support .yml log config files
Added python 3.9 support

Fixed

Fixes watchgod with common prefixes
Fix reload with ipv6 host
Added cli suport for headers containing colon
Sharing socket across workers on windows
Note the need to configure trusted "ips" when using unix sockets

(adam)

py-urllib3: updated to 1.25.11

1.25.11

* Fix retry backoff time parsed from ``Retry-After`` header when given
  in the HTTP date format. The HTTP date was parsed as the local timezone
  rather than accounting for the timezone in the HTTP date (typically
  UTC)

* Fix issue where an error would be raised when the ``SSLKEYLOGFILE``
  environment variable was set to the empty string. Now ``SSLContext.keylog_file``
  is not set in this situation

(adam)

doc: Updated audio/amsynth to 1.11.0

(nia)

amsynth: Update to 1.11.0

- Added mouse wheel support for controls
- Implemented UI upscaling for background and controls on HiDPI displays
- Fixed a regression in 1.10.0 that changed the sound of patches using ring modulation
- Fixed LV2 lint error caused by missing minorVersion and microVersion
- Removed dependency on oscpack for Non Session Manager support

(nia)

doc: Updated net/syncthing to 1.10.0

(nia)

syncthing: Update to 1.10.0

This release adds the config option announceLANAddresses to enable
(the default) or disable announcing private (RFC1918) LAN IP addresses
to global discovery.

It also fixes various bugs, and we can delete a patch that's no longer
needed.

(nia)

doc: Updated devel/libgit2 to 1.1.0

(nia)

libgit2: Update to 1.1.0

v1.1
----

This is release v1.1, "Fernweh".

### Changes or improvements

* Our bundled PCRE dependency has been updated to 8.44.

* The `refs/remotes/origin/HEAD` file will be created at clone time to
  point to the origin's default branch.

* libgit2 now uses the `__atomic_` intrinsics instead of `__sync_`
  intrinsics on supported gcc and clang versions.

* The `init.defaultBranch` setting is now respected and `master` is
  no longer the hardcoded as the default branch name.

* Patch files that do not contain an `index` line can now be parsed.

* Configuration files with multi-line values can now contain quotes
  split across multiple lines.

* Windows clients now attempt to use TLS1.3 when available.

* Servers that request an upgrade to a newer HTTP version are
  silently ignored instead of erroneously failing.

* Users can pass `NULL` to the options argument to
  `git_describe_commit`.

* Clones and fetches of very large packfiles now succeeds on 32-bit
  platforms.

* Custom reference database backends can now handle the repository's
  `HEAD` correctly.

* Repositories with a large number of packfiles no longer exhaust the
  number of file descriptors.

* The test framework now supports TAP output when the `-t` flag is
  specified.

* The test framework can now specify an exact match to a test
  function using a trailing `$`.

* All checkout types support `GIT_CHECKOUT_DISABLE_PATHSPEC_MATCH`.

* `git_blame` now can ignore whitespace changes using the option
  `GIT_BLAME_IGNORE_WHITESPACE`.

* Several new examples have been created, including an examples for
  commit, add and push.

* Mode changes during rename are now supported in patch application.

* `git_checkout_head` now correctly removes untracked files in a
  subdirectory when the `FORCE | REMOVE_UNTRACKED` options are specified.

(nia)

doc: Updated lang/elixir to 1.11.1

(nia)

elixir: Update to 1.11.1

"Over the last releases, the Elixir team has been focusing on the compiler, both in terms of catching more mistakes at compilation time and making it faster. Elixir v1.11 has made excellent progress on both fronts. This release also includes many other goodies, such as tighter Erlang integration, support for more guard expressions, built-in datetime formatting, and other calendar enhancements."

(nia)

doc: Updated sysutils/cfm to 0.6.6

(nia)

cfm: Update to 0.6.6

Fixed file copying, added permanent deletion feature

(nia)

doc: Updated security/py-libtaxii to 1.1.118

(khorben)

py-libtaxii: update to version 1.1.118

This notably fixes a security issue, CVE-2020-27197.

Version 1.1.118:

* #247 [CVE-2020-27197] Avoid SSRF on parsing XML (@orsinium)

Version 1.1.117:

* #244 SSL Verify Server not working correctly (@motok) (@nschwane)
* #245 Unicode lxml.etree.SerialisationError on lxml 4.5.0+ (@advptr)

Version 1.1.116:

* #240 PY3 Compatibility changes for HTTP Response Body (@nschwane)

Version 1.1.115:

* #239 Convert the HTTP response body to a string type (PY3 this will be bytes) (@sddj)

Version 1.1.114:

* #237 Support converting dicts to content bindings (@danielsamuels)
* #238 Provide XMLParser copies instead of reusing the cached instance. Prevents future messages to lose namespace

Version 1.1.113:

* #234 Add ability to load a configuration file when executing a script
* #232 Fix TLS handshake failure when a server requires SNI (@marcelslotema)

Version 1.1.112:

* #227 Fixes to poll_client script (Python3 compatibility)
* #226 Clean-up documentation warnings
* #228 Fix 'HTTPMessage' has no attribute 'getheader' (Python3 compatibility)
* #225 Fix checks that involve xpath (lxml) to prevent FutureWarning message
* #230 Fix parsing status message round-trip (@danielsamuels)

Thanks leot@ and pkgsrc's security team for the heads up!
Pull-up to be requested.

(khorben)

doc: Updated games/devilutionx to 1.1.0

(nia)

devilutionx: Update to 1.1.0

Features

    Propper widescreen (and other aspects) support
    Select difficulty in single player (remembered in the save game)
    Adjustable game speed in-game
    V-sync can now be disabled in the ini
    Better line drawing function used for the automap
    Support for loading custom Hell level maps
    Make all objects and monsters available to custom maps
    Added support for joining a game via hostname instead of IP

Bugfixes

    You can now enter and exit fullscreen also when the game is paused
    [Amiga] Fix double-clicking in menu

Original Diablo bugs

    Fix some monsters AC and to-hit values on Nightmare/Hell ending up as 0
    Fix player base block resetting to 0 after loading a save game
    Correctly render trees in front of the player
    Fully render sprites that are larger than the floor tiles
    Fix objects disappearing when walking on the opposite wall
    Dupping via belt has been fixed
    Correctly detect if the mouse is clicking the world or UI in some areas
    Minor typography corrections
    Corrected name of Chamber of Bones in automap
    Correctly align the inventory slots

(nia)

doc: Fix typo

(micha)

doc: Updated games/woof to 2.3.1

(micha)

games/woof: Update to 2.3.2

- Demos recorded in PrBoom's own demo format are now detected and ignored.
- A crash when the second finale text screen is shown has been fixed.

(micha)

doc: Updated net/statzone to 1.0.4

(fcambus)

statzone: update to 1.0.4.

StatZone 1.0.4 (2020-10-19)

- Add support for seccomp on arm
- Update error message to use seccomp architecture names
- Improve experimental seccomp support mention in the README
- Make displayUsage() and displaySummary() static
- Set CMAKE_BUILD_TYPE to "Release" in CMakeLists.txt
- Enable FORTIFY_SOURCE level 2

(fcambus)

doc/TODO: update a few versions

+ SOGo-5.0.1, SOPE-5.0.1, freetds-1.2.5.

(taca)

doc: Updated databases/ruby-tiny_tds to 2.1.3

(taca)

databases/ruby-tiny_tds: update to 2.1.3

2.1.3 (2020-09-28)

* Removed old/unused appveyor config
* Remove old Rubies from CI & cross compile list
* Add Ruby 2.6 and 2.7 to the cross compile list

(taca)

doc: Updated databases/ruby-sequel to 5.37.0

(taca)

databases/ruby-sequel: update to 5.37.0

=== 5.37.0 (2020-10-01)

* Recognize more unsigned decimal/float types in the schema dumper (akimd, jeremyevans) (#1720)

* Add Postgres::PGRow::{Array,Hash}Row#op to the pg_row_ops extension if the pg_row extension is loaded (jeremyevans)

* Add Model#column_previously_was and #column_previously_changed? to the dirty plugin (jeremyevans)

* Raise Migrator::Error if attempting to migrate down to a version where there are necessary migration files missing (jeremyevans) (#1716)

(taca)

doc: Updated www/ruby-rack-cache to 1.12.1

(taca)

www/ruby-rack-cache: update to 1.12.1

1.12.1 (2020-10-16)

Reset @cache_control in Response when duplicating its instance.

(taca)

doc: Updated time/ruby-tzinfo-data to 1.2020.3

(taca)

time/ruby-tzinfo-data: update to 1.2020.3

1.2020.2 (2020-10-07)

Based on version 2020b of the IANA Time Zone Database
(https://mm.icann.org/pipermail/tz-announce/2020-October/000059.html).

1.2020.3 (2020-10-17)

Based on version 2020c of the IANA Time Zone Database
(https://mm.icann.org/pipermail/tz-announce/2020-October/000060.html).

(taca)

doc: note update of Ruby on Rails 6.0 packages to 6.0.3.4

devel/ruby-activesupport60
devel/ruby-activemodel60
devel/ruby-activejob60
www/ruby-actionview60
www/ruby-actionpack60
databases/ruby-activerecord60
mail/ruby-actionmailer60
mail/ruby-actionmailbox60
www/ruby-actioncable60
devel/ruby-railties60
devel/ruby-activestorage60
textproc/ruby-actiontext60
www/ruby-rails60

(taca)

www/ruby-rails60: update to 6.0.3.4

Update Ruby on Rails 6.0 related packages to 6.0.3.4.
This is security fix for ruby-actionpack60.

## Rails 6.0.3.4 (October 07, 2020) ##

*  [CVE-2020-8264] Prevent XSS in Actionable Exceptions

(taca)

(editors/emacs26) Add imagemagick for default configuration

(mef)

doc: Updated net/powerdns-recursor to 4.4.0

(otis)

net/powerdns-recursor: Update to 4.4.0

Changelog for 4.4.0:
Released: 19th of October 2020
Bug Fixes
  - Backport of CVE-2020-25829: Cache pollution.

Changelog for 4.4.0-rc2:
Released: 6th of October 2020
Improvements:
  - Don窶冲 parse any config with 窶砺ersion.
  - Expose typed cache flush via Web API.
  - Log when going Bogus because of a missing SOA in authority.
  - Raise an exception on invalid content in unknown record.
Bug Fixes:
  - When deciding if we are auth in the local auth or forwarding case, DS is
special.
  - Fix wipe-cache-typed.
  - Watch the descriptor again after an out-of-order read timeout.

Changelog for 4.4.0-rc1:
Released: 21st of September 2020
Bug Fixes:
  - Only do QName Minimization for the names inside a forwarded domain.
  - Fix the parsing of dont-throttle-netmasks in the presence of
dont-throttle-names.

Changelog for 4.4.0-beta1:
Released: 31st of August 2020
Improvements:
  - Store RPZ trigger and hit in appliedPolicy and protobuf message and log
them in the trace log.
  - Apply filtering policies (RPZ) on CNAME chains as well.
  - Fix warning: initialized lambda captures are a C++14 extension.
  - Clean some coverity reported cases of exceptions thrown but not caught.
  - Export record cache lock (contention) stats via the various channels.
  - Allow multiple local data records when doing RPZ IP matching.
  - Replace the use of 窶�1窶� by QClass::IN to improve readability.
  - Avoid name clashes on Solaris derived systems.
Bug Fixes:
  - Allow some more depth headroom for the no-qname-minimization fallback case.
  - If we have an NS in cache, use it in the forwarder case.
  - Disable outgoing v4 when query-local-address has no v4 addresses.
  - Resize hostname to final size in getCarbonHostname() (Aki Tuomi).

Changelog for 4.4.0-alpha2:
Released: 20th of July 2020
Improvements:
  - Check that DNSKEYs have the zone flag set.
  - Remove redundant toLogString() calls (Chris Hofstaedtler).
  - Stop cluttering the global namespace with validation states.
  - Use explicit flag for the specific version of c++ we窶决e targeting.
  - Use new operator to print states.
  - Refuse QType 0 right away, based on rfc6895 section 3.1.
  - Specify a storage type for validation states.
  - Common TCP write problems should only be logged if wanted.
  - Dump the authority records of a negative cache entry as well.
  - Alternative way to do 窶徭kip cname check窶� for DS and DNSKEY records
  - Control stack depth when priming.
  - Add version 窶�statistic窶� to prometheus.
  - Cleanup cache cleaner pruneCollection function.
  - RPZ policy should override gettag_ffi answer by default.
  - Don窶冲 copy the records when scanning for CNAME loops.
  - Do not use using namespace std; .
  - More sophisticated CNAME loop detection.
  - Use std::string_view when available (Rosen Penev).
  - Make sure we can install unsigned packages.
  - Clarify docs (Josh Soref).
  - Ensure runtime dirs for virtual services differ.
  - Builder: improve shipped config files (Chris Hofstaedtler).
  - Less negatives in error messages improves readability.
  - Boost 1.73 moved boost::bind placeholders to the placeholders namespace.
  - Fix useless copies in loop reported by clang++ 10.
  - NetmaskTree: do not test node for null, the loop guarantees node is not
null.
  - Wrap pthread objects
  - Get rid of a naked pointer in the /dev/poll event multiplexer.
  - Random engine.
Bug Fixes:
  - Update proxy-protocol.cc (ihsinme).
  - Kill an signed vs unsigned warning on OpenBSD.
  - Don窶冲 validate a NXD with a NSEC proving that the name is an ENT.
  - Fix three shared cache issues.
  - Limit the TTL of RRSIG records as well.
  - Avoid throwing an exception in Logger::log().

Changelog for 4.4.0-alpha1:
Released: 22th of April 2020
New Features:
  - Implement native DNS64 support, without Lua.
  - Add custom tags to RPZ hits.
  - Allow attaching a 窶腕outing窶� tag string to a query in lua code and use that
tag in the record cache when appropriate.
  - Share record cache between threads.
  - Add support for Proxy Protocol between dnsdist and the recursor.
Improvements:
  - Fix warnings with llvm10 and -Wrange-loop-construct (Kirill Ponomarev).
  - Fix compilation without deprecated OpenSSL APIs (Rosen Penev).
  - Detect {Libre,Open}SSL functions availability during configure.
  - Better handling of reconnections in Remote Logger.
  - Add 窶碗ueue full窶� metrics for our remote logger, log at debug only.
  - Update boost.m4
  - Keep a masked network in the Netmask class.
  - Replace include guard ifdef/define with pragma once (Chris Hofstaedtler).
  - YaHTTP: Support bracketed IPv6 addresses
  - Rework NetmaskTree for better CPU and memory efficiency (Stephan Bosch).
  - RPZ dumpFile/seedFile: store/get SOA refresh on dump/load.
  - Add 窶露O wait窶� and 窶�steal窶� metrics on Linux.
  - DNSName: Don窶冲 call strlen() when the length is already known.
  - Fix build with gcc-10 (Sander Hoentjen).
Bug Fixes
  - Fix compilation of the ports event multiplexer.
  - Init zone窶冱 d_priority field.
  - QName Minimization sometimes uses 1 label too many.

(otis)

py-argcomplete: updated to 1.12.1

Changes for v1.12.1
- Update importlib-metadata dependency version range
- Bash nounset mode fixes

(adam)

doc: Updated security/monocypher to 3.1.1

(mef)

py-lxml: updated to 4.6.1

4.6.1 (2020-10-18)

Bugs fixed

A vulnerability was discovered in the HTML Cleaner by Yaniv Nizry, which allowed JavaScript to pass through. The cleaner now removes more sneaky "style" content.

4.6.0 (2020-10-17)

Features added

lxml.html.InputGetter supports __len__() to count the number of input fields. Patch by Aidan Woolley.
lxml.html.InputGetter has a new .items() method to ease processing all input fields.
lxml.html.InputGetter.keys() now returns the field names in document order.
The API documentation is now generated using sphinx-apidoc. Patch by Chris Mayo.

Bugs fixed

C14N 2.0 serialisation failed for unprefixed attributes when a default namespace was defined.
TreeBuilder.close() raised AssertionError in some error cases where it should have raised XMLSyntaxError. It now raises a combined exception to keep up backwards compatibility, while switching to XMLSyntaxError as an interface.

(adam)

(security/monocypher) Updated 2.0.5 to 3.1.1

3.1.1
-----
2020/06/15

- Various documentation fixes.
- Fixed various compiler warnings.
- Fixed some integer overflows (16-bit platforms only).

3.1.0
-----
2020/04/03

- Added Elligator 2 mappings (hash to curve, curve to hash).
- Added OPRF support (with scalar inversion).
- Added Edwards25519 -> Curve25519 conversions

3.0.0
-----
2020/01/19

- Deprecated the incremental AEAD interface.
- Deprecated the incremental Chacha20, added a direct interface.
- Added IETF Chacha20 (96-bit nonce), as described in RFC 8439.
- Moved deprecated interfaces to a separate `src/deprecated` folder.
- Removed the `ED25519_SHA512` preprocessor flag.
- `crypto_x25519()` and `crypto_key_exchange()` now return `void`.
- Added a custom hash interface to EdDSA.  Several instances of EdDSA
  can share the same binary.
- Added optional support for HMAC SHA-512
- Moved all SHA-512 operations to `src/optional/monocypher-ed25519.(h|c)`
- Optional support for Ed25519 no longer requires a preprocessor flag.
  Add `src/optional/monocypher-ed25519.(h|c)` to your project instead.

2.0.6
-----
2019/10/21

- Added the `BLAKE2_NO_UNROLLING` preprocessor definition. Activating it
  makes the binary about 5KB smaller, and speeds up processing times on
  many embedded processors.
  - Reduced the stack usage of signature verification by about
    40%. Signature verification now fits in smaller machines.
  - Fixed many implicit casts warnings.
  - Fixed the manual here and there.
  - Lots of small nitpicks.

(mef)

doc: Updated mail/mblaze to 1.0

(schmonz)

Update to 1.0, provided by maintainer in PR pkg/55732. From the changelog:

## 1.0 (2020-09-12)

* Caution! Backwards incompatible changes:
  * As a message name, `-` now refers to the message on the standard input,
    and not the the previous message anymore.  Use `.-` to refer to
    the previous message in a short way.
    The tools will print a warning if you use `-` and the standard input
    comes from a TTY.
  * mpick: use the -F flag to read script files.
  * mpick: remove msglist support, use plain mmsg(7) arguments.
* Many mblaze tools now make use of pledge(2) on OpenBSD.
* add contrib/mcount, a tool to count mails
* mrep: use Reply-From configuration to find From header
* Many bug fixes.

## 0.7 (2020-05-15)

* All tools now follow symlinks to mails.
* mdirs: add -a to list all subfolders, ignoring Maildir++ convention.
* mcom: add preview alias for show command.
* mrep/mbnc: allow only one message as argument.
* maddr: add -d to only print display name.
* mthread: add -r to reverse top-level order.
* mlist: print number of matches when message selection is in place.
* mpick: many improvements.
* Many bug fixes.

(schmonz)

doc: Updated net/tinydyndns-run to 20201019

(schmonz)

Let tinydynpop3d start on NetBSD/amd64 9.0 (by bumping datalimit) and
write updates to data.cdb (by adjusting PKG_SYSCONFDIR_PERMS). Add RCS
Ids and comments to scripts. Bump version.

(schmonz)

Belatedly add default TINYDYN_USER.

(schmonz)

Updated security/py-acme, security/py-certbot*

(adam)

py-acme py-certbot: updated to 1.9.0

Certbot 1.9.0

Added

--preconfigured-renewal flag, for packager use only.
See the packaging guide.

Changed

certbot-auto was deprecated on all systems except for those based on Debian or RHEL.
Update the packaging instructions to promote usage of python -m pytest to test Certbot
instead of the deprecated python setup.py test setuptools approach.
Reduced CLI logging when reloading nginx, if it is not running.
Reduced CLI logging when handling some kinds of errors.

Fixed

Fixed server_name case-sensitivity in the nginx plugin.
The minimum version of the acme library required by Certbot was corrected.
In the previous release, Certbot said it required acme>=1.6.0 when it
actually required acme>=1.8.0 to properly support removing contact
information from an ACME account.
Upgraded the version of httplib2 used in our snaps and Docker images to add
support for proxy environment variables and fix the plugin for Google Cloud
DNS.

(adam)

Updated devel/py-ZopeInterface, devel/py-ZopeEvent

(adam)

py-ZopeEvent: updated to 4.5.0

4.5.0
- Add support for Python 3.8 and 3.9.
- Remove support for Python 3.4.

(adam)

py-ZopeInterface: updated to 5.1.2

5.1.2 (2020-10-01)
==================

- Make sure to call each invariant only once when validating invariants.
  Previously, invariants could be called multiple times because when an
  invariant is defined in an interface, it's found by in all interfaces
  inheriting from that interface.  See `pull request 215
  <https://github.com/zopefoundation/zope.interface/pull/215/>`_.

5.1.1 (2020-09-30)
==================

- Fix the method definitions of ``IAdapterRegistry.subscribe``,
  ``subscriptions`` and ``subscribers``. Previously, they all were
  defined to accept a ``name`` keyword argument, but subscribers have
  no names and the implementation of that interface did not accept
  that argument. See `issue 208
  <https://github.com/zopefoundation/zope.interface/issues/208>`_.

- Fix a potential reference leak in the C optimizations. Previously,
  applications that dynamically created unique ``Specification``
  objects (e.g., used ``@implementer`` on dynamic classes) could
  notice a growth of small objects over time leading to increased
  garbage collection times. See `issue 216
  <https://github.com/zopefoundation/zope.interface/issues/216>`_.

  .. caution::

    This leak could prevent interfaces used as the bases of
    other interfaces from being garbage collected. Those interfaces
    will now be collected.

    One way in which this would manifest was that ``weakref.ref``
    objects (and things built upon them, like
    ``Weak[Key|Value]Dictionary``) would continue to have access to
    the original object even if there were no other visible
    references to Python and the original object *should* have been
    collected. This could be especially problematic for the
    ``WeakKeyDictionary`` when combined with dynamic or local
    (created in the scope of a function) interfaces, since interfaces
    are hashed based just on their name and module name. See the
    linked issue for an example of a resulting ``KeyError``.

    Note that such potential errors are not new, they are just once
    again a possibility.

(adam)

Make this build on NetBSD/macppc 9.0, where gcc doesn't predefine
__ppc__, only __powerpc__, so compensate.
PKGREVISION bumped.

(he)

llvm: bump requirement to LLVM 10.x.

Mixing llvm versions is probably inadvisable.

(maya)

doc: Updated www/curl to 7.73.0

(wiz)

curl: update to 7.73.0.

curl and libcurl 7.73.0

Public curl releases:        195
Command line options:        234
curl_easy_setopt() options:  278
Public functions in libcurl:  85
Contributors:                2270

This release includes the following changes:

o curl: add --output-dir [25]
o curl: support XDG_CONFIG_HOME to find .curlrc [3]
o curl: update --help with categories [77]
o curl_easy_option_*: new API for meta-data about easy options [40]
o CURLE_PROXY: new error code [7]
o mqtt: enable by default [28]
o sftp: add new quote commands 'atime' and 'mtime' [6]
o ssh: add the option CURLKHSTAT_FINE_REPLACE [27]
o tls: add CURLOPT_SSL_EC_CURVES and --curves [29]

This release includes the following bugfixes:

o altsvc: clone setting in curl_easy_duphandle [60]
o base64: also build for smtp, pop3 and imap [81]
o BUGS: convert document to markdown [107]
o build-wolfssl: fix build with Visual Studio 2019 [114]
o buildconf: invoke 'autoreconf -fi' instead [37]
o checksrc: detect // comments on column 0 [132]
o checksrc: verify do-while and spaces between the braces [2]
o checksrc: warn on space after exclamation mark [129]
o CI/azure: disable test 571 in the msys2 builds [93]
o CI/azure: MQTT is now enabled by default [64]
o CI/azure: no longer ignore results of test 1013 [43]
o CI/tests: fix invocation of tests for CMake builds [117]
o CI/travis: add a CI job with openssl3 (from git master) [51]
o cleanups: avoid curl_ on local variables [53]
o CMake: add option to enable Unicode on Windows [48]
o cmake: make HTTP_ONLY also disable MQTT [58]
o CMake: remove explicit `CMAKE_ANSI_CFLAGS` [45]
o cmake: remove scary warning [96]
o cmdline-opts/gen.pl: generate nicer "See Also" in curl.1 [66]
o configure: don't say HTTPS-proxy is enabled when disabled [120]
o configure: fix pkg-config detecting wolfssl [26]
o configure: let --enable-debug set -Wenum-conversion with gcc >= 10 [56]
o conn: check for connection being dead before reuse [39]
o connect.c: remove superfluous 'else' in Curl_getconnectinfo [42]
o curl.1: add see also no-progress-meter on two spots [67]
o curl.1: fix typo invokved -> invoked [36]
o curl: in retry output don't call all problems "transient" [74]
o curl: make --libcurl show binary posts correctly [130]
o curl: make checkpasswd use dynbuf [100]
o curl: make file2memory use dynbuf [102]
o curl: make file2string use dynbuf [103]
o curl: make glob_match_url use dynbuf [101]
o curl: make sure setopt CURLOPT_IPRESOLVE passes on a long [134]
o curl: retry delays in parallel mode no longer sleeps blocking [70]
o curl: use curlx_dynbuf for realloc when loading config files [73]
o curl:parallel_transfers: make sure retry readds the transfer [71]
o curl_get_line: build only if cookies or alt-svc are enabled [13]
o curl_mime_headers.3: fix the example's use of curl_slist_append [83]
o Curl_pgrsTime - return new time to avoid timeout integer overflow [32]
o Curl_send: return error when pre_receive_plain can't malloc [111]
o dist: add missing CMake Find modules to the distribution [14]
o docs/LICENSE-MIXING: remove [79]
o docs/opts: fix typos in two manual pages [119]
o docs/RESOURCES: remove [105]
o docs/TheArtOfHttpScripting: convert to markdown [106]
o docs: add description about CI platforms to CONTRIBUTE.md [44]
o docs: correct non-existing macros in man pages [35]
o doh: add error message for DOH_DNS_NAME_TOO_LONG [17]
o dynbuf: make sure Curl_dyn_tail() zero terminates [78]
o easy_reset: clear retry counter [82]
o easygetopt: pass a valid enum to avoid compiler warning [75]
o etag: save and use the full received contents [4]
o ftp: a 550 response to SIZE returns CURLE_REMOTE_FILE_NOT_FOUND [99]
o ftp: avoid risk of reading uninitialized integers [76]
o ftp: get rid of the PPSENDF macro [85]
o ftp: make a 552 response return CURLE_REMOTE_DISK_FULL [87]
o ftp: separate FTPS from FTP over "HTTPS proxy" [112]
o git: ignore libtests in 3XXX area [16]
o github: use new issue template feature [88]
o HISTORY: mention alt-svc added in 2019
o HTTP/3: update to OpenSSL_1_1_1g-quic-draft-29 [41]
o http: consolidate nghttp2_session_mem_recv() call paths [80]
o http_proxy: do not count proxy headers in the header bytecount [90]
o http_proxy: do not crash with HTTPS_PROXY and NO_PROXY set [50]
o imap: make imap_send use dynbuf for the send buffer management [110]
o imap: set cselect_bits to CURL_CSELECT_IN initially [104]
o ldap: reduce the amount of #ifdefs needed [124]
o lib/Makefile.am: bump VERSIONINFO due to new functions [65]
o lib1560: verify "redirect" to double-slash leading URL [20]
o lib583: fix enum mixup
o lib: fix -Wassign-enum warnings [84]
o lib: make Curl_gethostname accept a const pointer [38]
o libssh2: handle the SSH protocols done over HTTPS proxy [125]
o libssh2: pass on the error from ssh_force_knownhost_key_type [47]
o Makefile.m32: add ability to override zstd libs [ci skip] [10]
o man pages: switch to https://example.com URLs [86]
o MANUAL: update examples to resolve without redirects [122]
o mbedtls: add missing header when defining MBEDTLS_DEBUG [133]
o memdebug: remove 9 year old unused debug function [126]
o multi: expand pre-check for socket readiness [21]
o multi: handle connection state winsock events [31]
o multi: implement wait using winsock events [22]
o ngtcp2: adapt to new NGTCP2_PROTO_VER_MAX define [108]
o ngtcp2: adapt to the new pkt_info arguments [18]
o ntlm: fix condition for curl_ntlm_core usage [46]
o openssl: avoid error conditions when importing native CA [52]
o openssl: consider ALERT_CERTIFICATE_EXPIRED a failed verification [57]
o openssl: Fix wincrypt symbols conflict with BoringSSL [9]
o parsedate: tune the date to epoch conversion [95]
o pause: only trigger a reread if the unpause sticks [92]
o pingpong: use a dynbuf for the *_pp_sendf() function [113]
o READMEs: convert several to markdown [115]
o runtests: add %repeat[]% for test files [116]
o runtests: allow creating files without newlines [72]
o runtests: allow generating a binary sequence from hex
o runtests: clear pid variables when failing to start a server [12]
o runtests: make cleardir() erase dot files too [8]
o runtests: provide curl's version string as %VERSION for tests [127]
o schannel: fix memory leak when using get_cert_location [15]
o schannel: return CURLE_PEER_FAILED_VERIFICATION for untrusted root [128]
o scripts: improve the "get latest curl release tag" logic
o sectransp: make it build with --disable-proxy [123]
o select.h: make socket validation macros test for INVALID_SOCKET [24]
o select: align poll emulation to return all relevant events [63]
o select: fix poll-based check not detecting connect failure
o select: reduce duplication of Curl_poll in Curl_socket_check [23]
o select: simplify return code handling for poll and select [49]
o setopt: if the buffer exists, refuse the new BUFFERSIZE [5]
o setopt: return CURLE_BAD_FUNCTION_ARGUMENT on bad argument [91]
o socketpair: allow CURL_DISABLE_SOCKETPAIR [11]
o sockfilt: handle FD_CLOSE winsock event on write socket [30]
o src: spell whitespace without whitespace [121]
o SSLCERTS: fix English syntax [34]
o strerror: honor Unicode API choice on Windows [109]
o symbian: drop support [118]
o telnet.c: depend on static requirement of WinSock version 2 [61]
o test1541: remove since it is a known bug [68]
o test163[12]: require http to be built-in to run [94]
o test434: test -K use in a single line without newline [59]
o test971: show test mismatches "inline"
o tests/data: Fix some mismatched XML tags in test cases
o tests/FILEFORMAT: document nonewline support for <file>
o tests/FILEFORMAT: document type=shell for <command>
o tests/server/util.c: fix support for Windows Unicode builds [131]
o tests: remove pipelining tests [69]
o tls: fix SRP detection by using the proper #ifdefs [33]
o tls: provide the CApath verbose log on its own line [1]
o tool_setopt: escape binary data to hex, not octal
o tool_writeout: add new writeout variable, %{num_headers} [97]
o travis: add a build using libressl (from git master) [55]
o url: use blank credentials when using proxy w/o username and password [54]
o urlapi: use more Curl_safefree [89]
o vtls: deduplicate client certificates in ssl_config_data [98]
o win32: drop support for WinSock version 1, require version 2 [62]
o winbuild: convert the instruction text to README.md [19]

(wiz)

doc: Updated audio/musicpd to 0.22.1

(wiz)

musicpd: update to 0.22.1.

ver 0.22.1 (2020/10/17)
* decoder
  - opus: apply the OpusHead output gain even if there is no EBU R128 tag
  - opus: fix track/album ReplayGain fallback
* output
  - alsa: don't deadlock when the ALSA driver is buggy
  - jack, pulse: reduce the delay when stopping or pausing playback
* playlist
  - cue: fix two crash bugs
* state_file: fix the state_file_interval setting

(wiz)

doc: Updated textproc/enchant2 to 2.2.12

(wiz)