doc: Added textproc/lua-rapidjson version 0.6.1

(nia)

textproc: Add lua-rapidjson

A JSON module for Lua, based on the very fast RapidJSON C++ library.

(nia)

lua-tz: Support for testing

(nia)

lua-date: Support for testing

(nia)

lua-lustache: Support for testing

(nia)

lua-fifo: Support for testing

(nia)

lua-binaryheap: Support for testing

(nia)

lua-basexx: Support for testing

(nia)

doc: Added devel/lua-busted version 2.0.0

(nia)

devel: Add lua-busted, based on work by Jonathan Buschmann in wip

busted is a Lua unit testing framework with a focus on being easy to use.

Ships with a large amount of useful asserts, plus the ability to write your
own. Output in pretty or plain terminal format, JSON, or TAP for CI integration.

(nia)

doc: Updated net/gh to 0.10.1

(leot)

gh: Update to 0.10.1

Changes
0.10.1
======
gh api --paginate
-----------------
The api command now offers functionality to recursively fetch next
pages of results until all results have been fetched.

Fixes
-----
- Fix pr create not respecting template when editor was skipped #1243
- Fix pr checkout OWNER:BRANCH invocation setting up upstream configuration in
  case maintainers are allowed to modify the pull request branch #1252
- Fix pr status not working in detached HEAD state #1155
- Do not output ANSI colour escape sequences from issue/pr/repo view if standard
  output is redirected elsewhere #1187
- Improve error reporting and exit status for mistyped command names #1221
- Improve error reporting when someone might have forgotten to quote values with
  spaces #1147

Tweaks
------
- Documentation improvements #1179 #1204
- Added description text to Debian/RPM packages #1211

(leot)

doc: Added textproc/lua-dkjson version 2.5

(nia)

textproc: Add lua-dkjson

This is a JSON module written in Lua. It supports UTF-8.

dkjson is written in Lua without any dependencies, but when LPeg
is available dkjson uses it to speed up decoding.

(nia)

doc: Added devel/lua-say version 1.3

(nia)

devel: Add lua-say, based on work by Jonathan Buschmann in wip

say is a simple string key/value store for internationalization or any other
case where you want namespaced strings.

(nia)

doc: Added devel/lua-cliargs version 3.0.2

(nia)

devel: Add lua-cliargs, based on work by Jonathan Buschmann in wip

cliargs is a command-line argument parser for Lua.
It supports several types of arguments.

(nia)

doc: Added devel/lua-luassert version 1.7.11

(nia)

devel: Add lua-luassert

luassert extends Lua's built-in assertions to provide additional tests
and the ability to create your own.

(nia)

Updated www/py-django3, www/py-django2

(adam)

doc: Added converters/lua-iconv version 7

(nia)

lua-iconv: missing patch

(nia)

py-django2: updated to 2.2.14

Django 2.2.14 fixes a bug in 2.2.13.

Bugfixes

Fixed messages of InvalidCacheKey exceptions and CacheKeyWarning warnings raised by cache key validation

(adam)

converters: Add lua-iconv

Lua-iconv is POSIX 'iconv' binding for the Lua Programming Language. The
iconv library converts a sequence of characters from one codeset into a
sequence of corresponding characters in another codeset. The codesets are
those specified in the iconv.new() call that returned the conversion
descriptor, cd.

(nia)

py-django3: updated to 3.0.8

Django 3.0.8 fixes several bugs in 3.0.7.

Bugfixes

Fixed messages of InvalidCacheKey exceptions and CacheKeyWarning warnings raised by cache key validation.
Fixed a regression in Django 3.0.7 that caused a queryset crash when grouping by a many-to-one relationship.
Reallowed, following a regression in Django 3.0, non-expressions having a filterable attribute to be used as the right-hand side in queryset filters.
Fixed a regression in Django 3.0.2 that caused a migration crash on PostgreSQL when adding a foreign key to a model with a namespaced db_table.
Added compatibility for cx_Oracle 8

(adam)

doc: +lua-http

(nia)

Updated devel/py-crayons, devel/py-slugify

(adam)

www: Add lua-http

A HTTP library for Lua.

## Features

- Optionally asynchronous (including DNS lookups and TLS)
- Supports HTTP(S) version 1.0, 1.1 and 2
- Functionality for both client and server
- Cookie Management
- Websockets

(nia)

py-slugify: updated to 4.0.1

4.0.1
- Add support for Py 3.8

(adam)

py-crayons: updated to 0.3.1

v0.3.1

Bugfixes
Explicitly set incoming parameter to crayons to string (so that len, etc. work as expected)

(adam)

doc: Added www/lua-psl version 0.3

(nia)

www: Add lua-psl

lua-psl is a set of lua bindings to libpsl, a C library that handles the
Public Suffix List (PSL).

The PSL is a list of domains where there may be sub-domains outside of the
administrator's control, e.g. the administrator of '.org' does not manage
'NetBSD.org'.

This list has found use in many internet technologies including:

  - preventing cross-domain cookie leakage
  - allowance of issuing wildcard TLS certificates

More information can be found at publicsuffix.org

(nia)

qt5-qtmultimedia: Darwin has system OpenAL

(adam)

rust: Add support for cross-compiling illumos.

It's not really cross-compiled, it's just a different target name, but is
treated the same way.  Once stabilised and crate support catches up we'll
switch over to it by default from x86_64-sun-solaris.  Until then I'll
build bootstrap kits for both natively.

While here fix up a bunch of obvious pkglint warnings.

(jperkin)

Updated databases/py-sqlalchemy, devel/py-appdirs

(adam)

py-appdirs: updated to 1.4.4

appdirs 1.4.4
-------------
- Don't import appdirs from setup.py

Project officially classified as Stable which is important
for inclusion in other distros such as ActivePython.

First of several incremental releases to catch up on maintenance.

(adam)

py-sqlalchemy: updated to 1.3.18

1.3.18

orm

[orm] [usecase]
Improve error message when using Query.filter_by() in a query where the first entity is not a mapped class.

[orm] [usecase]
Added a new parameter query_expression.default_expr to the query_expression() construct, which will be appled to queries automatically if the with_expression() option is not used. Pull request courtesy Haoyu Sun.

engine

[engine] [bug]
Further refinements to the fixes to the “reset” agent fixed in 5326, which now emits a warning when it is not being correctly invoked and corrects for the behavior. Additional scenarios have been identified and fixed where this warning was being emitted.

[engine] [bug]
Fixed issue in URL object where stringifying the object would not URL encode special characters, preventing the URL from being re-consumable as a real URL. Pull request courtesy Miguel Grinberg.

sql

[sql] [usecase]
Added a “.schema” parameter to the table() construct, allowing ad-hoc table expressions to also include a schema name. Pull request courtesy Dylan Modesitt.

[sql] [bug]
Correctly apply self_group in type_coerce element.
The type coerce element did not correctly apply grouping rules when using in an expression

[sql] [bug]
Added Select.with_hint() output to the generic SQL string that is produced when calling str() on a statement. Previously, this clause would be omitted under the assumption that it was dialect specific. The hint text is presented within brackets to indicate the rendering of such hints varies among backends.

[sql] [schema]
Introduce IdentityOptions to store common parameters for sequences and identity columns.

[sql] [change] [sybase]
Added .offset support to sybase dialect. Pull request courtesy Alan D. Snow.

schema

[schema] [bug]
Fixed issue where dialect_options were omitted when a database object (e.g., Table) was copied using tometadata().

mysql

[mysql] [usecase]
Implemented row-level locking support for mysql. Pull request courtesy Quentin Somerville.

sqlite

[sqlite] [usecase]
SQLite 3.31 added support for computed column. This change enables their support in SQLAlchemy when targeting SQLite.

[sqlite] [bug]
Added “exists” to the list of reserved words for SQLite so that this word will be quoted when used as a label or column name. Pull request courtesy Thodoris Sotiropoulos.

mssql

[mssql] [bug]
Refined the logic used by the SQL Server dialect to interpret multi-part schema names that contain many dots, to not actually lose any dots if the name does not have bracking or quoting used, and additionally to support a “dbname” token that has many parts including that it may have multiple, independently-bracketed sections.

[mssql] [bug] [pyodbc]
Fixed an issue in the pyodbc connector such that a warning about pyodbc “drivername” would be emitted when using a totally empty URL. Empty URLs are normal when producing a non-connected dialect object or when using the “creator” argument to create_engine(). The warning now only emits if the driver name is missing but other parameters are still present.

[mssql] [bug]
Fixed issue with assembling the ODBC connection string for the pyodbc DBAPI. Tokens containing semicolons and/or braces “{}” were not being correctly escaped, causing the ODBC driver to misinterpret the connection string attributes.

[mssql] [bug]
Fixed issue where datetime.time parameters were being converted to datetime.datetime, making them incompatible with comparisons like >= against an actual TIME column.

[mssql] [bug]
Fixed an issue where the is_disconnect function in the SQL Server pyodbc dialect was incorrectly reporting the disconnect state when the exception messsage had a substring that matched a SQL Server ODBC error code.

[mssql] [change]
Moved the supports_sane_rowcount_returning = False requirement from the PyODBCConnector level to the MSDialect_pyodbc since pyodbc does work properly in some circumstances.

oracle

[oracle] [bug] [reflection]
Fixed bug in Oracle dialect where indexes that contain the full set of primary key columns would be mistaken as the primary key index itself, which is omitted, even if there were multiples. The check has been refined to compare the name of the primary key constraint against the index name itself, rather than trying to guess based on the columns present in the index.

misc

[change] [examples]
Added new option --raw to the examples.performance suite which will dump the raw profile test for consumption by any number of profiling visualizer tools. Removed the “runsnake” option as runsnake is very hard to build at this point;

(adam)

doc: Added devel/lua-compat53 version 0.7

(nia)

devel: +lua-compat53

(nia)

devel: Add lua-compat53. Based on work by Jonathan Buschmann in wip.

This is a small module that aims to make it easier to write Lua
code in a Lua-5.3-style that runs on Lua 5.3, 5.2, and 5.1.

It does *not* make Lua 5.2 (or even 5.1) entirely compatible
with Lua 5.3, but it brings the API closer to that of Lua 5.3.

(nia)

doc: Updated math/bc-gh to 3.1.1

(gdt)

math/bc-gh: Update to 3.1.1

Notable upstream changes:

## 3.1.0

The behavior that was adjusted was how code from the `-e` and `-f` arguments
(and equivalents) were executed. They used to be executed as one big chunk, but
in this release, they are now executed line-by-line.

The first bug fix in how output to `stdout` was handled in `SIGINT`. If a
`SIGINT` came in, the `stdout` buffer was not correctly flushed. In fact, a
clean-up function was not getting called. This release fixes that bug.

The second bug is in how `dc` handled input from `stdin`. This affected `bc` as
well since it was a mishandling of the `stdin` buffer.

The third fixed bug was that `bc` and `dc` could `abort()` (in debug mode) when
receiving a `SIGTERM`. This one was a race condition with pushing and popping
items onto and out of vectors.

The fourth bug fixed was that `bc` could leave extra items on the stack and
thus, not properly clean up some memory. (The memory would still get
`free()`'ed, but it would not be `free()`'ed when it could have been.)

The next two bugs were bugs in `bc`'s parser that caused crashes when executing
the resulting code.

The last two bugs were crashes in `dc` that resulted from mishandling of
strings.

## 3.0.2

This is a production release that adds `utf8` locale symlinks and removes an
unused `auto` variable from the `ceil()` function in the [extended math
library][16].

## 3.0.1

The second change is to make the new implementation of `ceil()` in `lib2.bc`
much more efficient.

(gdt)

doc: Updated audio/solfege to 3.22.2nb5

(schmonz)

- Specify ISO-8859-1 encoding on a couple Texinfo docs that aren't UTF8.
  Fixes `utf8 "\\xF6" does not map to Unicode` that was breaking SmartOS bulk builds.
- Use afplay(1) on macOS (included since 2007) instead of deprecated audio/qtplay.
  Other platforms still need to define default audio players.
- Include librsvg to get the gdk-pixbuf SVG loader for solvege.svg.
- Bump PKGREVISION.

(schmonz)

doc: Added devel/lua-lpeg-patterns version 0.5

(nia)

math/bc-gh: Respect PKGMANDIR

Also, add stray translation file.

(gdt)

devel: Add lua-lpeg-patterns

A collection of LPEG patterns.

Use cases:

- Strict validation of user input
- Searching free-form input

(nia)

Updated devel/py-pyobjc

(adam)

py-pyobjc: updated to 6.2.1

Version 6.2.1
* Ensure package 窶湾yobjc窶� won窶冲 try to build the PubSub bindings on macOS 10.15
* Minor tweaks to build and pass tests on macOS 10.14 with the latest Xcode that can be installed on that version of macOS.
* Fix SystemError in block edge case
* PyObjC raised a SystemError when converting a callable into an ObjC block when the callable is a bound method without positional arguments.
* Fix crash on catalina caused by writing to read-only memory.
* Make sure the SDK detection works when the version is not in the SDK name
* There were no SDK updates in Xcode 11.5 and Xcode 11.6 (beta)

(adam)

doc: Added devel/lua-mediator version 1.1.2

(nia)

devel: Add lua-mediator

mediator_lua is a simple class that allows you to listen to events by
subscribing to and sending data to channels. Its purpose is to help you
decouple code where you might otherwise have functions calling functions
calling functions.

(nia)

doc: Added security/lua-ossl version 20190731

(nia)

security: Add lua-ossl

A comprehensive OpenSSL module for Lua.

It includes support for certificate and key management, key generation,
signature verification, and deep bindings to the distinguished name,
alternative name, and X.509v3 extension interfaces.

It also binds OpenSSL's bignum, message digest, HMAC, cipher, and CSPRNG
interfaces. The end goal is to bind almost everything that OpenSSL supports,
but no more. It's intended as a low-level interface.

Basic bindings to OpenSSL's SSL* session and SSL_CTX* prototype objects are
available, but they cannot yet be used standalone to do SSL I/O. cqueues
supports SSL/TLS sockets internally, accepts an SSL_CTX* object from Lua
code for session configuration, and exports an SSL* object to Lua for session
introspection.

(nia)

mk: Skip unnecessary dirs for CTF/debug conversion.

There won't (or at least should never!) be any files under share/ or man/ that
require conversion for CTF or debug support, so set sensible defaults for both
CTF_FILES_SKIP and STRIP_FILES_SKIP.  Further additions are welcome.

While here rearrange the ordering of the debug skips to match CTF and deliver
a small performance improvement by avoiding unnecessary file tests.

Combined, these reduce the runtime for "make install-ctf install-strip-debug"
in lang/rust down from wall/user/sys 10m33s/2m34s/9m30s to 1m13s/0m46s/1m4s.

(jperkin)

doc: Added devel/lua-system version 0.2.1

(nia)

devel: Add lua-system, based on work by Jonathan Buschmann in wip

luasystem is a platform independent system call library for Lua.

Currently the following functions are supported:

- gettime
- monotime
- sleep

(nia)

Updated chat/py-nbxmpp, chat/gajim

(adam)

gajim: updated to 1.2.0

Gajim 1.2.0

Gajim is a fully-featured XMPP client. It enables you to chat in a decentralized network using one of the many providers available or even your own service. The choice is yours. Gajim offers End-to-End encryption, is extensible, and open-source. More than a year after the release of Gajim 1.1.3 it is finally time for Gajim 1.2. A year of developing new features, cleaning up old code, and bug fixing. Highlights of this release are (amongst others): improved group chat system, completely rewritten network code, and a new account creation assistant. But there is much more to discover.

(adam)

py-nbxmpp: updated to 1.0.1

python-nbxmpp 1.0.1

New
* Add XEP-0377 support
* MUC: Return message id when using inivite()

Bugfixes
* OMEMO: Correctly parse prekey value
* Client: Determine protocol and type correctly if a custom host is used
* Smacks: Don't fail on saving error replies

python-nbxmpp 1.0.0
* Library rewritten in most parts
* Replace BOSH with Websocket
* Add new example client
* Many other improvements

Known Issues:
* Currently no Client Cert support

(adam)

doc: Added textproc/lua-stringy version 0.6.1

(nia)

textproc: Add lua-stringy

Fast Lua string operations for: count, find, startswith, endswith, split

(nia)

doc: Added devel/lua-ansicolors version 1.0.2

(nia)

devel: Add lua-ansicolors

ansicolors is a simple Lua function for printing to the console in color

(nia)

doc: Added time/lua-tz version 0.4.1

(nia)

time: Add lua-tz

A lua library for time and date manipulation.

Features include:

  - Normalisation of broken down date objects
  - allows for complex time/date manipulation logic, e.g.
            "What day is it in 2 days, 5 hours from now?"
  - Conversion between locations (time zones) using your local
    zoneinfo database.
  - `strftime` style formatting

(nia)

doc: Added time/lua-date version 2.1.2

(nia)

time: Add lua-date

Date and Time module for Lua 5.x.

Features:

* Date and Time string parsing.
* Time addition and subtraction.
* Time span calculation.
* Support ISO 8601 Dates.
* Local time support.
* Lua module (not binary).
* Formats Date and Time like strftime.

(nia)

doc: Added www/badwolf version 1.0.2

(pin)

www/badwolf: import new package

badwolf is a minimalist browser that cares about privacy, it is based on
WebKitGTK and thus also accepts WebKitGTK (and dependencies) flags and
environment variables.

Runtime configuration specific to badwolf will probably get added at a later
release.

- No browser-level tracking, multiple ephemeral isolated sessions per new
  unrelated tabs, JavaScript off by default.
- Small codebase (~1 500 LoC), reuses existing components when available or
  makes it available.
- WebKitGTK native extensions, Interface customizable through CSS.
- Stable User-Interface; The common shortcuts are available (and documented),
  no vi-modal edition or single-key shortcuts are used.
- Dialogs are only used when required, javascript popups open in a
  background tab.

(pin)

www/badwolf: import new package

badwolf is a minimalist browser that cares about privacy, it is based on
WebKitGTK and thus also accepts WebKitGTK (and dependencies) flags and
environment variables.

Runtime configuration specific to badwolf will probably get added at a later
release.

- No browser-level tracking, multiple ephemeral isolated sessions per new
  unrelated tabs, JavaScript off by default.
- Small codebase (~1 500 LoC), reuses existing components when available or
  makes it available.
- WebKitGTK native extensions, Interface customizable through CSS.
- Stable User-Interface; The common shortcuts are available (and documented),
  no vi-modal edition or single-key shortcuts are used.
- Dialogs are only used when required, javascript popups open in a
  background tab.

(pin)

Updated net/terraform-provider-random, net/py-zeroconf

(adam)

py-zeroconf: updated to 0.28.0

0.28.0

Improved Windows support when using socket errno checks.
Added support for passing text addresses to ServiceInfo.
Improved logging (includes fixing an incorrect logging call)
Improved Windows compatibility by using Adapter.index from ifaddr.
Improved Windows compatibility by stopping using socket.if_nameindex.
Fixed an OS X edge case which should also eliminate a memory leak.

Technically backwards incompatible:
ifaddr 0.1.7 or newer is required now.

(adam)

terraform-provider-random: updated to 2.3.0

2.3.0

NOTES:
The provider now uses the binary driver for acceptance tests

NEW FEATURES:
Added import handling for random_string and random_password

(adam)

Updated net/glib-networking, x11/gtk3

(adam)

gtk3+: updated to 3.24.21

Overview of Changes in GTK+ 3.24.21
===================================

* Wayland:
- Prevent crashes with offscreen windows
- Handle disorderly tablet/pad disconnects

* GtkFileChooser:
- Translate the type column
- Add a tracker3 search engine
- Rate-limit trash monitoring
- Make get_filter work for native chooser

* GtkGLArea:
- Fix a redraw problem

* GtkScrolledWindow:
- Fix kinetic scrolling

* Add a gtk-cursor-aspect-ratio setting

* GDK:
- Improve frame clock smoothness
- Fix frame clock monotonicity

* OS X:
- Support Pen / Eraser input
- Support openfiles in GtkApplication

* Adwaita:
- Improve notebook tab legibility

* Translation updates:
Basque
Brazilian Portuguese
Catalan
Chinese (Taiwan)
German
Indonesian
Italian
Japanese
Kazakh
Lithuanian
Polish
Romanian
Slovak
Slovenian
Swedish
Ukrainian

(adam)

glib-networking: updated to 2.64.3

2.64.3:
- Revert warning when server-identity property is unset
- Fix CVE-2020-13645, fail connections when server identity is unset

(adam)

Updated devel/py-gobject3, lang/npm

(adam)

npm: updated to 6.14.6

6.14.6

BUG FIXES
chore: remove auth info from logs
fix: wrong npm doctor command result

DEPENDENCIES
npm-registry-fetch@4.0.5
spdx-license-ids@3.0.5

DOCUMENTATION
chore(docs): fixed links to cli commands
Update npm-link.md
Add note about dropped * filenames
Fix typo

(adam)

py-gobject3: updated to 3.36.1

3.36.1:
* tests: Fix failing tests with pytest 5.4.0+
* Gtk: Add override to make sure both TreeModelSort.new_with_model and
  TreeModel.sort_new_with_model exist independend of the gtk version
* Gtk.Template: Fix initialisation order errors with Widgets getting created from C
  (potentially through other templates)
* Gtk.Template: Fix errors when calling init_template() multiple times

(adam)

define SYSMALLOC on netbsd.  fixes standalone-tcsh link, which pulled
in libc malloc as well as tcsh malloc, and failed.

ok christos@

(mrg)

doc: Removed security/boringssl

(nia)

security: Remove boringssl

This is a really old version that is likely vulnerable.

AFAIK the only consumer of boringssl is Chromium which vendors its
own variant, otherwise the library is just for internal Google use

(nia)

doc: LuaJIT

(nia)

lang: Remove LuaJIT, replaced by LuaJIT2

This is a very old version of LuaJIT

(nia)

doc: Updated security/go-mkcert to 1.4.1

(bsiegert)

Update mkcert to 1.4.1. Now a Go module.

v1.4.1

  • Use sudo when necessary to install in system-wide NSS stores (#192)
  • Add a -version flag (#191)
  • Speed up macOS execution by 4x for most users (#135)
  • Minor usability improvements (#182, #178, #188)

v1.4.0

macOS Catalina compatibility, URL and email SANs, and more

macOS 10.15 Catalina introduced certificate lifespan limits which block mkcert
certificates. As a temporary measure, mkcert certificates now have a fixed
notBefore date of June 1st, 2019. Once the ACME server is implemented,
certificate lifespan will be shortened to 3 months. (#174)

Certificates generated by previous versions of mkcert after July 1st, 2019 will
not work on macOS 10.15 Catalina, and will have to be regenerated. The root CA
is unaffected and there is no need to rerun mkcert -install.

URL (#166) and email (for S/MIME, #152) SANs are now supported.

Client certificates are now created with a -client filename suffix, and they
claim the serverAuth EKU as well as the clientAuth one.

The certificate subject now includes the full user name, like
filippo@Bistromath.local (Filippo Valsorda).

SLES, OpenSUSE (#162), Snapcraft (#116), and CentOS 7 (#120) are now supported.

Linux release binaries are now fully static, and will work regardless of the
system libc. (#169)

v1.3.0

New advanced options:

  • -ecdsa to generate ECDSA private keys
  • -client to generate client certificates
  • -csr to sign certificate signing requests
  • $TRUST_STORES to select what stores to install into

Also, in other news:

  • Add "Firefox Nightly.app" support on macOS
  • Set the CommonName when generating PKCS#12 files for IIS

(bsiegert)

Updated math/py-numba, archivers/py-lz4, databases/mysql56-client, databases/mysql56-server

(adam)

mysql56: updated to 5.6.48

Changes in MySQL 5.6.48

Bugs Fixed

InnoDB: A tablespace import operation that failed due to the source and destination tables being defined with different DATA DIRECTORY clauses reported an insufficiently descriptive schema mismatch error. Moreover, if a .cfg file was not present, the same operation would raise an assertion failure. A more informative error message is now reported in both cases before the import operation is terminated due to the data directory mismatch.

InnoDB: Updating certain InnoDB system variables that take string values raised invalid read errors during Valgrind testing.

Replication: In the event of an unplanned disconnection of a replication slave from the master, the reference to the master's dump thread might not be removed from the list of registered slaves, in which case statements that accessed the list of slaves would fail. The issue has now been fixed.

Replication: With the settings binlog_format=MIXED, tx_isolation=READ-COMMITTED, and binlog_row_image=FULL, an INSERT ... SELECT query involving a transactional storage engine omitted any columns with a null value from the row image written to the binary log. This happened because when processing INSERT ... SELECT statements, the columns were marked for inserts before the binary logging format was selected. The issue has now been fixed.

The Event Scheduler had a memory leak.

Under certain circumstances, a memcached command could result in reading an uninitialized memory buffer, causing a failure.

CONCAT() and CONCAT_WS() could produce incorrect results in rare cases due to incorrect substring handling.

Scheduling of events could be disturbed by removing events.

Client programs could load authentication plugins from outside the plugin library.

A query with a WHERE clause whose predicate contained a numeric value in scientific notation was not handled correctly.

In addition, attempting to insert a particular integer specified as a string caused a server exit when the string-to-integer conversion was not successful.

The client library could dereference a null pointer while fetching result set metadata from the server.

(adam)

py-lz4: updated to 3.1.0

v3.1.0:
Out-of-band stream block size record support in the stream bindings

(adam)

py-numba: updated to 0.50.1

Version 0.50.1:

This is a bugfix release for 0.50.0, it fixes a critical bug in error reporting
and a number of other smaller issues:

* Added except for possible Windows get_terminal_size exception
* Improve undefined variable error message
* Update the deprecation notices for 0.50.1
* Fixes literally not forcing re-dispatch for inline='always'
* Fix bad attr access on certain typing templates breaking exceptions.
* Fix cuda test

(adam)

xosview: do not exit when cpufreq sysctl fails.

I don't know why xosview needs cpu frequency at all when it doesn't display
it. But:

- different architectures use different sysctl names (that's why it's called
  machdep)
- what even is the meaning of the "cpu frequency" when you can set frequency
  per core

(bsiegert)

doc: Updated www/firefox68-l10n to 68.10.0

(nia)

firefox68-l10n: sync with firefox68

(nia)

doc: Updated net/py-gsutil to 4.51

(bsiegert)

Update gsutil to 4.51.

It now includes its own vendored copy of Boto.

Release 4.51 (release date: 2020-03-26)
======================================
- Fixed file permissions for credstor2 and tracker files (#1002 and # 1005)
- Added a check to restrict the duration (-d option) for signurl command
  to 12 hours if -u flag is used. (#1014)
- Updated rsync command to try patching before overwriting,
  rather than checking ACL (#1016)
- Several documentation updates and clarifications.

Release 4.50 (release date: 2020-04-30)
======================================
- Switched to Using V4 signature as default for S3 (#981)
- Updated rsa library to release-4.0 (#992)
- Updated test script to install pyenv if missing for kokoro (#990)
- Fixed print ordering in kms set by using print instead of
  text_util.print_to_fd (#974)
- Several documentation updates and clarifications (#969) (#987)

Release 4.49 (release date: 2020-03-26)
======================================
- Added support for service account impersonation for signurl.
- Fixed an issue with rsync throwing error when the destination url is a prefix of
  an existing object.
- Several documentation updates and clarifications.

Release 4.48 (release date: 2020-02-28)
======================================
- Fixed special character handling in filenames on Windows with Python3.
- Fixed issue while transferring binary files from S3 with Python3.
- Fixed KMS tests, so that keys are created in the same region as their buckets.
- Several documentation updates and clarifications.

(bsiegert)

doc: Updated www/firefox68 to 68.10.0

(nia)

firefox68: Update to 68.10.0

For anyone curious about the delay: apparently, my ccache cache
was corrupted so the build was failing. *sigh* that won't be a problem
soon...

Security Vulnerabilities fixed in Firefox ESR 68.10

    #CVE-2020-12417: Memory corruption due to missing sign-extension for
    ValueTags on ARM64

    #CVE-2020-12418: Information disclosure due to manipulated URL object

    #CVE-2020-12419: Use-after-free in nsGlobalWindowInner

    #CVE-2020-12420: Use-After-Free when trying to connect to a STUN server

    #CVE-2020-12421: Add-On updates did not respect the same certificate trust
    rules as software updates

(nia)

sablevm: Set LICENSE

(ryoon)

doc: Updated lang/vala to 0.48.7

(ryoon)