py-pebble: updated to 4.5.0

release 4.5.0
Features:
- Expose the `daemon` flag in the decorators
Fixes:
- fix installation script in Python 3
  when git is missing from the target system

(adam)

doc: added devel/lxqt-build-tools 0.6.0

(gutteridge)

lxqt-build-tools: import new package, version 0.6.0

Build tooling (mostly CMake files) for the LXQt desktop environment
and related applications.

Packaged in pkgsrc-wip by pin, as part of a broader effort toward
providing all of LXQt and associated utility applications. General
reviews, feedback, and testing of such by gdt@, ng0@, and myself.

(gutteridge)

Updated sysutils/py-augeas, security/py-acme, security/py-certbot*

(adam)

py-acme py-certbot: updated to 1.2.0

1.2.0:

Added
Added support for Cloudflare's limited-scope API Tokens
Added support for $hostname in nginx server_name directive

Changed
Add directory field to error message when field is missing.
If MD5 hasher is not available, try it in non-security mode (fix for FIPS systems)
Disable old SSL versions and ciphersuites and remove SSLCompression off setting to follow Mozilla recommendations in Apache.
Remove ECDHE-RSA-AES128-SHA from NGINX ciphers list now that Windows 2008 R2 and Windows 7 are EOLed
Support for Python 3.4 has been removed.

Fixed
Fix collections.abc imports for Python 3.9.
More details about these changes can be found on our GitHub repo.

1.1.0:

Changed
Removed the fallback introduced with 0.34.0 in acme to retry a POST-as-GET request as a GET request when the targeted ACME CA server seems to not support POST-as-GET requests.
certbot-auto no longer supports architectures other than x86_64 on RHEL 6 based systems. Existing certbot-auto installations affected by this will continue to work, but they will no longer receive updates. To install a newer version of Certbot on these systems, you should update your OS.
Support for Python 3.4 in Certbot and its ACME library is deprecated and will be removed in the next release of Certbot. certbot-auto users on x86_64 systems running RHEL 6 or derivatives will be asked to enable Software Collections (SCL) repository so Python 3.6 can be installed. certbot-auto can enable the SCL repo for you on CentOS 6 while users on other RHEL 6 based systems will be asked to do this manually.

(adam)

py-augeas: updated to 1.1.0

1.1.0:
Unknown changes

(adam)

devel/guile22-slib: CSE on slib version

(gdt)

doc: Updated audio/musescore to 3.4.2

(gutteridge)

musescore: update to 3.4.2

pkgsrc-specific change: explicitly turn off the telemetry feature,
which was added in the 3.4 series. (There are inconsistencies in the
CMake settings such that with the default configuration it states that
telemetry is turned off, but some components are still built.)

This should address build failures that were occurring with the older
3.2.3 release in combination with Qt 5.14. (It builds and runs for me
on NetBSD amd64 8.1_STABLE and 9.99.44.)

(NB supporting i386 builds would require tweaks to the packaging. I've
left that as a separate exercise TBD.)

The change logs don't seem to be available in an easily aggregated but
condensed form. Highlights of the 3.3 and 3.4 series are:

3.4

New

    Apply palette elements with a single click if there is a selection in the score
    Allow dragging notes horizontally
    Slurs, hairpins and other elements can be edited after single click
    Add middle adjustment handle for beams, for moving whole beam vertically

Improvements

    Double click is not needed to reach edit mode anymore
    Introduce section break properties, bend properties, tremolo bar properties in the Inspector
    Allow access to several properties window in the Inspector
    Name of the newly created custom palette can be specified
    Accessibility: improve speech for elements with spanners

Fixes

    "Don't play trill" option silenced the note playback
    Slurs on small staves were displaced in some cases
    Barline handles were drawn incorrectly after dragging one
    Strings in the Part dialogue were ambiguous
    Y Offset value of fretboards didn't restore after undoing the values being changed from Edit Mode
    Replacing a note with an accidental left the accidental on the new note
    Adding Intervals (above/below) didn't take into consideration the accidental toggle state
    Multiple chord symbols attached to same note didn't copy as part of the range
    Strings in fret diagrams without "X" or "O" displayed as "?" on Linux
    MuseScore crashed when changing a triplet's rest's duration
    Images attached to rests weren't imported from MuseScore 2
    Tremolo Bar dialog had multiple UX issues
    AppImage: system printers weren't available in the print dialog

3.3

New

    Complete palettes redesign
    Note Input workflow improvements
    Native support for Roman numeral analysis and Nashville notation

Improvements

    Chord Symbol Formatting not only for MuseJazz has been supported
    Symbols can be attached to barlines
    Multiple improvements to the Plugin API
    Implement changing palette and palette cell properties on fly
    Current workspace is automatically saved on each action that changes the workspace
    Palettes and workspaces can be reset to the default state defined by the workspace you started customisations from
    Improve algorithm for determining start point for note input
    Move the viewport to show actual changes in the score if they are outside of the current view

Fixes

    NVDA screen reader didn't work
    Various MusicXML Import/Export fixes
    Various fixes for the playback of tied notes, muted voices and notes being edited in parts
    Sticking was not linked between score and parts
    The presence of fretboard diagrams prevented input of chord symbols in other staves
    Loop playback was set incorrectly in parts
    Shortcuts navigation across the palettes was broken
    Palettes and palette cells were not translated
    It was impossible to enter successive sticking elements

(gutteridge)

doc: Updated devel/guile22-slib to 3.2.6

(wiz)

guile22-slib: update to 3.2.6 to match slib

(wiz)

doc: Updated devel/guile-slib to 3.2.6

(gdt)

devel/guile-slib: Update to 3.2.6

Change version and depend on newer slib.

(There is no upstream, and hence no upstream changes.)

(gdt)

doc: Updated net/youtube-dl to 20200216

(leot)

youtube-dl: Update to 20200216

Changes:
20200216
--------
Core
* [YoutubeDL] Fix playlist entry indexing with --playlist-items (#10591,
  #10622)
* [update] Fix updating via symlinks (#23991)
+ [compat] Introduce compat_realpath (#23991)

Extractors
+ [npr] Add support for streams (#24042)
+ [24video] Add support for porn.24video.net (#23779, #23784)
- [jpopsuki] Remove extractor (#23858)
* [nova] Improve extraction (#23690)
* [nova:embed] Improve (#23690)
* [nova:embed] Fix extraction (#23672)
+ [abc:iview] Add support for 720p (#22907, #22921)
* [nytimes] Improve format sorting (#24010)
+ [toggle] Add support for mewatch.sg (#23895, #23930)
* [thisoldhouse] Fix extraction (#23951)
+ [popcorntimes] Add support for popcorntimes.tv (#23949)
* [sportdeutschland] Update to new API
* [twitch:stream] Lowercase channel id for stream request (#23917)
* [tv5mondeplus] Fix extraction (#23907, #23911)
* [tva] Relax URL regular expression (#23903)
* [vimeo] Fix album extraction (#23864)
* [viewlift] Improve extraction
    * Fix extraction (#23851)
    + Add support for authentication
    + Add support for more domains
* [svt] Fix series extraction (#22297)
* [svt] Fix article extraction (#22897, #22919)
* [soundcloud] Improve private playlist/set tracks extraction (#3707)

(leot)

Updated security/py-google-auth, devel/py-jupyter_core

(adam)

py-jupyter_core: updated to 4.6.2

4.6.2
- Add ability to allow insecure writes with JUPYTER_ALLOW_INSECURE_WRITES environement variable
- Docs typo and build fixes
- Added python 3.7 and 3.8 builds to testing

(adam)

py-google-auth: updated to 1.11.2

1.11.2:
Reverts
Revert "fix: update _GOOGLE_OAUTH2_CERTS_URL"

1.11.1:
Bug Fixes
compute engine id token credentials "with_target_audience" method
update _GOOGLE_OAUTH2_CERTS_URL

(adam)

Updated www/py-hstspreload, net/py-aio-pika

(adam)

py-aio-pika: updated to 6.4.3

6.4.3
log channel close status
add OSError to CONNECTION_EXCEPTIONS

6.4.2
[fix] heartbeat_last to heartbeat_last_received
Fix memory leak
Fix type hint
Pass loop when connecting to aiormq

(adam)

py-hstspreload: updated to 2020.2.15

2020.2.15:
Updated HSTS Preload list.

(adam)

doc: Updated devel/slib to 3.2.6

(wiz)

slib: update to 3.2.6.

slib-3b6 is a maintenance release with some new functions.  Details at
<http://cvs.savannah.gnu.org/viewvc/*checkout*/slib/slib/ChangeLog>

* comlist.scm (butnth): Added.
* guile-2.init: patch from
https://gist.github.com/alexgian/1fe75b0c3fc95cb46baae2f50ae9211c
* grapheps.scm (set-font): Fixed pointsize dependent scaling.
* Makefile (INSTALL_INFO): ginstall-info -> install-info.
* iso8601.scm (iso-8601->time): Use gmktime rather than mktime.
* mkclrnam.scm (load-rgb-txt): Make encoding case insensitive in
method m5x (FED-STD-595C1).
* Makefile, iso8601.scm, mklibcat.scm, slib.texi:
Added feature iso-8601: ISO 8601 Representation of dates and times.

(wiz)

doc: Updated mail/gmime3 to 3.2.6

(wiz)

gmime3: update to 3.2.6.

### GMime 3.2.6

* Added methods to get 64-bit timestamps for the creation-date and expiration-date of
  GMimeCertificates and GMimeSignatures. (issue #68)

* Fixed the vala abstract public constructor for GMimeObject. (issue #76)

* Fixed a bug in GMimeParser's header parser. (issue #78)

* Added build files for Visual Studio 2017 thanks to Vitaliy Didik.

(wiz)

doc/TODO: add some

+ ImageMagick-7.0.9.23, gmime3-3.2.6, libarchive-3.4.2, meld-3.20.2,
  ncurses-6.2, py-google-auth-1.11.2, slib-3b6.

(wiz)

doc: Updated graphics/ruby-cairo to 1.16.5

(tsutsui)

ruby-cairo: update to 1.16.5.

Upstream changes (from NEWS):

Release 1.16.5 (2020-02-03) Sutou Kouhei <kou@cozmixng.org>
============================================================

Improvements
------------

  * Added Cairo::Context#raw_address for integration with other
    libraries.
    [GitHub#59][Reported by kojix2]

Fixes
-----

  * Changed to use only ASCII for color name.
    [GitHub#57][Reported by spoolkitamura]

  * Fixed the number of arguments of the following methods:

    * Cairo::Surface#copy_page

    * Cairo::Surface#show_page

Thanks
------

  * spoolkitamura

  * kojix2

(tsutsui)

doc: Updated devel/ruby-locale to 2.1.3

(tsutsui)

ruby-locale: update to 2.1.3.

Upstream changelog (from doc/text/news.md):

## 2.1.3: 2020-02-12

### Improvements

  * Suppressed warnings.

(tsutsui)

ruby-diva: update to 1.0.2.

No upstream changelog (but looks fix ruby 2.7 warnings).

(tsutsui)

doc: Updated textproc/ruby-nokogiri to 1.10.8

(tsutsui)

ruby-nokogiri: update to 1.10.8.

Upstream changelog (from CHANGELOG.md):

## 1.10.8 / 2020-02-10

### Security

[MRI] Pulled in upstream patch from libxml that addresses CVE-2020-7595.
Full details are available in [#1992](https://github.com/sparklemotion/nokogiri/issues/1992).
Note that this patch is not yet (as of 2020-02-10) in an upstream release of libxml.

(tsutsui)

doc: Updated devel/ruby-gettext to 3.3.5

(tsutsui)

ruby-gettext: update to 3.3.5.

Upstream changelog (from doc/text/news.md):

## 3.3.5: 2020-02-15 {#version-3-3-5}

### Improvements

  * Added support for `|` method.
    [GitHub#73][Reported by dorle-o]

### Thanks

  * dorle-o

## 3.3.4: 2020-02-12 {#version-3-3-4}

### Improvements

  * Added support for `%W`.
    [GitHub#72][Reported by Michael Hoste]

### Thanks

  * Michael Hoste

(tsutsui)

doc: Updated devel/ruby-delayer to 1.1.2

(tsutsui)

ruby-delayer: update to 1.1.2.

No upstream changelog.

(tsutsui)

doc: Updated devel/ruby-delayer-deferred to 2.1.3

(tsutsui)

ruby-delayer-deferred: update to 2.1.3.

No upstream changelog.

(tsutsui)

doc: Updated net/ruby-public_suffix to 4.0.3

(tsutsui)

ruby-public_suffix: update to 4.0.3.

Upstream changes (from CHANGELOG.md):

## 4.0.3

### Fixed

- Fixed 2.7 deprecations and warnings (GH-167). [Thanks @BrianHawley]

## 4.0.2

### Changed

- Updated definitions.

(tsutsui)

doc: Updated net/sayaka to 3.4.3

(tsutsui)

sayaka: update to 3.4.3.

pkgsrc changes:
- remove a patch applied to upstream

Upstream changes

* 3.4.3 (2020/02/15)
  Fix quoted tweets not shown in some case.
  Improve detection of sixel support of the tereminal.

(tsutsui)

doc: Updated math/py-arviz to 0.6.1

(minskim)

math/py-arviz: Update to 0.6.1

Highlights:

- Initial bokeh support.
- Fully support numpyro
- log_likelihood and observed data from pyro
- ArviZ.jl
- improve rcparams
- fix az.concat functionality
- distplot docstring plotting example

(minskim)

doc: Updated archivers/gcpio to 2.13

(mef)

(archivers/gcpio) Updated to 2.13

Version 2.13 - Sergey Poznyakoff, 2019-11-06

* Fix CVE-2015-1197
* Fix CVE-2016-2037
* Fix CVE-2019-14866

(mef)

doc: Updated archivers/R-zip to 2.0.4

(mef)

(archivers/R-zip) Updated to 2.0.4

# 2.0.4
* `unzip_process()` prints better error messages to the standard error,
  and exits with a non-zero status, on error.

(mef)

doc: Updated finance/R-bayesm to 3.1.4

(mef)

(finance/R-bayesm) Updated to 3.1.4, ChangeLog not known, or not easily found,sorry

(mef)

Note update of the "mutt" package to version 1.13.4

(tron)

mutt: Update to version 1.13.4

This release fixes a potential memory corruption issue when sync'ing imap
mailboxes.  It also improves the speed of opening mailboxes with large threads
(when sorting by thread).  Lastly, it changes the default of $ssl_force_tls
back to unset.

1.13.4 (2020-02-15):
  ! Bug fix release.
  ! $ssl_force_tls reverted to default unset.  Defaulting this set was
    overly optimistic, and caused breakage.

(tron)

Fix WRKSRC (no WikiCase needed with this tarball).

(schmonz)

lang/ocaml: remove unknown configure option --without-x

(rillig)

doc: Updated pkgtools/pkg_regress to 0.6

(rillig)

pkgtools/pkg_regress: update to 0.6

Changes since 0.5:

mktemp does not use a file pattern anymore. That file pattern had the
effect that all temporary files had the same name: /tmp/pkg_regress.

(rillig)

doc: Updated pkgtools/pkglint to 19.4.8

(rillig)

pkgtools/pkglint: update to 19.4.8

Changes since 19.4.7:

The diagnostic for homepages using FTP is simpler now.

When running pkglint recursively on the top-level directory, the
inter-package checks (distfile hashes, unused licenses) are enabled
implicitly. This way, the only effect of the -Cglobal option is now
whether the pkgsrc infrastructure files are checked as well.

The check for removed packages that have not been recorded in
doc/CHANGES prints the correct lines when pkglint is run with the
--source option.

Fatal technical errors are no longer treated as diagnostics since they
are none. That was an early conceptual mistake, but since these fatal
error didn't happen often, it didn't matter.

In diagnostics, when referring to other lines, the previously used words
before/after have been replaced with above/below to avoid any confusion
whether space or time is meant.

In CONF_FILES, spaces and quotes are allowed.
See https://gnats.netbsd.org/42191.

Fixed unintended side-effects when running pkglint --autofix --only.
Before, all fixes were applied to the file, whether or not they matched
the --only option.

Fixed resolution of relative paths of the form ../../category/package
when they appeared in an infrastructure file.

Lots of refactorings and housekeeping, as usual.

(rillig)

firefox: now needs gnu++17, for <type_traits> std::is_void_v and friends

(tnn)

libreoffice: Regen distinfo to reflect current requirement

(ryoon)

doc: Updated www/firefox68-l10n to 68.5.0

(nia)

firefox68-l10n: Update to 68.5.0

Sync with firefox68.

(nia)

doc: Updated www/firefox68 to 68.5.0

(nia)

firefox68: Update to 68.5.0

Security Vulnerabilities fixed in Firefox ESR68.5

# CVE-2020-6796: Missing bounds check on shared memory read in the parent process
# CVE-2020-6797: Extensions granted downloads.open permission could open arbitrary applications on Mac OSX
# CVE-2020-6798: Incorrect parsing of template tag could result in JavaScript injection
# CVE-2020-6799: Arbitrary code execution when opening pdf links from other applications, when Firefox is configured as default pdf reader
Note: This issue only affects Windows operating systems and when Firefox is configured as the default handler for non-default filetypes. Other operating systems are unaffected.
# CVE-2020-6800: Memory safety bugs fixed in Firefox 73 and Firefox ESR 68.5

(nia)

doc/guide: remove accidental .exe from example package

(rillig)

doc/guide: fix markup in appendix

In appendix A, the word pkglint is meant as a utility name, not
necessarily the command. This change removes the bold formatting from the
toc, where it looked too unusual.

(rillig)

doc: Updated cad/xcircuit to 3.10.17

(mef)

(cad/xcircuit) Updated to 3.10.17. ChangeLog unknown

(mef)

doc: Updated cad/gtkwave to 3.3.104

(mef)

(cad/gtkwave) Updated to 3.3.104

3.3.104 24jan20 Added support for loading .vf files (provided FSDB reader
                libraries are enabled).
                Added support for dumping variable types in vcd saveer, not
                just using "wire" for non-reals/strings.
                Fix for uninitialized values at time 0 for FST, FSDB loaders.

(mef)

(devel/R-testthat) Add TEST_DEPENDS+=  R-devtools

(mef)

doc: Updated devel/R-testthat to 2.3.1

(mef)

(devel/R-testthat) Updated 2.2.1 to 2.3.1

# testthat 2.3.1

* The last version of testthat introduced a performance regression in
  error assertions (#963). To fix it, you need to install rlang 0.4.2.

* Fixed error assertions with rJava errors (#964).

* Fixed issue where error and warning messages were not retrieved with
  `conditionMessage()` under certain circumstances.

# testthat 2.3.0

## Conditions

This release mostly focusses on an overhaul of how testthat works with conditions (i.e. errors, warnings and messages). There are relatively few user-facing changes, although you should now see more informative backtraces from errors and failures.

* Unexpected errors are now printed with a simplified backtrace.

* `expect_error()` and `expect_condition()` now display a backtrace
  when the error doesn't conform to expectations (#729).

* `expect_error()`, `expect_warning()` and `expect_message()` now call
  `conditionMessage()` to get the condition message. This generic
  makes it possible to generate messages at print-time rather than
  signal-time.

* `expect_error()` gets a better warning message when you test for a custom
  error class with `regexp`.

* New `exp_signal()` function is a condition signaller that
  implements the testthat protocol (signal with `stop()` if the
  expectation is broken, with a `continue_test` restart).

* Existence of restarts is first checked before invokation. This makes
  it possible to signal warnings or messages with a different
  condition signaller (#874).

* `ListReporter` now tracks expectations and errors, even when they occur
  outside of tests. This ensures that `stop_on_failure` matches the results
  displayed by the reporter (#936).

* You can silence warnings about untested error classes by
  implementing a method for `is_uninformative_warning()`. This method
  should be lazily registered, e.g. with `vctrs::s3_register()`. This
  is useful for introducing an experimental error class without
  encouraging users to depend on the class in their tests.

* Respect options(warn = -1) to ignore all warnings (@jeroen #958).

## Expectations

* Expectations can now be explicitly subclassed with
  `new_expectation()`. This constructor follows our new conventions
  for S3 classes and takes an optional subclass and optional
  attributes.

* Unquoted inputs no longer potentially generate multiple test messages (#929).

* `verify_output()` no longer uses quasiquotation, which fixes issues
  when verifying the output of tidy eval functions (#945).

* `verify_output()` gains a `unicode` parameter to turn on or off the
  use of Unicode characters by the cli package. It is disabled by
  default to prevent the tests from failing on platforms like Windows
  that don't support UTF-8 (which could be your contributors' or your
  CI machines).

* `verify_output()` now correctly handles multi-line condition
  messages.

* `verify_output()` now adds spacing after condition messages,
  consistent with the spacing added after normal output.

* `verify_output()` has a new syntax for inserting headers in output
  files: insert a `"# Header"` string (starting with `#` as in
  Markdown) to add a header to a set of outputs.

## Other minor improvements and bug fixes

* `compare.numeric()` uses a more sophisticated default tolerance that will
  automatically skip tests that rely on numeric tolerance if long doubles are
  not available (#940).

* `JunitReporter` now reports tests in ISO 8601 in the UTC timezone and
  uses the maximum precision of 3 decimal places (#923).

(mef)

doc: Updated devel/R-rlang to 0.4.4

(mef)

(devel/R-rlang) Updated 0.4.0 to 0.4.4  (R-testthat needs new version)

-----------------------------------------
# rlang 0.4.4
* Maintenance release for CRAN.

-----------------------------------------
# rlang 0.4.3

* You can now use glue syntax to unquote on the LHS of `:=`. This
  syntax is automatically available in all functions taking dots with
  `list2()` and `enquos()`, and thus most of the tidyverse. Note that
  if you use the glue syntax in an R package, you need to import glue.

  A single pair of braces triggers normal glue interpolation:

  ```r
  df <- data.frame(x = 1:3)

  suffix <- "foo"
  df %>% dplyr::mutate("var_{suffix}" := x * 2)
  #>  x var_foo
  #> 1 1      2
  #> 2 2      4
  #> 3 3      6
  ```

  Using a pair of double braces is for labelling a function argument.
  Technically, this is shortcut for `"{as_label(enquo(arg))}"`. The
  syntax is similar to the curly-curly syntax for interpolating
  function arguments:

  ```r
  my_wrapper <- function(data, var, suffix = "foo") {
    data %>% dplyr::mutate("{{ var }}_{suffix}" := {{ var }} * 2)
  }
  df %>% my_wrapper(x)
  #>  x x_foo
  #> 1 1    2
  #> 2 2    4
  #> 3 3    6

  df %>% my_wrapper(sqrt(x))
  #>  x sqrt(x)_foo
  #> 1 1    2.000000
  #> 2 2    2.828427
  #> 3 3    3.464102
  ```

* Fixed a bug in magrittr backtraces that caused duplicate calls to
  appear in the trace.

* Fixed a bug in magrittr backtraces that caused wrong call indices.

* Empty backtraces are no longer shown when `rlang_backtrace_on_error`
  is set.

* The tidy eval `.env` pronoun is now exported for documentation
  purposes.

* `warn()` and `abort()` now check that either `class` or `message`
  was supplied. `inform()` allows sending empty message as it is
  occasionally useful for building user output incrementally.

* `flatten()` fails with a proper error when input can't be flattened (#868, #885).

* `inform()` now consistently appends a final newline to the message
  (#880).

* `cnd_body.default()` is now properly registered.

* `cnd_signal()` now uses the same approach as `abort()` to save
  unhandled errors to `last_error()`.

* Parsable constants like `NaN` and `NA_integer_` are now deparsed by
  `expr_deparse()` in their parsable form (#890).

* Infix operators now stick to their LHS when deparsed by
  `expr_deparse()` (#890).

-----------------------------------------
# rlang 0.4.2

* New `cnd_header()`, `cnd_body()` and `cnd_footer()` generics. These
  are automatically called by `conditionMessage.rlang_error()`, the
  default method for all rlang errors.

  Concretely, this is a way of breaking up lazy generation of error
  messages with `conditionMessage()` into three independent
  parts. This provides a lot of flexibility for hierarchies of error
  classes, for instance you could inherit the body of an error message
  from a parent class while overriding the header and footer.

* The reminder to call `last_error()` is now less confusing thanks to
  a suggestion by @markhwhiteii.

* The functions prefixed in `scoped_` have been renamed to use the
  more conventional `local_` prefix. For instance, `scoped_bindings()`
  is now `local_bindings()`. The `scoped_` functions will be
  deprecated in the next significant version of rlang (0.5.0).

* The `.subclass` argument of `abort()`, `warn()` and `inform()` has
  been renamed to `class`. This is for consistency with our
  conventions for class constructors documented in
  https://adv-r.hadley.nz/s3.html#s3-subclassing.

* `inform()` now prints messages to the standard output by default in
  interactive sessions. This makes them appear more like normal output
  in IDEs such as RStudio. In non-interactive sessions, messages are
  still printed to standard error to make it easy to redirect messages
  when running R scripts (#852).

* Fixed an error in `trace_back()` when the call stack contains a
  quosured symbol.

* Backtrace is now displayed in full when an error occurs in
  non-interactive sessions. Previously the backtraces of parent errors
  were left out.

-----------------------------------------
# rlang 0.4.1

* New experimental framework for creating bulleted error messages. See
  `?cnd_message` for the motivation and an overwiew of the tools we
  have created to support this approach. In particular, `abort()` now
  takes character vectors to assemble a bullet list. Elements named
  `x` are prefixed with a red cross, elements named `i` are prefixed
  with a blue info symbol, and unnamed elements are prefixed with a
  bullet.

* Capture of backtrace in the context of rethrowing an error from an
  exiting handler has been improved. The `tryCatch()` context no
  longer leaks in the high-level backtrace.

* Printing an error no longer recommends calling `last_trace()`,
  unless called from `last_error()`.

* `env_clone()` no longer recreates active bindings and is now just an
  alias for `env2list(as.list(env))`. Unlike `as.list()` which returns
  the active binding function on R < 4.0, the value of active bindings
  is consistently used in all versions.

* The display of rlang errors derived from parent errors has been
  improved. The simplified backtrace (as printed by
  `rlang::last_error()`) no longer includes the parent errors. On the
  other hand, the full backtrace (as printed by `rlang::last_trace()`)
  now includes the backtraces of the parent errors.

* `cnd_signal()` has improved support for rlang errors created with
  `error_cnd()`. It now records a backtrace if there isn't one
  already, and saves the error so it can be inspected with
  `rlang::last_error()`.

* rlang errors are no longer formatted and saved through
  `conditionMessage()`. This makes it easier to use a
  `conditionMessage()` method in subclasses created with `abort()`,
  which is useful to delay expensive generation of error messages
  until display time.

* `abort()` can now be called without error message. This is useful
  when `conditionMessage()` is used to generate the message at
  print-time.

* Fixed an infinite loop in `eval_tidy()`. It occurred when evaluating
  a quosure that inherits from the mask itself.

* `env_bind()`'s performance has been significantly improved by fixing a bug
  that caused values to be repeatedly looked up by name.

* `cnd_muffle()` now checks that a restart exists before invoking
  it. The restart might not exist if the condition is signalled with a
  different function (such as `stop(warning_cnd)`).

* `trace_length()` returns the number of frames in a backtrace.

* Added internal utility `cnd_entrace()` to add a backtrace to a
  condition.

* `rlang::last_error()` backtraces are no longer displayed in red.

* `x %|% y` now also works when `y` is of same length as `x` (@rcannood, #806).

* Empty named lists are now deparsed more explicitly as
  `"<named list>"`.

* Fixed `chr()` bug causing it to return invisibly.

(mef)

doc: Updated devel/lua-std-_debug to 1.0.1

(mef)

(devel/lua-std-_debug) Updated to 1.0.1

## Noteworthy changes in release 1.0.1 (2018-09-22) [stable]
### New Features
  - Initial support for Lua 5.4.

(mef)

doc: Updated devel/lua-penlight to 1.7.0

(mef)

(devel/lua-penlight) Updated 1.5.4 to 1.7.0

## 1.7.0 (2019-10-14)
### New features

  - `utils.quote_arg` will now optionally take an array of arguments and escape
    them all into a single string.
  - `app.parse_args` now accepts a 3rd parameter with a list of valid flags and aliasses
  - `app.script_name` returns the name of the current script (previously a private function)

### Changes

  - Documentation updates
  - `utils.quit`: exit message is no longer required, and closes the Lua state (on 5.2+).
  - `utils.assert_arg` and `utils.assert_string`: now return the validated value
  - `pl.compat`: now exports the `jit` and `jit52` flags
  - `pretty.write`: now sorts the output for easier diffs [#293](https://github.com/Tieske/Penlight/pull/293)

### Fixes

  - `utils.raise` changed the global `on_error`-level when passing in bad arguments
  - `utils.writefile` now checks and returns errors when writing
  - `compat.execute` now handles the Windows exitcode -1 properly
  - `types.is_empty` would return true on spaces always, indepedent of the parameter
  - `types.to_bool` will now compare case-insensitive for the extra passed strings
  - `app.require_here` will now properly handle an absolute base path
  - `stringx.split` will no longer append an empty match if the number of requested
    elements has already been reached [#295](https://github.com/Tieske/Penlight/pull/295)
  - `path.common_prefix` and `path.relpath` return the result in the original casing
    (only impacted Windows) [#297](https://github.com/Tieske/Penlight/pull/297)
  - `dir.copyfile`, `dir.movefile`, and `dir.makepath` create the new file/path with
    the requested casing, and no longer force lowercase (only impacted Windows)
    [#297](https://github.com/Tieske/Penlight/pull/297)
  - added a missing assertion on `path.getmtime` [#291](https://github.com/Tieske/Penlight/pull/291)
  - `stringx.rpartition` returned bad results on a not-found [#299](https://github.com/Tieske/Penlight/pull/299)

## 1.6.0 (2018-11-23)
### New features

  - `pl.compat` now provides `unpack` as `table.unpack` on Lua 5.1

### Changes

  - `utils.unpack` is now documented and respects `.n` field of its argument.
  - `tablex.deepcopy` and `tablex.deepcompare` are now cycle aware (#262)
  - Installing through LuaRocks will now include the full rendered documentation

### Fixes

  - Fixed `seq.last` returning `nil` instead of an empty list when given an empty iterator (#253).
  - `pl.template` now applies `tostring` when substituting values in templates, avoiding errors when they are not strings or numbers (#256).
  - Fixed `pl.import_into` not importing some Penlight modules (#268).
  - Fixed version number stuck at 1.5.2 (#260).
  - Fixed `types.is_empty` returning `true` on tables containing `false` key (#267).
  - Fixed `test.assertraise` throwing an error when passed an array with a function to call plus its arguments (#272).
  - Fixed `test.assertraise` not throwing an error when given function does not error but instead returns a string matching given error pattern.
  - Fixed placeholder expressions being evaluated with wrong precedence of binary and unary negation.
  - Fixed placeholder expressions being evaluated assuming wrong binary operator associativity (e.g. `_1-(_2+_3)` was evaluated as `(_1-_2)+_3`.
  - Fixed placeholder expressions being evaluated as if unary operators take precedence over power operator (e.g. `(-_1)^_2`) was evaluated as `-(_1^2)`).
  - Fixed vulnerable backtracking pattern in `pl.stringx.strip` (#275)

(mef)

delete dupe entry, sorry

(mef)

doc: Updated devel/lua-gi to 0.9.2

(mef)

doc: Updated devel/lua-gi to 0.9.2

(mef)

(devel/lua-gi) Updated 0.9.1 to 0.9.2. ChangeLog from README.md

### 0.9.2 (9-Oct-2017)

- fix assorted crashes in closure callback invocation code
- fix double-free bug caused by incorrect annotation of Gio.DBusProxy.get_interface_info
- fix marshaling of arrays of pointers
- make objects unusable in __gc metamethod
- work around API break in GLib 2.54
- use structured GLib logging when available
- add Gio.Async support also for static methods and global functions
- better error message when Gtk.init fails
- add support for Travis
- don't hardcode pkg-config executable
- fix URI in GStreamer sample
- fix flags for DBus samples

(mef)

doc: Updated editors/emacs-snapshot to 28.0.50

(mef)

(editors/emacs-snapshot) Updated 27.0.60 to 28.0.50, ChangeLog not unknown.

(mef)

doc: Updated security/clamav to 0.102.2

(taca)

security/clamav: update to 0.102.2

Update clamav to 0.102.2.

## 0.102.2

ClamAV 0.102.2 is a bug patch release to address the following issues.

- [CVE-2020-3123](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-3123):
  An Denial-of-Service (DoS) condition may occur when using the optional credit
  card data-loss-prevention (DLP) feature. Improper bounds checking of an
  unsigned variable resulted in an out-of-bounds read which causes a crash.

- Significantly improved scan speed of PDF files on Windows.

- Re-applied a fix to alleviate file access issues when scanning RAR files in
  downstream projects that use libclamav where the scanning engine is operating
  in a low-privelege process. This bug was originally fixed in 0.101.2 and the
  fix was mistakenly omitted from 0.102.0.

- Fixed an issue wherein freshclam failed to update if the database version
  downloaded is 1 version older than advertised. This situation may occur after
  a new database version is published. The issue affected users downloading the
  whole CVD database file.

- Changed the default freshclam ReceiveTimeout setting to 0 (infinite).
  The ReceiveTimeout had caused needless database update failures for users with
  slower internet connections.

- Correctly display number of kilobytes (KiB) in progress bar and reduced the
  size of the progress bar to accomodate 80-char width terminals.

- Fixed an issue where running freshclam manually causes a daemonized freshclam
  process to fail when it updates because the manual instance deletes the
  temporary download directory. Freshclam temporary files will now download to a
  unique directory created at the time of an update instead of using a hardcoded
  directory created/destroyed at the program start/exit.

- Fix for Freshclam's OnOutdatedExecute config option.

- Fixes a memory leak in the error condition handling for the email parser.

- Improved bound checking and error handling in ARJ archive parser.

- Improved error handling in PDF parser.

- Fix for memory leak in byte-compare signature handler.

- Updates to the unit test suite to support libcheck 0.13.

- Updates to support autoconf 2.69 and automake 1.15.

Special thanks to the following for code contributions and bug reports:

- Antoine Desch棚nes
- Eric Lindblad
- Gianluigi Tiesi
- Tuomo Soini

(taca)

Add comms/remserial 1.4

The remserial program acts as a communications bridge between a
TCP/IP network port and a Linux device such as a serial port. Any
character-oriented Linux /dev device will work.

The program can also use pseudo-ttys as the device. A pseudo-tty
is like a serial port in that it has a /dev entry that can be opened
by a program that expects a serial port device, except that instead
of belonging to a physical serial device, the data can be intercepted
by another program. The remserial program uses this to connect a
network port to the "master" (programming) side of the pseudo-tty
allowing the device driver (slave) side to be used by some program
expecting a serial port. See example 3 below for details.

The program can operate as a server accepting network connections
from other machines, or as a client, connecting to remote machine
that is running the remserial program or some other program that
accepts a raw network connection. The network connection passes
data as-is, there is no control protocol over the network socket.

Multiple copies of the program can run on the same computer at the
same time assuming each is using a different network port and
device.

(manu)

Make sure power is enabled on startup. Useful for D-Link DWM-157

Submitted upstream as https://github.com/gammu/gammu/pull/516

(manu)

ghc7: Update SunOS bootstrap kit and fix a couple of issues.

(jperkin)

doc: Updated www/webkit-gtk to 2.26.4

(leot)

webkit-gtk: Update to 2.26.4

Changes:
2.26.4
======
- Always use a light theme for rendering form controls.
- Fix the build with WPE renderer disabled.
- Fix the build with OpenGL disabled.
- Fix the build with GCC 10.
- Fix several crashes and rendering issues.

(leot)

doc: Updated sysutils/entr to 4.4

(leot)

entr: Update to 4.4

Changes:
4.4
---
- Use a single inotify queue on Linux, limited by
  /proc/sys/fs/inotify/max_user_watches
- Set the environment variable `ENTR_INOTIFY_WORKAROUND` to enable a
  compatibility mode for platforms with deformed inotify support

(leot)

Updated databases/postgresqlNN

(adam)

postgresqlNN: updated to 12.2, 11.7, 10.12, 9.6.17, 9.5.21, and 9.4.26

PostgreSQL 12.2, 11.7, 10.12, 9.6.17, 9.5.21, and 9.4.26

PostgreSQL 9.4 Now EOL

This is the last release for PostgreSQL 9.4, which will no longer receive security updates and bug fixes. PostgreSQL 9.4 introduced new features such as JSONB support, the ALTER SYSTEM command, the ability to stream logical changes to an output plugin, and more.

While we are very proud of this release, these features are also found in newer versions of PostgreSQL. Many of these features have also received improvements, and, per our versioning policy, it is time to retire PostgreSQL 9.4.

To receive continued support, we suggest that you make plans to upgrade to a newer, supported version of PostgreSQL. Please see the PostgreSQL versioning policy for more information.

Security Issues

CVE-2020-1720: ALTER ... DEPENDS ON EXTENSION is missing authorization checks.
Versions Affected: 9.6 - 12

The ALTER ... DEPENDS ON EXTENSION sub-commands do not perform authorization checks, which can allow an unprivileged user to drop any function, procedure, materialized view, index, or trigger under certain conditions. This attack is possible if an administrator has installed an extension and an unprivileged user can CREATE, or an extension owner either executes DROP EXTENSION predictably or can be convinced to execute DROP EXTENSION.

Bug Fixes and Improvements

This update also fixes over 75 bugs that were reported in the last several months. Some of these issues affect only version 12, but may also affect all supported versions.

Some of these fixes include:

Fix for partitioned tables with foreign-key references where TRUNCATE ... CASCADE would not remove all data. If you have previously used TRUNCATE ... CASCADE on a partitioned table with foreign-key references please see the "Updating" section for verification and cleanup steps.
Fix failure to add foreign key constraints to table with sub-partitions (aka a multi-level partitioned table). If you have previously used this functionality, you can fix it by either detaching and re-attaching the affected partition, or by dropping and re-adding the foreign key constraint to the parent table. You can find more information on how to perform these steps in the ALTER TABLE documentation.
Fix performance issue for partitioned tables introduced by the fix for CVE-2017-7484 that now allows the planner to use statistics on a child table for a column that the user is granted access to on the parent table when the query contains a leaky operator.
Several other fixes and changes for partitioned tables, including disallowing partition key expressions that return pseudo-types, such as RECORD.
Fix for logical replication subscribers for executing per-column UPDATE triggers.
Fix for several crashes and failures for logical replication subscribers and publishers.
Improve efficiency of logical replication with REPLICA IDENTITY FULL.
Ensure that calling pg_replication_slot_advance() on a physical replication slot will persist changes across restarts.
Several fixes for the walsender processes.
Improve performance of hash joins with very large inner relations.
Fix placement of "Subplans Removed" field in EXPLAIN output by placing it with its parent Append or MergeAppend plan.
Several fixes for parallel query plans.
Several fixes for query planner errors, including one that affected joins to single-row subqueries.
Several fixes for MCV extend statistics, including one for incorrect estimation for OR clauses.
Improve efficiency of parallel hash join on CPUs with many cores.
Ignore the CONCURRENTLY option when performing an index creation, drop, or reindex on a temporary table.
Fall back to non-parallel index builds when a parallelized CREATE INDEX has no free dynamic shared memory slots.
Several fixes for GiST & GIN indexes.
Fix possible crash in BRIN index operations with box, range and inet data types.
Fix support for BRIN hypothetical indexes.
Fix failure in ALTER TABLE when a column referenced in a GENERATED expression is added or changed in type earlier in the same ALTER TABLE statement.
Fix handling of multiple AFTER ROW triggers on a foreign table.
Fix off-by-one result for EXTRACT(ISOYEAR FROM timestamp) for BC dates.
Prevent unwanted lowercasing and truncation of RADIUS authentication parameters in the pg_hba.conf file.
Several fixes for GSSAPI support, including having libpq accept all GSS-related connection parameters even if the GSSAPI code is not compiled in.
Several fixes for pg_dump and pg_restore when run in parallel mode.
Fix crash with postgres_fdw when trying to execute a remote query on the remote server such as UPDATE remote_tab SET (x,y) = (SELECT ...).
Disallow NULL category values in the crosstab() function of contrib/tablefunc to prevent crashes.
Several fixes for Windows, including a race condition that could cause timing oddities with NOTIFY.
Several ecpg fixes.

(adam)