lang/php71: update to 7.1.16

29 Mar 2018, PHP 7.1.16

- Core:
  . Fixed bug #76025 (Segfault while throwing exception in error_handler).
    (Dmitry, Laruence)
  . Fixed bug #76044 ('date: illegal option -- -' in ./configure on FreeBSD).
    (Anatol)

- FPM:
  . Fixed bug #75605 (Dumpable FPM child processes allow bypassing opcache
    access controls). (Jakub Zelenka)

- GD:
  . Fixed bug #73957 (signed integer conversion in imagescale()). (cmb)

- ODBC:
  . Fixed bug #76088 (ODBC functions are not available by default on Windows).
    (cmb)

- Opcache:
  . Fixed bug #76074 (opcache corrupts variable in for-loop). (Bob)

- Phar:
  . Fixed bug #76085 (Segmentation fault in buildFromIterator when directory
    name contains a \n). (Laruence)

- Standard:
  . Fixed bug #74139 (mail.add_x_header default inconsistent with docs). (cmb)
  . Fixed bug #76068 (parse_ini_string fails to parse "[foo]\nbar=1|>baz" with
    segfault). (Anatol)

(taca)

doc: note update of Ruby language packages

lang/ruby24-base 2.4.4
lang/ruby24 2.4.4
lang/ruby25-base 2.5.1
lang/ruby25 2.5.1
lang/ruby23-base 2.3.7
lang/ruby23 2.3.7
lang/ruby22-base 2.2.10
lang/ruby22 2.2.10
devel/ruby-mode 2.5.1
databases/ruby-gdbm 2.4.4
devel/ruby-fiddle 2.4.4
devel/ruby-readline 2.4.4
x11/ruby-tk 2.3.7

(taca)

x11/ruby-tk: reset PKGREVISION

Reset PKGREVISION by updates of all ruby*-base packages.

(taca)

databases/ruby-gdbm: reset PKGREVISION

Reset PKGREVISION by updates of all ruby*-base packages.

(taca)

lang/ruby22-base: update to 2.2.10, security release

Ruby 2.2.10 Released Posted by usa on 28 Mar 2018

Ruby 2.2.10 has been released.  This release includes several security
fixes. Please check the topics below for details.

* CVE-2017-17742: HTTP response splitting in WEBrick
* CVE-2018-8777: DoS by large request in WEBrick
* CVE-2018-6914: Unintentional file and directory creation with directory
  traversal in tempfile and tmpdir
* CVE-2018-8778: Buffer under-read in String#unpack
* CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in
  UNIXServer and UNIXSocket
* CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
* Multiple vulnerabilities in RubyGems

Ruby 2.2 is under the state of the security maintenance phase, until the end
of the March of 2018.  After the date, maintenance of Ruby 2.2 will be ended.
So, this release is expected to be the last release of Ruby 2.2.  We will
never make a new release of Ruby 2.2 unless Ruby 2.2.10 has a serious
regression bug.  We recommend you migrating to newer versions of Ruby, such as
2.5.

(taca)

lang/ruby23-base: update to 2.3.7, security release

Ruby 2.3.7 Released Posted by usa on 28 Mar 2018

Ruby 2.3.7 has been released.

This release includes about 70 bug fixes after the previous release, and also
includes several security fixes.  Please check the topics below for details.

* CVE-2017-17742: HTTP response splitting in WEBrick
* CVE-2018-8777: DoS by large request in WEBrick
* CVE-2018-6914: Unintentional file and directory creation with directory
  traversal in tempfile and tmpdir
* CVE-2018-8778: Buffer under-read in String#unpack
* CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in
  UNIXServer and UNIXSocket
* CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
* Multiple vulnerabilities in RubyGems

See the ChangeLog for details.

After this release, we will end the normal maintenance phase of Ruby 2.3, and
start the security maintenance phase of it.  This means that after the release
of 2.3.7 we will never backport any bug fixes to 2.3 except security fixes.
The term of the security maintenance phase is scheduled for 1 year.  By the
end of this term, official support of Ruby 2.3 will be over.  Therefore, we
recommend that you start planning to upgrade to Ruby 2.5 or 2.4.

(taca)

lang/ruby25-base: update to 2.5.1, security release

Ruby 2.5.1 Released Posted by naruse on 28 Mar 2018

Ruby 2.5.1 has been released.

This release includes some bug fixes and some security fixes.

* CVE-2017-17742: HTTP response splitting in WEBrick
* CVE-2018-6914: Unintentional file and directory creation with directory
  traversal in tempfile and tmpdir
* CVE-2018-8777: DoS by large request in WEBrick
* CVE-2018-8778: Buffer under-read in String#unpack
* CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in
  UNIXServer and UNIXSocket
* CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
* Multiple vulnerabilities in RubyGems

There are also some bug fixes. See commit logs for more details.

(taca)

lang/ruby24-base: update to 2.4.4, security release

Ruby 2.4.4 Released Posted by nagachika on 28 Mar 2018

Ruby 2.4.4 has been released.

This release includes some bug fixes and some security fixes.

* CVE-2017-17742: HTTP response splitting in WEBrick
* CVE-2018-6914: Unintentional file and directory creation with directory
  traversal in tempfile and tmpdir
* CVE-2018-8777: DoS by large request in WEBrick
* CVE-2018-8778: Buffer under-read in String#unpack
* CVE-2018-8779: Unintentional socket creation by poisoned NUL byte in
  UNIXServer and UNIXSocket
* CVE-2018-8780: Unintentional directory traversal by poisoned NUL byte in Dir
* Multiple vulnerabilities in RubyGems

There are also some bug fixes. See commit logs for more details.

(taca)

doc: Updated time/ruby-tzinfo-data to 1.2018.4

(taca)

time/ruby-tzinfo-data: update to 1.2018.4

1.2018.4 (2018/03/25)

Based on version 2018d of the IANA Time Zone Database
(https://mm.icann.org/pipermail/tz-announce/2018-March/000049.html).

(taca)

doc: Updated devel/ruby-getopt to 1.4.4

(taca)

devel/ruby-getopt: update to 1.4.4

== 1.4.4 - 24-Mar-2018
* Fixed a deprecation warning.
* Now requires Ruby 2.2 or later.
* Added metadata to the gemspec.
* Updated the cert.

(taca)

doc: Updated net/bind99 to 9.9.12

(taca)

net/bind99: update to 9.9.12

New maintenance releases in the 9.9, 9.10, 9.11, and 9.12 branches of
BIND are now available.

Release notes can be found with the releases or in the ISC Knowledge Base:

9.9.12:  https://kb.isc.org/article/AA-01596/0/9.9.12-Notes.html
9.10.7:  https://kb.isc.org/article/AA-01595/0/9.10.7-Notes.html
9.11.3:  https://kb.isc.org/article/AA-01597/0/9.11.3-Notes.html
9.12.1:  https://kb.isc.org/article/AA-01598/0/9.12.1-Notes.html

Users who are migrating an existing BIND configuration to these new
versions should take special note of two changes in the behavior
of the "update-policy" statement which slightly change the behavior
of two update-policy options.

The first such change is discussed in greater length in the BIND
Operational Notification issued today:

https://kb.isc.org/article/AA-01599/update-policy-local-was-named-misleadingly

The second change to update-policy behavior concerns this change:

  "update-policy rules that otherwise ignore the name field now
  require that it be set to "." to ensure that any type list present
  is properly interpreted. Previously, if the name field was omitted
  from the rule declaration but a type list was present, it wouldn't
  be interpreted as expected."

which is a correction to an ambiguous case that was previously allowed,
but which was capable of causing unexpected results when accidentally
applied.  The new requirement eliminates is intended to eliminate the
confusion, which previously caused some operators to misapply security
policies.  However, due to the new requirement, named configuration
files that relied on the previous behavior will no longer be accepted.

These changes should not affect most operators, even those using
"update-policy" to define Dynamic DNS permissions, but we would like
to draw your attention to them so that operators are informed about
the new behaviors.

(taca)

doc: Updated net/bind910 to 9.10.7

(taca)

net/bind910: update to 9.10.7

New maintenance releases in the 9.9, 9.10, 9.11, and 9.12 branches of
BIND are now available.

Release notes can be found with the releases or in the ISC Knowledge Base:

9.9.12:  https://kb.isc.org/article/AA-01596/0/9.9.12-Notes.html
9.10.7:  https://kb.isc.org/article/AA-01595/0/9.10.7-Notes.html
9.11.3:  https://kb.isc.org/article/AA-01597/0/9.11.3-Notes.html
9.12.1:  https://kb.isc.org/article/AA-01598/0/9.12.1-Notes.html

Users who are migrating an existing BIND configuration to these new
versions should take special note of two changes in the behavior
of the "update-policy" statement which slightly change the behavior
of two update-policy options.

The first such change is discussed in greater length in the BIND
Operational Notification issued today:

https://kb.isc.org/article/AA-01599/update-policy-local-was-named-misleadingly

The second change to update-policy behavior concerns this change:

  "update-policy rules that otherwise ignore the name field now
  require that it be set to "." to ensure that any type list present
  is properly interpreted. Previously, if the name field was omitted
  from the rule declaration but a type list was present, it wouldn't
  be interpreted as expected."

which is a correction to an ambiguous case that was previously allowed,
but which was capable of causing unexpected results when accidentally
applied.  The new requirement eliminates is intended to eliminate the
confusion, which previously caused some operators to misapply security
policies.  However, due to the new requirement, named configuration
files that relied on the previous behavior will no longer be accepted.

These changes should not affect most operators, even those using
"update-policy" to define Dynamic DNS permissions, but we would like
to draw your attention to them so that operators are informed about
the new behaviors.

(taca)

doc: Updated devel/transifex-client to 0.13.1

(taca)

devel/transifex-client: update to 0.13.1

0.12.2 2016/08/10

* Better proxy support

0.12.3 2017/01/31

* XLIFF and tokens support

0.12.4 2017/02/07

* Fixes to XLIFF support

0.12.5 2017/11/02

* Support for Basic Authentication when using the client behind a proxy
* Support for sourceastranslation and onlyreviewed modes when pulling files
* Return non-zero exit codes on errors
* $ tx --version now includes information about the Python version and
  architecture you're running
* Some updates and minor fixes in logging/error messages

0.13.0 2018/01/08

* Rename set command to config while maintaining backwards compatibility.
* --auto-local, --auto-remote options have become mapping and mapping-remote
  subcommands. Backwards compatibility has been maintained and the options
  (and subcommands) are supported both when using tx set and tx config
  commands.
* Introduce mapping-bulk subcommand to tx config command. mapping-bulk is
  similar to mapping but configures a whole directory of files and not a
  single file.
* Support branch specific push / pull using the --branch option.
* Add interactive wizard for tx config command. Interactive wizard is
  triggered by default after tx init if --skipsetup option is not passed and
  by the tx config if called without any options or subcommands.

0.13.1 2018/02/09

* Fix some python 3 compatibility issues
* Fix CI for python 3
* Add Python 3.6 in the supported versions

Note: For windows executables for more python version see:
https://ci.appveyor.com/project/transifex/transifex-client/build/1.0.445.

(taca)

doc: Updated www/ruby-loofah to 2.2.2

(taca)

www/ruby-loofah: update to 2.2.2

## 2.2.2 / 2018-03-22

Make public `Loofah::HTML5::Scrub.force_correct_attribute_escaping!`,
which was previously a private method. This is so that downstream gems
(like rails-html-sanitizer) can use this logic directly for their own
attribute scrubbers should they need to address CVE-2018-8048.

(taca)

doc: Updated sysutils/puppet to 5.5.0

(taca)

sysutils/puppet: update to 5.5.0

Puppet 5.5.0
Released March 20, 2018.

This is a feature and bug-fix release of Puppet.

Please refer release note for full changes:
<https://puppet.com/docs/puppet/5.5/release_notes.html>.

(taca)

doc: Updated net/ruby-netaddr to 2.0.3

(taca)

net/ruby-netaddr: update to 2.0.3

2.0.2 (2018/01/27)

* add to_net()

2.0.3 (2018/03/23)

* add contains()
* add long()
* Remove unused `newNet` local variable to stop warning

(taca)

doc: Updated devel/ruby-native-package-installer to 1.0.6

(taca)

devel/ruby-native-package-installer: update to 1.0.6

## 1.0.6 - 2017-12-05

### Improvements

  * Added meta character support in package name.
    [GitHub#8][Reported by Mamoru TASAKA]

### Fixes

  * Removed needless ArchLinux fallback from PLD Linux.
    [GitHub#7][Reported by Elan Ruusam辰e]

### Thanks

  * Elan Ruusam辰e

  * Mamoru TASAKA

## 1.0.5 - 2017-11-11

### Improvements

  * Removed needless Packnga development dependency.
    [GitHub#4][Patch by HIGUCHI Daisuke]

  * Added PLD Linux support.
    [GitHub#6][Patch by Elan Ruusam辰e]

### Fixes

  * Fixed a bug that `:redhat` package isn't used for Fedora platform.
    [GitHub#5][Patch by HIGUCHI Daisuke]

### Thanks

  * HIGUCHI Daisuke

  * Elan Ruusam辰e

(taca)

doc: Updated www/ruby-rails-html-sanitizer to 1.0.4

(taca)

www/ruby-rails-html-sanitizer: update to 1.0.4

1.0.4 (2018/03/22)

* Fix CVE-2018-3741. (FIx a possible XSS vulnerability)

(taca)

doc: Updated sysutils/ruby-childprocess to 0.9.0

(taca)

sysutils/ruby-childprocess: update to 0.9.0

### Version 0.9.0 / 2018-03-10

* Added support for DragonFly BSD.

(taca)

doc: Updated security/ruby-rex-socket to 0.1.12

(taca)

security/ruby-rex-socket: update to 0.1.12

0.1.12 (2018/03/21)

* Land #9, improve SSL certificate generation
* fix is_mac_addr to validate if something is _only_ a mac address
* Improve SSL certificate generation

0.1.11 (2018/02/09)

* Land #8, factor out SSL bits
* Address Brent's comment - drop @@loaded_openssl
* Implement a certificate provider pattern in Socket
* Extract and mixin cert ops from server module

(taca)

doc: Updated devel/ruby-mocha to 1.4.0

(taca)

devel/ruby-mocha: update to 1.4.0

1.4.0 (2018/03/20)

* Fix deprecation warning for assert_nil in ClassMethodTest (#308 & #309)
* Display file and line number in deprecation warning - thanks to @chrisarcand
  (#310, #312 & #313)
* Rename mocha/mini_test.rb to mocha/minitest.rb - thanks to @grosser (#320 &
  #322)
* Fix warning when delegating to mock in Ruby 2.4 - thanks to @tjvc (#321 &
  #323)
* Updates to Travis CI configuration (73af600..9732726 & 0426e5e)

(taca)

doc: Updated devel/ruby-mixlib-config to 2.2.6

(taca)

devel/ruby-mixlib-config: update to 2.2.6

2.2.6 (2018-03-22)

* Adding support for reading from TOML files #55 (tyler-ball)

(taca)

doc: Updated devel/ruby-byebug to 10.0.1

(taca)

devel/ruby-byebug: update to 10.0.1

## 10.0.1 - 2018-03-21

### Fixed

* Error when using byebug with `debase` gem (#443, @tzmfreedom)

(taca)

doc: Updated databases/ruby-mysql2 to 0.5.0

(taca)

databases/ruby-mysql2: update to 0.5.0

0.5.0 2018/3/21

Breaking Changes

* Ruby 2.0 or higher required. Ruby 1.8.7 and Ruby 1.9.3 are not supported.
* MySQL 5.5 or higher required. MySQL 5.0 and 5.1 are not supported.

New Features

* Expose mysql_set_server_option to turn multiple statements on and off (#943)
* Accept query options on Statement#execute (#912)
* Support connect attributes and the program_name attribute (#760)
* Make server_status variable available (#755)

Bug Fixes

* Fix wrong value of type YEAR on big endian environment (#921)
* MySQL 8.0.3 Release Candidate removes MYSQL_SECURE_AUTH (#891)
* Suppress Fixnum and Bignum warnings on Ruby 2.4 (#907)

Changes

* Resolve warnings for my_bool vs. bool types (#916, #919)
* Call BigDecimal(num) instead of BigDecimal.new(num) (#925, #928)
* GitHub is HTTPS by default (#922)
* Misc Cleanups (#918)
* More specific exception classes (#260, #404, #870, 911)
* Update RuboCop to 0.50.x (#752)
* Prefix more C functions with rb_mysql_ (#910)
* Fix compat with RubyInstaller-2.4 on Windows (#875)

(taca)

www/firefox: set some macro before including <bsd.prefs.mk>

Set some make macro before including <bsd.prefs.mk> in order to allow
to set additional values in mk.conf.

(taca)

doc: note update of Postfix packages to 3.3.0

mail/postfix
mail/postfix-cdb
mail/postfix-ldap
mail/postfix-lmdb
mail/postfix-mysql
mail/postfix-pcre
mail/postfix-pgsql
mail/postfix-sqlite

(taca)

mail/postfix: update to 3.3.0

Postfix stable release 3.3.0 is available. This release ends support
for legacy release Postfix 2.11.

The main changes are:

  * Dual license: in addition to the historical IBM Public License
    1.0, Postfix is now also distributed with the more recent Eclipse
    Public License 2.0. Recipients can choose to take the software
    under the license of their choice. Those who are more comfortable
    with the IPL can continue with that license.

  * The postconf command now warns about unknown parameter names
    in a Postfix database configuration file. As with other unknown
    parameter names, these warnings can help to find typos early.

  * Container support: Postfix 3.3 will run in the foreground with
    "postfix start-fg". This requires that Postfix multi-instance
    support is disabled (the default). To collect Postfix syslog
    information on the container's host, mount the host's /dev/log
    socket into the container, for example with "docker run -v
    /dev/log:/dev/log ...other options...", and specify a distinct
    Postfix syslog_name setting in the container (for example with
    "postconf syslog_name=the-name-here").

  * Milter support: applications can now send RET and ENVID parameters
    in SMFIR_CHGFROM (change envelope sender) requests.

  * Postfix-generated From: headers with 'full name' information
    are now formatted as "From: name <address>" by default. Specify
    "header_from_format = obsolete" to get the earlier form "From:
    address (name)".

  * Interoperability: when Postfix IPv6 and IPv4 support are both
    enabled, the Postfix SMTP client will now relax MX preferences
    and attempt to schedule similar numbers of IPv4 and IPv6
    addresses. This works around mail delivery problems when a
    destination announces lots of primary MX addresses on IPv6, but
    is reachable only over IPv4 (or vice versa). The new behavior
    is controlled with the smtp_balance_mx_inet_protocols parameter.

  * Compatibility safety net: with compatibility_level < 1, the
    Postfix SMTP server now warns for mail that would be blocked
    by the Postfix 2.10 smtpd_relay_restrictions feature, without
    blocking that mail. There still is a steady trickle of sites
    that upgrade from an earlier Postfix version.

(taca)

doc: Updated sysutils/ruby-childprocess to 0.8.0

(taca)

sysutils/ruby-childprocess: update to 0.8.0

### Version 0.8.0 / 2017-09-23

* Added a method for determining whether or nto a process had been started.

(taca)

doc: Updated sysutils/puppet to 5.4.0

(taca)

sysutils/puppet: update to 5.4.0

Changes are too many to write here, please refer these release notes:

<https://puppet.com/docs/puppet/5.3/release_notes.html>
<https://puppet.com/docs/puppet/5.4/release_notes.html>

(taca)

doc: note update of ISC DHCP packages to 4.4.1

net/isc-dhcp4
net/isc-dhclient4
net/isc-dhcpd4
net/isc-dhcrelay4

(taca)

net/isc-dhcp4: update to 4.4.1

The areas of focus for ISC DHCP 4.4 were:

1. Dynamic DNS additions
2. dhclient improvements
3. Support for dynamic shared libraries

Dynamic DNS Improvements:

- We added three new server configuration parameters which influence DDNS
  conflict resolution:

    1. ddns-dual-stack-mixed-mode - alters DNS conflict resolution behavior
    to mitigate issues with non-compliant clients in dual stack environments.

    2. ddns-guard-id-must-match - relaxes the DHCID RR client id matching
    requirement of DNS conflict resolution.

    3. ddns-other-guard-is-dynamic - alters dual-stack-mixed-mode behavior to
    allow unguarded DNS entries to be overwritten in certain cases

- The server now honors update-static-leases parameter for static DHCPv6
  hosts.

dhclient Improvements:

  - We've added three command line parameters to dhclient:

    1. --prefix-len-hint - directs dhclient to use the given length as
    the prefix length hint when requesting prefixes

    2. --decline-wait-time - instructs the client to wait the given number
    of seconds after declining an IPv4 address before issuing a discover

    3. --address-prefix-len - specifies the prefix length passed by dhclient
    into the client script (via the environment variable ip6_prefixlen) with
    each IPv6 address.  We added this parameter because we have changed the
    default value from 64 to 128 in order to be compliant with RFC3315bis
    draft (-09, page 64) and RFC5942, Section 4, point 1.
    **WARNING**: The new default value of 128 may not be backwardly compatible
    with your environment. If you are operating without a router, such as
    between VMs on a host, you may find they cannot see each other with prefix
    length of 128. In such cases, you'll need to either provide routing or use
    the command line parameter to set the value to 64. Alternatively you may
    change the default at compile time by setting DHCLIENT_DEFAULT_PREFIX_LEN
    in includes/site.h.

  - dhclient will now generate a DHCPv6 DECLINE message when the client script
    indicates a DAD failure

Dynamic shared library support:

  Configure script, configure.ac+lt, which supports libtool is now provided
  with the source tar ball.  This script can be used to configure ISC DHCP
  to build with libtool and thus use dynamic shared libraries.

Other Highlights:

- The server now supports dhcp-cache-threshold for DHCPv6 operations
- The server now supports DHPv6 address allocation based on EUI-64 DUIDs
- Experimental support for alternate relay port in the both the server
  and relay for IPv4, IPv6 and 4o6 (see: draft-ietf-dhc-relay-port-10.txt)

For information on how to install, configure and run this software, as
well as how to find documentation and report bugs, please consult the
README file.

ISC DHCP uses standard GNU configure for installation. Please review the
output of "./configure --help" to see what options are available.

The system has only been tested on Linux, FreeBSD, and Solaris, and may not
work on other platforms. Please report any problems and suggested fixes to
<dhcp-users@isc.org>.

ISC DHCP is open source software maintained by Internet Systems
Consortium.  This product includes cryptographic software written
by Eric Young (eay@cryptsoft.com).

                Changes since 4.4.0 (New Features)
- none
Changes since 4.4.0 (Bug Fixes)

- A delayed-ack value of 0 (the default), now correctly disables the delayed
  feature.  A change in 4.4.0 prohibited lease updates marking leases active
  from be written to the lease file when delayed-ack is 0. This in turn,
  caused servers to lose active lease assignments upon restart.
  [ISC-Bugs #47141]

! Option reference count was not correctly decremented in error path
  when parsing buffer for options. Reported by Felix Wilhelm, Google
  Security Team.
  [ISC-Bugs #47140]
  CVE: CVE-2018-5733

! Corrected an issue where large sized 'X/x' format options were causing
  option handling logic to overwrite memory when expanding them to human
  readable form. Reported by Felix Wilhelm, Google Security Team.
  [ISC-Bugs #47139]
  CVE: CVE-2018-5732

(taca)

doc: Updated devel/ruby-mode to 2.5.0

(taca)

devel/ruby-mode: update to 2.5.0

* ruby-additional.el: shorten here-doc markers
* Import ruby-electric.el version 2.3.1 from upstream

(taca)

doc: update devel/SOPE and www/SOGo to 2.3.23

(taca)

www/SOGo: update to 2.3.23

2.3.23 (2017-10-18)
-------------------

Enhancements
- [web] added Simplified Chinese (zh_CN) translation - thanks to Thomas Kuiper
- [web] updated CKEditor to version 4.7.3

Bug fixes
- [core] yearly repeating events are not shown in web calendar (#4237)
- [core] correctly handle "Last day of the month" recurrence rule
- [core] fixed yearly recurrence calculator with until date
- [core] generalized HTML sanitization to avoid encoding issues when replying/forwarding mails
- [eas] avoid sync requests for shared folders every second (#4275)

(taca)

devel/SOPE: update to 2.3.23

Required by SOGo 2.3.23.

(taca)

doc: Updated www/ruby-em-websocket to 0.5.1nb1

(taca)

www/ruby-em-websocket: add missing dependency

* Add missing dependency.

(taca)

doc: Updated textproc/ruby-safe_yaml to 1.0.4nb1

(taca)

textproc/ruby-safe_yaml: add pkg_alternatives support

Bump PKGREVISION.

(taca)

doc: Updated devel/hoe to 3.17.0

(taca)

devel/hoe: update to 3.17.0

=== 3.17.0 / 2018-03-17

* 2 minor enhancements:

  * Added task check_key to see if your signing cert is expired or not.
  * Bump rdoc dependency to range from 4.x to 5.x.

* 1 bug fix:

  * Fixed ridocs rake task.

(taca)

doc: Updated security/ruby-rex-powershell to 0.1.77

(taca)

security/ruby-rex-powershell: update to 0.1.77

0.1.77 2017/09/23

* Convert double quotes to single quotes to match #{URL}

0.1.76 2017/09/07

* Merge pull request #9 from sempervictus/feature-payload_msil_jit

0.1.75 2017/08/25

* Remove useless failing spec

* Improve use of RandomIdentifier::Generator
* Add MSIL to template constants
* Update spec for MSIL payload
* Implement MSIL payload in Rex gem via template
* Update spec for command
* Finalize quote wrapper
* Rework quote handling
* Cleanup Command single quotes redundant gsub

0.1.74 2017/07/18

* Alternative to IEX in dl_and_exec_string methods
* Command spec - deal with :use_single_quotes
* Output and command improvements for Win10

0.1.73 2017/05/12

* update spec to require Ruby 2.2.0 or greater

(taca)

doc: Updated security/ruby-rex-socket to 0.1.10

(taca)

security/ruby-rex-socket: update to 0.1.10

0.1.10 2017/10/25

* improve cert generation

(taca)

doc: Updated security/ruby-rex-core to 0.1.13

(taca)

security/ruby-rex-core: update to 0.1.13

0.1.13 2017/07/20

* partially revert 06bfb88
* minor gem cleanups

(taca)

doc: Updated security/ruby-rex-exploitation to 0.1.17

(taca)

security/ruby-rex-exploitation: update to 0.1.17

0.1.17 2018/02/09

* Add bourne busybox base64 decoder

0.1.16 2017/11/29

* Add user agent regexes to HTTP CmdStagers

(taca)

doc: Updated security/ruby-rex-arch to 0.1.13

(taca)

security/ruby-rex-arch: update to 0.1.13

0.1.13 2017/10/30

* add E500V2 architecture for PPC

0.1.12 2017/08/20

* add license, fixup metadata, unlock unneeded pins

(taca)

doc: Updated security/ruby-rex-text to 0.2.16

(taca)

security/ruby-rex-text: update to 0.2.16

0.2.16 2017/05/12

* update spec to require Ruby 2.2.0 or greater

(taca)

doc: Updated security/ruby-nexpose to 7.2.0

(taca)

security/ruby-nexpose: update to 7.2.0

7.2.0 (2018-01-17)

Closed issues:

* list_vuln_exceptions returns API error #312
* Credentials failure after using Site.copy #307
* XML serialization for VulnException incorrect due to extra whitespace #304
* Nexpose timeout does not seem to work #299

Merged pull requests:

* Update vuln exceptions to use generally available API version #313
  (mhuffman-r7)
* Add a method to add common vuln status filters to report configs #303
  (gschneider-r7)
* Updated for Ruby 2.4 Support #301 (twosevenzero)

(taca)

doc: Updated sysutils/ruby-serverspec to 2.41.3

(taca)

sysutils/ruby-serverspec: update to 2.41.3

2.41.3 2017/11/07

* Fix be_installed matcher when used with expect

2.41.2 2017/10/26

* Fix infinite loop in Specinfra::Configuration.os fall back

2.41.1 2017/10/19

* Accept OpenSSL 1.1 X.509 certificate informations

(taca)

doc: Updated sysutils/ruby-specinfra to 2.73.2

(taca)

sysutils/ruby-specinfra: update to 2.73.2

2.73.2 2018/02/07

* [CI] Test against new Ruby 2.x versions
* Detect qemu virtualization as well

2.73.1 2018/01/12

* Refine method get_table()
* Install bundler with --force on appveyor.

2.73.0 2017/12/20

* support Amazon Linux 2 systemd init system
* Add simple Devuan (devuan.org) support

(taca)

doc: Updated www/ruby-selenium-webdriver to 3.11.0

(taca)

www/ruby-selenium-webdriver: update to 3.11.0

3.11.0 (2018-03-11)
===================

Ruby:
  * No changes in Ruby bindings for this release

3.10.0 (Unreleased)
===================

Ruby:
  * Added Errno::EAFNOSUPPORT to the list of ignored errors when finding port (thanks @jtarchie)
  * Added automatic conversion of noProxy to the list of strings as required
    by W3C WebDriver Specification (issue #5004)

Chrome:
  * Added Chrome::Options#headless! shortcut to enable headless mode (thanks @pulkitsharma07)

IE:
  * Added support for getting local storage using Driver#local_storage
  * Added support for getting session storage using Driver#session_storage

3.9.0 (2018-02-06)
==================

Ruby:
  * Fixed a bug when omitted capabilities caused NoMethodError (issue #5185)
  * Fixed a bug when getting page source in W3C dialect caused WebDriverError (thanks @KazuCocoa)
  * Fixed a bug when getting backtrace of server error would case NoMethodError (thanks @mcking49)
  * Updated YARD to ~> 0.9.11
  * Updated rubyzip to ~> 1.2 (thanks @michaelglass)

Chrome:
  * Added support for getting network conditions via Driver#network_conditions
  * Added support for setting network conditions via Driver#network_conditions=
  * Added support to allow driver respond with custom error codes (issue #5376)

Firefox:
  * Improved GeckoDriver binary lookup mechanism (issue #5240)

3.8.0 (2017-12-01)
==================

Ruby:
  * Removed deprecated Alert#authenticate
  * Removed deprecated :port initialization argument of Remote::Bridge.
    Use :url instead.
  * Removed deprecated Selenium::WebDriver::Remote::W3CCapabilities.
    Use Selenium::WebDriver::Remote::Capabilities instead.

IE:
  * Remove deprecated :log_file driver initialization argument.
    Use driver_opts: {log_file: ''} instead.
  * Remove deprecated :log_level driver initialization argument.
    Use driver_opts: {log_level: ''} instead.
  * Remove deprecated :implementation driver initialization argument.
    Use driver_opts: {implementation: ''} instead.
  * Removed deprecated :service_args driver initialization argument.
    Use driver_opts: {args: ['--some-switch']} instead.

Chrome:
  * Removed deprecated :service_log_path driver initialization argument.
    Use driver_opts: {log_path: 'path'} instead.
  * Removed deprecated :service_args driver initialization argument.
    Use driver_opts: {args: ['--some-switch']} instead.

Firefox:
  * Removed deprecated :service_args driver initialization argument.
    Use driver_opts: {args: ['--some-switch']} instead.

Safari:
  * Removed deprecated :service_args driver initialization argument.
    Use driver_opts: {args: ['--some-switch']} instead.

Edge:
  * Removed deprecated :service_args driver initialization argument.
    Use driver_opts: {args: ['--some-switch']} instead.

3.7.0 (2017-11-03)
==================

Ruby:
  * Added //rb:lint task to check codebase using RuboCop (thanks @RustyNail)
  * Fixed codebase to comply more to Ruby community style guide (thanks @RustyNail)
  * Packaged all dependencies to Selenium repository so that non-Ruby committers
    can build and test Ruby bindings easier
  * Update errors list according to latest changes of specification (thanks @jaysonesmith)

Firefox:
  * Added Firefox::Options#headless! shortcut to enable headless mode (thanks @franzliedke)

3.6.0 (2017-09-22)
==================

Edge:
  * Fixed a bug when execute_script failed using server + Edge (issue #4651)

Firefox:
  * Fixed a bug when web extension failed to install using profile class (issue #4093)

PhantomJS:
  * Support is deprecated in favor of headless Chrome/Firefox or HTMLUnit.
    PhantomJS is no longer actively developed, and support will eventually
    be dropped.

(taca)

www/ruby-rack-contrib: fix dependency

Fix dependency: depends on www/ruby-rack.

(taca)

doc: Updated www/ruby-rack-contrib to 2.0.1

(taca)

www/ruby-rack-contrib: update to 2.0.1

2.0.1 2017/12/08

Multibytes bytes again!

This is a bugfix release, which fixes a Rack 2 incompatibility in
Rack::NotFound, where the wrong value for the Content-Length response
header was calculated (#143).

Thanks to Kazuhiro NISHIYAMA (@znz) for the bug report, and Joe Francis
(@lostapathy) for the fix.

2.0.0 2017/11/30
2f3840e

Rack 2.x Support Is HERE!

Thanks to the hard work of Skye Shaw, amongst others, this release of
rack-contrib supports Rack 2.x. Unfortunately, it only supports Rack
2.x; if your application is using Rack 1.x, you should continue to use
rack-contrib 1.x.

The non-backwards-compatible, user-visible changes are:

* Drop support for Ruby versions less than 2.2. Rack 2 does not support these
  older releases, so there's no benefit in our doing so.

* Rack::NestedParams: switch to using Rack::Utils.parse_nested_query to parse
  request bodies, which handles repeated element keys differently.  See #92.

* Rack::Sendfile: removed completely. Rack core provides a middleware of the
  same name that is much better, and more actively maintained, and you should
  use that instead.

* Rack::AcceptFormat: removed completely, because it is terribad.

(taca)

doc: Updated www/ruby-pygments.rb to 1.2.1

(taca)

www/ruby-pygments.rb: pdate to 1.2.1

Version 1.2.1 (2017/12/07)
-----------------------------

* Automatically update `lexers` cache on build [186](https://github.com/tmm1/pygments.rb/pull/186)
  * See [#185](https://github.com/tmm1/pygments.rb/pull/185) for the reason

Version 1.2.0 (2017/09/13)
-----------------------------

* Exclude symlinks from the gem package to solve Windows issues [#181](https://github.com/tmm1/pygments.rb/pull/181)
* Upgrade pygments to 2.0.0 [#180](https://github.com/tmm1/pygments.rb/pull/180)

(taca)

doc: Updated www/ruby-loofah to 2.2.1

(taca)

www/ruby-loofah: update to 2.2.1

## 2.2.1 / 2018-03-19

Addresses CVE-2018-8048. Loofah allowed non-whitelisted attributes to be present in sanitized output when input with specially-crafted HTML fragments.

This CVE's public notice is at https://github.com/flavorjones/loofah/issues/144

(taca)

doc: Updated security/ruby-metasploit_payloads-mettle to 0.3.7

(taca)

security/ruby-metasploit_payloads: update to 0.3.7

No proper change log is not available.  Please refer commit log:
<https://github.com/rapid7/mettle/commits/master>.

(taca)

doc: Updated security/ruby-metasploit-payloads to 1.3.31

(taca)

security/ruby-metasploit-payloads: update to 1.3.31

No proper change log is not available.  Please refer commit log:
<https://github.com/rapid7/metasploit-payloads/commits/master>.

(taca)

doc: Updated net/ruby-ruby_smb to 0.0.23

(taca)

net/ruby-ruby_smb: update to 0.0.23

No proper change log is not available.  Please refer commit log:
<https://github.com/rapid7/ruby_smb/commits/master>.

(taca)

doc: Updated net/ruby-recog to 2.1.18

(taca)

net/ruby-recog: update to 2.1.18

2.1.16 2017/10/26

* Improve MariaDB on Ubunto - Issue #156

2.1.17 2017/11/28

* Improve Exim coverage, add examples

2.1.18 2018/02/23

* ssh update - data from 2017.11.30
* Removed honeypot fingerprint
* Add Debian 8.0 (jessie) MariaDB fingerprint

(taca)

doc: Updated lang/ruby-gherkin to 5.0.0

(taca)

lang/ruby-gherkin: update to 5.0.0

[5.0.0] - 2017-10-13

Added

* Ability to specify an initial language for the parser, so that the #
  language header isn't required (#288 by charlierudolph and aslakhellesoy)
* A better wording for the Greek translation of Scenario Outline
  (Περίγραμμα Σεναρίου) (#185 by pmatsinopoulos)
* Added female, singular Given in Romanian (Dată fiind) (#202 by tsundberg)
* (C) CMake support (#2 #3 by Pwera)

Changed

* Compile empty scenarios to empty pickles (#249 #264 by brasmusson)

(taca)

doc: Updated devel/ruby-mixlib-config to 2.2.5

(taca)

devel/ruby-mixlib-config: update to 2.2.5

2.2.5 (2018-02-09)

* Add support for reading from JSON files #53 (tduffield)

(taca)

doc: Updated devel/ruby-cucumber-core to 3.1.0

(taca)

devel/ruby-cucumber-core: update to 3.1.0

## [3.0.0](https://github.com/cucumber/cucumber-ruby-core/compare/v3.0.0.pre.2...v3.0.0) (2017-09-27)

### Changed

* Step#name renamed to #text ([#137](https://github.com/cucumber/cucumber-ruby-core/pull/137) [@olleolleolle](https://github.com/olleolleolle))
* Use past tense in event names (`xStarting` -> `xStarted`) (see [cucumber/cucumber-ruby#1166](https://github.com/cucumber/cucumber-ruby/issues/1166) @brasmusson).

### Added

* Do not create test cases for scenarios with no steps ([#144](https://github.com/cucumber/cucumber-ruby-core/pull/144) @brasmusson)
* Handle selective strict settings ([#143](https://github.com/cucumber/cucumber-ruby-core/pull/143) @brasmusson)

### Fixed

* Fix DataTable's Location to be aware of all of its lines ([#142](https://github.com/cucumber/cucumber-ruby-core/pull/142) @botandrose)

### Improved

* As per [#251](https://github.com/cucumber/cucumber/issues/251): renamed History.md to CHANGELOG.md, added contributing message at beginning, and misc formatting. ([#145](https://github.com/cucumber/cucumber-ruby-core/pull/145) [jaysonesmith](https://github.com/jaysonesmith))

## [3.0.0.pre.2](https://github.com/cucumber/cucumber-ruby-core/compare/v2.0.0...3.0.0.pre.2) (2017-07-26)

### New Features

* Add a flaky result type to be used for flaky scenarios ([#141](https://github.com/cucumber/cucumber-ruby-core/pull/141), [cucumber/cucumber-ruby#1044](https://github.com/cucumber/cucumber-ruby/issues/1044) @brasmusson)
* Make the Summary report able to say if the total result is ok ([#140](https://github.com/cucumber/cucumber-ruby-core/pull/140) @brasmusson)
* Replay previous events to new subscribers ([#136](https://github.com/cucumber/cucumber-ruby-core/pull/136) @mattwynne)
* Ruby 2.4.0 compatibility ([#120](https://github.com/cucumber/cucumber-ruby-core/pull/120) @junaruga)
* Use tag expressions ([#116](https://github.com/cucumber/cucumber-ruby-core/pull/116) @brasmusson)
* Access example table row data by param name ([#118](https://github.com/cucumber/cucumber-ruby-core/pull/118) @enkessler)

### Bugfixes

N/A

### Removed Features

N/A

### Refactoring

* Travis: jruby-9.1.10.0 ([#130](https://github.com/cucumber/cucumber-ruby-core/pull/130) @olleolleolle)
* Travis: jruby-9.1.12.0 ([#133](https://github.com/cucumber/cucumber-ruby-core/pull/132) @olleolleolle)

(taca)

doc: Added devel/ruby-cucumber-tag_expressions version 1.1.1

(taca)

devel/Makefile: add and enable ruby-cucumber-tag_expressions

(taca)

devel/ruby-cucumber-tag_expressions: add version 1.1.1 package

Cucumber Tag Expressions for Ruby

(taca)

doc: Updated databases/ruby-arel-helpers to 2.6.1

(taca)

databases/ruby-arel-helpers: update to 2.6.1

pkgsrc change:

* Update HOMEPAGE
* Add LICENSE
* Support multiple rails.

2.6.1

* Fix homepage URL in gemspec.

2.6.0

* Add the join alias helper.
* Add ability to pass table aliases to join_association.

2.5.0

* Add license information to gemspec so it is parsed by verifiers
  (@petergoldstein #31)
* Update QueryBuilder#reflect to create deep copy of builder (@wycleffsean
  #32)

(taca)

doc: add Ruby on Rails 5.1 packages

devel/ruby-activesupport51
devel/ruby-activemodel51
devel/ruby-activejob51
www/ruby-actionview51
www/ruby-actionpack51
www/ruby-actioncable51
databases/ruby-activerecord51
mail/ruby-actionmailer51
devel/ruby-railties51
www/ruby-rails51

(taca)

www/Makefile: add and enable ruby-rails51

(taca)

www/ruby-rails51: add version 5.1.5 package

Ruby on Rails is a full-stack web framework optimized for programmer
happiness and sustainable productivity.  It encourages beautiful code
by favoring convention over configuration.

This is for Ruby on Rails 5.1.

(taca)

devel/Makefile: ruby-railties51

(taca)

devel/ruby-railties51: add version 5.1.5 package.

= Railties -- Gluing the Engine to the Rails

Railties is responsible to glue all frameworks together. Overall, it:

* handles all the bootstrapping process for a Rails application;

* manager rails command line interface;

* provides Rails generators core;

This is for Ruby on Rails 5.1.

(taca)

mail/Makefile: add and enable ruby-actionmailer51

(taca)

mail/ruby-actionmailer51: add version 5.1.5 package

Action Mailer is a framework for designing email-service layers. These layers
are used to consolidate code for sending out forgotten passwords, welcome
wishes on signup, invoices for billing, and any other use case that requires
a written notification to either a person or another system.

Action Mailer is in essence a wrapper around Action Controller and the
Mail gem.  It provides a way to make emails using templates in the same
way that Action Controller renders views using templates.

Additionally, an Action Mailer class can be used to process incoming email,
such as allowing a weblog to accept new posts from an email (which could even
have been sent from a phone).

This is for Ruby on Rails 5.1.

(taca)

databases/Makefile: add and enable ruby-activerecord51

(taca)

databases/ruby-activerecord51: add version 5.1.5 package

= Active Record -- Object-relational mapping put on rails

Active Record connects classes to relational database tables to establish an
almost zero-configuration persistence layer for applications. The library
provides a base class that, when subclassed, sets up a mapping between the new
class and an existing table in the database. In context of an application,
these classes are commonly referred to as *models*. Models can also be
connected to other models; this is done by defining *associations*.

This is for Ruby on Rails 5.1.

(taca)

www/Makefile: add and enable ruby-actioncable51

(taca)

www/ruby-actioncable51: add verson 5.1.5 package

Action Pack is a framework for handling and responding to web requests. It
provides mechanisms for *routing* (mapping request URLs to actions), defining
*controllers* that implement actions, and generating responses by rendering
*views*, which are templates of various formats. In short, Action Pack
provides the view and controller layers in the MVC paradigm.

This is for Ruby on Rails 5.1.

(taca)

www/Makefile: add and enable ruby-actionpack51

(taca)

www/ruby-actionpack51: add version 5.1.5 package

Action Pack is a framework for handling and responding to web requests. It
provides mechanisms for *routing* (mapping request URLs to actions), defining
*controllers* that implement actions, and generating responses by rendering
*views*, which are templates of various formats. In short, Action Pack
provides the view and controller layers in the MVC paradigm.

This is for Ruby on Rails 5.1.

(taca)

www/Makefile: add and enable ruby-actionview51

(taca)

www/ruby-actionview51: add version 5.1.5 package

Action View provides simple, battle-tested conventions and helpers for
building web pages.

This is for Ruby on Rails 5.1.

(taca)

devel/Makefile: add and enable ruby-activejob51

(taca)

devel/ruby-activejob51: add version 5.1.5 package

Active Job is a framework for declaring jobs and making them run on a
variety of queueing backends. These jobs can be everything from
regularly scheduled clean-ups, to billing charges, to
mailings. Anything that can be chopped up into small units of work and
run in parallel, really.

It also serves as the backend for Action Mailer's #deliver_later
functionality that makes it easy to turn any mailing into a job for
running later. That's one of the most common jobs in a modern web
application: Sending emails outside of the request-response cycle, so
the user doesn't have to wait on it.

The main point is to ensure that all Rails apps will have a job
infrastructure in place, even if it's in the form of an "immediate
runner". We can then have framework features and other gems build on
top of that, without having to worry about API differences between
Delayed Job and Resque. Picking your queuing backend becomes more of
an operational concern, then. And you'll be able to switch between
them without having to rewrite your jobs.

This is for Ruby on Rails 5.1.

(taca)

devel/Makefile: add and enable ruby-activemodel51

(taca)

devel/ruby-activemodel51: add version 5.1.5 package

Active Model provides a known set of interfaces for usage in model classes.
They allow for Action Pack helpers to interact with non-ActiveRecord models,
for example. Active Model also helps building custom ORMs for use outside of
the Rails framework.

This is for Ruby on Rails 5.1.

(taca)

devel/Makefile: Add and enable ruby-activesupport51

(taca)

devel/ruby-activesupport51: add version 5.1.5 package

A toolkit of support libraries and Ruby core extensions extracted from
the Rails framework. Rich support for multibyte strings,
internationalization, time zones, and testing.

This is for Ruby on Rails 5.1.

(taca)

doc: Updated textproc/ruby-rails-dom-testing to 2.0.3

(taca)

textproc/ruby-rails-dom-testing: update to 2.0.3

2.0.3 2017/05/11

* Relax gem dependency

2.0.2 2016/12/27

* Allows bundling with Nokogiri 1.7.0.

2.0.1 2016/06/01

* Raise Nokogiri CSS syntax errors instead of skipping the assertion and
  outputting a deprecation warning.

2.0.0 2016/05/10

* Removes deprecated assert_tag.
* Allows bundling with Rails 5.0.
* Ruby 2.3 support.
* Makes Regexps in error messages easier to read (b810e9b)

(taca)

lang/ruby: add Ruby on Rails 5.1.5 support

(taca)

lang/ruby: Honor RUBY_RAILS_DEFAULT

Honor RUBY_RAILS_DEFAULT and set RUBY_RAILS_REQD in environment.

(taca)

lang/ruby: improve RUBY_RAILS_ACCEPTED handling

Now RUBY_RAILS_ACCEPTED supports multiple rails version.

Also add RUBY_RAILS_REQD although no ruby package use it now.

(taca)

devel/ruby-gnome2-pango: use ${RUBY_PKGPREFIX} instead of harcoded ruby24

(taca)

devel/ruby-gnome2-pango: use ${RUBY_PKGPREFIX} instead of harcoded ruby24

(taca)

x11/ruby-gnome2-gtk: use ${RUBY_PKGPREFIX} instead of harcoded ruby24

Also remove no effective "ruby23" line.  (forgottedn?)

(taca)

x11/ruby-gnome2-gtk: use ${RUBY_PKGPREFIX} instead of harcoded ruby24

(taca)

lang/ruby: replace RUBY_RAILS_SUPPORTED to RUBY_RAILS_ACCEPTED

Change RUBY_RAILS_SUPPORTED to RUBY_RAILS_ACCEPTED for better wording.

(taca)

doc: Updated textproc/ruby-toml to 0.2.0

(taca)

textproc/ruby-toml: update to 0.2.0

0.2.0 2017/11/11

* This fixes Parslet compatibility with newer versions. Rejoice!

(taca)

doc: Updated textproc/ruby-xslt to 0.9.10

(taca)

textproc/ruby-xslt: udpate to 0.9.10

0.9.10 - 2017/10/04

* Removing unneeded rb_define_const to fix libxslt 1.30 compatibility
  XSLT_NORM_SAXON_NAMESPACE is no longer defined in libxslt 1.30

(taca)

doc: Updated textproc/ruby-xpath to 3.0.0

(taca)

textproc/ruby-xpath: update to 3.0.0

3.0.0 - 2017-12-30

Breaking Changes

* Remove xpath/html
* Rename name to qname, closes #76

Added

* Contains word function for matching space separated attributes
* Unary band as alias of not
* not_equals

Fixed

* None

(taca)

doc: Updated textproc/ruby-stringex to 2.8.4

(taca)

textproc/ruby-stringex: update to 2.8.4

* Fix various warnings.
* Fix yaml reserved words.

(taca)

doc: Updated www/ruby-loofah to 2.2.0

(taca)

www/ruby-loofah: update to 2.2.0

## 2.2.0 / 2018-02-11

Features:

* Support HTML5 `<main>` tag. #133 (Thanks, @MothOnMars!)
* Recognize HTML5 block elements. #136 (Thanks, @MothOnMars!)
* Support SVG `<symbol>` tag. #131 (Thanks, @baopham!)
* Support for whitelisting CSS functions, initially just `calc` and `rgb`. #122/#123/#129 (Thanks, @NikoRoberts!)
* Whitelist CSS property `list-style-type`. #68/#137/#142 (Thanks, @andela-ysanni and @NikoRoberts!)

Bugfixes:

* Properly handle nested `script` tags. #127.

## 2.1.1 / 2017-09-24

Bugfixes:

* Removed warning for unused variable. #124 (Thanks, @y-yagi!)

## 2.1.0 / 2017-09-24

Notes:

* Re-implemented CSS parsing and sanitization using the {crass}[https://github.com/rgrove/crass] library. #91

Features:

* Added :noopener HTML scrubber (Thanks, @tastycode!)
* Support `data` URIs with the following media types: text/plain, text/css, image/png, image/gif, image/jpeg, image/svg+xml. #101, #120. (Thanks, @mrpasquini!)

Bugfixes:

* The :unprintable scrubber now scrubs unprintable characters in CDATA nodes (like `<script>`). #124
* Allow negative values in CSS properties. Restores functionality that was reverted in v2.0.3. #91

(taca)

doc: Updated www/ruby-http-form_data to 2.1.0

(taca)

www/ruby-http-form_data: update to 2.1.0

## 2.1.0 (2018-03-05)

* [#21](https://github.com/httprb/form_data/pull/21)
  Rewind content at the end of `Readable#to_s`.
  [@janko-m][]

* [#19](https://github.com/httprb/form_data/pull/19)
  Fix buffer encoding.
  [@HoneyryderChuck][]

## 2.0.0 (2017-10-01)

* [#17](https://github.com/httprb/form_data/pull/17)
  Add CRLF character to end of multipart body.
  [@mhickman][]

## 2.0.0.pre2 (2017-05-11)

* [#14](https://github.com/httprb/form_data/pull/14)
  Enable streaming for urlencoded form data.
  [@janko-m][]

## 2.0.0.pre1 (2017-05-10)

* [#12](https://github.com/httprb/form_data.rb/pull/12)
  Enable form data streaming.
  [@janko-m][]

(taca)

doc: Updated www/ruby-mustermann to 1.0.2

(taca)

www/ruby-mustermann: update to 1.0.2

* **Mustermann 1.0.2** (2017-02-17)
    * Look ahead same patterns as its own when concatenation.  Fixes [sinatra/sinatra#1361](https://github.com/sinatra/sinatra/issues/1361) [@namusyaka](https://github.com/namusyaka)
    * Improve development support and documentation.  [@EdwardBetts](https://github.com/EdwardBetts), [@284km](https://github.com/284km), [@yb66](https://github.com/yb66) and [@garybernhardt](https://github.com/garybernhardt)

(taca)

doc: Removed www/ruby-mustermann19

(taca)

www/ruby-mustermann19: remove package

Since all packages switch to use www/ruby-mustermann, this package is not
used any more.  So, remove it.

(taca)

www/Makefile: remove ruby-mustermann19

(taca)

doc: Updated www/ruby-faraday to 0.14.0

(taca)

www/ruby-faraday: update to 0.14.0

Faraday 0.14.0 2018/01/20

* If proxy is manually provided, this takes priority over find_proxy (#724)
* Allow overriding env proxy (#754)
* Fixes the behaviour for Excon's open_timeout (not setting write_timeout
  anymore) (#731)
* Remove Typhoeus adapter (#715)
* External Typhoeus Adapter Compatibility (#748)
* Warn about missing adapter when making a request (#743)
* Faraday::Adapter::Test stubs now support entire urls (with host) (#741)
* Handle all connection timeout messages in Patron (#687)

(taca)

doc: Updated x11/ruby-tk-gem to 0.2.0

(taca)

x11/ruby-tk-gem: update to 0.2.0

0.2.0 2017/08/01

* Update grid.rb to avoid NameError in lib/tk/grid.rb
* Add msys2 library dependency tag in gem metadata

(taca)

doc: Updated www/ruby-websocket to 1.2.5

(taca)

www/ruby-websocket: update to 1.2.5

## 1.2.5

- make handshake server resilient to non-string Rack env keys

(taca)

doc: Updated www/ruby-unicorn to 5.4.0

(taca)

www/ruby-unicorn: update to 5.4.0

unicorn 5.4.0 / 2017-12-23

Rack hijack support improves as the app code can capture and use
the Rack `env' privately without copying it (to avoid clobbering
by another client).  Thanks to Sam Saffron for reporting and
testing this new feature:

  https://bogomips.org/unicorn-public/CAAtdryPG3nLuyo0jxfYW1YHu1Q+ZpkLkd4KdWC8vA46B5haZxw@mail.gmail.com/T/

We also now support $DEBUG being set by the Rack app (instead of
relying on the "-d" CLI switch).  Thanks to James P Robinson Jr
for reporting this bug:

  https://bogomips.org/unicorn-public/D6324CB4.7BC3E%25james.robinson3@cigna.com/T/
  (Coincidentally, this fix will be irrelevant for Ruby 2.5
  which requires 'pp' by default)

There's a few minor test cleanups and documentation updates, too.

unicorn 5.3.1 / 2017-10-03

This release fixes an occasional GC problem introduced in v5.3.0
to reduce global variable overhead (commit 979ebcf91705709b)

Thanks to Xuanzhong Wei for the patch which lead to this release:

https://bogomips.org/unicorn-public/20171003182054.76392-1-azrlew@gmail.com/T/#u
https://bogomips.org/unicorn-public/20171003145718.30404-1-azrlew@gmail.com/T/#u

  Xuanzhong Wei (1):
        fix GC issue on rb_global_variable array

(taca)

doc: Updated www/ruby-sinatra-contrib to 2.0.1

(taca)

www/ruby-sinatra-contrib: update to 2.0.1

2.0.1 2018/02/17

* avoid prefix duplication
* get rid of unnecessary assignment expression
  the `base` does not respond to `conditions` permanently.
* documentation improvement

(taca)

doc: Updated www/ruby-sinatra to 2.0.1

(taca)

www/ruby-sinatra: update to 2.0.1

2.0.1 / 2018-02-17

* Repair nested namespaces, by avoiding prefix duplication #1322. Fixes #1310
  by Kunpei Sakai

* Add pattern matches to values for Mustermann::Concat #1333. Fixes #1332 by
  Dawa Ometto

* Ship the VERSION file with the gem, to allow local unpacking #1338 by Olle
  Jonsson

* Fix issue with custom error handler on bad request #1351. Fixes #1350 by
  Jordan Owens

* Override Rack::ShowExceptions#pretty to set custom template #1377. Fixes
  #1376 by Jordan Owens

* Enhanced path validation in Windows #1379 by Orange Tsai

* Improve development support and documentation by Faheel Ahmad, Shota Iguchi,
  Olle Jonsson, Manabu Niseki, John Hope, Horacio, Ice-Storm, GraniteRock,
  Raman Skaskevich, Carlos Azuaje, 284km, Dan Rice and Zachary Scott

(taca)

doc: Updated www/ruby-rack-protection to 2.0.1

(taca)

www/ruby-rack-protection: update to 2.0.1

0.2.1 2018/02/16

* enhanced path validation in Windows

(taca)

doc: Updated textproc/ruby-yard to 0.9.12

(taca)

textproc/ruby-yard: update to 0.9.12

# [0.9.12] - November 26th, 2017

[0.9.12]: https://github.com/lsegal/yard/compare/v0.9.11...v0.9.12

- Be more explicit about lack of support for absolute paths in extra files
  specified by `yard doc` command.

# [0.9.11] - November 23rd, 2017

[0.9.11]: https://github.com/lsegal/yard/compare/v0.9.10...v0.9.11

- Fixed security issue in `--readme` that allowed for arbitrary file reads on
  disk. Credit to ztz <ztz@ztz.me> for discovering this issue.
- Improved styling for inline code blocks (#1142).

# [0.9.10] - November 18th, 2017

[0.9.10]: https://github.com/lsegal/yard/compare/v0.9.9...v0.9.10

- Added `--fail-on-warning` option for `yard doc` which exits with a non-zero
  code if there are any warnings (#1093).
- Added support for parsing inside `Struct.new` blocks (#1099).
- Added support new ripper AST tokens (#1104, #1124).
- Fixed an issue where `@see (obj)` reference tags would fail (#1111)
- Fix sorting in `yard stats` (#1123).

(taca)

doc: Updated www/heel to 3.2.0

(taca)

www/heel: update to 3.2.0

## Version 3.2.0 - 2018-03-14
* fix missing rack dependency [#17](https://github.com/copiousfreetime/heel/pull/17)
* across the board gem dependency updates
* ruby 2.2 minimum dependency - because of transitive dependencies

(taca)

doc: Updated www/ruby-puma to 3.11.3

(taca)

www/ruby-puma: update to 3.11.3

Changes are too many to write here, please refer History.md.

(taca)

doc: Updated www/ruby-patron to 0.12.1

(taca)

www/ruby-patron: update to 0.12.1

### 0.12.1

* Ensure HTTP2 response headers/status lines are correctly handled

### 0.12.0

* Replace StringScanner in HeaderParser with StringIO, fix Webmock regression when the headers string would
  not have an empty CRLF-terminated line at the end - which would cause the parser to return a nil.
* Added `Session#dns_cache_timeout` as a config option for CURLOPT_DNS_CACHE_TIMEOUT

### 0.11.1

* Make sure StringScanner is available to HeaderParser.

### 0.11.0

* Added `Session#progress_callback` which accepts a callable object, which can be used to report session progress during request
  execution.
* Fixed parsing of response headers when multiple responses are involved (redirect chains and HTTP proxies)

### 0.10.0

* Added `Session#low_speed_time` and `Session#low_speed_limit`. When used, they will force libCURL to raise
  a timeout if a certain speed limit is not met performing the request. These can be used for better timeout
  handling. These are available in all libCURL versions. See https://curl.haxx.se/libcurl/c/CURLOPT_LOW_SPEED_TIME.html
  and https://curl.haxx.se/libcurl/c/CURLOPT_LOW_SPEED_LIMIT.html

(taca)

doc: note update of ruby-padrino pacakges to 0.14.3

www/ruby-padrino-support
www/ruby-padrino-helpers
www/ruby-padrino-core
www/ruby-padrino-admin
www/ruby-padrino-contrib
www/ruby-padrino-gen
www/ruby-padrino-mailer
www/ruby-padrino

(taca)

www/ruby-padrino: update to 0.14.3

0.14.3 (2018-02-23)

* Move to mustermann
* Drop ruby prior to 2.2.2
* update default_inflections
* Fix params handling which broke with Sinatra 2.0.1 by removing guard clause
  to not initialize @params if already defined

0.14.2 (2018-01-02)

* FIX router in non-Padrino applications (@adam12)
* FIX padrino-admin haml layout
* FIX Datamapper tasks (@adam12)
* FIX #1979 default test or spec task
* FIX #2150 refuse invalid database adapters
* FIX #2152 using open without requiring 'open-uri'
* NEW #2161 allow array as tag attribute (@aeris)
* FIX #2163 preserve spaces in args of padrino gen
* update Sequel usage
* update ActiveRecord::Migration usage (@adam12)

(taca)

www/ruby-padrino: start update of ruby-padrino to 0.14.3

(taca)

doc: Updated databases/ruby-moneta to 1.0.0

(taca)

databases/ruby-moneta: update to 1.0.0

1.0.0

* Adapters::Sequel - allow usage of Sequel extensions and connection validation
* ActiveSupport::Cache::MonetaStore - dup options before mutating them
* ActiveSupport::Cache::MonetaStore - allow writing raw values

(taca)

doc: Updated www/ruby-capybara to 2.18.0

(taca)

www/ruby-capybara: update to 2.18.0

#Version 2.18.0
Release date: 2018-02-12

### Fixed

* Firefox/geckodriver setting of contenteditable childs contents
* Ignore Selenium::WebDriver::Error::SessionNotCreatedError when quitting driver [Tim Connor]

### Removed

* Headless chrome modal JS injection that is no longer needed for Chrome 64+/chromedriver 2.35+

# Version 2.17.0
Release date: 2018-01-02

### Added

* `have_all_of_selectors`, `have_none_of_selectors` RSpec matchers for parity with minitest assertions [Thomas Walpole]

### Fixed

* Allow xpath 3.x gem [Thomas Walpole]
* Issue when drivers returned nil for `current_path` and a matcher was used with a Regexp [Thomas Walpole]
* Error message when visible element not found, but non-visible was [Andy Klimczak]

# Version 2.16.1
Release date: 2017-11-20

### Fixed

* Fix rack_test driver for rack_test 0.7.1/0.8.0 [Thomas Walpole]
* `accept_prompt` response text can contain quotes when using selenium with headless chrome [Thomas Walpole]

# Version 2.16.0
Release date: 2017-11-13

### Added

* Attempt to move element into view when selenium doesn't correctly do it - See PR #1917 [Thomas Walpole]
* `current_path` matchers will now autodetect path vs url based on string to be matched. Deprecates
  `:only_path` in favor of `:ignore_query` option [Thomas Walpole]
* Session#evaluate_async_script [Thomas Walpole]

### Fixed

* Default prompt value when using headless Chrome works correctly [Thomas Walpole]
* Support new modal error returned by selenium-webdriver 3.7 for W3C drivers [Thomas Walpole]
* Calling `respond_to?` on the object passed to `Capybara.configure` block - Issue #1935

# Version 2.15.4
Release date: 2017-10-07

### Fixed
*  Visiting an absolute URL shouldn't overwrite the port when no server or always_include_port=false - Issue #1921

# Version 2.15.3
Release date: 2017-10-03

### Fixed
*  Visiting '/' when Capybara.app_host has a trailing '/' - Issue #1918 [Thomas Walpole]

# Version 2.15.2
Release date: 2017-10-02

### Fixed

*  Include within scope description in element not found/ambiguous errors [Thomas Walpole]
*  Raise error when no activation block is passed to modal methods if using headless chrome [Thomas Walpole]
*  Don't retry element access when inspecting [Ivan Neverov]
*  Don't override a specified port (even if it is default port) in visited url [Thomas Walpole]

(taca)

security/ruby-rbnacl: update to 5.0.0

## 5.0.0 (2017-06-13)

* [#159](https://github.com/cryptosphere/rbnacl/pull/159)
  Support the BLAKE2b Initialize-Update-Finalize API.
  ([@fudanchii])

(taca)

doc: Updated net/ruby-nio4r to 2.3.0

(taca)

net/ruby-nio4r: update to 2.3.0

## 2.3.0 (2018-03-15)

* [#183](https://github.com/socketry/nio4r/pull/183)
  Allow `Monitor#interests` to be nil
  ([@ioquatix])

(taca)

doc: Updated math/ruby-spreadsheet to 1.1.7

(taca)

math/ruby-spreadsheet: update to 1.1.7
### 1.1.7 / 15.03.2018

commit 34ece5f4e7ab2907c4a8809d96ef2a33b7ccd4b5
Author: Maarten Brouwers <github@murb.nl>
Date:  Thu Mar 15 15:10:23 2018 +0100

* shadowing outer local variable - i

* Running rake resulted in the following warning: `lib/spreadsheet/worksheet.rb:345: warning: shadowing outer local variable - i`; this patch fixes that.

(taca)

doc: Updated games/ruby-squib to 0.14.1

(taca)

games/ruby-squib: update to 0.14.1

# Squib CHANGELOG
Squib follows [semantic versioning](http://semver.org).

## v0.14.1 / 2018-03-15

Chores:
* Bumped deps: Pango et al. to 3.2.1, Cairo to 1.15.12. (Fixes an issue with Ruby 2.5 and Windows)

(taca)

doc: Updated graphics/ruby-cairo to 1.15.12

(taca)

graphics/ruby-cairo: update to 1.15.12

Release 1.15.12 (2018-03-14) Kouhei Sutou <kou@cozmixng.org>
============================================================

Improvements
------------

  * Re-enabled tests that need Poppler.
    [GitHub#51][Patch by Mamoru TASAKA]

  * Windows: Added Ruby 2.5 support.
    [GitHub#52][Reported by Andy Meneely]

Thanks
------

  * Mamoru TASAKA

  * Andy Meneely

(taca)

doc: Updated devel/ruby-simplecov to 0.16.1

(taca)

devel/ruby-simplecov: update to 0.16.1

0.16.1 (2018-03-16)
===================

## Bugfixes

* Include the LICENSE in the distributed gem again (accidentally removed in 0.16.0). (thanks @tas50)

0.16.0 (2018-03-15)
===================

## Enhancements

* Relax version constraint on `docile`, per SemVer
* exception that occurred on exit is available as `exit_exception`! See [#639](https://github.com/colszowka/simplecov/pull/639)  (thanks @thomas07vt)
* Performance: processing results now runs from 2.5x to 3.75x faster. See [#662](https://github.com/colszowka/simplecov/pull/662) (thanks @BMorearty & @eregon)
* Decrease gem size by only shipping lib and docs

## Bugfixes

* (breaking) Stop handling string filters as regular expressions, use the dedicated regex filter if you need that behaviour. See [#616](https://github.com/colszowka/simplecov/pull/616) (thanks @yujinakayama)
* Avoid overwriting the last coverage results on unsuccessful test runs. See [#625](https://github.com/colszowka/simplecov/pull/625) (thanks @thomas07vt)
* Don't crash on invalid UTF-8 byte sequences. (thanks @BMorearty)

(taca)

doc: Updated textproc/ruby-plist to 3.4.0

(taca)

textproc/ruby-plist: update to 3.4.0

=== 3.4.0 (2017-12-08)

https://github.com/patsplat/plist/compare/v3.3.0...v3.4.0

* Support custom indent string (https://github.com/patsplat/plist/pull/44)

(taca)

doc: Updated textproc/ruby-multi_json to 1.13.1

(taca)

textproc/ruby-multi_json: update to 1.13.1

1.13.1
------

* [Fix missing stdlib set dependency in oj adapter](https://github.com/intridea/multi_json/commit/c4ff66e7bee6fb4f45e54429813d7fada1c152b8)

1.13.0
-----

* [Make Oj adapter handle JSON::ParseError correctly](https://github.com/intridea/multi_json/commit/275e3ffd8169797c510d23d9ef5b8b07e64c3b42)

(taca)

doc: Added meta-pkgs/php72-extensions version 7.2.3

(taca)

meta-pkgs: add and enable php72-extensions

(taca)