doc: Added textproc/rapidjson version 1.1.0

(minskim)

textproc/Makefile: Add rapidjson

(minskim)

textproc/rapidjson: Import version 1.1.0

RapidJSON is a JSON parser and generator for C++. It was inspired by
RapidXml.

(minskim)

doc: Updated net/youtube-dl to 20171126

(leot)

youtube-dl: Update net/youtube-dl to 20171126

Changes:
version 2017.11.26
Core
* [extractor/common] Use final URL when dumping request (#14769)

Extractors
* [fczenit] Fix extraction
- [firstpost] Remove extractor
* [freespeech] Fix extraction
* [nexx] Extract more formats
+ [openload] Add support for openload.link (#14763)
* [empflix] Relax URL regular expression
* [empflix] Fix extractrion
* [tnaflix] Don't modify download URLs (#14811)
- [gamersyde] Remove extractor
* [francetv:generationwhat] Fix extraction
+ [massengeschmacktv] Add support for Massengeschmack TV
* [fox9] Fix extraction
* [faz] Fix extraction and add support for Perform Group embeds (#14714)
+ [performgroup] Add support for performgroup.com
+ [jwplatform] Add support for iframes (#14828)
* [culturebox] Fix extraction (#14827)
* [youku] Fix extraction; update ccode (#14815)
* [livestream] Make SMIL extraction non fatal (#14792)
+ [drtuber] Add support for mobile URLs (#14772)
+ [spankbang] Add support for mobile URLs (#14771)
* [instagram] Fix description, timestamp and counters extraction (#14755)

version 2017.11.15
Core
* [common] Skip Apple FairPlay m3u8 manifests (#14741)
* [YoutubeDL] Fix playlist range optimization for --playlist-items (#14740)

Extractors
* [vshare] Capture and output error message
* [vshare] Fix extraction (#14473)
* [crunchyroll] Extract old RTMP formats
* [tva] Fix extraction (#14736)
* [gamespot] Lower preference of HTTP formats (#14652)
* [instagram:user] Fix extraction (#14699)
* [ccma] Fix typo (#14730)
- Remove sensitive data from logging in messages
* [instagram:user] Fix extraction (#14699)
+ [gamespot] Add support for article URLs (#14652)
* [gamespot] Skip Brightcove Once HTTP formats (#14652)
* [cartoonnetwork] Update tokenizer_src (#14666)
+ [wsj] Recognize another URL pattern (#14704)
* [pandatv] Update API URL and sign format URLs (#14693)
* [crunchyroll] Use old login method (#11572)

(leot)

Updated mail/procmail to 3.22nb5

(snj)

procmail: Fix CVE-2017-16844

Patch from https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=876511

Bump PKGREVISION

(snj)

php71: improve pattern

Since we have php72 release candidates in pkgsrc, "<7.2" is not sufficient
since this will pull in "7.2rc6". Change pattern to <7.1.99 to stop this.

(wiz)

Updated www/py-django-tastypie; Added www/py-raven

(adam)

Really depend on www/py-raven

(adam)

Added ALTERNATIVES

(adam)

py-raven: added version 6.3.0

Raven is a Python client for Sentry (https://sentry.io/). It provides full
out-of-the-box support for many of the popular frameworks, including Django,
Flask, and Pylons. Raven also includes drop-in support for any WSGI-compatible
web application.

(adam)

py-django-tastypie: updated to 0.14.0

v0.14.0
Django 1.11 support.

(adam)

Updated devel/py-test-flake8, devel/py-test-relaxed

(adam)

py-test-relaxed: updated to 1.1.0

1.1.0:
Add support for collecting/displaying hybrid/legacy test suites -- specifically, by getting out of pytest's way on collection of test_named_files and stripping test prefixes/suffixes when displaying tests in verbose mode. This makes it easier to take an existing test suite and slowly port it to 'relaxed' style.

(adam)

py-test-flake8: updated to 0.9.1

0.9.1
Do continuous integration with Travis
Declare compatibility with Python 3.6

(adam)

Added devel/py-exam, devel/py-test-assume, devel/py-test-sugar, devel/py-test-pythonpath

(adam)

Added devel/py-exam, devel/py-test-assume, devel/py-test-sugar, devel/py-test-pythonpath

(adam)

This is a py.test plugin for adding to the PYTHONPATH from the pytests.ini file
before tests run.

(adam)

pytest-sugar is a plugin for py.test that shows failures and errors instantly
and shows a progress bar.

(adam)

pytest-sugar is a plugin for py.test that shows failures and errors instantly
and shows a progress bar.

(adam)

Exam is a Python toolkit for writing better tests. It aims to remove a lot of
the boiler plate testing code one often writes, while still following Python
conventions and adhering to the unit testing interface.

(adam)

Removed unused lines

(adam)

Updated www/nghttp2, www/nginx-devel

(adam)

nginx-devel: updated to 1.13.7

Changes with nginx 1.13.7:
*) Bugfix: in the $upstream_status variable.
*) Bugfix: a segmentation fault might occur in a worker process if a
  backend returned a "101 Switching Protocols" response to a
  subrequest.
*) Bugfix: a segmentation fault occurred in a master process if a shared
  memory zone size was changed during a reconfiguration and the
  reconfiguration failed.
*) Bugfix: in the ngx_http_fastcgi_module.
*) Bugfix: nginx returned the 500 error if parameters without variables
  were specified in the "xslt_stylesheet" directive.
*) Workaround: "gzip filter failed to use preallocated memory" alerts
  appeared in logs when using a zlib library variant from Intel.
*) Bugfix: the "worker_shutdown_timeout" directive did not work when
  using mail proxy and when proxying WebSocket connections.

(adam)

nghttp2: updated to 1.28.0

nghttp2 v1.28.0
lib: Add nghttp2_error_callback2
build: Add deprecation warning when spdylay support is enabled
Switch to clang-format-5.0
examples: Make client and server work with libevent-2.1.8
third-party: Update neverbleed
integration: Fix issues reported by the go vet tool.
nghttpx: Fix affinity retry
nghttpx: Fix stalled backend connection on retry
nghttpx: Cookie based session affinity
nghttpx: Expose additional TLS related variables to mruby and accesslog

(adam)

doc: Updated geography/gama to 1.20

(gdt)

gama: Update to 1.20

packaging change: Depend on GNU make (not documented upstream).

Upstream changes:

* New test suite for matvec classes and support for valgrind memory
  leak tests for tests/matvec and tests/gama-local.

    This release is a preperation phase for the next release in which
    the base matvec memory handling class (MemRep) will reimplemented
    with C++11 move constructor and move assignemnt operator.

(gdt)

mpv: Pass `--bindir' to waf configure phase to fix installation with waf-2.0.2

With waf-2.0.2 update the mpv binary was tried to install apparently in:

${DESTDIR}${WRKSRC}/${PREFIX}/bin

while with previous waf versions it was correctly installed in

${DESTDIR}${PREFIX}/bin

Pass `--bindir' via WAF_CONFIGURE_ARGS to fix that problem.

(leot)

xfsprogs: comment out dead sites

(wiz)

uucp: follow redirects

(wiz)

udunits: follow redirects

(wiz)

sqsh*: switch to sourceforge homepage, homepage is dead

(wiz)

p5-HTTP-DAV: switch to metacpan

Homepage is dead

(wiz)

p5-CDDB_get: switch to metacpan

Homepage is dead

(wiz)

netcdf-fortran: follow redirects

(wiz)

netcdf-cxx: follow redirects

(wiz)

netcdf: follow redirects

(wiz)

neon: comment out dead sites.

(wiz)

litmus: comment out dead sites.

(wiz)

iip: remove - it was EOLed in 2004.

See http://invisibleip.sourceforge.net/iip/

(wiz)

gps: update HOMEPAGE

(wiz)

gprbuild-aux: update HOMEPAGE

(wiz)

vlgothic-ttf: comment out dead HOMEPAGE

(wiz)

sgi-fonts: comment out dead HOMEPAGE

(wiz)

artwiz-fonts: use sourceforge page instead of dead homepage

(wiz)

fam: comment out dead sites

(wiz)

f-spot: use github page instead of dead HOMEPAGE

(wiz)

cadaver: comment out dead sites

(wiz)

botan-devel: follow redirects

(wiz)

botan: follow redirects

(wiz)

gst-buzztard: update HOMEPAGE

(wiz)

buzztard: update HOMEPAGE

(wiz)

bsl: update HOMEPAGE

(wiz)

bml: update HOMEPAGE

(wiz)

doc: Updated www/p5-Test-WWW-Mechanize-PSGI to 0.38

(wiz)

p5-Test-WWW-Mechanize-PSGI: update to 0.38.

0.38      2017-11-23 19:02:15Z
    - Make UA aware of base URLs which are defined in the <head> of an HTML
      document (Olaf Alders)
    - Ensure that handlers run in the expected order (Olaf Alders)

(wiz)

doc: Updated devel/p5-Params-ValidationCompiler to 0.25

(wiz)

p5-Params-ValidationCompiler: update to 0.25.

0.25    2017-11-23

- All exceptions now include a stack trace by default when treated as a
  string. This makes finding where validation failed a lot easier. Fixes GH
  #18.

- The name for a subroutine is now used in some exception messages, even if
  Sub::Util cannot be installed.

(wiz)

doc: Updated devel/p5-ExtUtils-CBuilder to 0.28.02.30

(wiz)

p5-ExtUtils-CBuilder: update to 0.28.02.30.

0.280230 - 2017-11-22

  Fixed:

  - Updated Changes
  - Used OurPkgVersion instead of PkgVersion

0.280229 - 2017-10-13

  Fixed:

  - Remove dependency to 'vars' package.

0.280228 - 2017-07-20

  Fixed:

  - Fix link() on Windows, broken in version 0.280226.

0.280227 - 2017-07-19

  Fixed:

  - Restore compatibility of test suite to Perl 5.6.

(wiz)

doc: Updated converters/p5-Unicode-Collate to 1.25

(wiz)

p5-Unicode-Collate: update to 1.25.

1.25  Wed Nov 22 20:48:48 2017
    - Makefile.PL: [rt.cpan.org #123631] Switch Unicode::Collate to XSLoader

(wiz)

doc: Updated audio/p5-Audio-Scan to 0.99

(wiz)

p5-Audio-Scan: update to 0.99.

0.99    2017-11-24
        - Fixed a bug where an incorrect audio offset was returned when using
          NO_ARTWORK and reading a file with an ID3v2.2 or v2.3 unsynchronization bit
          set. The artwork in this type of file is only available when scanning in
          normal mode (without NO_ARTWORK).
        - Added id3_was_unsynced => 1 to the info section for v2.2/v2.3 files with the
          whole-tag unsync bit set. This type of tag is generally harmful to parser performance,
          so this flag might be useful if you want to find and upgrade this type of tag to v2.4.
        - DSF: WAV_BLOCK_SIZE was being used instead of DSF_BLOCK_SIZE. (Kimmo Taskinen)
        - ID3: Support for reading ID3 tags located >4GB into a file, such as in very large
          DSF files. (Kimmo Taskinen)
        - WavPack: Read correct samplerate and bits_per_sample for DSD files. (Kimmo Taskinen)
        - DSF/DFF: added bitrate to info hash.

(wiz)

doc/TODO: add some

+ gnome-3.26.2, nano-2.9, qt5-5.9.3, rust-1.22, wine-2.0.3,
  wine-devel-2.21, xfce4-notifyd-0.4.

(wiz)

versioned_dependencies: remove gobject support

unused, and doesn't work as-is

(wiz)

doc/pkgsrc.*: regen

(wiz)

guide: update versioned dependencies example

(wiz)

playitslowly: does not need versioned dependency

Variable was there but unused, and it was better that way

(wiz)

enable fortifications

(spz)

doc: Updated devel/py-gobject3 to 3.26.1

(wiz)

py-gobject3: update to 3.26.1.

3.26.1  27-Oct-2017
        - pygobject-object: Fix Python GC collecting a ref cycle too early (Christoph Reiter) (#731501)
        - Fix potential uninitialized memory access during GC (Daniel Colascione) (#786872)
        - test: revert parts of the previous test as it's broken on 32 bit builds (Christoph Reiter) (#786948)
        - flags: Add testcase for bug 786948 (Christoph Reiter) (#786948)
        - fix potential overflow when marshalling flags from py interface (Philippe Renon) (#786948)
        - to_py_array: Properly handle enum array items (Christoph Reiter) (#788890)
        - closure: Fix unaligned and out-of-bounds access (James Clarke) (#788894)
        - build: Fix not installing .egg-info file (Christoph Reiter) (#777719)
        - configure.ac: version bump to 3.26.1 (Christoph Reiter)

3.26.0  12-Sep-2017
        - configure.ac: pre-release version bump to 3.26.0 (Christoph Reiter)
        - closure: silence a new compiler warning (Christoph Reiter)
        - tests: skip some failing test under Windows with Python 3.6 (Christoph Reiter)
        - tests: pyflakes/pep8 fixes (Christoph Reiter)
        - tests: Fix cairo test with pycairo >= 1.13 (Christoph Reiter)
        - Make sure version information passed to require_version is a string. (Benjamin Berg) (#781582)
        - configure.ac: post-release version bump to 3.25.2 (Christoph Reiter)

3.25.1  21-Apr-2017
        - Bump pycairo requirement to 1.11.1 (Christoph Reiter) (#707196)
        - configure.ac: Always disable -Werror (Christoph Reiter)
        - foreign-cairo: Enable cairo.Region support also on Python 2 if available (Christoph Reiter)
        - configure.ac: remove unused PLATFORM variable (Christoph Reiter)
        - configure.ac: Remove unused PySignal_SetWakeupFd check (Christoph Reiter)
        - tests: remove python 2.5/3.2 compat code (Christoph Reiter)
        - configure.ac: Require Python 3.3 (Christoph Reiter)
        - tests: Make test suite run with GTK+ 4 (Christoph Reiter)
        - tests: always call require_version; add TEST_GTK_VERSION env var (Christoph Reiter)
        - tests: Fix make check.valgrind (Christoph Reiter)
        - tests: Don't skip Regress tests when cairo is missing (Christoph Reiter)
        - tests: fix invalid regex escaping (Christoph Reiter)
        - tests: avoid mapping a GtkWindow (Christoph Reiter) (#780812)
        - tests: silence some glib deprecation warnings (Christoph Reiter) (#780812)
        - tests: avoid deprecation warnings for assertRegexpMatches/assertRaisesRegexp (Christoph Reiter) (#780812)
        - pygi-source: clear exceptions in finalize handler (Christoph Reiter) (#780812)
        - Fix pep8 errors (Christoph Reiter)
        - Remove gi._gi._gobject and gi._gobject modules (Christoph Reiter) (#735206)
        - Remove gi._gi._glib module (Christoph Reiter) (#735206)
        - GValue: add overflow checking for py -> gint; forward marshaling exceptions (Christoph Reiter) (#769789)
        - pygobject_lookup_class: clear exceptions between calls and don't return with one set (Christoph Reiter) (#773394)
        - Avoid some new deprecation warnings (Christoph Reiter) (#780768)
        - Raise RuntimeError in case an uninitilialized GObject.Object is marshaled (Christoph Reiter) (#730908)
        - closure: support unichar args (Christoph Reiter) (#759276)
        - Add support for bytes and non-utf-8 file names. (Christoph Reiter) (#746564)
        - test_gi: use correct min/max constants for gsize/gssize (Christoph Reiter) (#780591)
        - Don't use long format string for formatting pointers (Christoph Reiter) (#780591)
        - Fix conversion from pointers to hashfunc return values. (Christoph Reiter) (#780591)
        - Fix PyLong <-> GPid conversion on 64bit Windows (Christoph Reiter) (#780591)
        - property: support setting flags (Christoph Reiter) (#726484)
        - overrides: warn on instantiation of Gio.VolumeMonitor (Christoph Reiter) (#744690)
        - Remove gi.overrides.overridefunc (Christoph Reiter) (#686835)
        - tests: Reduce usage of timeout_add() and sleep() (Christoph Reiter) (#698548)
        - tests: Remove TestMainLoop.test_concurrency (Christoph Reiter) (#698548)
        - Update .gitignore: add *.dll, *.dylib, .DS_STORE (Christoph Reiter)
        - tests: Make test suite run on Windows (Christoph Reiter) (#780396)
        - tests: Make test suite run on macOS (Christoph Reiter) (#780396)
        - Fix various compiler warnings for 32bit builds (Christoph Reiter) (#780409)
        - pep8 fix (Christoph Reiter)
        - testhelper: only link against libpython on Windows (Christoph Reiter) (#773803)
        - overrides: Fix Gtk.TextBuffer.insert_with_tags_by_name() with no tags (Garrett Regier) (#772896)
        - Make use of instance-argument annotations (Christoph Reiter) (#735076)
        - Remove pyglib_gil_state_ensure/pyglib_gil_state_release (Christoph Reiter) (#699440)
        - Remove support for building without threads (Christoph Reiter) (#699440)
        - pygtkcompat: Allow multiple calls to enable(), enable_gtk() as long as the version matches (Christoph Reiter) (#759009)
        - tests: Update Makefile for building tests on OS X (Simon Feltman) (#762176)
        - testhelper: propagate exception if _gobject could not be imported (Mikhail Fludkov) (#772949)
        - pygi-info: initialize GIArgument before passing it to g_constant_info_get_value (Christoph Reiter) (#772949)
        - tests: build libregress with disabled cairo (Mikhail Fludkov) (#772949)
        - tests: use g-ir utils found by pkg-config (Mikhail Fludkov) (#772949)
        - Add a foreign type for cairo_region_t. (Shyouzou Sugitani) (#667959)
        - aclocal: make local file discover by reading AC_CONFIG_MACRO_DIR work (Christoph Reiter) (#777713)
        - Port from gnome-common to autoconf-archive (Christoph Reiter) (#777713)
        - Fix various potential compiler warnings (Christoph Reiter) (#777713)
        - configure.ac: post-release version bump to 3.25.0 (Christoph Reiter)
        - Remove egg make target (Christoph Reiter) (#777719)
        - Remove legacy docs (Christoph Reiter) (#777719)

(wiz)

doc: Updated net/gallery-dl to 1.0.2

(leot)

gallery-dl: Update net/gallery-dl to 1.0.2

Changes:
1.0.2
-----
* Added an option to set a custom user-agent string
* Improved retry behavior for failed HTTP requests
* Improved `seiga` by providing better metadata and getting more than the
  latest 200 images
* Improved `tumblr` by adding support for all post types, scanning for inline
  images and following external links] (#48)
* Fixed extraction issues for `hbrowse`, `khinsider` and `senmanga`

(leot)

Disable ACL support on ChromeOS.

For some reason, the configure script mis-detects acl support, then
fails to build because the header file is missing.

(bsiegert)

Updated www/moodle to 3.4

(wen)

Update to 3.4
Update the minimum php version to 7.0.0
Update my email

Upstream changes:
Moodle 3.4:

Server requirements

These are just the minimum supported versions. We recommend keeping all of your software up-to-date.

    Moodle upgrade: Moodle 3.0 or later (if upgrading from earlier versions, you must upgrade to 3.0.10 as a first step)
    PHP version: minimum PHP 7.0.0 Note: minimum PHP version has increased since Moodle 3.3. PHP 7.1.x and 7.2.x are supported too. PHP 7.x could have some engine limitations.
    PHP extension intl is now required in Moodle 3.4 (it was recommended in 2.0 onwards)

Database requirements

Moodle supports the following database servers. Again, version numbers are just the minimum supported version. We recommend running the latest stable version of any software.
Database Minimum version Recommended
PostgreSQL 9.3 Latest
MySQL 5.5.31 Latest
MariaDB 5.5.31 Latest
Microsoft SQL Server 2008 Latest
Oracle Database 10.2 Latest
Client requirements
Browser support

Moodle is compatible with any standards compliant web browser. We regularly test Moodle with the following browsers:

Desktop:

    Chrome
    Firefox
    Safari
    Edge
    Internet Explorer

Mobile:

    MobileSafari
    Google Chrome

For the best experience and optimum security, we recommend that you keep your browser up to date. https://whatbrowser.org

Note: Legacy browsers with known compatibility issues with Moodle 3.4:

    Internet Explorer 10 and below
    Safari 7 and below

Major features
Calendar improvements

    MDL-59333 - Calendar Improvements
    MDL-1322 - Calendar entries in monthly view should include course shortname
    MDL-59382 - Create calendar event quick-add
    MDL-59390 - Add navigation of all calendar views without page reload
    MDL-59394 - Add support for drag and drop of calendar events
    MDL-59386 - Add support for creation and update of calendar events using a modal dialogue
    MDL-59890 - Add support for calendar events at the category level

Management of course participants

    MDL-59290 - Merge Course Participants and Enrolled Users pages
    MDL-59564 - Add bulk editing of enrolment status/dates for users in the course participants page
    MDL-59364 - Remove the "Brief / User Details" functionality from the participants page
    MDL-59365 - Enrol Users button on participants page
    MDL-59366 - Add filter controls to the participants page to allow custom filtering
    MDL-59367 - Add a roles column to participants page
    MDL-59368 - Add a groups column to the participants page
    MDL-59369 - Add a status column to the participants page
    MDL-59436 - Remove the columns from the participants page that are not in showuseridentity
    MDL-59821 - Add "Proceed to course content" to participants page

Other highlights

    MDL-57791 - Implement analytics engine in Moodle
    MDL-59313 - Add links and a drop down to navigate between activities
    MDL-37361 - Allow teachers to mark activities as completed

Backup, restore and import

    MDL-35429 - Correct the permissions required to download and restore course automated backups
    MDL-9367 - Restore with roll forward changes dates for user data
    MDL-59518 - Restore date should not roll for user created data - Core components

Global search

    MDL-55356 - Index contents of the restored courses
    MDL-59523 - Course reset doesn't always shift dates
    MDL-58957 - Global search: Make it possible to search blocks
    MDL-59039 - Global search: Allow partial indexing (in scheduled task)

Authentication

    MDL-30634 - Assign arbitrary system roles via LDAP sync
    MDL-58544 - Add option to trust email of an OAuth provider
    MDL-59844 - Enable OAuth 2 token-based authentication for requests in webdav_client
    MDL-59459 - Global Search: Increase file indexing coverage
    MDL-59913 - Global search: Allow search of non-enrolled courses

Functional changes

    MDL-55358 - LIS Group Variables support in LTI
    MDL-36501 - Should have checkbox for extra credit when you add a grade item
    MDL-28574 - Web services: Manage tokens page should show tokens for all users
    MDL-26976 - Display space used in My Private Files
    MDL-35668 - Performance improvement in Server files repository
    MDL-49398 - Performance improvement due to Role definition caching & accesslib refactoring
    MDL-60002 - Assignment grading: Adding back "Save and show next"
    MDL-58889 - Make section titles and course titles more accessible in Boost
    MDL-57455 - Allow to tag database entries
    MDL-36985 - Assignment: automatically remove embedded files that are no longer linked from submission text. Reduce the size of "Download all submissions"
    MDL-59702 - Lesson overview report does not respect value of showuseridentity setting
    MDL-59460 - Forum: make Subscription mode setting configurable

For administrators

Please read carefully: Possible issues that may affect you in Moodle 3.4

    MDL-42834 - Deprecate loginhttps. Sites that used to use this setting will now be served via https always
    MDL-46269 - Tool to convert http embedded content to https where available
    MDL-58388 - Let the admin control if the course end date form field in course settings is enabled by default
    MDL-60211 - New filters for User Tours
    MDL-59123 - Compile SCSS files on the command-line
    MDL-58567 - Upgrade: Show upgrade times
    MDL-55652 - Missing index on (timemodified) in grade_items_history table and several other grade history tables. This will increase performance of various reports but may also slow down Moodle upgrade
    MDL-60094 - Add CLI script to kill all sessions
    MDL-59495 - Register and publish courses with moodle.net only, remove support for alternative hubs
    MDL-59206 - Trigger an event in add_to_config_log function
    MDL-57115 - Move "Messages" block out from the standard Moodle distribution
    MDL-57734 - SEO - Create admin setting to be able to enable or disable search engine indexing for sites with forcelogin
    MDL-60309 - Boost: Add a setting for background image
    MDL-56751 - Create new security setting to configure the expiration time of tokens created via login/token.php or tool/mobile/launch.php

Security issues

    MSA-17-0021 Students can find out email addresses of other students in the same course

This list only includes security issues fixed after 3.3.2 release. Refer to other release notes for security issues fixed in earlier releases.
For developers

    MDL-60611 - Upgrade PHPUnit to 6.4 to ensure compatibility with PHP 7.2 - may require changes in unittests.
    MDL-58948 - Compatibility with chrome mink driver
    MDL-53169 - Provide a way to retrieve all courses a user can potentially access.
    MDL-59459 - Global Search: Increase file indexing coverage
    MDL-59277 - navigation_node doesn't support TYPE_CONTAINER in get_css_type()
    MDL-58957 - Global search: Make it possible to search blocks. See the new \core_search\base_block class.
    MDL-53240 - Form element and admin setting type to choose file types and type groups
    MDL-53848 - Formslib - add function to $mform that makes it possible to hide form elements dependent on selected values
    MDL-60234 - Add possibility to disable admin warning if a development libs directory exists
    MDL-57886 - Plagiarism: onlinetext submission should pass raw submissiontext to plagiarism get_links()

(wen)

doc: Updated lang/php71 to 7.1.12

(taca)

lang/php71: Update to 7.1.12

23 Nov 2017, PHP 7.1.12

- Core:
  . Fixed bug #75420 (Crash when modifing property name in __isset for
    BP_VAR_IS). (Laruence)
  . Fixed bug #75368 (mmap/munmap trashing on unlucky allocations). (Nikita,
    Dmitry)

- CLI:
  . Fixed bug #75287 (Builtin webserver crash after chdir in a shutdown
    function). (Laruence)

- Enchant:
  . Fixed bug #53070 (enchant_broker_get_path crashes if no path is set). (jelle
    van der Waa, cmb)
  . Fixed bug #75365 (Enchant still reports version 1.1.0). (cmb)

- Exif:
  . Fixed bug #75301 (Exif extension has built in revision version). (Peter
    Kokot)

- GD:
  . Fixed bug #65148 (imagerotate may alter image dimensions). (cmb)
  . Fixed bug #75437 (Wrong reflection on imagewebp). (Fabien Villepinte)

- intl:
  . Fixed bug #75317 (UConverter::setDestinationEncoding changes source instead
    of destination). (andrewnester)

- interbase:
  . Fixed bug #75453 (Incorrect reflection for ibase_[p]connect). (villfa)

- Mysqli:
  . Fixed bug #75434 (Wrong reflection for mysqli_fetch_all function). (Fabien
    Villepinte)

- OCI8:
  . Fixed valgrind issue. (Tianfang Yang)

- OpenSSL:
  . Fixed bug #75363 (openssl_x509_parse leaks memory). (Bob, Jakub Zelenka)
  . Fixed bug #75307 (Wrong reflection for openssl_open function). (villfa)

- Opcache:
  . Fixed bug #75373 (Warning Internal error: wrong size calculation). (Laruence, Dmitry)

- PGSQL:
  . Fixed bug #75419 (Default link incorrectly cleared/linked by pg_close()). (Sara)

- SOAP:
  . Fixed bug #75464 (Wrong reflection on SoapClient::__setSoapHeaders). (villfa)

- Zlib:
  . Fixed bug #75299 (Wrong reflection on inflate_init and inflate_add). (Fabien
    Villepinte)

(taca)

doc: Updated lang/php70 to 7.0.26

(taca)

Update php70 to 7.0.26.

23 Nov 2017 PHP 7.0.26

- Core:
  . Fixed bug #75420 (Crash when modifing property name in __isset for
    BP_VAR_IS). (Laruence)
  . Fixed bug #75368 (mmap/munmap trashing on unlucky allocations). (Nikita,
    Dmitry)

- CLI:
  . Fixed bug #75287 (Builtin webserver crash after chdir in a shutdown
    function). (Laruence)

- Enchant:
  . Fixed bug #53070 (enchant_broker_get_path crashes if no path is set). (jelle
    van der Waa, cmb)
  . Fixed bug #75365 (Enchant still reports version 1.1.0). (cmb)

- Exif:
  . Fixed bug #75301 (Exif extension has built in revision version). (Peter
    Kokot)

- GD:
  . Fixed bug #65148 (imagerotate may alter image dimensions). (cmb)
  . Fixed bug #75437 (Wrong reflection on imagewebp). (Fabien Villepinte)

- intl:
  . Fixed bug #75317 (UConverter::setDestinationEncoding changes source instead
    of destination). (andrewnester)

- interbase:
  . Fixed bug #75453 (Incorrect reflection for ibase_[p]connect). (villfa)

- Mysqli:
  . Fixed bug #75434 (Wrong reflection for mysqli_fetch_all function). (Fabien
    Villepinte)

- OCI8:
  . Fixed valgrind issue. (Tianfang Yang)

- Opcache:
  . Fixed bug #75373 (Warning Internal error: wrong size calculation). (Laruence, Dmitry)

- OpenSSL:
  . Fixed bug #75363 (openssl_x509_parse leaks memory). (Bob, Jakub Zelenka)
  . Fixed bug #75307 (Wrong reflection for openssl_open function). (villfa)

- PGSQL:
  . Fixed bug #75419 (Default link incorrectly cleared/linked by pg_close()). (Sara)

- SOAP:
  . Fixed bug #75464 (Wrong reflection on SoapClient::__setSoapHeaders). (villfa)

- Zlib:
  . Fixed bug #75299 (Wrong reflection on inflate_init and inflate_add). (Fabien
    Villepinte)

(taca)

doc: Updated devel/waf to 2.0.2

(wiz)

waf: update to 2.0.2.

NEW IN WAF 2.0.2
----------------
* Improve Intel Fortran compiler detection on Windows #2063
* Ensure that the task count starts at 1 in the build outputs
* Add a --pdb option to start pdb on unexpected exceptions #2052
* Fix conflicting qm/qrc re-used output files for multiple targets #2065
* Add java support in protobuf (extras) #2049
* Add a java test example (extras) #2062
* Enable symbol processing for empty targets (extras) #2053

NEW IN WAF 2.0.1
----------------
* Improve the default preprocessor behaviour for gcc/msvc
* Accept task objects in Build.add_to_group for compatibility reasons
* Prevent xcode generator from overwriting existing features #2038
* Fix self.includes data scope #2035
* Fix Node.ant_glob case sensitivity regression #2034
* Fix Logs.verbose options regression #2033

NEW IN WAF 2.0.0
----------------
* Provide a new priority system to improve scalability on complex builds
* Provide TaskGroup objects to improve scalability on complex builds
* Force new files into the build directory by default (use Node objects to bypass)
* Provide built-in support for building over UNC paths
* Simplify the Task class hierarchy; TaskBase is removed
* Display commands as string with "WAF_CMD_FORMAT=string waf build -v"
* Have ant_glob(..., generator=True) return a Python generator
* Accept nested lists and generators in bld(source=...)
* Sort TaskGen methods in alphabetical order by reversing TaskGen.prec order

* Remove 'ut_fun' from waf_unit_test.py
* Remove Node.sig and Node.cache_sig
* Remove the BuildContext.rule decorator
* Remove Task.update_outputs, Task.always_run
* Remove atleast-version, exact-version and max-version from conf.check_cfg
* Remove c_preproc.trimquotes
* Remove field_name, type_name, function_name from conf.check() tests
* Remove extras/mem_reducer.py as a better solution has been merged
* Remove Utils.ex_stack (use traceback.format_exc())

(wiz)

doc: Updated www/py-test-httpbin to 0.3.0

(wiz)

py-test-httpbin: update to 0.3.0.

    Allow to run httpbin on fixed port using environment variables (thanks @hroncok)
    Allow server to be thread.join()ed (thanks @graingert)
    Add support for Python 3.6 (thanks @graingert)

Add comment about test failure.

(wiz)

py-httpbin: this package is missing a dependency, raven

However, that is currently only packaged in wip.
Add a comment about this for someone else to fix.

Add a comment about an upstream bug report for a test failure.

(wiz)

doc: Updated devel/py-zconfig to 3.2.0

(wiz)

py-zconfig: update to 3.2.0.

3.2.0 (2017-06-22)
------------------

- Drop support for Python 2.6 and 3.2 and add support for Python 3.6.

- Run tests with pypy and pypy3 as well.

- Host docs at https://zconfig.readthedocs.io

- BaseLoader is now an abstract class that cannot be instantiated.

- Allow ``nan``, ``inf`` and ``-inf`` values for floats in
  configurations. See
  https://github.com/zopefoundation/ZConfig/issues/16.

- Scripts ``zconfig`` (for schema validation) and
  ``zconfig_schema2html`` are ported to Python 3.

- A new ``ZConfig.sphinx`` `Sphinx extension
  <https://zconfig.readthedocs.io/en/latest/documenting-components.html#documenting-components>`_
  facilitates automatically documenting ZConfig components using their
  description and examples in Sphinx documentation. See
  https://github.com/zopefoundation/ZConfig/pull/25.

- Simplify internal schema processing of max and min occurrence
  values. See https://github.com/zopefoundation/ZConfig/issues/15.

- Almost all uses of ``type`` as a parameter name have been replaced
  with ``type_`` to avoid shadowing a builtin. These were typically
  not public APIs and weren't expected to be called with keyword
  arguments so there should not be any user-visible changes. See
  https://github.com/zopefoundation/ZConfig/issues/17

3.1.0 (2015-10-17)
------------------

- Add ability to do variable substitution from environment variables using
  $() syntax.

3.0.4 (2014-03-20)
------------------

- Added Python 3.4 support.

3.0.3 (2013-03-02)
------------------

- Added Python 3.2 support.

3.0.2 (2013-02-14)
------------------

- Fixed ResourceWarning in BaseLoader.openResource().

3.0.1 (2013-02-13)
------------------

- Removed an accidentally left `pdb` statement from the code.

- Fix a bug in Python 3 with the custom string `repr()` function.

3.0.0 (2013-02-13)
------------------

- Added Python 3.3 support.

- Dropped Python 2.4 and 2.5 support.

2.9.3 (2012-06-25)
------------------

- Fixed: port values of 0 weren't allowed.  Port 0 is used to request
  an ephemeral port.

2.9.2 (2012-02-11)
------------------

- Adjust test classes to avoid base classes being considered separate
  test cases by (at least) the "nose" test runner.

2.9.1 (2012-02-11)
------------------

- Make FileHandler.reopen thread safe.

2.9.0 (2011-03-22)
------------------

- Allow identical redefinition of ``%define`` names.
- Added support for IPv6 addresses.

2.8.0 (2010-04-13)
------------------

- Fix relative path recognition.
  https://bugs.launchpad.net/zconfig/+bug/405687

- Added SMTP authentication support for email logger on Python 2.6.

2.7.1 (2009-06-13)
------------------

- Improved documentation

- Fixed tests failures on windows.

2.7.0 (2009-06-11)
------------------

- Added a convenience function, ``ZConfig.configureLoggers(text)`` for
  configuring loggers.

- Relaxed the requirement for a logger name in logger sections,
  allowing the logger section to be used for both root and non-root
  loggers.

(wiz)

py-flask: add upstream bug report URL for test failures

(wiz)

doc: Updated devel/mm-common to 0.9.11

(wiz)

mm-common: update to 0.9.11.

mm-common 0.9.11 (2017-08-25)

* Fix silent build.
  (Kjell Ahlstedt) Bug #768797 (Sebastian)
* Build: don't save time stamps in skeletonmm.tar.gz
  (Michael Bielb) Bug #765108

(wiz)

py-cairo: Add missing patch for previous.

(wiz)

ladspa: Correct injection of CFLAGS, CXXFLAGS, LDFLAGS

Patch the upstream makefile to rename CFLAGS, CXXFLAGS, LDFLAGS to
LOCAL_*. Retrieve  CFLAGS, CXXFLAGS, LDFLAGS from pkgsrc.

This package uses homegrown hardcoded macros for libraries (-fPIC), this
is not portable and should be adjusted in future.

This unbreaks build on NetBSD/amd64 8.99.7 as of today.

(kamil)

Record latest round of pullup tickets

(bsiegert)

Pullup ticket #5652 - requested by khorben
www/firefox52: security fix
www/firefox52-l10n: security fix

Revisions pulled up:
- www/firefox52-l10n/Makefile                                  1.5-1.6
- www/firefox52-l10n/distinfo                                  1.5-1.6
- www/firefox52/Makefile                                        1.9-1.10
- www/firefox52/distinfo                                        1.7-1.8
- www/firefox52/patches/patch-extensions_spellcheck_hunspell_glue_mozHunspell.cpp deleted

---
  Module Name: pkgsrc
  Committed By: ryoon
  Date: Sat Sep 30 11:19:10 UTC 2017

  Modified Files:
  pkgsrc/www/firefox52: Makefile distinfo
  Removed Files:
  pkgsrc/www/firefox52/patches:
      patch-extensions_spellcheck_hunspell_glue_mozHunspell.cpp

  Log Message:
  Update to 52.4.0

  * Remove an unnecessary patch

  Changelog:
  Fixed
      Various security fixes
      Various stability and regression fixes

  Security fixes:
  #CVE-2017-7793: Use-after-free with Fetch API

  Reporter
      Abhishek Arya
  Impact
      high

  Description

  A use-after-free vulnerability can occur in the Fetch API when the
  worker or the associated window are freed when still in use, resulting
  in a potentially exploitable crash.
  References

      Bug 1371889

  #CVE-2017-7818: Use-after-free during ARIA array manipulation

  Reporter
      Nils
  Impact
      high

  Description

  A use-after-free vulnerability can occur when manipulating arrays of
  Accessible Rich Internet Applications (ARIA) elements within containers
  through the DOM. This results in a potentially exploitable crash.
  References

      Bug 1363723

  #CVE-2017-7819: Use-after-free while resizing images in design mode

  Reporter
      Nils
  Impact
      high

  Description

  A use-after-free vulnerability can occur in design mode when image
  objects are resized if objects referenced during the resizing have been
  freed from memory. This results in a potentially exploitable crash.
  References

      Bug 1380292

  #CVE-2017-7824: Buffer overflow when drawing and validating elements
  with ANGLE

  Reporter
      Omair, Andre Weissflog
  Impact
      high

  Description

  A buffer overflow occurs when drawing and validating elements with the
  ANGLE graphics library, used for WebGL content. This is due to an
  incorrect value being passed within the library during checks and
  results in a potentially exploitable crash.
  References

      Bug 1398381

  #CVE-2017-7805: Use-after-free in TLS 1.2 generating handshake hashes

  Reporter
      Martin Thomson
  Impact
      high

  Description

  During TLS 1.2 exchanges, handshake hashes are generated which point to
  a message buffer. This saved data is used for later messages but in some
  cases, the handshake transcript can exceed the space available in the
  current buffer, causing the allocation of a new buffer. This leaves a
  pointer pointing to the old, freed buffer, resulting in a use-after-free
  when handshake hashes are then calculated afterwards. This can result in
  a potentially exploitable crash.
  References

      Bug 1377618

  #CVE-2017-7814: Blob and data URLs bypass phishing and malware
  protection warnings

  Reporter
      Francois Marier
  Impact
      moderate

  Description

  File downloads encoded with blob: and data: URL elements bypassed normal
  file download checks though the Phishing and Malware Protection feature
  and its block lists of suspicious sites and files. This would allow
  malicious sites to lure users into downloading executables that would
  otherwise be detected as suspicious.
  References

      Bug 1376036

  #CVE-2017-7825: OS X fonts render some Tibetan and Arabic unicode
  characters as spaces

  Reporter
      Khalil Zhani
  Impact
      moderate

  Description

  Several fonts on OS X display some Tibetan and Arabic characters as
  whitespace. When used in the addressbar as part of an IDN this can be
  used for domain name spoofing attacks.
  Note: This attack only affects OS X operating systems. Other operating
  systems are unaffected.
  References

      Bug 1393624
      Bug 1390980

  #CVE-2017-7823: CSP sandbox directive did not create a unique origin

  Reporter
      Jun Kokatsu
  Impact
      moderate

  Description

  The content security policy (CSP) sandbox directive did not create a
  unique origin for the document, causing it to behave as if the
  allow-same-origin keyword were always specified. This could allow a
  Cross-Site Scripting (XSS) attack to be launched from unsafe content.
  References

      Bug 1396320

  #CVE-2017-7810: Memory safety bugs fixed in Firefox 56 and Firefox ESR 52.4

  Reporter
      Mozilla developers and community
  Impact
      critical

  Description

  Mozilla developers and community members Christoph Diehl, Jan de Mooij,
  Jason Kratzer, Randell Jesup, Tom Ritter, Tyson Smith, and Sebastian
  Hengst reported memory safety bugs present in Firefox 55 and Firefox ESR
  52.3. Some of these bugs showed evidence of memory corruption and we
  presume that with enough effort that some of these could be exploited to
  run arbitrary code.
  References

      Memory safety bugs fixed in Firefox 56 and Firefox ESR 52.4

---
  Module Name: pkgsrc
  Committed By: ryoon
  Date: Sat Sep 30 11:21:00 UTC 2017

  Modified Files:
  pkgsrc/www/firefox52-l10n: Makefile distinfo

  Log Message:
  Update to 52.4.0

  * Sync with firefox52-52.4.0

---
  Module Name: pkgsrc
  Committed By: ryoon
  Date: Thu Nov  9 19:17:19 UTC 2017

  Modified Files:
  pkgsrc/www/firefox52: Makefile distinfo

  Log Message:
  Update to 52.4.1

  Changelog:
  Fixed
      Fixed a crash when playing videos on macOS 10.13

      Fixed a crash when using the color picker on macOS 10.13

---
  Module Name: pkgsrc
  Committed By: ryoon
  Date: Thu Nov  9 19:24:37 UTC 2017

  Modified Files:
  pkgsrc/www/firefox52-l10n: Makefile distinfo

  Log Message:
  Update to 52.4.1

  * Sync with www/firefox52-52.4.1

(bsiegert)

doc: Updated graphics/py-cairo to 1.15.4nb1

(wiz)

py-cairo: install pkgconfig in pkgsrc standard location

Bump PKGREVISION.

(wiz)

Pullup ticket #5651 - requested by he
textproc/icu: security fix

Revisions pulled up:
- textproc/icu/Makefile                                        1.111-1.112
- textproc/icu/distinfo                                        1.66,1.70
- textproc/icu/patches/patch-config_mh-solaris-gcc              1.4
- textproc/icu/patches/patch-i18n_zonemeta.cpp                  1.1

---
  Module Name: pkgsrc
  Committed By: jperkin
  Date: Wed Oct  4 10:52:40 UTC 2017

  Modified Files:
  pkgsrc/textproc/icu: Makefile distinfo
  pkgsrc/textproc/icu/patches: patch-config_mh-solaris-gcc

  Log Message:
  icu: Remove -nodefaultlibs -nostdlib from SunOS linker args.

  This prevented GCC libraries from being used and thus disabled SSP and
  other features.  Bump PKGREVISION.

---
  Module Name: pkgsrc
  Committed By: he
  Date: Thu Nov 16 09:58:26 UTC 2017

  Modified Files:
  pkgsrc/textproc/icu: Makefile distinfo
  Added Files:
  pkgsrc/textproc/icu/patches: patch-i18n_zonemeta.cpp

  Log Message:
  Apply a fix for CVE-2017-14952 from
  http://bugs.icu-project.org/trac/changeset/40324/trunk/icu4c/source/i18n/zonemeta.cpp
  Bump PKGREVISION.

(bsiegert)

Pullup ticket #5650 - requested by he
sysutils/zabbix: bugfix

Revisions pulled up:
- sysutils/zabbix/Makefile                                      1.4+patch
- sysutils/zabbix/distinfo                                      1.4+patch
- sysutils/zabbix/patches/patch-src_libs_zbxsysinfo_common_net.c 1.1+patch

---
  Module Name: pkgsrc
  Committed By: he
  Date: Thu Nov 16 11:01:12 UTC 2017

  Modified Files:
  pkgsrc/sysutils/zabbix: Makefile distinfo
  Added Files:
  pkgsrc/sysutils/zabbix/patches: patch-src_libs_zbxsysinfo_common_net.c

  Log Message:
  Zabbix_agentd is a threaded program, and it tries to muck with the
  global `_res' variable.  That's not supported on NetBSD, and IME
  causes the zabbix agent daemon to exit shortly after having been started.
  Convert to instead using res_ninit(), res_nsend(), and res_nclose().
  Bump PKGREVISION.

(bsiegert)