doc: Updated devel/p5-Log-Agent to 1.003

(wiz)

p5-Log-Agent: update to 1.003.

## [1.003] - 2017-11-10
### Added
- Added a license file.

(wiz)

doc: Updated converters/p5-Sereal to 4.002

(wiz)

p5-Sereal: update to 4.002.

4.001_001 Mon Feb  6 11:13:40 CEST 2017
  * Sereal v4 release with Zstandard compression support
    https://github.com/facebook/zstd

(wiz)

Updated devel/libuv, devel/cmake

(adam)

doc: Updated converters/p5-Sereal-Encoder to 4.002

(wiz)

p5-Sereal-Encoder: update to 4.002.

4.001_001 Mon Feb  6 11:13:40 CEST 2017
    * Sereal v4 release with Zstandard compression support
      https://github.com/facebook/zstd

(wiz)

doc/TODO: add some

+ aria2-1.33.1, calibre-3.12, fossil-2.4, hiawatha-10.7,
  libgphoto2-2.5.15, libressl-2.6.3, lighttpd-1.4.48, maxima-5.41.0,
  stunnel-5.43, tinc-1.0.33, wget-1.19.2, worker-3.12.0.

(wiz)

cmake: updated to 3.9.6

CMake 3.9.6:
* Restore exclusion of "gcc_eh" from implicit link libraries

(adam)

doc: Updated converters/p5-Sereal-Decoder to 4.002

(wiz)

p5-Sereal-Decoder: update to 4.002.

4.001_001 Mon Feb  6 11:13:40 CEST 2017
  * Sereal v4 release with Zstandard compression support
    https://github.com/facebook/zstd

(wiz)

libuv: updated to 1.16.1

Changes since version 1.16.0:
* unix: move net/if.h include
* win: fix undeclared NDIS_IF_MAX_STRING_SIZE

(adam)

Add support for LDFLAGS when building audio/nas

This helps pass the RELRO check for this package.

(khorben)

doc: Updated mail/neomutt to 20171027

(wiz)

neomutt: update to 20171027.

neomutt is now called 'neomutt' instead of 'mutt'. Remove conflict
with mutt.

2017-10-27  Richard Russon  <rich@flatcap.org>
* Bug Fixes
  - variable type when using fread
  - prevent timezone overflow
  - tags: Show fake header for all backends
  - notmuch: virtual-mailboxes should accept a limit
  - Issue 888: Fix imap mailbox flag logging
  - fix actions on tagged messages
  - call the folder-hook before saving to $record
  - Fix smart wrap in pager without breaking header
  - Add polling for the IDLE command
* Docs
  - imap/notmuch tags: Add some documentation
  - English and other cleanups
  - compressed and nntp features are now always built
* Website
  - Update Arch instructions
* Build
  - Fix update-po
  - Fix neomutt.pot location, remove from git
  - Allow to specify --docdir at configure time
  - Generate neomuttrc even if configured with --disable-doc
  - Let autosetup define PWD, do not unnecessarily try to create hcache dir
  - Use bundled wcscasecmp if an implementation is not found in libc
  - Use host compiler to build the documentation
  - Update autosetup to latest master branch
  - autosetup: delete makedoc on 'make clean'
  - Fixes for endianness detection
  - Update autosetup to latest master branch
  - Do not use CPPFLAGS / CFLAGS together with CC_FOR_BUILD
  - --enable-everything includes lua
  - autosetup: check for sys_siglist[]
* Code
  - move functions to library
  - lib: move MIN/MAX macros
  - simplify null checks
  - kill preproc expansion laziness
  - reduce scope of variables
  - merge: minor code cleanups
  - split up 'if' statements that assign and test
  - Refactor: Remove unused return type
  - Bool: change functions in mx.h
  - bool: convert function parameters in nntp.h
  - add extra checks to mutt_pattern_exec()
  - Use safe_calloc to initialize memory, simplify size_t overflow check
  - Move mutt_rename_file to lib/file.[hc]
  - doxygen: fix a few warnings
  - minor code fixes
  - use mutt_array_size()
  - refactor out O_NOFOLLOW
  - initialise variables
  - lib: move List and Queue into library
  - url: make notmuch query string parser generic
  - Wrap dirname(3) inside a mutt_dirname() function

2017-10-13  Richard Russon  <rich@flatcap.org>
* Bug Fixes
  - crash using uncolor
  - Sort the folders list when browsing an IMAP server
  - Prefer a helpful error message over a BEEP
* Build
  - Do not fail if deflate is not in libz
  - Support EXTRA_CFLAGS and EXTRA_LDFLAGS, kill unused variable

2017-10-06  Richard Russon  <rich@flatcap.org>
* Features
  - Add IMAP keywords support
* Bug Fixes
  - set mbox_type
  - %{fmt} date format
  - Fix off-by-one buffer overflow in add_index_color
  - crash in mbox_to_udomain
  - crash in mutt_substrdup
  - crash looking up mime body type
  - digest_collapse was broken
  - crash using notmuch expando with imap
  - imap: Fix mx.mbox leak in imap_get_parent_path
  - overflow in mutt_mktime()
  - add more range-checking on dates/times
  - Remove spurious error message
  - Unsubscribe after deleting an imap folder
  - Do not pop from MuttrcStack what wasn't pushed
* Docs
  - replace mutt refs with neomutt
  - drop old vim syntax file
* Code
  - convert functions to use 'bool'
  - convert structs to use STAILQ
* Build
  - Autosetup-based configuration
  - drop upstream mutt references
  - rename everything 'mutt' to 'neomutt'
  - move helper programs to lib dir
  - rename regexp to regex
  - expand buffers to avoid gcc7 warnings
* Upstream
  - Remove \Seen flag setting for imap trash
  - Change imap copy/save and trash to sync flags, excluding deleted
  - Improve imap fetch handler to accept an initial UID
  - Display an error message when delete mailbox fails
  - Updated French translation
  - Fix imap sync segfault due to inactive headers during an expunge
  - Close the imap socket for the selected mailbox on error
  - Add missing IMAP_CMD_POLL flag in imap buffy check
  - Change maildir and mh check_mailbox to use dynamic sized hash
  - Fix uses of context->changed as a counter
  - Make cmd_parse_fetch() more precise about setting reopen/check flags
  - Enable $reply_self for group-reply, even with $metoo unset

(wiz)

Updated databases/postgresqlNN

(adam)

Brought back removed lines

(adam)

postgresql: updated to the latest

The PostgreSQL Global Development Group has released an update to all supported versions of our database system, including 10.1, 9.6.6, 9.5.10, 9.4.15, 9.3.20, and 9.2.24. This release fixes three security issues. This release also fixes issues found in BRIN indexing, logical replication and other bugs reported over the past three months.

All users using the affected versions of PostgreSQL should update as soon as possible. If you use BRIN indexes or contrib/start-scripts, please see the release notes for additional post-upgrade steps.

Security Issues

Three security vulnerabilities have been fixed by this release:

CVE-2017-12172: Start scripts permit database administrator to modify root-owned files
CVE-2017-15098: Memory disclosure in JSON functions
CVE-2017-15099: INSERT ... ON CONFLICT DO UPDATE fails to enforce SELECT privileges

Bug Fixes and Improvements

This update also fixes a number of bugs reported in the last few months. Some of these issues affect only version 10, but many affect all supported versions:

Fix a race condition in BRIN indexing that could cause some rows to not be included in the indexing.
Fix crash when logical decoding is invoked from a PL language function.
Several fixes for logical replication.
Restored behavior for CTEs attached to INSERT/UPDATE/DELETE statements to pre-version 10.
Prevent low-probability crash in processing of nested trigger firings.
Do not evaluate an aggregate function's argument expressions when the conditions in the FILTER clause evaluate to FALSE. This complies with SQL-standard behavior.
Fix incorrect query results when multiple GROUPING SETS columns contain the same simple variable.
Fix memory leak over the lifespan of a query when evaluating a set-returning function from the target list in a SELECT.
Several fixes for parallel query execution, including fixing a crash in the parallel execution of certain queries that contain a certain type of bitmap scan.
Fix json_build_array(), json_build_object(), jsonb_build_array(), and jsonb_build_object() to handle explicit VARIADIC arguments correctly.
Prevent infinite float values from being casted to the numeric type.
Fix autovacuum's ���work item��� logic to prevent possible crashes and silent loss of work items.
Several fixes for VIEWs around adding columns to the end of a view.
Fix for hashability detection of range data types that are created by a user.
Improvements on using extended statistics on columns for the purposes of query planning.
Prevent idle_in_transaction_session_timeout from being ignored when a statement_timeout occurred earlier.
Fix low-probability loss of NOTIFY messages due more than 2 billion transactions processing before any queries are executed in the session.
Several file system interaction fixes.
Correctly restore the umask setting when file creation fails in COPY or lo_export().
Fix pg_dump to ensure that it emits GRANT commands in a valid order.
Fix pg_basebackup's matching of tablespace paths to canonicalize both paths before comparing to help improve Windows compatibility.
Fix libpq to not require user's home directory to exist when trying to read the "~/.pgpass" file.
Several fixes for ecpg.

(adam)

Updated converters/p5-Unicode-Collate to 1.22

(wen)

Update to 1.22

Upstream changes:
1.22  Sat Nov 11 10:53:35 2017
    - someone suggests using 'exists' for checking the truth of
      $collator->{mapping}{$variable} and $collator->{maxlength}{$variable},
      where $variable may stand for codepoints whose mapping is not defined;
      though such a problem was not reproduced on my environment.

(wen)

doc: Updated multimedia/py-gstreamer1 to 1.12.3

(prlw1)

Update py-gstreamer1 to 1.12.3

GStreamer Python Bindings (highlights)

* Overrides has been added for IntRange, Int64Range, DoubleRange,
  FractionRange, Array and List. This finally enables Python
  programmers to fully read and write GstCaps objects.
* Some plugin filenames have been changed to match the plugin names:
  for example the file name of the encoding plugin in
  gst-plugins-base containing the encodebin element was
  libgstencodebin.so and has been changed to libgstencoding.so. This
  affects only a handful of plugins across modules.
* GStreamer core now optionally uses libunwind and libdw to generate
  backtraces. This is useful for tracer plugins used during debugging
  and development.
* There is a new libgstbadallocators-1.0 library in gst-plugins-bad
  (which may go away again in future releases once the
  GstPhysMemoryAllocator interface API has been validated by more
  users).
* The qtkitvideosrc element for macOS was removed. The API is
  deprecated since 10.9 and it wasn't shipped in the binaries since a
  few releases.

(prlw1)

Updated geography/py-obspy to 1.1.0

(wen)

Update to 1.1.0

Upstream changes:
1.1.0: (doi: 10.5281/zenodo.165135)
- General:
  * Read support for Guralp Compressed Format (GCF) waveform data,
    obspy.io.gcf (see #1449)
  * Read support for Reftek 130 (rt130) waveform data,
    obspy.io.reftek (see #1433)
  * Add Nordic format (s-file) read/write (see #1517)
  * Read and write support for events in the SCARDEC catlogue format
    (see #1391).
  * Read support for IASPEI ISF ISM 1.0 Bulletin event data,
    (see #1946)
  * Write support for AH (Ad Hoc version 1) format (see #1754)
  * Client to access the Nominal Response Library (NRL) (see #1185).
  * `obspy.read_inventory()` can now read dataless SEED and RESP files
    (see #1185).
  * change version number scheme for scenarios when no official version number
    can be determined (see #1889 and #1916)
  * Support for the IRIS Federator and EIDAWS FDSNWS web routing services
    (see #1779 and #1919).
- obspy.core:
  * UTCDateTime is now based on nanoseconds (long) instead of a unix
    timestamp in microseconds (float) - resulting in higher precision and
    support for years 1-9999 (see #1325)
  * Ensure that Trace.data is always C-contiguous in memory (see #1732)
  * Event/ResourceIdentifier is now object aware, meaning even if two
    objects share a resource_id the distinct objects will be returned with
    the get_referred_object method provided both are still in scope. If one
    of the objects gets garbage collected, however, a warning will be issued
    and the behavior will be the same as before (see #1644).
  * Better error message when attempting to write invalid QuakeML resource
    ids (see #1699).
  * Stream/Trace.write() can now autodetect file format from file extension
    (see #1321).
  * New convenience property `.matplotlib_date` for `UTCDateTime` objects to
    get matplotlib datetime float representation (which can be used in
    time-based matplotlib axes, e.g. by Stream.plot(); see #1339).
  * Trace.times() has new options `type` and `reftime` to support fetching an
    array of sampletimes in various different timing varieties ("relative":
    the old default, float relative to trace starttime or `reftime` in
    seconds; "utcdatetime": absolute times as UTCDateTime objects;
    "timestamp": array of float POSIX timestamps, compare
    `UTCDateTime.timestamp`; "matplotlib": array of float matplotlib dates,
    useful for plotting on matplotlib time axes; see #1307)
  * A trace's stats.network/station/location/channel can now also be set in
    one line using a SEED ID string (e.g. `trace.id = "GR.FUR..HHZ"`,
    see #1439).
  * Instrument correction for response list stages originating from inventory
    objects (see #1514).
  * `Stream.rotate(...)` can now also be used to rotate unaligned channels to
    Z-N-E, given an Inventory (see #1310)
  * Non finite floats (NaN, inf, -inf) can now no longer be set for all
    event objects (see #1597).
  * Instrument responses can now also be calculated for a given list of
    frequencies (see #1598).
  * Order of extra tags for event type classes serialized to QuakeML can now
    be controlled by using an OrderedDict (see #1617)
  * Bode plots can now optionally plot the phase in degrees (see #1763).
  * `Stream.select()` now also works on the component level if channels only
    have one letter (see #1847).
  * Now strips all invalid characters from the temporary filenames used for
    downloading data using the `read_X()` methods (see #1958).
- obspy.clients.earthworm:
  * Much faster trace unpacking (see #1762).
- obspy.clients.fdsn:
  * empty SEED codes (e.g. ``network=''``) will now be properly sent to the
    server as options and not omitted, which led to wildcard matching (for
    details see #1578)
  * The mass downloader now has `exclude_networks` and `exclude_stations`
    arguments to not download certain pieces of data. (see #1305)
  * The mass downloader can now download stations that are part of a given
    inventory object.
  * The mass downloader now also works with restricted data. (See #1350)
  * No data (HTTP 204) responses now raise `FDSNNoDataException` rather than
    the more general `FDSNException`.
  * Fixing cross implementation of bulk waveform and station requests (see
    #1685).
  * Adding mappings for the TEXNET (see #1852) and the ICGC (see #1902)
    services.
  * Support for the non-standard EIDA token authentication (see #1928).
- obspy.imaging:
  * The functionality behind the `obspy-scan` command line script has been
    refactored into a `Scanner` class so that it can be reused in custom
    workflows. (see #1444)
- obspy.imaging.cm:
  * new colormap: viridis_white. This is a modification of viridis that
    goes to white instead of yellow but remains perceptually uniform. It
    is especially useful for printing when an image should merge with the
    white background.
- obspy.imaging.waveform:
  * Support for filling the wiggles when plotting sections (horizontal and
    vertical, see #1445).
- obspy.io.arclink:
    * Read support for Arclink Inventory XML (see #1539)
    * default for `route` parameter in metadata requests is changed to `False`
      (see #1756)
- obspy.io.ascii:
    * Custom formatting of sample values when writing SLIST and TSPAIR.
- obspy.io.datamark:
    * Renamed without deprectation to obspy.io.win to match its original name.
      Datamark is a datalogger, saving the WIN format.
- obspy.io.gse2:
    * Read support for GSE2.0 bulletin (see #1528)
- obspy.io.nlloc:
    * Also parse author information and COMMENT line (see #1484)
    * Fix reading hypocenter files created by NonLinLoc versions of the 6.0.x
      beta branch (see #1760 and #1783)
- obspy.io.quakeml:
    * Read and write support for nested custom tags (see #1463)
    * Fix some minor bugs that could lead to empty stub elements, e.g. like
      empty MomentTensor when reading and later writing again a QuakeML file
      with a FocalMechanism but no MomentTensor, potentially resulting in
      QuakeML files that breach the QuakeML schema (see #1896)
- obspy.io.seiscomp:
    * Read and write support for SC3ML event (see #1638 and #1848)
    * Fix bug where files with arbitrary publicIDs and files with missing
      depth, latitude, longitude, or elevation tags could not be read
      (see #1817)
- obspy.io.stationtxt:
    * Write support for stationtxt format (see #1466)
- obspy.io.stationxml:
    * Read and write support for custom tags (see #1024)
    * No longer add the (unused) time zone field to StationXML datetimes to
      follow the example of big data centers. (see #1572)
    * Level of detail can be specified during inventory write (see #1830)
      using the level keyword (one of: network, station, channel, response).
    * Skip empty and incomplete channels during reading (see #1839, #1840).
- obspy.io.segy:
    * Fixing an issue when comparing two still packed SEG-Y trace headers
      (see #1735).
    * Iterative reading of large SEG-Y and SU files with
      `obspy.io.segy.segy.iread_segy` and `obspy.io.segy.segy.iread_su`.
      (see #1400).
    * Write correct revision number (see #1737).
    * Textual headers will now always contain the file revision number and the
      end header mark if nothing else exists at these positions (see #1738).
    * The SEG-Y format detection now also checks the format version number
      (see #1781).
    * Enable reading SEG-Y files that have day of year 0 in trace header
      (see #1722).
    * Write textual file headers also if given as a text string
      (see #1811, #1813).
- obspy.io.css:
  * Read support for NNSA KB Core format waveform data. (see #1332)
- obspy.io.mseed:
  * New generic get_flags() utility function able to retrieve statistics
    about all fixed header flags and the timing quality. This makes the
    get_timing_and_data_quality() function obsolete which is thus
    deprecated and will be removed with the next release. The get_flags()
    function is also much faster. (see #1141)
  * Always hook up the libmseed logging to its Python counterpart to avoid
    some rare segfaults. (see #1658)
  * Update to libmseed v2.19.5 (see #1703, #1780, #1939).
  * Correctly read MiniSEED files with a data offset of 48 bytes (see #1540).
  * InternalMSEEDReadingError now called InternalMSEEDError and
    InternalMSEEDReadingWarning now called InternalMSEEDWarning as both
    can now also be raised in non-reading contexts (see #1658).
  * Should no-longer segfault with arbitrarily truncated files (see #1728).
  * Will now raise an exception when attempting to directly read mini-SEED
    files larger than 2048 MiB (#1746).
  * `.stats.mseed` attributes are no longer per-file but per-trace where
    applicable (see #1782).
  * `get_record_information()` - Don't fail if the word order is invalid.
- obspy.io.nlloc:
  * Set preferred origin of event (see #1570)
- obspy.io.nordic:
  * Add Nordic format (s-file) read/write (see #1517)
- obspy.io.win:
  * see obspy.io.datamark.
- obspy.io.xseed:
  * Added azimuth and dip to the get_coordinates() function. (see #1315)
  * Fixing some issues with the get_resp() output on Python 3 (see #1748).
  * Can now also parse RESP files (see #1185).
  * Can transform responses in the Parser object to ObsPy Inventory objects
    (see #1185).
- obspy.scripts:
  * obspy-scan command line script now also plots and prints overlaps
    alongside gaps (see #1366)
  * obspy-plot now has option to disable min/max plot (see #1583)
- obspy.signal:
  * fixed a bug in calibration.rel_calib_stack (resulting amplitude response
    had wrong scaling if using non-default "overlap_fraction", see #1821)
  * fixed a bug in coincidence_trigger() with event templates. when a template
    with mismatching SEED ID was encountered all following (potentially valid)
    templates were skipped as well (see #1850)
  * New obspy.signal.quality_control module to compute quality metrics from
    MiniSEED files. (see #1141)
  * New correlate function for calculating the cross-correlation function
    (new implementation based on Scipy).
    To calculate the shift of the maximum of the cross correlation use
    xcorr_max. The old xcorr function is deprecated but currently still
    exists (see #1585).
  * New obspy.signal.regression module to compute linear regressions, with or
    without weights, with or without allowing for an intercept. (see #1716,
    #1747)
  * add new plotting capabilities to PPSD (temporal variations per frequency
    and spectrogram-like plot) and also make underlying processed PSDs
    available via `PPSD.psd_values` property (see #1327)
  * Fixed bug in `rotate2zne()` for non-orthogonal configurations
    (see #1913, #1927).
  * Fixed build warnings in evalresp, partially backported from evalresp
    4.0.6 (see #1939).
- obspy.taup:
  * Add obspy.taup.taup_geo.calc_dist_azi, a function to return the distance,
    azimuth and backazimuth for a source - receiver pair. (see #1538)
  * Fixing calculations through very small regional models. (see #1761)
  * Updated ray path plot method, added travel time plot method, and wrapper
    functions for both ray path and travel time plotting. (see #1501, #1877)

(wen)

Updated devel/p5-Moose to 2.2007

(wen)

Update to 2.2007

Upstream changes:
2.2007  2017-11-12

  [DOCUMENTATION]

  - The Moose::Manual::Attributes pod has been amended to clarify that
    'required' attributes can be satisfied with a 'default' or 'builder' sub,
    and that 'ro' attributes can be set through the constructor.

  - The Moose::Manual::Types pod has been amended to recommend
    Params::ValidationCompiler and Moops instead of older modules (which are
    slow and/or deprecated).

  - other small documentation fixes (thanks to Chris Weyl and Anirvan
    Chatterjee!)

  [OTHER]

  - some dead code has been removed (thanks, Jens Berthold!)

  - all Moose exception classes have been made immutable.

(wen)

Look for ar(1) in $_ORIG_PATH with PKGSRC_MKREPRO

This no longer hard-codes the path to ar(1) as /usr/bin/ar. It is not
possible to use the original value of $TOOLS_PATH.ar as it is usually
not set.

(khorben)

doc: Updated net/mikutter to 3.5.14

(tsutsui)

mikutter: update to 3.5.14.

Upstream changes:

- Activity: possible crash if loading icon is complete after the record
            disappeared
- make URI decoding strategies expandable by plugins
- this makes it possible to handle Windows paths by plugins

(tsutsui)

Bump PKGREVISION on packages depending on CUPS

This should be the last part of the renaming operation for print/cups to
print/cups-base.

Rationale: packages depending on CUPS but not relying on a functional
printing setup only need to depend on print/cups-base (equivalent to the
former print/cups). The new print/cups now depends on print/cups-base
and on print/cups-filters, thus directly providing a functional printing
setup. This bump reflects this change of dependency.

As discussed on tech-pkg@

(khorben)

Update dependencies on print/cups to print/cups-base

This is with the notable exception of meta-pkgs/desktop-gnome, which I
believe implies a fully functional cups.

This is still missing revision bumps - I'll be right there (first time I
am doing this on so many packages at a time).

As discussed on tech-pkg@

(khorben)

doc: Added print/cups-base version 2.2.5

(khorben)

Add cups-base

(khorben)

Rename print/cups to print/cups-base to depend on cups-filters

This change:
- renames print/cups to print/cups-base,
- lets print/cups-filters depend on print/cups-base instead of cups,
- adds a package print/cups depending on print/cups-base and
  print/cups-filters.

This makes sure installing print/cups always installs
print/cups-filters, as it is necessary for being able to print outside
of Mac OS X since CUPS 1.6.0. You're welcome.

I do not think superseding is necessary, since print/cups will also
install print/cups-base, which really is the same as before. In practice
it is like a new dependency. I do not want to risk a bad "cvs import"
either, sorry.

Bumps PKGREVISION for print/cups and print/cups-filters, since they have
new dependencies now. This is also necessary for everything else currently
depending on print/cups; I will try to commit this right after this one.

Tested on NetBSD/amd64, as reviewed on tech-pkg@.
No breakage observed, apologies if anything goes wrong.

(khorben)

doc: Updated net/gallery-dl to 1.0.1

(leot)

gallery-dl: Update net/gallery-dl to 1.0.1

Changes:
- Added support for: xvideos (#45)
- Fixed exception handling during file downloads which could lead to a
  premature exit
- Fixed an issue with tumblr where not all images would be downloaded when
  using tags (#48)
- Fixed extraction issues for imgbox (#47), mangastream (#49), and
  mangahere

(leot)

Add initial support for building packages reproducibly

It currently tackles two problems:
- gcc(1) hard-coding full paths in debugging information (with one
  caveat at the moment)
- ar(1) hard-coding user IDs in archive headers

This allows packages built from the same tree and options to produce
identical results bit by bit. This option should be combined with ASLR
and PKGSRC_MKPIE to avoid predictable address offsets for attackers
attempting to exploit security vulnerabilities.

This is still disabled by default, and only supports NetBSD so far.

As discussed on tech-pkg@

(khorben)

ticket #5635

(spz)

Pullup ticket #5635 - requested by taca
mail/roundcube: security update
mail/roundcube-plugin-enigma: security update
mail/roundcube-plugin-password: security update
mail/roundcube-plugin-zipdownload: security update

Revisions pulled up:
- mail/roundcube-plugin-enigma/distinfo                        1.7
- mail/roundcube-plugin-password/distinfo                      1.7
- mail/roundcube-plugin-zipdownload/distinfo                    1.7
- mail/roundcube/Makefile.common                                1.7
- mail/roundcube/distinfo                                      1.58

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: taca
  Date: Thu Nov  9 01:13:12 UTC 2017

  Modified Files:
  pkgsrc/mail/roundcube: Makefile.common distinfo
  pkgsrc/mail/roundcube-plugin-enigma: distinfo
  pkgsrc/mail/roundcube-plugin-password: distinfo
  pkgsrc/mail/roundcube-plugin-zipdownload: distinfo

  Log Message:
  mail/roundcube: update to 1.2.7

  Security fix for CVE-2017-16651.

  RELEASE 1.2.7
  -------------
  - Fix rewind(): stream does not support seeking (#5950)
  - Fix bug where HTML messages could have been rendered empty on some systems
    (#5957)
  - Fix (again) bug where image data URIs in css style were treated as
    evil/remote in mail preview (#5580)
  - Managesieve: Fix parsing dot-staffed lines in multiline text (#5838, #5959)
  - Fix file disclosure vulnerability caused by insufficient input validation
    [CVE-2017-16651] (#6026)

  To generate a diff of this commit:
  cvs rdiff -u -r1.6 -r1.7 pkgsrc/mail/roundcube/Makefile.common
  cvs rdiff -u -r1.57 -r1.58 pkgsrc/mail/roundcube/distinfo
  cvs rdiff -u -r1.6 -r1.7 pkgsrc/mail/roundcube-plugin-enigma/distinfo
  cvs rdiff -u -r1.6 -r1.7 pkgsrc/mail/roundcube-plugin-password/distinfo
  cvs rdiff -u -r1.6 -r1.7 pkgsrc/mail/roundcube-plugin-zipdownload/distinfo

(spz)

Mention a bunch of recent pull-ups

(bsiegert)

Pullup ticket #5638 - requested by sevan
net/socket++: build fix

Revisions pulled up:
- net/socket++/Makefile                                        1.12

---
  Module Name:    pkgsrc
  Committed By:  wiz
  Date:          Mon Nov  6 13:36:39 UTC 2017

  Modified Files:
          pkgsrc/net/socket++: Makefile

  Log Message:
  socketxx: fix HOMEPAGE

(bsiegert)

Pullup ticket #5637 - requested by sevan
www/paros: build fix

Revisions pulled up:
- www/paros/Makefile                                            1.18

---
  Module Name:    pkgsrc
  Committed By:  wiz
  Date:          Mon Nov  6 13:33:48 UTC 2017

  Modified Files:
          pkgsrc/www/paros: Makefile

  Log Message:
  paros: fix HOMEPAGE, set LICENSE

(bsiegert)

Pullup ticket #5636 - requested by sevan
x11/rofi: build fix

Revisions pulled up:
- x11/rofi/Makefile                                            1.7

---
  Module Name:    pkgsrc
  Committed By:  wiz
  Date:          Mon Nov  6 13:35:43 UTC 2017

  Modified Files:
          pkgsrc/x11/rofi: Makefile

  Log Message:
  rofi: fix HOMEPAGE

(bsiegert)

ticket #5640

(spz)

Pullup ticket #5640 - requested by sevan
net/rsync: security patch

Revisions pulled up:
- net/rsync/Makefile                                            1.105
- net/rsync/distinfo                                            1.45
- net/rsync/patches/patch-authenticate.c                        1.3
- net/rsync/patches/patch-xattrs.c                              1.1

-------------------------------------------------------------------
  Module Name:    pkgsrc
  Committed By:  spz
  Date:          Fri Nov 10 06:59:16 UTC 2017

  Modified Files:
          pkgsrc/net/rsync: Makefile distinfo
  Added Files:
          pkgsrc/net/rsync/patches: patch-authenticate.c patch-xattrs.c

  Log Message:
  patch for CVE-2017-16548, mitigation for weak checksums

  To generate a diff of this commit:
  cvs rdiff -u -r1.104 -r1.105 pkgsrc/net/rsync/Makefile
  cvs rdiff -u -r1.44 -r1.45 pkgsrc/net/rsync/distinfo
  cvs rdiff -u -r0 -r1.3 pkgsrc/net/rsync/patches/patch-authenticate.c
  cvs rdiff -u -r0 -r1.1 pkgsrc/net/rsync/patches/patch-xattrs.c

(spz)

ticket #5641

(spz)

Pullup ticket #5641 - requested by he
www/curl: security update

Revisions pulled up:
- www/curl/Makefile                                            1.188-1.189
- www/curl/PLIST                                                1.66
- www/curl/distinfo                                            1.137-1.138

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: wiz
  Date: Wed Oct  4 06:32:58 UTC 2017

  Modified Files:
  pkgsrc/www/curl: Makefile PLIST distinfo

  Log Message:
  curl: update to 7.56.0.

  Curl and libcurl 7.56.0

  This release includes the following changes:

    o curl: enable compression for SCP/SFTP with --compressed-ssh  [11]
    o libcurl: enable compression for SCP/SFTP with CURLOPT_SSH_COMPRESSION [11]
    o vtls: added dynamic changing SSL backend with curl_global_sslset() [28]
    o new MIME API, curl_mime_init() and friends [32]
    o openssl: initial SSLKEYLOGFILE implementation [36]

  This release includes the following bugfixes:

    o FTP: zero terminate the entry path even on bad input [67]
    o examples/ftpuploadresume.c: use portable code
    o runtests: match keywords case insensitively
    o travis: build the examples too [1]
    o strtoofft: reduce integer overflow risks globally [2]
    o zsh.pl: produce a working completion script again [3]
    o cmake: remove dead code for CURL_DISABLE_RTMP [4]
    o progress: Track total times following redirects [5]
    o configure: fix --disable-threaded-resolver [6]
    o cmake: remove dead code for DISABLED_THREADSAFE [7]
    o configure: fix clang version detection
    o darwinssi: fix error: variable length array used
    o travis: add metalink to some osx builds [8]
    o configure: check for __builtin_available() availability [9]
    o http_proxy: fix build error for CURL_DOES_CONVERSIONS [10]
    o examples/ftpuploadresume: checksrc compliance
    o ftp: fix CWD when doing multicwd then nocwd on same connection [12]
    o system.h: remove all CURL_SIZEOF_* defines [13]
    o http: Don't wait on CONNECT when there is no proxy [14]
    o system.h: check for __ppc__ as well [15]
    o http2_recv: return error better on fatal h2 errors [16]
    o scripts/contri*sh: use "git log --use-mailmap"
    o tftp: fix memory leak on too long filename [17]
    o system.h: fix build for hppa [18]
    o cmake: enable picky compiler options with clang and gcc [19]
    o makefile.m32: add support for libidn2 [20]
    o curl: turn off MinGW CRT's globbing [21]
    o request-target.d: mention added in 7.55.0
    o curl: shorten and clean up CA cert verification error message [22]
    o imap: support PREAUTH [23]
    o CURLOPT_USERPWD.3: see also CURLOPT_PROXYUSERPWD
    o examples/threaded-ssl: mention that this is for openssl before 1.1
    o winbuild: fix embedded manifest option [24]
    o tests: Make sure libtests & unittests call curl_global_cleanup()
    o system.h: include sys/poll.h for AIX [25]
    o darwinssl: handle long strings in TLS certs [26]
    o strtooff: fix build for systems with long long but no strtoll [27]
    o asyn-thread: Improved cleanup after OOM situations
    o HELP-US.md: "How to get started helping out in the curl project" [29]
    o curl.h: CURLSSLBACKEND_WOLFSSL used wrong value [30]
    o unit1301: fix error message on first test
    o ossfuzz: moving towards the ideal integration [31]
    o http: fix a memory leakage in checkrtspprefix()
    o examples/post-callback: stop returning one byte at a time
    o schannel: return CURLE_SSL_CACERT on failed verification [33]
    o MAIL-ETIQUETTE: added "1.9 Your emails are public"
    o http-proxy: treat all 2xx as CONNECT success [34]
    o openssl: use OpenSSL's default ciphers by default [35]
    o runtests.pl: support attribute "nonewline" in part verify/upload
    o configure: remove --enable-soname-bump and SONAME_BUMP [37]
    o travis: add c-ares enabled builds linux + osx [38]
    o vtls: fix WolfSSL 3.12 build problems [39]
    o http-proxy: when not doing CONNECT, that phase is done immediately [40]
    o configure: fix curl_off_t check's include order [41]
    o configure: use -Wno-varargs on clang 3.9[.X] debug builds
    o rtsp: do not call fwrite() with NULL pointer FILE * [42]
    o mbedtls: enable CA path processing [43]
    o travis: add build without HTTP/SMTP/IMAP
    o checksrc: verify more code style rules [44]
    o HTTP proxy: on connection re-use, still use the new remote port [45]
    o tests: add initial gssapi test using stub implementation [46]
    o rtsp: Segfault when using WRITEDATA [47]
    o docs: clarify the CURLOPT_INTERLEAVE* options behavior
    o non-ascii: use iconv() with 'char **' argument [48]
    o server/getpart: provide dummy function to build conversion enabled
    o conversions: fix several compiler warnings
    o openssl: add missing includes [49]
    o schannel: Support partial send for when data is too large [50]
    o socks: fix incorrect port number in SOCKS4 error message [51]
    o curl: fix integer overflow in timeout options [52]
    o travis: on mac, don't install openssl or libidn [53]
    o cookies: reject oversized cookies instead of truncating [54]
    o cookies: use lock when using CURLINFO_COOKIELIST [55]
    o curl: check fseek() return code and bail on error
    o examples/post-callback: use long for CURLOPT_POSTFIELDSIZE
    o openssl: only verify RSA private key if supported [56]
    o tests: make the imap server not verify user+password [57]
    o imap: quote atoms properly when escaping characters [58]
    o tests: fix a compiler warning in test 643
    o file_range: avoid integer overflow when figuring out byte range [59]
    o curl.h: include <sys/select.h> on cygwin too [60]
    o reuse_conn: don't copy flags that are known to be equal [61]
    o http: fix adding custom empty headers to repeated requests [62]
    o docs: clarify the use of environment variables for proxy [63]
    o docs: link CURLOPT_CONNECTTIMEOUT and CURLOPT_CONNECTTIMEOUT_MS [64]
    o connect: fix race condition with happy eyeballs timeout [65]
    o cookie: fix memory leak if path was set twice in header [66]
    o vtls: compare and clone ssl configs properly [68]
    o proxy: read the "no_proxy" variable only if necessary [69]

  To generate a diff of this commit:
  cvs rdiff -u -r1.187 -r1.188 pkgsrc/www/curl/Makefile
  cvs rdiff -u -r1.65 -r1.66 pkgsrc/www/curl/PLIST
  cvs rdiff -u -r1.136 -r1.137 pkgsrc/www/curl/distinfo

-------------------------------------------------------------------
  Module Name: pkgsrc
  Committed By: adam
  Date: Mon Oct 23 06:59:36 UTC 2017

  Modified Files:
  pkgsrc/www/curl: Makefile distinfo

  Log Message:
  curl: update to 7.56.1

  Curl and libcurl 7.56.1

  This release includes the following bugfixes:

    o imap: if a FETCH response has no size, don't call write callback
    o ftp: UBsan fixup 'pointer index expression overflowed
    o failf: skip the sprintf() if there are no consumers
    o fuzzer: move to using external curl-fuzzer
    o lib/Makefile.m32: allow customizing dll suffixes
    o docs: fix typo in curl_mime_data_cb man page
    o darwinssl: add support for TLSv1.3
    o build: fix --disable-crypto-auth
    o lib/config-win32.h: let SMB/SMBS be enabled with OpenSSL/NSS
    o openssl: fix build without HAVE_OPAQUE_EVP_PKEY
    o strtoofft: Remove extraneous null check
    o multi_cleanup: call DONE on handles that never got that
    o tests: added flaky keyword to tests 587 and 644
    o pingpong: return error when trying to send without connection
    o remove_handle: call multi_done() first, then clear dns cache pointer
    o mime: be tolerant about setting twice the same header list in a part.
    o mime: improve unbinding top multipart from easy handle.
    o mime: avoid resetting a part's encoder when part's contents change.
    o mime: refuse to add subparts to one of their own descendants
    o RTSP: avoid integer overflow on funny RTSP responses
    o curl: don't pass semicolons when parsing Content-Disposition
    o openssl: enable PKCS12 support for !BoringSSL
    o FAQ: s/CURLOPT_PROGRESSFUNCTION/CURLOPT_XFERINFOFUNCTION
    o CURLOPT_NOPROGRESS.3: also refer to xferinfofunction
    o CURLOPT_XFERINFODATA.3: fix duplicate see also
    o test298: verify --ftp-method nowcwd with URL encoded path
    o FTP: URL decode path for dir listing in nocwd mode
    o smtp_done: fix memory leak on send failure
    o ftpserver: support case insensitive commands
    o test950; verify SMTP with custom request
    o openssl: don't use old BORINGSSL_YYYYMM macros
    o setopt: update current connection SSL verify params
    o winbuild/BUILD.WINDOWS.txt: mention WITH_NGHTTP2
    o curl: reimplement stdin buffering in -F option
    o mime: keep "text/plain" content type if user-specified
    o mime: fix the content reader to handle >16K data properly
    o configure: remove the C++ compiler check
    o memdebug: trace send, recv and socket
    o runtests: use valgrind for torture as well
    o ldap: silence clang warning
    o makefile.m32: allow to override gcc, ar and ranlib
    o setopt: avoid integer overflows when setting millsecond values
    o setopt: range check most long options
    o ftp: reject illegal IP/port in PASV 227 response
    o mime: do not reuse previously computed multipart size
    o vtls: change struct Curl_ssl `close' field name to `close_one'
    o os400: add missing symbols in config file
    o mime: limit bas64-encoded lines length to 76 characters
    o mk-ca-bundle: Remove URL for aurora
    o mk-ca-bundle: Fix URL for NSS

  To generate a diff of this commit:
  cvs rdiff -u -r1.188 -r1.189 pkgsrc/www/curl/Makefile
  cvs rdiff -u -r1.137 -r1.138 pkgsrc/www/curl/distinfo

(spz)

Pullup ticket #5634 - requested by sevan
emulators/stella: build fix

Revisions pulled up:
- emulators/stella/distinfo                                    1.22
- emulators/stella/patches/patch-configure                      1.4

---
  Module Name:    pkgsrc
  Committed By:  dbj
  Date:          Fri Nov  3 07:49:58 UTC 2017

  Modified Files:
          pkgsrc/emulators/stella: distinfo
          pkgsrc/emulators/stella/patches: patch-configure

  Log Message:
  tweak clang compiler version matching

(bsiegert)

Pullup ticket #5632 - requested by sevan
sysutils/augeas: security fix

Revisions pulled up:
- sysutils/augeas/Makefile                                      1.3
- sysutils/augeas/PLIST                                        1.2
- sysutils/augeas/distinfo                                      1.3

---
  Module Name:    pkgsrc
  Committed By:  bsiegert
  Date:          Fri Nov  3 11:05:43 UTC 2017

  Modified Files:
          pkgsrc/sysutils/augeas: Makefile PLIST distinfo

  Log Message:
  Update Augeas to 1.9.0.

  The changelog is too long for this commit message, go find it at
  https://github.com/hercules-team/augeas/releases and
  http://augeas.net/news.html.

  Note that 1.8.1 included the following:
  Fix error in handling escaped whitespace at the end of path expressions
  (addresses CVE-2017-7555).

(bsiegert)

Pullup ticket #5633 - requested by sevan
net/py-suds: build fix

Revisions pulled up:
- net/py-suds/Makefile                                          1.10

---
  Module Name:    pkgsrc
  Committed By:  wiz
  Date:          Fri Nov  3 19:40:31 UTC 2017

  Modified Files:
          pkgsrc/net/py-suds: Makefile

  Log Message:
  py-suds: replace dead HOMEPAGE with bad one at pypi

(bsiegert)

Pullup ticket #5631 - requested by sevan
sysutils/beats: build fix

Revisions pulled up:
- sysutils/beats/Makefile                                      1.19

---
  Module Name:    pkgsrc
  Committed By:  fhajny
  Date:          Thu Nov  2 15:30:50 UTC 2017

  Modified Files:
          pkgsrc/sysutils/beats: Makefile

  Log Message:
  sysutils/beats: Provide a better hint to where libpcap is. May fix
  the build in some situations.

(bsiegert)

Pullup ticket #5630 - requested by sevan
devel/idutils: FreeBSD build fix

Revisions pulled up:
- devel/idutils/distinfo                                        1.10
- devel/idutils/patches/patch-lib_fflush_c                      1.2
- devel/idutils/patches/patch-lib_fseeko_c                      1.2

---
  Module Name:    pkgsrc
  Committed By:  agc
  Date:          Thu Nov  2 04:26:21 UTC 2017

  Modified Files:
          pkgsrc/devel/idutils/patches: patch-lib_fflush_c patch-lib_fseeko_c

  Log Message:
  patch fflush.c and fseeko.c so that this package builds on FreeBSD HEAD

---
  Module Name:    pkgsrc
  Committed By:  maya
  Date:          Thu Nov  2 04:54:27 UTC 2017

  Modified Files:
          pkgsrc/devel/idutils: distinfo

  Log Message:
  idutils: regen patch sums after previous commit

(bsiegert)

Pullup ticket #5629 - requested by sevan
security/yara: build fix

Revisions pulled up:
- security/yara/Makefile                                        1.5

---
  Module Name:    pkgsrc
  Committed By:  minskim
  Date:          Wed Nov  1 19:29:30 UTC 2017

  Modified Files:
          pkgsrc/security/yara: Makefile

  Log Message:
  security/yara: Needs OpenSSL to build

(bsiegert)

Pullup ticket #5628 - requested by sevan
sysutils/py-augeas: build fix

Revisions pulled up:
- sysutils/py-augeas/Makefile                                  1.3

---
  Module Name:    pkgsrc
  Committed By:  wiz
  Date:          Wed Nov  1 08:23:42 UTC 2017

  Modified Files:
          pkgsrc/sysutils/py-augeas: Makefile

  Log Message:
  py-augeas: use pypi instead of deprecated fedorahosted

(bsiegert)

Pullup ticket #5627 - requested by sevan
textproc/xmlto: build fix

Revisions pulled up:
- textproc/xmlto/Makefile                                      1.31

---
  Module Name:    pkgsrc
  Committed By:  maya
  Date:          Wed Nov  1 06:41:23 UTC 2017

  Modified Files:
          pkgsrc/textproc/xmlto: Makefile

  Log Message:
  xmlto: master sites / homepage from fedorahosted to pagure

(bsiegert)

Pullup ticket #5620 - requested by sevan
devel/py-dulwich: security fix

Revisions pulled up:
- devel/py-dulwich/Makefile                                    1.24
- devel/py-dulwich/distinfo                                    1.21

---
  Module Name:    pkgsrc
  Committed By:  adam
  Date:          Mon Oct 30 18:37:38 UTC 2017

  Modified Files:
          pkgsrc/devel/py-dulwich: Makefile distinfo

  Log Message:
  py-dulwich: updated to 0.18.5

  0.18.5:
  BUG FIXES
  * Fix cwd for hooks.
  * Fix setting of origin in config when non-standard origin is passed into
    ``Repo.clone``.
  * Prevent setting SSH arguments from SSH URLs when using SSH through a
    subprocess. Note that Dulwich doesn't support cloning submodules.
    (CVE 2017-1000117)

  IMPROVEMENTS
  * Silently ignored directories in ``Repo.stage``.

  API CHANGES
  * GitFile now raises ``FileLocked`` when encountering a lock
    rather than OSError(EEXIST).

(bsiegert)

Pullup ticket #5626 - requested by sevan
mail/imapsync: build fix

Revisions pulled up:
- mail/imapsync/Makefile                                        1.20

---
  Module Name:    pkgsrc
  Committed By:  maya
  Date:          Wed Nov  1 05:27:44 UTC 2017

  Modified Files:
          pkgsrc/mail/imapsync: Makefile

  Log Message:
  imapsync: switch homepage/master sites fedorahosted -> pagure

(bsiegert)

Pullup ticket #5625 - requested by sevan
fonts/lohit-fonts: build fix

Revisions pulled up:
- fonts/lohit-fonts/Makefile                                    1.6

---
  Module Name:    pkgsrc
  Committed By:  maya
  Date:          Wed Nov  1 05:19:33 UTC 2017

  Modified Files:
          pkgsrc/fonts/lohit-fonts: Makefile

  Log Message:
  lohit-fonts: replace fedorahosted with pagure

(bsiegert)

Pullup ticket #5624 - requested by sevan
fonts/liberation-ttf: build fix

Revisions pulled up:
- fonts/liberation-ttf/Makefile                                1.15

---
  Module Name:    pkgsrc
  Committed By:  maya
  Date:          Wed Nov  1 05:17:06 UTC 2017

  Modified Files:
          pkgsrc/fonts/liberation-ttf: Makefile

  Log Message:
  liberation-ttf: add non-fedorahosted MASTER_SITES

(bsiegert)

Pullup ticket #5619 - requested by sevan
math/R: Darwin build fix

Revisions pulled up:
- math/R/PLIST.Darwin                                          1.6

---
  Module Name:    pkgsrc
  Committed By:  jperkin
  Date:          Mon Oct 30 11:49:38 UTC 2017

  Modified Files:
          pkgsrc/math/R: PLIST.Darwin

  Log Message:
  R: Add missing zoneinfo file from previous update.

(bsiegert)

Mention previous changes.

(bsiegert)

borg-1.1.2

(bsiegert)

Update borgbackup to 1.1.2.

Full changelog (long) at
https://github.com/borgbackup/borg/blob/1.1.2/docs/changes.rst.

When upgrading from borg 1.0.x to 1.1.x, please note:

- borg might ask some security-related questions once after upgrading. You can
  answer them either manually or via environment variable. One known case is if
you use unencrypted repositories, then it will ask about a unknown unencrypted
repository one time.
- your first backup with 1.1.x might be significantly slower (it might
  completely read, chunk, hash a lot files) - this is due to the --files-cache
mode change (and happens every time you change mode). You can avoid the
one-time slowdown by using the pre-1.1.0rc4-compatible mode (but that is less
safe for detecting changed files than the default). See the --files-cache docs
for details.

(bsiegert)

doc/TODO: add some

+ ImageMagick-7.0.7.10, MesaLib-17.2.5, at-spi2-atk-2.26.1,
  at-spi2-core-2.26.2, atk-2.26.1, chrony-3.2, gallery-dl-1.0.1,
  libogg-1.3.3, libuv-1.16.1, notmuch-0.25.2, py-certifi-2017.11.5,
  py-mercurial-4.4.1, py-setuptools-36.7.1, syncthing-0.14.40,
  vim-8.0.1290, vim-share-8.0.1290, webkit-gtk-2.18.3, x264-devel-20171111.

(wiz)

Fix my user name.

I accidentally used the ChromeOS login name (chronos) instead of my login.
Thanks wiz@ for noticing and for notifying me.

(bsiegert)

geckodriver: adjust dependency

from maya@

(tnn)

add www/py-selenium

(tnn)

www/py-selenium: import py27-selenium-3.7.1

Python language bindings for Selenium WebDriver.
The Selenium package is used to automate web browser interaction from Python.

(tnn)

geckodriver: fix issue with finding firefox fallback binary

(tnn)

doc: Updated net/socat to 1.7.3.2nb1

(maya)

socat: improve our ability to run the tests, less use of /bin/bash

bump PKGREVISION in case any of those scripts are used at runtime

(maya)

doc: Updated net/netcat6 to 1.0nb4

(maya)

netcat6: fix buffer overflow. appease pkglint. bump PKGREVISION.

(maya)

libaudiofile: add test target

(maya)

doc: Updated filesystems/fuse-encfs to 1.9.2

(gdt)

Update to 1.9.2:

  - fix a use-after-free bug that was introduced in v1.9-rc1 (#214)
  - cast booleans to int before writing the XML config (#343)
  - support reading the config file from pipes (#253)
  - add "-t" option to set syslog tag
  - allow read/write in standard reverse mode (#301)
  - reject empty passwords
  - support building with openssl 1.1

(gdt)

Updated net/corebird to 1.7.2

(ryoon)

Update to 1.7.2

Changelog:
1.7.2:
Changelog:
- Fix window cancel button label mixup
- Fix potential crash when composing a tweet (#779)
- Fix abort when trying to detect emoji support (#781)
- Fix spell checking
- Update translations

1.7.1:
Changelog:
- Fixed a small problem with the appdata file in 1.7

1.7:
Changelog:
- Hashtags and Mentions in profile desriptions are now clickable
- The mention-completion when composing a new tweet now fetches
  unknown users from the twitter server
- Videos larger than the screen size are now getting scaled down
  while playing
- Profiles now indicate when an account is suspended
- Profiles handle protected accounts better when trying to
  access followers/following users, etc.
- The compose window now allows tweets with just media
  attached but not text
- Improve the hashtag/mention/link detection when composing a new tweet
- The compose dialog now shows an emoji chooser. This is
  only available starting GTK+ 3.22.19 and the emojis will only be
  rendered with color if you have the needed cairo version
  installed, as well as an emoji font.
- Fixed a bug that led to wrong Direct Message info being
  inserted into the database
- Fixed a bug that resulted in broken files when downloading
  instagram images

(ryoon)

Fixes PR # 52711. Allows installation of package in /usr/local LOCALBASE.

(jklos)

Fix GPL version

(ryoon)