Log message:
Update to ikiwiki. From the changelog:

* aggregate: Use LWPx::ParanoidAgent if available.
  Previously blogspam, openid and pinger used this module if available,
  but aggregate did not. This prevents server-side request forgery or
  local file disclosure, and mitigates denial of service when slow
  "tarpit" URLs are accessed.
  (CVE-2019-9187)
* blogspam, openid, pinger: Use a HTTP proxy if configured, even if
  LWPx::ParanoidAgent is installed.
  Previously, only aggregate would obey proxy configuration. If a proxy
  is used, the proxy (not ikiwiki) is responsible for preventing attacks
  like CVE-2019-9187.
* aggregate, blogspam, openid, pinger: Do not access non-http, non-https
  URLs.
  Previously, these plugins would have allowed non-HTTP-based requests if
  LWPx::ParanoidAgent was not installed. Preventing file URIs avoids local
  file disclosure, and preventing other rarely-used URI schemes like
  gopher mitigates request forgery attacks.
* aggregate, openid, pinger: Document LWPx::ParanoidAgent as strongly
  recommended.
  These plugins can request attacker-controlled URLs in some site
  configurations.
* blogspam: Document LWPx::ParanoidAgent as desirable.
  This plugin doesn't request attacker-controlled URLs, so it's
  non-critical here.
* blogspam, openid, pinger: Consistently use cookiejar if configured.
  Previously, these plugins would only obey this configuration if
  LWPx::ParanoidAgent was not installed, but this appears to have been
  unintended.
* po: Always filter .po files.
  The po plugin in previous ikiwiki releases made the second and
  subsequent filter call per (page, destpage) pair into a no-op,
  apparently in an attempt to prevent *recursive* filtering (which as
  far as we can tell can't happen anyway), with the undesired effect
  of interpreting the raw .po file as page content (e.g. Markdown)
  if it was inlined into the same page twice, which is apparently
  something that tails.org does. Simplify this by deleting the code
  that prevented repeated filtering. Thanks, intrigeri
  (Closes: #911356)

Log message:
Update to 3.20190207. From the changelog:

* graph: Add an optional "file" parameter
* emailauth: When email can't be sent, show the error message
* osm: Don't raise errors if tags don't have attached icons
* cgi: Avoid C compiler warnings for waitpid() on NetBSD
* Hide popup template content from documentation (Closes: #898836)
* meta: Make [[!meta date]] show an error if dates are invalid or
  Date::Parse can't be loaded
* inline: Cope with non-ASCII `rootpage` parameter.
  Thanks, Feng Shu
* table: Cope with non-ASCII content in CSV format tables.
  Thanks, Feng Shu
* trail: Allow unescaped punctuation in `pagenames` parameter
* comments: Hide "add comment" link from print stylesheet.
  Thanks, Antoine Beaupré
* recentchangesdiff, relativedate, toggle:
  Import JavaScript at the end of the page content, not the beginning,
  so that the browser can render content as soon as possible.
  Thanks, Antoine Beaupré
* inline: Add basic test coverage for [[!inline rootpage]]
* table: Add basic test coverage
* po: Add enough test coverage to reproduce Debian #911356
* comments: Improve test coverage
* tests: Exercise Unicode more
* aggregate: Fix aggregation of posts without a title.
  Thanks, Alexandre Oliva
* poll: Added postlink and posttrail options for better multi-page polls.
* Fix permalink to comments.

Log message:
Add upstream patch to give graph an optional "file" param, like table's.
Bump PKGREVISION.

Log message:
Need <sys/wait.h> for waitpid (NetBSD 8 warns). Apply upstream patch.
Bump PKGREVISION.

Log message:
Recursive bump for perl5-5.28.0

Log message:
Attempt to make su(1) usage more portable. Remove very old text from
MESSAGE. Bump PKGREVISION.

Log message:
Update to 3.20180311. From the changelog:

  [ Amitai Schleier ]
  * Avoid unexpected full paths from find(1)

  [ thm.id.fedoraproject.org ]
  * rst test: Probe for docutils Python 3 module, not Python 2

  [ Simon McVittie ]
  * mdwn: Automatically detect which Discount flags to use, fixing
    regressions in 3.20180228 when using Discount < 2.2
  * Add a test asserting that no plugin is an empty file, to confirm
    that the build fixes in 3.20180228 were successful

Log message:
Apply upstream patch to fix regression with older libdiscount where
Markdown links were no longer rendered as links. Bump PKGREVISION.

Log message:
Fix build on systems without a /usr/bin/perl.

Log message:
Add patches missed in previous commit.