Log message:
www/ruby-mechanize: update to 2.10.0

2.10.0 (2024-01-22)

* Add nkf and base64 as explicit dependencies, since they are being
  unbundled in Ruby 3.4. (#634) @flavorjones

Log message:
www/ruby-mechanize: update to 2.9.1

2.9.0 (2023-04-07)

Requirements

* Mechanize now requires Ruby 2.6 or newer.

Improvement

* Mechanize can now parse frozen strings. (#610)

2.9.1 (2023-04-17)

Update

* Updated User-Agent strings to represent modern browser versions. (#612)
  Thank you, @takatea!

Contributors

* @takatea

Log message:
www/ruby-mechanize: update to 2.85

2.8.4 (2022-01-17)

Fix

* Mechanize::CookieJar#load calls Psych.safe_load when using Psych >= 3.1

2.8.5 (2022-06-09)

Security

Fixes low-severity CVE-2022-31033, "Authorization header leak on port
redirect." See GHSA-64qm-hrgp-pgr9 for more details.

Log message:
www/ruby-mechanize: update to 2.8.3

2.8.3 (2021-11-11)
Update

* Update the "Linux Firefox" user agent string to rev94 (#587) Thank you,
  @ncs1!

Log message:
www: Replace RMD160 checksums with BLAKE2s checksums

All checksums have been double-checked against existing RMD160 and
SHA512 hashes

Not committed (merge conflicts):
www/nghttp2/distinfo

Unfetchable distfiles (almost certainly fetched conditionally...):
./www/nginx-devel/distinfo array-var-nginx-module-0.05.tar.gz
./www/nginx-devel/distinfo echo-nginx-module-0.62.tar.gz
./www/nginx-devel/distinfo encrypted-session-nginx-module-0.08.tar.gz
./www/nginx-devel/distinfo form-input-nginx-module-0.12.tar.gz
./www/nginx-devel/distinfo headers-more-nginx-module-0.33.tar.gz
./www/nginx-devel/distinfo lua-nginx-module-0.10.19.tar.gz
./www/nginx-devel/distinfo naxsi-1.3.tar.gz
./www/nginx-devel/distinfo nginx-dav-ext-module-3.0.0.tar.gz
./www/nginx-devel/distinfo nginx-rtmp-module-1.2.2.tar.gz
./www/nginx-devel/distinfo nginx_http_push_module-1.2.10.tar.gz
./www/nginx-devel/distinfo ngx_cache_purge-2.5.1.tar.gz
./www/nginx-devel/distinfo ngx_devel_kit-0.3.1.tar.gz
./www/nginx-devel/distinfo ngx_http_geoip2_module-3.3.tar.gz
./www/nginx-devel/distinfo njs-0.5.0.tar.gz
./www/nginx-devel/distinfo set-misc-nginx-module-0.32.tar.gz
./www/nginx/distinfo array-var-nginx-module-0.05.tar.gz
./www/nginx/distinfo echo-nginx-module-0.62.tar.gz
./www/nginx/distinfo encrypted-session-nginx-module-0.08.tar.gz
./www/nginx/distinfo form-input-nginx-module-0.12.tar.gz
./www/nginx/distinfo headers-more-nginx-module-0.33.tar.gz
./www/nginx/distinfo lua-nginx-module-0.10.19.tar.gz
./www/nginx/distinfo naxsi-1.3.tar.gz
./www/nginx/distinfo nginx-dav-ext-module-3.0.0.tar.gz
./www/nginx/distinfo nginx-rtmp-module-1.2.2.tar.gz
./www/nginx/distinfo nginx_http_push_module-1.2.10.tar.gz
./www/nginx/distinfo ngx_cache_purge-2.5.1.tar.gz
./www/nginx/distinfo ngx_devel_kit-0.3.1.tar.gz
./www/nginx/distinfo ngx_http_geoip2_module-3.3.tar.gz
./www/nginx/distinfo njs-0.5.0.tar.gz
./www/nginx/distinfo set-misc-nginx-module-0.32.tar.gz

Log message:
www: Remove SHA1 hashes for distfiles

Log message:
www/ruby-mechanize: update to 2.8.2

2.8.2 (2021-08-06)

Dependencies

* Update dependency on Addressable from ~>2.7 to ~>2.8. (#584) @yidingww

Log message:
www/ruby-mechanize: update to 2.8.1

2.8.1 (2021-05-09)

Fix

* Gracefully handle parsing errors that contain an invalid byte sequence.
  Previously, if libxml2 registered a parsing error that itself contained
  invalid encoding, an exception might be raised. (#553)

2.8.0 (2021-04-01)

Requirements

* Mechanize now requires Ruby 2.5 or newer.
* Move from ntlm-http to rubyntlm gem. (#495, #574)

New Features

* Page::Link#uri now handles non-ASCII hrefs. (#569) @terryyin
* FileConnection supports Windows drive letters (#483)
* Credential headers 'Authorization' and 'Cookie' are deleted on
  cross-origin redirects. (#538) @kyoshidajp
* ContentDispositionParser handles ISO8601 date headers, to be robust with
  websites that ignore RFC2183. (#554) @reitermarkus

Bug fix

* POST headers 'Content-Length', 'Content-MD5', and 'Content-Type' are
  deleted in a case-insensitive manner on redirects.  Previously these
  headers were treated as case-sensitive.

Log message:
www/ruby-mechanize: update to 2.7.7

pkgsrc change: add "USE_LANGUAGES=	# empty"

2.7.7 / 2021-02-01

* Security fixes for CVE-2021-21289

  Mechanize `>= v2.0`, `< v2.7.7` allows for OS commands to be injected
  into several classes' methods via implicit use of Ruby's `Kernel.open`
  method. Exploitation is possible only if untrusted input is used as a
  local filename and passed to any of these calls:

  - `Mechanize::CookieJar#load`: since v2.0 (see 208e3ed)
  - `Mechanize::CookieJar#save_as`: since v2.0 (see 5b776a4)
  - `Mechanize#download`: since v2.2 (see dc91667)
  - `Mechanize::Download#save` and `#save!` since v2.1 (see 98b2f51, bd62ff0)
  - `Mechanize::File#save` and `#save_as`: since v2.1 (see 2bf7519)
  - `Mechanize::FileResponse#read_body`: since v2.0 (see 01039f5)

  See
  github.com/sparklemotion/mechanize/security/advisories/GHSA-qrqm-fpv6-6r8g
  for more information.

  Also see #547, #548. Thank you, @kyoshidajp!

New Features

* Support for Ruby 3.0 by adding `webrick` as a runtime dependency. (#557)
  @pvalena

Bug fix

* Ignore input fields with blank names (#542, #536)

Log message:
www/ruby-mechanize: update to 2.7.6

=== 2.7.6

* New Features
  * Mechanize#set_proxy accepts an HTTP URL/URI. (#513)

* Bug fix
  * Fix element(s)_with(search: selector) methods not working for forms, form \ 
fields and frames. (#444)
  * Improve the filename parser for the `Content-Disposition` header. (#496, #517)
  * Accept `Content-Encoding: identity`. (#515)
  * Mechanize::Page#title no longer picks a title in an embeded SVG/RDF element. \ 
(#503)
  * Make Mechanize::Form#has_field? boolean. (#501)