Looking for feedback on patch for libnetpgpverify: Remove an item from the TODO list: + get rid of calls to snprintf which simply add the returned value to the number of characters used so far. This practice is unsafe. Instead, use a dynamic buffer and grow its size to accommodate the contents. + Bump version number to 20160214 + Use the same method as libnetpgpverify for finding the version number from the sources. + add USE_ARG definition to some files which use it but don't check to see that it's been defined http://ftp.netbsd.org/pub/pkgsrc/misc/agc/netpgpverify-20160214.diff and second one is to pkg_install: Let's make a new patch for pkg_install to use SHA512 digests as well as md5 + add sha3 functionality (from Taylor Campbell) to libnbcompat + tag MD5 "checksums" internally within pkg_install as MD5 + add a combo digest type (sha512 and sha3) http://ftp.netbsd.org/pub/pkgsrc/misc/agc/pkg_install-20160214.diff Regards, Alistair