SECURITY: [MySQL] UMASK= unconventionally applied as an additive mask instead of subtractive. UMASK=0077 appends these permissions instead of stripping g-rwx,o-rwx to data files exposing potentially confidential data to secondary users within the account. NEW: [Web Apps] Update Assurance. Post-update hook that monitors for deviations in update page size and rolls back automatically if encountered. Parameter threshold may be configured via [webapps] => assurance_drift. [letsencrypt] solve()- complete pending challenges from challenges(). See SSL.md for examples. [Cronus] variable interval job scheduling. [Ruby, Node] lazy-load support for nvm/rbenv helpers. Prior, having both present could impart a 1-2s lag on shell initialization. Add LAZY_LOAD_XXX=1 in .bashrc to control this behavior. See Ruby.md. [argos] Dashboard integration, monitoring API. [email] user_mailboxes()- get a list of mailboxes affiliated with the named user. [git] head()- show repo HEAD commit. FIXED: [Opcenter] a failure in an edit chain causes subsequent domain edits to fail. [Subdomains] editing a subdomain defaults ownership to first user. [Error Reporter] broken session deserialization blocks backtrace reports. [PostgreSQL] editing user via EditDomain applies the wrong password to .pgpass. [Vacation Responder] always set vacation message, which when setting vacation for secondary user for first time did not populate the message resulting in spurious "File not found" errors. [MySQL] privileged password cannot be discovered when seteuid, such as with job runner. [Bootstrapper] dnf i18n idempotency checks. [Kernel] rebuild grub2.cfg on kernel change. CHANGED: [Screenshots] batch runs in hourly intervals. Cleanup chromium work directories. [Subdomains, Addon Domains] enqueue docroot changes. [Spam Filter] renamed from SpamAssassin Configuration Wizard. Add support for deliver threshold. [argos] disambiguate existing config* API methods to config_relay. [Core] misc:debug-session hooks into request lifecycle earlier - immediately following session initialization. [Web Apps] deduplicate several preflight checks into Webapps::parseInstallOptions(). [Vacation Responder] clarify "no duplicates" option. Show affected email addresses when enabling vacation mode. [git] add()- ignore files that cannot be added due to permissions if no fileset specified.' [License] -f/--force flag overrides panel's best effort not to replace a perfectly fine license.