misc/codex: Update to 0.96.0 While here, mark as BROKEN on i386 architecture. It does not build due to out of memory error. Changelog: - https://github.com/openai/codex/releases/tag/rust-v0.90.0 - https://github.com/openai/codex/releases/tag/rust-v0.91.0 - https://github.com/openai/codex/releases/tag/rust-v0.92.0 - https://github.com/openai/codex/releases/tag/rust-v0.93.0 - https://github.com/openai/codex/releases/tag/rust-v0.94.0 - https://github.com/openai/codex/releases/tag/rust-v0.95.0 - https://github.com/openai/codex/releases/tag/rust-v0.96.0 Reported by: GitHub (watch releases)

sysutils/smartmontools: portfmt && portclippy

comms/ebusd: portfmt && portclippy

astro/traccar: portfmt && portclippy

devel/ispc: update 1.29.1 → 1.30.0 Reported by: portscout

graphics/xournalpp: update 1.2.8 → 1.3.2 Reported by: portscout

net-mgmt/victoria-logs: portfmt/portclippy

www/py-fastapi: Update to 0.128.1

www/openemr: Update to 7.0.4

sysutils/xclipsync: New port: Trivial tool for synchronizing the clipboard between two X11 sessions xclipsync is a simple and lightweight script for synchronizing the clipboard between two X servers created, for example, by Xephyr(1) or Xnest(1), or even for synchronizing the clipboard between the host and another X server. WWW: https://github.com/DtxdF/xclipsync

math/octave-forge-mqtt: Update to 0.0.6.

math/R-cran-carData: Update to 3.0.6

lang/python313: update to 3.13.12 Changelog: https://docs.python.org/3.13/whatsnew/changelog.html#python-3-13-12-final Security: bfe9adc8-0224-11f1-8790-c5fb948922ad

math/R-cran-car: Update to 3.1.5

lang/python-doc-html: populate 3.13

lang/python-doc-pdf-a4: remove No longer provided since 3.13

lang/python311: pull in upstream commits addressing vuxml entries Security: bfe9adc8-0224-11f1-8790-c5fb948922ad

converters/R-cran-base64enc: Update to 0.1-6 Reported by: portscout

cad/librepcb: update 1.3.0 → 2.0.0

misc/timr-tui: update 1.6.1 → 1.7.0 Reported by: portscout

sysutils/mise: update 2026.2.0 → 2026.2.3 Reported by: portscout

deskutils/skim: update 2.0.1 → 2.0.2 Reported by: portscout

devel/py-uv-build: update 0.9.28 → 0.9.30

devel/{,py-}uv: update 0.9.28 → 0.9.30

misc/crush: Update to 0.39.1 Changelog: - https://github.com/charmbracelet/crush/releases/tag/v0.38.0 - https://github.com/charmbracelet/crush/releases/tag/v0.38.1 - https://github.com/charmbracelet/crush/releases/tag/v0.39.0 - https://github.com/charmbracelet/crush/releases/tag/v0.39.1 Reported by: GitHub (watch releases)

math/R-cran-LearnBayes: Update to 2.15.2 Reported by: portscout

net/tigervnc-viewer: Explicitly enable H.264 decoder not to rely on autodetect. It is enabled via autodetect by ffmpeg dependency though.

net/tigervnc-server: Explicitly disable Wayland (w0vncserver) The default is AUTO, which attempts to build with Wayland if it is installed in the build environment. This may result in non-reproducible builds depending on the build environment. In addition, w0vncserver currently fails to build. This is on my TODO list but disabled for the time being. While here, explicitly enable pwquality and declare a dependency on security/libpwquality. PR: 292938 Reported by: Paul Boehmer

textproc/py-jiter: Update to 0.13.0 Changelog: https://github.com/pydantic/jiter/releases/tag/v0.13.0 Reported by: Repology

databases/py-sqlmodel: Update to 0.0.32 Changelog: https://github.com/fastapi/sqlmodel/blob/0.0.32/docs/release-notes.md Reported by: Repology

lang/cjs: update to 128.1 unbreak runtime with glib 2.86

devel/py-python-dbusmock: Update to 0.38.1 Changelog: - https://github.com/martinpitt/python-dbusmock/releases/tag/0.38.0 - https://github.com/martinpitt/python-dbusmock/releases/tag/0.38.1 Reported by: Repology

security/vuxml: update lang/python311 entry Upstream are still reviewing and reworking the following: - lang/python312: CVE-2024-6923 - lang/python310: gh-143935 Updated version ranges to be provided after those commits land there. While here, remove nonexistent and EOL lang/python39

x11/py-nwg-displays: Update to 0.3.27 Changelog: https://github.com/nwg-piotr/nwg-displays/releases/tag/v0.3.27 Reported by: GitHub (watch releases)

games/veloren-weekly: update to s20260203 Changes: https://gitlab.com/veloren/veloren/-/compare/2cc1712251...fd6760d062

devel/sdl12-compat: update to 1.2.74 Changes: https://github.com/libsdl-org/sdl12-compat/releases/tag/release-1.2.74 Reported by: GitHub (watch releases)

graphics/mesa-devel: update to 26.0.b.736 Changes: https://gitlab.freedesktop.org/mesa/mesa/-/compare/481df222095...124d550a943

emulators/rpcs3: update to 0.0.39.18761 Changes: https://github.com/RPCS3/rpcs3/compare/3e49c32c9c...ebf9374ccd

lang/python314: SECURITY update to v3.14.3 ChangeLog: https://docs.python.org/release/3.14.3/whatsnew/changelog.html MFH: 2026Q1 (immediately) Security fixes: * gh-144125: BytesGenerator will now refuse to serialize (write) headers that are unsafely folded or delimited; see verify_generated_headers. (Contributed by Bas Bloemsaat and Petr Viktorin in gh-121650). * gh-143935: Fixed a bug in the folding of comments when flattening an email message using a modern email policy. Comments consisting of a very long sequence of non-foldable characters could trigger a forced line wrap that omitted the required leading space on the continuation line, causing the remainder of the comment to be interpreted as a new header field. This enabled header injection with carefully crafted inputs. * gh-143925: Reject control characters in data: URL media types. * gh-143919: Reject control characters in http.cookies.Morsel fields and values. * gh-143916: Reject C0 control characters within wsgiref.headers.Headers fields, values, and parameters. Security: CVE-2026-0865 Security: CVE-2026-1299 Security: bfe9adc8-0224-11f1-8790-c5fb948922ad

security/vuxml: add python <3.14.3 <3.13.12 security issues Security: CVE-2026-0865 Security: CVE-2026-1299 Security: bfe9adc8-0224-11f1-8790-c5fb948922ad

editors/zed: Update to 0.221.5 Changelog: - https://github.com/zed-industries/zed/releases/tag/v0.220.2 - https://github.com/zed-industries/zed/releases/tag/v0.220.3 - https://github.com/zed-industries/zed/releases/tag/v0.220.5 - https://github.com/zed-industries/zed/releases/tag/v0.220.6 - https://github.com/zed-industries/zed/releases/tag/v0.220.7 - https://github.com/zed-industries/zed/releases/tag/v0.221.4 - https://github.com/zed-industries/zed/releases/tag/v0.221.5 Reported by: GitHub (watch releases)

security/openvpn: update to v2.6.19 (bugfixes) ChangeLog: https://github.com/OpenVPN/openvpn/blob/v2.6.19/Changes.rst#overview-of-changes-in-2619 MFH: 2026Q1 (after a few days)

net/tcpkali: forbid port A possible backdoor issue was discovered. Forbid this port until this can be investigated in detail. Reported by: danilo MFH: 2026Q1

devel/hs-ghcup: New Port: Main installer Haskell GHCup is the primary installer and version manager for the Haskell toolchain. It provides a unified interface to install and switch between different versions of GHC, Cabal, Stack, and the Haskell Language Server. WWW: https://www.haskell.org/ghcup/ PR: 292940 Approved by: eduardo (mentor)

x11/py-python-xapp: update to 3.0.2 PR: 292809

devel/libdispatch: do not define HAVE_DISPATCH_WORKQ_MONITORING on FreeBSD It causes random crashes in telegram-desktop Reported by: freebsd_ru community members

net-mgmt/nagios4: Update 4.5.1 => 4.5.11, take maintainership Changelog: https://www.nagios.org/projects/nagios-core/4x/ Improve port: - Replace PORTVERSION with DISTVERSION. - Parametrize nagios with ${PORTNAME}. - Replace CFLAGS, CPPFLAGS and LIBS with USES+=localbase. - Update CONFLICTS. - Use ${ETCDIR} instead of ${PREFIX}/etc/nagios. - Fix warnings from portclippy. - Fix install with non-default NAGIOSUSER/NAGIOSGROUP. - Split long line in post-patch. - Improve indents. - Regenerate patches with changed line numbers. PR: 292357 Tested by: Fabian Wenk <fabian@wenks.ch> MFH: 2026Q1 Co-authored-by: Vladimir Druzenko <vvd@FreeBSD.org>

net-mgmt/victoria-logs: rename rc script with underscore PR: 292378

net-mgmt/victoria-logs: upgrade to 1.44.0 - Update to the latest version - Change download to GH because of goproxy issue - fix logs directory ownership (PR 292405) PR: 292405 ChangeLog: https://docs.victoriametrics.com/victorialogs/changelog/

devel/bazel: fix build around c23 extensions This reverts commit 984f80b6e226c37980c68d6a7a12d3be08dee2dc. PR: 278246 --- ...g.bzl => patch-tools_cpp_bsd_cc_toolchain_config.bzl} | 9 ++++----- 1 file changed, 4 insertions(+), 5 deletions(-) rename devel/bazel/files/{patch-tools_cpp_bsd__cc__toolchain__config.bzl => patch-tools_cpp_bsd_cc_toolchain_config.bzl} (62%) PR: 286235 Approved-by: maintainer timeout (10 months)

shells/xonsh: Update to 0.22.3 ChangeLog: https://github.com/xonsh/xonsh/releases/tag/0.22.3

shells/xonsh: Update to 0.22.2 ChangeLog: https://github.com/xonsh/xonsh/releases/tag/0.22.2

math/R-cran-reformulas: Update to 0.4.4 ChangeLog: https://cran.r-project.org/web/packages/reformulas/news/news.html

devel/R-cran-globals: Update to 0.19.0 ChangeLog: https://cran.r-project.org/web/packages/globals/news/news.html

www/p5-Firefox-Marionette: Update 1.68 => 1.70 Changelog: https://metacpan.org/release/DDICK/Firefox-Marionette-1.70/source/Changes PR: 292908

x11-toolkits/wlroots020: add new port Same as other wlroots* ports. API breaks every minor update. Changes: https://gitlab.freedesktop.org/wlroots/wlroots/-/releases/0.20.0-rc1 Reported by: GitLab (notify releases)

devel/spirv-llvm-translator: update to 21.1.4/20.1.10/19.1.15/18.1.20/16.0.21/1[4-7].0.20 Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v14.0.20 Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v15.0.20 Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v16.0.21 Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v17.0.20 Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v18.1.20 Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v19.1.15 Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v20.1.10 Changes: https://github.com/KhronosGroup/SPIRV-LLVM-Translator/releases/tag/v21.1.4 Reported by: GitHub (watch releases)

x11/wl-mirror: update to 0.18.4 Changes: https://github.com/Ferdi265/wl-mirror/releases/tag/v0.18.4 Reported by: GitHub (watch releases)

multimedia/ab-av1: update to 0.10.4 Changes: https://github.com/alexheretic/ab-av1/releases/tag/v0.10.4 Reported by: GitHub (watch releases)

www/gallery-dl: update to 1.31.5 Changes: https://github.com/mikf/gallery-dl/releases/tag/v1.31.5 Reported by: GitHub (watch releases)

net-mgmt/rubygem-oxidized: Fix after updating devel/rubygem-syslog to 0.4.0 The service oxidized encounters the fault: /usr/local/lib/ruby/site_ruby/3.3/rubygems/specification.rb:1417:in `block in activate_dependencies': Could not find 'syslog' (~> 0.3.0) among 25 total gem(s) (Gem::MissingSpecError) after updating devel/rubygem-syslog to 0.4.0. Manually patching the gemspec for syslog resolves the issue. Relax the dependency to allow versions above and including rubygem-syslog 0.3.0. PR: 292929

sysutils/desktop-installer: Update to 1.1.1.31 Add limited, experimental Wayland support Offer to install Widevine-enabled browser A few other minor fixes and improvements

sysutils/auto-admin: Update to 0.8.4.22 New script: auto-chromium+widevine-install auto-install-linux_base: No longer add fstab entries. Not necessary, and causes problems with tmpfs. auto-install-packages: Fix exit status for non-existent ports

www/p5-MojoX-Log-Dispatch-Simple: Update 1.12 => 1.15 Changelog: https://metacpan.org/release/GRYPHON/MojoX-Log-Dispatch-Simple-1.15/source/Changes Fix antipattern "BUILD_DEPENDS=RUN_DEPENDS". PR: 292909 283227

x11/histui: Update to 0.0.8 ChangeLog: https://github.com/jmylchreest/histui/releases/tag/v0.0.8 Reported by: portscout!

devel/p5-Algorithm-Backoff: Update 0.009 => 0.010 Changelog: https://metacpan.org/release/PERLANCAR/Algorithm-Backoff-0.010/source/Changes PR: 292907

databases/p5-Redis-Fast: Update 0.36 => 0.37 Changelog: https://metacpan.org/release/SHOGO/Redis-Fast-0.37/source/Changes PR: 292906

net/frr10: Create the libstatedir On some customized setup (poudriere-image, nanobsd) /var/lib could be missing

databases/p5-DBIx-Class-Storage-TxnEndHook: Update 0.01 => 0.02 Changelog: https://metacpan.org/release/COMMOJUN/DBIx-Class-Storage-TxnEndHook-0.02/source/Changes PR: 292905

devel/p5-Time-Moment: Update 0.44 => 0.46 Changelog: https://metacpan.org/release/CHANSEN/Time-Moment-0.46 PR: 292904

graphics/p5-Image-ExifTool-devel: Update 13.48 => 13.49 Changelog: https://exiftool.org/history.html#v13.49 PR: 292930

www/angie-module-jwt: update 3.4.3 => 3.4.4 No actual changes/updates to the code, but we keep the module version up-to-date anyways. Changes: - Add GutHub Sponsors username to FUNDING.yml - docs: add pre-buildt Ubuntu/Debian package installation instructions - Update README.md - Update nginx to 1.28.1-alpine3.23 (docker) https://github.com/max-lt/nginx-jwt-module/compare/v3.4.3...v3.4.4 PR: 292925

graphics/py-fotokilof: Update to 5.2.3 - Add two new run dependencies - Fix syntax of metadata (license) in pyproject.toml that is not compatible with the current version of setuptools ChangeLog: https://github.com/TeaM-TL/FotoKilof/releases/tag/5.2.3 Reported by: portscout!

devel/py-pyperclipimg: Add new port This Python module provides copy() and paste() clipboard functions for images on Windows, macOS, Linux and FreeBSD. https://pypi.org/project/pyperclipimg/

devel/py-darkdetect: Add new port The main application of this Python package is to detect the Dark mode from your GUI Python application (Tkinter/wx/pyqt/qt for python (pyside)/...) and apply the needed adjustments to your interface. Darkdetect is particularly useful if your GUI library does not provide a public API for this detection. In addition, this package does not depend on other modules or packages that are not already included in standard Python distributions. https://pypi.org/project/darkdetect/

multimedia/hyprpwcenter: Add port: GUI Pipewire control center hyprpwcenter is a GUI control center for pipewire. It allows to look and configure nodes, outputs, and adjust the pw graph. WWW: https://github.com/hyprwm/hyprpwcenter

x11/hyprpaper: Update to 0.8.3 Changelog: - https://github.com/hyprwm/hyprpaper/releases/tag/v0.8.2 - https://github.com/hyprwm/hyprpaper/releases/tag/v0.8.3 Reported by: GitHub (watch releases)

www/py-django-post_office: Update to 3.11 * Switch to the PEP517 build framework. * Remove no longer required USE_LOCALE as the UTF-8 mode is enabled by default when the locale is C since Python 3.7. Changelog since 3.9.1: https://github.com/ui/django-post_office/blob/v3.11/CHANGELOG.md PR: 292602 Approved by: maintimer timeout (14+ days)

www/py-django-smart-selects: Update to 1.7.2 * Switch to the PEP517 build framework. Changelog since 1.6.0: https://github.com/jazzband/django-smart-selects/blob/1.7.2/CHANGES.rst PR: 292603 Approved by: maintimer timeout (14+ days)

www/py-django-widget-tweaks: Update to 1.5.1 * Switch to the PEP517 build framework. Changelog: https://github.com/jazzband/django-widget-tweaks/releases/tag/1.5.1 PR: 292537 Approved by: Ivan Rozhuk (maintainer)

www/py-django-constance: Update to 4.3.4 * Switch to the PEP517 build framework. Changelogs since 3.1.0: https://github.com/jazzband/django-constance/compare/3.1.0...4.3.4 PR: 292534 Approved by: maintimer timeout (14+ days)

devel/php-composer: Update to 2.9.5 PR: 292923 Approved by: Naram Qashat <cyberbotx@cyberbotx.com> (maintainer)

net/openbgpd9: New port OpenBGPD is a FREE implementation of the Border Gateway Protocol, Version 4. It allows ordinary machines to be used as routers exchanging routes with other systems speaking the BGP protocol. This version will replace openbgp8 some time in the future. PR: 292055

x11-toolkits/hyprtoolkit: Update to 0.5.3 Changelog: https://github.com/hyprwm/hyprtoolkit/releases/tag/v0.5.3 Reported by: GitHub (watch releases)

security/libxcrypt: work around symbol alias issue This port uses symbol aliases to provide certain legacy symbols. Following commit 1c18eaf, symbol maps were reenabled, exposing that these legacy symbols were never actually generated. The project tries to generate legacy symbol aliases using __attribute__((alias)), which seems to have no effect. Sidestep this problem for now by disabling all legacy symbols. Approved by: portmgr (build fix blanket) PR: 290822 Fixes: 1c18eaf913051e7e2503f05d438cc1636d66e554

sysutils/rinse: enable on aarch64 Linuxulator is available on aarch64 too these days. BTW this port should really be updated, upstream is at 4.3.1

sysutils/uschedule: disable use of regparm, enable everywhere This attribute isn't strictly needed to build the software. Disable it to enable a build with clang on all platforms. MFH: 2026Q1

x11/xwinwrap: update to 0.9 and enable everywhere - switch to a fork - just build that one file directly - ship example - grab maintainership of this unmaintained port WWW: https://github.com/mmhobi7/xwinwrap

net-p2p/autopulse: New port autopulse v1.5.0 - Scan MultiMedia library on webhook triggers An automated scanning tool that bridges media organizers such as Sonarr and Radarr with media servers such as Plex and Jellyfin. The goal is to provide a simple, efficient, and reliable way to update your media library reducing full library scans. A key feature is the ability to provide a hash of the file to the API, which will then wait for the file to match that hash before updating targets. Another benefit over autoscan is support for PostgreSQL as backend. WWW: https://github.com/dan-online/autopulse PR: 282175

net/linphone: update to 5.3.2 - work around build failure on FreeBSD <15 (requires the XSI timezone symbol, not the old BSD one, cf. D44281) - work around build failure when git is installed - fix dependencies Changelog: https://gitlab.linphone.org/BC/public/linphone-desktop/-/blob/5.3.2/CHANGELOG.md?ref_type=tags PR: 291969, 291317

devel/liberasurecode: update to 1.7.1 Changelog: https://github.com/openstack/liberasurecode/blob/master/ChangeLog

textproc/htmldoc: update to 1.9.23 A bug fix release. Changelog: https://github.com/michaelrsweet/htmldoc/releases/tag/v1.9.23 MFH: 2026Q1

x11/wayst: broken on armv7 In file included from src/gfx_gl2.c:3: src/vt.h:278:1: error: requested alignment is less than minimum alignment of 8 for type 'VtCommand' 278 | DEF_RC_PTR(VtCommand, VtCommand_destroy); | ^ src/rcptr.h:24:9: note: expanded from macro 'DEF_RC_PTR' 24 | alignas(alignof(void*)) t payload; \ | ^ /usr/include/stdalign.h:34:19: note: expanded from macro 'alignas' 34 | #define alignas _Alignas | ^ MFH: 2026Q1 See also: https://github.com/91861/wayst/issues/120 Approved by: portmgr (build fix blanket)

net/tcpkali: fix build on FreeBSD 15 Our new inotify support confuses the bundled libev. Unbundle libev to fix the build. Something is fishy with this port; the upstream repository does not exist anymore and the one listed in WWW is blank. This should be investigated. MFH: 2026Q1