www/sqlpage: Update to 0.38.0 Release notes: https://github.com/sqlpage/SQLPage/releases/tag/v0.38.0

x11-themes/catppuccin-gtk-theme: Update to g20251014 Changelog: https://github.com/Fausto-Korpsvart/Catppuccin-GTK-Theme/compare/11469afc966f13cc3853ed777f4e1a727a2fd193...065ddb5ff22d0aa493ff89b0301c937fc071917a Reported by: GitHub (watch all activity)

sysutils/cilium: Update to 0.18.7 ChangeLog: https://github.com/cilium/cilium-cli/releases/tag/v0.18.7

lang/python312: Fix pkg-plist when build with DEBUG option

www/wordpress: Fix "call to undefined function filter_var()" WordPress needs USE_PHP=filter installed, otherwise some things will fail complaining about "call to undefined function filter_var()". PR: 278330 Approved by: joneum (maintainer, timeout > 1.5 years) MFH: 2025Q4

devel/py-sip: Fix build for devel/py-qt5-pyqt Add upstream patch to fix a regression [1] building devel/py-qt5-pyqt. https://github.com/Python-SIP/sip/issues/95 [1] Reported by: pkg-fallout

*/wordpress*: Update 6.8.2 => 6.8.3 (with security fixes) Security updates included in this release: * A data exposure issue where authenticated users could access some restricted content. * A cross-site scripting (XSS) vulnerability requiring an authenticated user role that affects the nav menus. Release notes: https://wordpress.org/news/2025/09/wordpress-6-8-3-release/ PR: 290366 288378 Approved by: joneum (maintainer) MFH: 2025Q4

www/tomcat-devel: Update 11.0.11 => 11.0.13 Changelog: https://tomcat.apache.org/tomcat-11.0-doc/changelog.html#Tomcat_11.0.13_(mark) MFH: 2025Q4

math/octave-forge-statistics: Update to 1.7.6.

net/amnezia-tools: Fix endpoints and DNS tracking, detach from terminal on start Various fixes startup: - fix endpoints tracking - fix failure in case of DNS server is not responding on startup and retries allowed - properly detach from terminal on system start - minor formating fixes PR: 290370 MFH: 2025Q4

net/nbdkit: Update to 1.44.3 * Update WWW (old URL points to the unmaintained repository). * Pet portclippy/portfmt. * Remove unnecessary patch for --without-linuxdisk (there is an option for this called --disable-linuxdisk). * Add ZSTD option. PR: 290369

net-im/flare: Update 0.17.0 => 0.17.1 While here, add noto-emoji as a dependency because it is needed for displaying emojis. Changelog: https://gitlab.com/schmiddi-on-mobile/flare/-/releases/0.17.1 PR: 290225 Reported by: Yusuf Yaman <nxjoseph@protonmail.com> (maintainer)

databases/py-snowflake-connector-python: Update 3.12.3 => 4.0.0 Changelogs: https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.12.4 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.13.0 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.13.1 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.13.2 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.14.0 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.14.1 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.15.0 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.16.0 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.17.0 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.17.1 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.17.2 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.17.3 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.17.4 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v3.18.0 https://github.com/snowflakedb/snowflake-connector-python/releases/tag/v4.0.0 - Switch to pep517. - Fix warnings from portclippy. - Add strip of installed lib. PR: 290340

databases/py-snowddl: Relax required version of databases/py-snowflake-connector-python PR: 290340

cad/k40-whisperer: Update 0.59 => 0.70, take maintainership Changelogs: * https://www.scorchworks.com/K40whisperer/k40whisperer_change_log.html * Make DOCS option actually work * Pet portclippy(1) and portfmt(1) Approved by: yuri@ (Mentor) Differential Revision: https://reviews.freebsd.org/D53192

audio/baresip: Add new modules and improve option consistency - Add modules for: * Codec2 - low-bitrate speech codec; * evdev input support; * PipeWire and sndio sound backends; * in_band_dtmf and augain audio filters; * WebRTC Acoustic Echo Cancellation. - Unbreak D-Bus module. - Build opus_multistream along with opus module. - Standardize option names and remove redundant descriptions of common options for better sanitization. PR: 290367

filesystems/zerofs: Update to 0.16.2 ChangeLog: https://github.com/Barre/ZeroFS/releases/tag/v0.16.2 PR: 290005 Approved by: maintainer timeout (2 weeks)

www/badwolf: Update to 1.4.0 * Add ugly component to GSTREAMER. * Update MASTER_SITES. * Add logic for GURI option. * Update patch to disable NLS (when this option is off). * Add files related to Serbia to pkg-plist. ChangeLog: https://distfiles.hacktivis.me/releases/badwolf/badwolf-1.4.0.txt Reported by: contact@hacktivis.me (via email)

www/nextcloud-forms: Update to 5.2.2

www/nextcloud-news: Update to 27.0.1

databases/cego: update 2.52.30 -> 2.52.31 - Changed Backup Branch Id from timestamp value to database wide unique numeric id. For this CegoXMLSpace::setTableSetBackupBranch method has changed to nextTableSetBackupBranch

shells/bash-completion: Fix 482cadcb07419678f225eb4e1a941e0dfb43a4ea PR: 289914 Reported by: vanilla

graphics/nvidia-drm-kmod[-devel]: Fix dependency for 15.0 and later At commit ports 324e88dfe426, graphics/drm-kmod switches from graphics/drm-61-kmod to graphics/drm-66-kmod for OSVERSION 1500031 and later. Chase the change not to mixup LinuxKPI 6.1 and 6.6 within graphics/drm-kmod and graphics/nvidia-drm-kmod[-devel] on 15.0 and later. MFH: 2025Q4 Differential Revision: https://reviews.freebsd.org/D53196

www/tor-browser: Update 15.0a3 => 15.0a4 Release notes: https://blog.torproject.org/new-alpha-release-tor-browser-150a4/ PR: 290361 MFH: 2025Q4

math/libsemigroups: upgrade to v3.2.0 Release notes at https://github.com/libsemigroups/libsemigroups/releases/tag/v3.2.0

math/planarity: upgrade to 4.0.1.0 Release notes at https://github.com/graph-algorithms/edge-addition-planarity-suite/releases/tag/Version_4.0.1.0

graphics/cimg: upgrade to v.3.6.3

astro/kosmorro: fix plist Like for py-kosmorrolib, the license file moved. No need to bump PORTREVISION.

security/vuxml: Add more Mozilla vulnerabilities * CVE-2025-11712 * CVE-2025-11711 * CVE-2025-11710 * CVE-2025-11709 * CVE-2025-11708 * CVE-2025-11714 While here improve another Mozilla entry description a bit.

ports-mgmt/poudriere: Update to 3.4.4 Discussion: https://github.com/freebsd/poudriere/discussions/1275 Changes: - bulk: Add support for hashed pkg repo mode - bulk: Fix failure to unmount wrkdir for TMPFS_BLACKLIST. - poudriere: Include both etc/poudriere.conf and poudriere.d/poudriere.conf bulk fetching is not yet fixed but being worked on for 3.4.5

sysutils/cloud-nuke: Update to 0.43.0 ChangeLog: https://github.com/gruntwork-io/cloud-nuke/releases/tag/v0.43.0

mail/sqwebamil: update to 6.3.0 - add files missed in previous commit

mail/sqwebamil: update to 6.3.0

sysutils/glow: Update to 2.1.1 ChangeLog: https://github.com/charmbracelet/glow/releases/tag/v2.1.1 Take maintainership, lcook@ has not been active for 11 months. Reported by: Hiroki Tagato <tagattie@FreeBSD.org> Approved by: portmgr (implicit)

deskutils/stirling-pdf: update to 1.5.0 Changes: https://github.com/Stirling-Tools/Stirling-PDF/releases/tag/v1.5.0

security/stunnel: Update to 5.76

shells/schemesh: Update to 0.9.2

security/osv-scanner: Update to 2.2.3 ChangeLog: https://github.com/google/osv-scanner/releases/tag/v2.2.3

net-im/purple-discord: Update g20250810 => g20251012 Commit log: https://github.com/EionRobb/purple-discord/compare/nightly-e39f97e59c446d6af5d2ef2ef259391867fd95e4...nightly-f60596c3e6a22f819ad408232257dca1757a8519 Return "gettext-runtime gettext-tools" => "gettext" (my change in previous update). PR: 290359

textproc/py-jiter: Update to 0.11.1 Changelog: https://github.com/pydantic/jiter/releases/tag/v0.11.1 Reported by: Repology

security/lego: Update 4.26.0 => 4.27.0 Changelog: https://github.com/go-acme/lego/blob/v4.27.0/CHANGELOG.md PR: 290356

cad/nvc: update 1.18.0 → 1.18.1 Reported by: portscout

misc/llama-cpp: update 6374 → 6795

mail/py-offlineimap3: Update 8.0.0-70 => 8.0.0-78 (latest commit) Commit log: https://github.com/OfflineIMAP/offlineimap3/compare/93f358dee9...db34745227 PR: 290355

devel/boehm-gc: Update to 8.2.10 ChangeLog: https://github.com/bdwgc/bdwgc/blob/v8.2.10/ChangeLog

www/gitlab: fix regressions caused by puma upgrade This fixes following commits: 99b692d10ed32c6a02eaaa3727400379d4692aa6 0f92b5ebfd3b3336f58a715ecf171f7e716788d5 074a308471c1dc05251985907e260a632141c3b3 PR: 289973

sysutils/zli: Update to 2.1.10

sysutils/zot: Update to 2.1.10

misc/crush: Update to 0.11.2 Changelog: https://github.com/charmbracelet/crush/releases/tag/v0.11.2 Reported by: GitHub (watch releases)

x11/walker: Update to 2.5.4 Changelog: - https://github.com/abenz1267/walker/releases/tag/v2.5.1 - https://github.com/abenz1267/walker/releases/tag/v2.5.2 - https://github.com/abenz1267/walker/releases/tag/v2.5.3 - https://github.com/abenz1267/walker/releases/tag/v2.5.4 Reported by: GitHub (watch releases)

sysutils/elephant: update to 2.2.5 [1] While here, replace %%LOCALBASE%% with /usr/local in the patch file since /usr/local is already used in the go source in question, which makes the patch upstreamable. Replace /usr/local with ${LOCALBASE}, /run/user with /var/run/user in post-patch target. [2] Changelog: - https://github.com/abenz1267/elephant/releases/tag/v2.1.9 - https://github.com/abenz1267/elephant/releases/tag/v2.2.0 - https://github.com/abenz1267/elephant/releases/tag/v2.2.1 - https://github.com/abenz1267/elephant/releases/tag/v2.2.2 - https://github.com/abenz1267/elephant/releases/tag/v2.2.3 - https://github.com/abenz1267/elephant/releases/tag/v2.2.4 - https://github.com/abenz1267/elephant/releases/tag/v2.2.5 Reported by: GitHub (watch releases) [1], arrowd (via ports-committers) [2]

security/sequoia-chameleon-gnupg: update openssl crates ...for LibreSSL 4.2.0 compatibility

security/sequoia-sq: update openssl crates ...for LibreSSL 4.2.0 compatibility

misc/freebsd-doc-*: Update to rev. 9127980 from FreeBSD docset Revision 9127980 is also 15.0-R version Approved by: doceng (implicit)

editors/vscode: Update to 1.105.1 Changelog: https://code.visualstudio.com/updates/v1_105 Reported by: GitHub (watch releases)

devel/go-tools: update to 0.38.0 Selected upstream changes: - go/ssa: support new(expr) - cmd/stringer: document option -trimprefix - cmd/stringer: fix bounds checking for integer types spanning full range - cmd/eg: build tags support - go.mod: update golang.org/x dependencies Changelog: https://github.com/golang/tools/compare/v0.37.0...v0.38.0

graphics/gimp-app: fpsetmask() -> fedisableexcept() Replace the use of the older fpsetmask() call with fedisableexcept(). The build previously only succeeded on armv7 due to ANSI C semantics in which it is permitted to call an undlecared function. Approved by: portmgr (build fix blanket) MFH: 2025Q4

graphics/gimp3-app: fix build on armv7 No OpenMP on armv7 unfortunately. While we are at it, rework the "no FP exceptions" patch to use the newer <fenv.h> interface, as the old one is not supported everywhere. Approved by: portmgr (build fix blanket) MFH: 2025Q4

games/libretro-play: fix build on armv7, aarch64 On ARM platforms, the cmake scripts try to use GLES over GLEW. But we don't have egl in USE=GL. Tell them to knock off this habit. Approved by: portmgr (build fix blanket) MFH: 2025Q4

converters/simdutf: updated to 7.5.0 Changelog: https://github.com/simdutf/simdutf/releases/tag/v7.5.0 MFH: no (soname change)

lang/kefir: C17/C23 compiler Kefir is an independent compiler for the C17/C23 programming language, developed by Jevgenij Protopopov. Kefir has been validated with a test suite of 80 software projects, among which are GNU core- and binutils, Curl, Nginx, OpenSSL, Perl, Postgresql, Tcl and many others. The compiler targets x86_64 architecture and System-V AMD64 ABI, supporting Linux, FreeBSD, NetBSD an OpenBSD. While the primary priority is compatibility and compliance, Kefir also features conservative SSA-based optimization pipeline, debug information generation, position-independent code, and implements bit-identical bootstrap. Kefir focuses on C source code translation to assembly, and integrates with the rest of system toolchain (assembler, linker, standard library) for other tasks. WWW: https://kefir.protopopov.lv/

games/tesseract-data: find working mirror for distfile The main site doesn't seem to work anymore. Approved by: portmgr (build fix blanket) MFH: 2025Q4

textproc/wordnet: fix build, address possible Tk-absence, pet `port test' PR: 256218 MFH: 2025Q4

devel/gocritic: rename to devel/go-critic See also: https://github.com/go-critic/go-critic/pull/1482

devel/gocritic: update to 0.14.0 - binaries have been renamed to go-critic and go-critic-analysis Changelog: https://github.com/go-critic/go-critic/releases/tag/v0.14.0

games/tinycols: update to 0.8.5 Changes: https://github.com/zedr/tinycols/compare/0.8.3...0.8.5

www/nginx-devel: Update to 1.29.2 Changes with nginx 1.29.2 07 Oct 2025 *) Feature: now nginx can be built with AWS-LC. Thanks Samuel Chiang. *) Bugfix: now the "ssl_protocols" directive works in a virtual server different from the default server when using OpenSSL 1.1.1 or newer. *) Bugfix: SSL handshake always failed when using TLSv1.3 with OpenSSL and client certificates and resuming a session with a different SNI value; the bug had appeared in 1.27.4. *) Bugfix: the "ignoring stale global SSL error" alerts might appear in logs when using QUIC and the "ssl_reject_handshake" directive; the bug had appeared in 1.29.0. Thanks to Vladimir Homutov. *) Bugfix: in delta-seconds processing in the "Cache-Control" backend response header line. *) Bugfix: an XCLIENT command didn't use the xtext encoding. Thanks to Igor Morgenstern of Aisle Research. *) Bugfix: in SSL certificate caching during reconfiguration. Sponsored by: Netzkommune GmbH

devel/phpunit8: Update to 8.5.48 Sponsored by: Netzkommune GmbH

www/gitlab: fix regression from 5028178941fc081cd43354ea03ceda365a12f73d this fixes a depedency conflict with rubygem-logger which was added into package security/rubygem-omniauth which conflicts with rubygem-logger-gitlab

net/py-urllib3: allow building with devel/py-setuptools-scm 9 Adjust upper bound to currently (as of this commit) nonexistent 10. https://github.com/urllib3/urllib3/pull/3682 Reported by: John Hein PR: 290354

net/dshell: Update to 3.2.3

devel/py-avocado-framework: update to 112.0 - Update to 112.0 - Switch to the upstream suggested approach for /usr/local prefix handling rather than keeping a local patch Sponsored by: The FreeBSD Foundation

misc/py-litellm: Update to 1.78.3 Changelog: https://github.com/BerriAI/litellm/releases Reported by: Repology

devel/cargo-c: update to 0.10.16 Changes: https://github.com/lu-zero/cargo-c/releases/tag/v0.10.16 https://github.com/lu-zero/cargo-c/releases/tag/v0.10.15

net-im/fractal: update openssl crates ...for LibreSSL 4.2.0 compatibility

security/py-google-cloud-kms: update to 3.7.0 While here, add missing runtime dependency. Changelog: https://github.com/googleapis/google-cloud-python/blob/google-cloud-kms-v3.7.0/packages/google-cloud-kms/CHANGELOG.md Reported by: portscout

devel/py-sqlfluff: Update to 3.5.0

databases/py-redisvl: update to 0.10.0 Changelog: https://github.com/redis/redis-vl-python/releases/tag/v0.10.0 Reported by: portscout

textproc/py-rdflib: Fix typo PR: 290093 Reported by: John Hein <jcfyecrayz@liamekaens.com>

shells/bash-completion: Fix 'make extract' on riscv64 PR: 289914 Reported by: Meng Zhuo <mengzhuo@iscas.ac.cn>

deskutils/todo: Fix autocompletion - Do not rename todo.sh - Update CONFLICTS_INSTALL: - devel/devtodo: Remove deskutils/todo from CONFLICTS_INSTALL - deskutils/todo: Remove CONFLICTS_INSTALL - Bump PORTREVISION for package change PR: 288001 Reported by: Laurent Chardon <laurent.chardon@gmail.com>

devel/py-versioningit: Fix BUILD_DEPENDS and its usage - Fix BUILD_DEPENDS: py-wheel is not needed - Fix BUILD_DEPENDS usage: it should depend on the package, not the executable from pyproject.toml: [build-system] requires = ["hatchling"] Reference: https://github.com/jwodder/versioningit/blob/v3.3.0/pyproject.toml#L1-L2 Approved by: portmgr (blanket) With hat: python

devel/py-pydantic-settings: Fix BUILD_DEPENDS usage: it should depend on the package, not the executable from pyproject.toml: [build-system] requires = ['hatchling'] Reference: https://github.com/pydantic/pydantic-settings/blob/v2.6.0/pyproject.toml#L1-L2 Approved by: portmgr (blanket) With hat: python

devel/py-cibuildwheel: Fix BUILD_DEPENDS and its usage - Fix BUILD_DEPENDS: py-wheel is not needed - Fix BUILD_DEPENDS usage: it should depend on the package, not the executable from pyproject.toml: [build-system] requires = ["hatchling"] Reference: https://github.com/pypa/cibuildwheel/blob/v2.23.2/pyproject.toml#L1-L2 Approved by: portmgr (blanket) With hat: python

databases/py-dbt-semantic-interfaces: Fix BUILD_DEPENDS and its usage - Fix BUILD_DEPENDS: py-hatch is not needed - Fix BUILD_DEPENDS usage: it should depend on the package, not the executable from pyproject.toml: [build-system] requires = ["hatchling"] Reference: https://github.com/dbt-labs/dbt-semantic-interfaces/blob/v0.10.0/pyproject.toml#L35-L36 Approved by: portmgr (blanket) With hat: python

archivers/py-borgbackup12: Allow build with py-msgpack 1.1.2 - Bump PORTREVISION for package change Reference: https://github.com/borgbackup/borg/commit/e7d8fba1df8409f5aa71faa16f97935aea802171

archivers/py-borgbackup: Allow build with py-msgpack 1.1.2 - Bump PORTREVISION for package change Obtained from: https://github.com/borgbackup/borg/commit/e7d8fba1df8409f5aa71faa16f97935aea802171

www/rubygem-responders-rails61: Add PORTSCOUT

www/rubygem-httparty: Update to 0.23.2 Changes: https://github.com/jnunemaker/httparty/releases

sysutils/rubygem-puppet_forge: Fix gemspec for rubygem-faraday-follow_redirects 0.4.0 update - Bump PORTREVISION for package change

sysutils/rubygem-bundler: Update WWW

net/rubygem-google-cloud-storage_transfer-v1: Update to 1.8.0 Changes: https://github.com/googleapis/google-cloud-ruby/releases https://github.com/googleapis/google-cloud-ruby/blob/main/google-cloud-storage_transfer-v1/CHANGELOG.md

devel/rubygem-sequel: Update to 5.97.0 Changes: https://github.com/jeremyevans/sequel/blob/master/CHANGELOG https://sequel.jeremyevans.net/rdoc/files/CHANGELOG.html

devel/rubygem-rdoc: Update to 6.15.0 Changes: https://github.com/ruby/rdoc/releases

devel/rubygem-minitest: Update to 5.26.0 Changes: https://github.com/minitest/minitest/blob/master/History.rdoc https://docs.seattlerb.org/minitest/History_rdoc.html

devel/rubygem-google-apis-iam_v1: Update to 0.79.0 Changes: https://github.com/googleapis/google-api-ruby-client/blob/main/generated/google-apis-iam_v1/CHANGELOG.md

devel/rubygem-backports: Update to 3.25.2 Changes: https://github.com/marcandre/backports/blob/master/CHANGELOG.md https://github.com/marcandre/backports/commits/master

devel/ruby-build: Update to 20251008 Changes: https://github.com/rbenv/ruby-build/releases

devel/ruby-gems: Update WWW

devel/py-ipyparallel: Update to 9.0.2 Changes: https://github.com/ipython/ipyparallel/blob/main/docs/source/changelog.md https://ipyparallel.readthedocs.io/en/latest/changelog.html