security/oath-toolkit: update to 2.6.14 release

devel/glab: update to 1.82.0 Changes: https://gitlab.com/gitlab-org/cli/-/releases/v1.82.0

www/surge: Update to 0.3.1

textproc/otree: Update to 0.6.4

net/nats-server: Update to 2.12.4

sysutils/hstr: update 2.3 -> 3.1 Changelog: https://github.com/dvorka/hstr/releases/tag/3.1 https://github.com/dvorka/hstr/releases/tag/3.0 https://github.com/dvorka/hstr/releases/tag/2.6 https://github.com/dvorka/hstr/releases/tag/2.5 https://github.com/dvorka/hstr/releases/tag/2.4 PR: 288853 Reported by: 1o1o1 (github PR) Reviewed by: monsieurp@gentoo.org (maintainer timeout)

games/jfsw: Update to 20260105

sysutils/py-ansible-core220: unbreak the ports tree

audio/beets: update 2.0.0 -> 2.5.1 Changelog: https://github.com/beetbox/beets/releases/tag/v2.5.1 Major changes: Unbreak audio/beats. The breakage was due to an sqlite2 requirement, disabled in ports, to support Double-quoted String Literals. Also reorder sections and fix style to make portlint and portfmt happy. PR: 289098 Reported by: vishwin Approved by: Leonhard Wachutka <leonhard@wachutka.eu> (maintainer)

devel/py-lap: New port Lap is a linear assignment problem solver using Jonker-Volgenant algorithm. It's required by the latest version of audio/beet. PR: 289098

www/nextcloud-notes: Update to 4.13.0

security/vuxml: Update recent OpenSSL vulns Was missing 2 CVEs.

editors/featherpad: Update to 1.6.3 ChangeLog at: https://github.com/tsujan/FeatherPad/releases/tag/V1.6.3 With hat: lxqt

x11-wm/lxqt-wayland-session: Update to 0.3.1 ChangeLog at: https://lxqt-project.org/release/2025/12/21/point-releases-lxqt-panel-and-lxqt-wayland-session/ With hat: lxqt

x11-wm/lxqt-panel: Update to 2.3.2 ChangeLog at: https://lxqt-project.org/release/2025/12/21/point-releases-lxqt-panel-and-lxqt-wayland-session/ With hat: lxqt

security/wpa_supplicant-devel: Fix build with IEEE80211N

devel/godot-tools: properly rebuild after 939d8775e711

multimedia/libvpx: update 1.16.0 Changes: https://chromium.googlesource.com/webm/libvpx/+log/v1.15.2..v1.16.0 Reported by: Repology

mail/nmh-devel: update to latest git commit on savannah

security/nmap-devel: Update to the latest GH commit

security/krb5-devel: update to the latest MIT/KRB5 github commit

shells/ksh-devel: update to the latest ksh93/ksh github commit

sysutils/cfengine-masterfiles-devel: Update to latest GH commit

sysutils/cfengine-devel: Update to latest GH commit

net/hostapd-devel: Update to the latest GH commit Update to the latest w1.fi commit, proxied through my GH account

security/wpa_supplicant-devel: Update to latest GH commit Update to the latest w1.fi commit, proxied through my GH account.

audio/baresip: Update 4.4.0 => 4.5.0 Changelog: https://github.com/baresip/baresip/releases/tag/v4.5.0 While here remove GH_ACCOUNT - this is default value. PR: 292785

audio/re: Update 4.4.0 => 4.5.0 Changelog: https://github.com/baresip/re/releases/tag/v4.5.0 PR: 292785

www/ungoogled-chromium: update to 144.0.7559.109 Security: https://vuxml.freebsd.org/freebsd/409d70ab-fc23-11f0-85c5-a8a1599412c6.html

x11-wm/plasma6-kwin: backport upstream patch to fix a regression that made it impossible to turn offscreens through kscreen in some setups.

sysutils/zot: Update to 2.1.14 PR: 292746

sysutils/zli: Update to 2.1.14

textproc/R-cran-vroom: Update to 1.7.0 ChangeLog: https://cran.r-project.org/web/packages/vroom/news/news.html

devel/R-cran-sparsevctrs: Update to 0.3.6 ChangeLog: https://cran.r-project.org/web/packages/sparsevctrs/news/news.html

devel/R-cran-data.table: Update to 1.18.2.1 ChangeLog: https://cran.r-project.org/web/packages/data.table/news/news.html

textproc/libxml2: bump PORTREVISION to force rebuild FreeBSD-ports-latest - for FreeBSD 15 - currently carries packages that have the libxml2-core package as a dependency (and the libxml2-core). Bump PORTREVISION to force the package builder to resynch onto ports where there is no libxml2-core package, to reduce confusion. (2026Q1 is unaffected, it did not have this change.)

sysutils/fluent-bit: Improve RC script and fix issues * Document 'fluent_bit_group' variable * Install PID file with mode 0600 instead of 0755 * Reuse ${name} * Pass '-t {name}' to daemon(8) * Remove self-created PID file PR: 292782 MFH: 2026Q1 Approved by: girgen (maintainer)

security/vuxml: Add firefox vulnerabilities * CVE-2026-24868 * CVE-2026-24869

dns/dnscontrol: Update to 4.32.0

www/forgejo: Update to 14.0.1 MFH: 2026Q1

www/forgejo-lts: Update to 11.0.10 MFH: 2026Q1

net-im/gotosocial: Update 0.20.2 => 0.20.3 Changelog: https://codeberg.org/superseriousbusiness/gotosocial/releases/tag/v0.20.3 PR: 292772 MFH: 2026Q1

www/deno: Update to 2.6.6 Obtained from: OpenBSD (Volker Schlecht)

ports-mgmt/pkg_replace: Update 20260127 => 20260128 Changelog: https://github.com/kdeguchi/pkg_replace/releases/tag/20260128 PR: 292777

www/chromium: update to 144.0.7559.109 Security: https://vuxml.freebsd.org/freebsd/409d70ab-fc23-11f0-85c5-a8a1599412c6.html

www/iridium: update to 2026.01.144.2

security/vuxml: add www/*chromium < 144.0.7559.109 Obtained from: https://chromereleases.googleblog.com/2026/01/stable-channel-update-for-desktop_27.html

www/tomcat-devel: Update 11.0.15 => 11.0.18 Changelog: https://tomcat.apache.org/tomcat-11.0-doc/changelog.html#Tomcat_11.0.18_(markt) MFH: 2026Q1

www/tomcat110: Update 11.0.15 => 11.0.18 Changelog: https://tomcat.apache.org/tomcat-11.0-doc/changelog.html#Tomcat_11.0.18_(markt) MFH: 2026Q1

www/tomcat101: Update 10.1.50 => 10.1.52 Changelog: https://tomcat.apache.org/tomcat-10.1-doc/changelog.html#Tomcat_10.1.52_(schultz) MFH: 2026Q1

www/surge: Add high-performance download manager Surge is a TUI/CLI download manager with parallel downloads, pause/resume, speed graphs, and browser extension support.

devel/glaze: update 6.5.0 → 7.0.2 Reported by: portscout

databases/surrealdb: update 2.4.0 → 2.6.0 Reported by: portscout

sysutils/mise: update 2026.1.7 → 2026.1.8 Reported by: portscout

science/tinker: update 26.1.1 → 26.1.2 Reported by: portscout

deskutils/skim: update 1.7.2 → 1.11.0 Reported by: portscout

math/py-cvxpy: Add comment

databases/tredis: Add terminal UI for Redis tredis is a TUI for managing Redis servers, supporting multiple connections, key browsing, all data types, and TLS.

math/secp256k1: update to 0.7.1 release. math/py-secp256k1: update to 0.14.0 release.

sysutils/rubygem-chef: update dependency Fixes regression from 9dd3e65452c90bb0ac5a005e19ea933b393c674e

devel/rubygem-omnibus: fix dependency This fixes regression from 9dd3e65452c90bb0ac5a005e19ea933b393c674e

sysutils/rubygem-ohai18: add version 18.2.8 Required for some gems.

devel/rubygem-ffi16: added version 1.16.3 The old version is required by some gems.

lang/rust: Bump revisions after 1.93.0 PR: 292360

lang/rust: Update to 1.93.0 While here, drop AR as it's deprecated since 2015 [1] Announce: https://blog.rust-lang.org/2026/01/22/Rust-1.93.0/ ChangeLog: https://github.com/rust-lang/rust/releases/tag/1.93.0 PR: 292713 Tested by: mikael, pkubaj Differential Revision: https://reviews.freebsd.org/D54619 [1]

net-im/snac: Update 2.84 => 2.89 Release Notes: https://codeberg.org/grunfink/snac2/src/tag/2.89/RELEASE_NOTES.md PR: 292765 Approved by: Matthew Phillips <matthew@matthewphillips.info> MFH: 2026Q1

devel/py-lxml: update to 6.0.2 Changelog: https://github.com/lxml/lxml/blob/lxml-6.0.2/CHANGES.txt PR: 292775

security/vuxml: add FreeBSD SA issued on 2026-01-27 FreeBSD-SA-26:02.jail affects 13.5R and 14.3R

security/vuxml: reference FreeBSD-SA-26:01.openssl Add a reference to FreeBSD-SA-26:01.openssl (issued 2026-01-27) to the vuxml entry for OpenSSL CVE-2025-11187, CVE-2025-15467, CVE-2025-15468, CVE-2025-15469, CVE-2025-66199, CVE-2025-68160, CVE-2025-69418, CVE-2025-69419, CVE-2025-69420, CVE-2025-69421, CVE-2026-22795 and CVE-2026-22796. FreeBSD-SA-26:01.openssl affects all supported versions of FreeBSD

databases/{,py-}duckdb: update 1.3.2 → 1.4.4

www/librewolf: Update 147.0.1-3 => 147.0.2-1 Release Notes: https://www.firefox.com/en-US/firefox/147.0.2/releasenotes/ PR: 292766 MFH: 2026Q1

lang/gleam: update to 1.14.0 Reported by: Todd Greenwood <toddg@zwrob.com> Sponsored by: SkunkWerks, GmbH

security/tailscale: Refactor rc.d script Refactor rc.d script so various rc.conf variables such as ${name}_nice and ${name}_oomprotect can be used PR: 292220 MFH: 2026Q1

security/tailscale: Update to 1.94.1 MFH: 2026Q1

audio/din: Update to 60 Changes since 59: DIN Is Noise 60: /* DIN60 is a binaural audio synthesizer which means you can hear binaural beats from the drones of the Microtonal-Keyboard or from the notes triggered when the balls of Mondrian hit a wall or ceiling or from the notes triggered by pressing keys on the Keyboard-Keyboard. Until DIN59, you could hear binaural beats only from the binaural drones of the Binaural Drones instrument. That instrument is still available but this is a new and dynamic way to hear binaural beats! some say binaural beats are best heard on headphones. on the Settings screen, turn DIN Is Binaural ON or OFF. if you turn ON, every new drone on the Microtonal-Keyboard is a binaural drone. select the drone to change its binaural state, justification and separation from Menu > Drone Params > Modulation every new ball in Mondrian triggers binaural notes when it hits a wall or celing. select a ball to change its binaural state, justification and separation from Menu > Ball Params every key press on the Keyboard-Keyboard triggers binaural notes. set params for these binaural notes from the Settings screen itself. default Separation between L and R channels is 4 hz. if you turn ON ~ DIN randomises the separation for each new drone or ball. if justification is Left, for a binaural drone or triggered binaural note at T hz: L will sound T hz, R will sound T + Separation Hz if justification is Right, R will sound T hz L will sound T - Separation Hz, if justification is Random, well... this separation in Hz is heard as beats. so for a separation of 4 hz, you hear 4 beats a second. *\ /* DIN60 intros a new way to make beats! a beat pattern envelops Voice or Noise, drones of the Microtonal Keyboard, triggered notes due key presses on the Keyboard-Keyboard, triggered notes due bouncing balls in Mondrian and the binaural drones of the Binaural Drones instrument. enveloping only some of these elements will be possible in the next release :( , sorry! turn ON by clicking Beater button at the bottom left of any instrument. no fader in this release :( , sorry! Press 5 to edit the beat pattern on the Beater editor or Menu > Editors > Beater on the Beater editor, use the Beat Divider plugin to subdivide the beat pattern to complicate the pattern. press SPACE to set end point of beat pattern. only available on Beater editor and via this keyboard short cut only :(, sorry! use BPM tools to change the BPM, reverse, scrub, loop or pong the beat pattern. BPM tools is also available on Voice FM/AM modulation editor. BPM modulation: press F4 to double the BPM. press F3 to halve the BPM. works on the Microtonal-Keyboard, the Beater editor and the Voice Modulation editor only. doubling or halving BPM keeps the groove like octave shifting keeps the melody. by default DIN uses 2 to multiply or divide the BPM. playing with BPM this way reminds us of shifting octaves with notes! so why not multiply the current BPM with other small whole number tuning ratios from key modulation to modulate to, that is, produce other BPMs? there is a 9x9 lattice of BPMs to choose from based on various whole number ratios from 1..9. for ratios other than 2/1, say you choose the pair 3/2, 4/3 from the ratios list and the current BPM is 120: an F4 press will multiply 3/2 to 120, to make current BPM 180, a BPM thats a "perfect fifth" above 120. an F4 press again will multiply 4/3 to the 180 to produce 240. this is 2 times 120! that is, its a BPM thats an "octave above" 120, or in other words, a doubling of the original BPM. an F3 now will divide 240 by 4/3 to give 180, a "perfect fourth" below 240. an F3 again will divide 180 by 3/2 to give 120! that is, we got back the original BPM which is a "perfect fifth" below 180 or an "octave below" 240, in other words, a halving of 240. this system combined with L, R delay line lengths (see below) in beats can create very interesting, emergent polyrhythms! and also create isochronous binaural beats via Settings > DIN Is Binaural :) *\ /* in DIN 60, you set the L, R delay line length in beats @ the current BPM of the Beater rather than in seconds. begin setting the values to small whole number beats. say L to 2 and R to 3 or 4,3 or 3,4 or 6,5 etc. DIN uses the current BPM of the Beater to calculate the length of the delay line in seconds. fractional beats are also welcome. set L to say 1.5 and R to say 1.333333 try setting the values at different BPMs of the beater! this combined with BPM tools (see above) can create very interesting, emergent polyrhythms! *\ /* new Levels panel on the Delay editor. use to change the level of the feedback and volume curves instead of manually picking and moving the curve by its vertices. move curves of both channels at once (feedback-both or volume-both) or one at a time (feedback-l, feedback-r, volume-l or volume-r) the slider lets you adjust the delay length of both L and R channels live. left end is 0% and right end is 100% of delay line length set on the Settings screen. experimental feature. may glitch depending on how fast you move the slider... :) *\ /* DIN60 intros the Polyrhythm plugin default: 6 8 in 8 click Apply (on the Beater editor) to create a composite beat pattern of 6 and 8 beats in 8 beats. *\ /* in Number plugin: /* Euclid *\ click on Euclid to space out bit pattern now apply to beat pattern to create euclidean rhythms! rotate the bit pattern using << and >> rotates the rhythm! *\ * faster .wav save in recorder! * improved tap bpm on curve editor: /* paste append on curve editor *\ /* insert after last vertex appends to curve *\ /* select vertices only *\ * hide drone center gnomon when there are no drones * improved oscilloscope display * better labeling * with distortion hinting /* auto resize resizes oscilloscope when window size changes *\ /* will not exit if recording *\ /* cross hair on the only selected drone *\ * improved Show anchors on Menu > Drone Params > Visuals * drew line from drone position to bottom of microtonal-keyboard now draws cross hairs to edge of screen /* opacity *\ adjust opacity of the drone anchor cross hair /* track phrase position while scrubbing Menu > Voice > Track default is off *\ /* record multiple mouse phrases on the phrasor: press f to record a phrase. move mouse. press f again to stop recording and start playing press f to record another phrase. din appends this phrase to existing phrase. press f again to stop recording and start playing from the start press g to clear all phrases *\ /* Gater is now called Beater in preparation for the new beat engine in DIN (still WIP as of 59) edit beat pattern in beat pattern editor press 5 from microtonal-keyboard or Menu > Editors > Beater new beat patterns in the library use 9 and 0 keys to go thru beat patterns in the beat pattern editor: press F3 to halve current BPM press F4 to double current BPM press F5 to shift key up an octave press F6 to shift key down an octave on the microtonal keyboard: press F3 to halve current BPM press F4 to double current BPM *\ in a curve editor: /* increase/decrease size of tangent of a curve click+pick a tangent of a curve and press f or Menu > Tools > Size tangent and just mouse up and down to size tangent *\ /* pin / unpin vertices & tangents of a curve in a curve editor choose Menu > Tools > Pin / Unpin and click+pick a vertex or tangent. ESC to stop. or click-pick a vertex or tangent and press p to pin/unpin. click to stop. why pin? pinned vertices and tangents dont rotate when curve rotates. pinned tangents dont move when their vertex moves try it on shapeforms! watch fft! *\ /* press ' to draw/hide snapping guides or Menu > Tools > Draw press g to draw/hide cursor or Menu > Tools > Draw cursor press u to restore view too on undo/redo or Menu > Tools > View too *\ /* press SHIFT when clicking into a text/value field to clear its contents *\ /* timestamps on log file at start and shutdown of program *\ * changes to default parameters in binaural drones instrument * start pitch is 128 Hz * justification is left * scale notes at C D G B when C = 128 hz (if A = 432 Hz) * default tuning is pythagoras for all instruments * tuning is global ie applies to all instruments * Menu > Tools > Fold tangents with Selection only ON, folds just the selected tangent and if you select a vertex folds both its tangents * improved delay lines * optimised handling of parameter spinners in UI * * boxes not filled by default in Mondrian :( mouse returns to last position on all screens :) :( bug asked user to select drones when no drones were selected and drone volume change was attempted :) :( fixed bug not saving inner, letter and word spacing curves on morse code module :) :( fixed fold tangents only folding tangents of the selected vertex then stopping, instead of offering to fold other tangents until canceled by user :)

www/py-flatnotes: New port: Self-hosted, database-less note taking web app Flatnotes is a self-hosted, database-less note-taking web app that utilises a flat folder of markdown files for storage. WWW: https://github.com/dullage/flatnotes/

lang/rust-nightly: update 1.95.0.20260118 → 1.95.0.20260126 Approved by: rust (implicit)

net-im/linux-discord: Update to 0.0.122

x11/xapp: update to 3.2.2 add new xapp-symbolic-icons as run dependency PR: 292764

mail/thunderbird: update to 147.0.1 (rc2) Release Notes: https://www.thunderbird.net/en-US/thunderbird/147.0.1/releasenotes/

mail/nextcloud-mail: Update to 5.6.9

www/nextcloud-contacts: Update to 8.3.1

security/openssl: Security update to 3.0.19 Security: 4b824428-fb93-11f0-b194-8447094a420f MFH: 2026Q1

security/fakeroot: Update to 1.37.2 Changelog: https://salsa.debian.org/clint/fakeroot/-/blob/debian/1.37.2-1/debian/changelog?ref_type=tags

net/asterisk22: Update 22.7.0 => 22.8.0 Changelog: https://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-22.8.0.html This update incorporates an important fix for FreeBSD users: - rtp/rtcp: Configure dual-stack behavior via IPV6_V6ONLY PR: 262386 292712 Approved by: Oleksandr Kryvulia <o.kryvulia@flex-it.com.ua> (maintainer) Sponsored by: PANS Jarosław MFH: 2026Q1

net/amneziawg-go: Update 0.2.12 => 0.2.16 Commit log: https://github.com/amnezia-vpn/amneziawg-go/compare/v0.2.12...v0.2.16 While here replace PORTVERSION with DISTVERSION. PR: 292743

security/netbird: Update 0.64.1 => 0.64.2 Changelog: https://github.com/netbirdio/netbird/releases/tag/v0.64.2 Commit log: https://github.com/netbirdio/netbird/compare/v0.64.1...v0.64.2 PR: 292762

science/packmol: Update to 21.2.1 ChangeLog: https://github.com/m3g/packmol/releases/tag/v21.2.1

security/uacme: Update to 1.8.0 ChangeLog: https://github.com/ndilieto/uacme/blob/master/ChangeLog

games/genact: Update to 1.5.1 ChangeLog: https://github.com/svenstaro/genact/releases/tag/v1.5.1

games/cdogs-sdl: Update to 2.4.0 ChangeLog: https://github.com/cxong/cdogs-sdl/releases/tag/2.4.0

graphics/oxipng: Update to 10.1.0 ChangeLog: https://github.com/oxipng/oxipng/releases/tag/v10.1.0

www/element-web: Update to 1.12.9 Approved by: maintainer (implicit, version bump, as per PR 258262)

mail/msmtp: fix the TLS option Part of commit 61d57c2657e1178dd763c8dd63503a9338525f47 was converting from *_CONFIGURE_ON to *_CONFIGURE_WITH for the TLS option. As it is a radio option, it means that one of the options will be always disabled, resulting in adding `--without-tls` to the CONFIGURE_ARGS, and no TLS support. Fix by switching back to CONFIGURE_ON and bump PORTREVISION to regenerate the package. Reported by: Scott Robbins

x11-themes/xapp-symbolic-icons: new requirement for xapp-related apps PR: 292763

emulators/open-vm-*: Update to 13.0.10 Sponsored by: Rubicon Communications, LLC ("Netgate")

sysutils/graffer: Update 1.1 => 1.5.1 News: http://chaosophia.net/graffer/#news Commit log: https://github.com/koue/graffer/compare/1.1...1.5.1 PR: 292730 Co-authored-by: Vladimir Druzenko <vvd@FreeBSD.org>

security/openssl36: Security update to 3.6.1 Security: 4b824428-fb93-11f0-b194-8447094a420f MFH: 2026Q1

mail/abook: Update WWW/MASTER_SITES address

security/openssl35: Security update to 3.5.5 Security: 4b824428-fb93-11f0-b194-8447094a420f MFH: 2026Q1