math/Imath: default-enable PYTHON Required for upcoming new port, Reported by: Martin Filla

net-mgmt/librenms: Update to 26.1.1 re: https://github.com/librenms/librenms/releases/tag/26.1.1

devel/gamin: Unbreak and improve port * Update MASTER_SITES and WWW * Rework port Makefile to follow porters handbook more closely Initial patch submitted by mew14930xvi PR: 292327 Reported by: Evgenii Khramtsov <2khramtsov@gmail.com>

devel/fam: Remove port Unfetchable, abandonware and unmaintained in tree for years Retire port as it has no consumers left in tree

treewide: Remove references to USES= fam and move to LIB_DEPENDS Only a handful of ports in tree uses this helper which used to make a switch between devel/fam and devel/gamin more convenient. With devel/fam going away there's no need to maintain this any further for a handful of ports. Approved by: blanket

treewide: Remove library dependencies of devel/fam Remove any references that uses _DEPENDS Approved by: blanket

security/zeek: security/zeek: Update to 8.0.5 https://github.com/zeek/zeek/releases/tag/v8.0.5 This release fixes the following bugs: - The to_subnet() built-in function's parsing of IPv6 subnets was changed to align with how IPv6 subnet literals are parsed in Zeek scripts. - Zeek now reports a better error message when a table constructor is called without square brackets around the keys. - ssl.log will now correctly report certificate fingerprints when a protocol error is encountered after certificates are passed, but before the connection is logged. - An unbounded growth issue was fixed with Zeek's internal regex engine, which caused excessive memory usage when constructing large numbers of patterns. - An attribute error related to metrics ports reported by zeekctl when using standalone mode was fixed. - Zeek now correctly handles blocks being used when defining Spicy units. - A potential crash around evaluating invalid expressions during Zeek initialization was fixed. - Zeek now properly accounts for originator and responder packets and byte counts when a connection flip happens on the second packet. Reported by: Tim Wojtulewicz

databases/py-dbt-core: chase update to py-pathspec Remove upper version limit on py-pathspec dependency now that py-pathspec has reached version 1.0.2 PR: 292268 Approved by: Pat Maddox (maintainer)

lang/rust-nightly: update 1.94.0.20251222 → 1.94.0.20260110 This update deliberately skips latest nighly-2026-01-11 which contains a regression which is supposed to be fixed by not yet merged https://github.com/rust-lang/rust/pull/150939 Approved by: rust (implicit)

www/librespeed: update to 5.5.1 Changes: https://github.com/librespeed/speedtest/releases/tag/v5.5.1

devel/nodeeditor: Update 3.0.11 => 3.0.12 Commit log: https://github.com/paceholder/nodeeditor/compare/3.0.11...3.0.12 PR: 289091 Co-authored-by: Vladimir Druzenko <vvd@FreeBSD.org>

www/newsboat: Update to 2.42 PR: 292269 Subbmitted by: Herbert J. Skuhra Approved by: maintainer

security/p5-openxpki-clca: Update 1.19 => 1.20 Commit log: https://github.com/openxpki/clca/compare/v1.19...v1.20 Optimize do-install and post-install-DOCS-on: - Merge INSTALL_SCRIPTs. - Remove unnecessary MKDIRs. PR: 292365

www/waterfox: Add ffmpeg8 support Also a new distinfo file because upstream silently replaced the distfiles. PR: 292413 MFH: 2025Q4

audio/noson: Update to version 2.12.11

www/freenginx-devel: third-party modules management (+) - update vts module to its recent snapshot Remove upstreamed patch. Sponsored by: tipi.work

mail/cone: Update to 1.18 ChangeLog: https://sourceforge.net/p/courier/courier.git/ci/master/tree/cone/ChangeLog

devel/R-cran-testthat: Update to 3.3.2 ChangeLog: https://cloud.r-project.org/web/packages/testthat/news/news.html

devel/R-cran-collapse: Update to 2.1.6 ChangeLog: https://cran.r-project.org/web/packages/collapse/news/news.html

www/gohugo: Update to 0.154.5 ChangeLog: https://github.com/gohugoio/hugo/releases/tag/v0.154.5 * Fix some default site redirect woes * hugolib: Fix newly created shortcodes not found during server rebuild * tpl/tplimpl: Remove trailing slash from void elements Approved by: doceng@ (implicit)

www/gohugo: Update to 0.154.4 * build(deps): bump github.com/goccy/go-yaml from 1.19.1 to 1.19.2 * tpl: Fix language resolution for markdown shortcodes * For multiple dimensions setups, fix alias handling and multihost publish path

net-im/telegram-desktop: update: 6.4.1 -> 6.4.2 ChangeLog: https://github.com/telegramdesktop/tdesktop/compare/v6.4.1...v6.4.2 Sponsored by: tipi.work

devel/air-go: Update to 1.64.0

emulators/wine-devel: Update 11.0-rc4 => 11.0-rc5 Changelog: - Bug fixes only, we are in code freeze. https://gitlab.winehq.org/wine/wine/-/releases/wine-11.0-rc5 PR: 292409

sysutils/mods: Only build on supported architectures PR: 292305 Reviewed by: fuz, jrm, vvd Sponsored by: The FreeBSD Foundation

graphics/jogl: pin to java 8 After removing source="1.4" from build.xml it still errors on classes that are removed from jdk11. gluegen/src/java/net/highteq/nativetaglet/NativeTaglet.java:3: error: package com.sun.tools.doclets does not exist PR: 292241 Approved-by: peterj@

games/freeciv: update to 3.2.2 release (+) Release notes: https://freeciv.fandom.com/wiki/NEWS-3.2.2

sysutils/k9s: Update 0.50.16 => 0.50.18 Changelogs: https://github.com/derailed/k9s/releases/tag/v0.50.17 https://github.com/derailed/k9s/releases/tag/v0.50.18 PR: 292382

x11-themes/adapta-backgrounds: Update to 0.5.3.1 - Pet port(clippy|fmt) Reported by: portscout!

devel/py-virtualenv: Update to 20.36.1 (security release) ChangeLog: https://github.com/pypa/virtualenv/releases/tag/20.36.1 Reported by: portscout! Security: CVE-2026-22702

security/vuxml: Add devel/py-virtualenv <= 20.36.0

devel/phorgeit-phorge: Update to 2025.51

devel/phorgeit-arcanist-lib: Update to 2025.51

devel/phabricator: Update to 20231113

devel/arcanist-lib: Update to 20230530

devel/ruby-build: Update to 20260110 Changes: https://github.com/rbenv/ruby-build/releases/tag/v20260110

java/openjdk19: Bootstrap port from prebuilt package Change the way the port is bootstrapped, by extracting a prebuild package to the work dir, instead of installing the previous openjdk version to the system. Reviewed by: bofh (mentor) Approved by: bofh (mentor) Sponsored by: The FreeBSD Foundation Differential Revision: https://reviews.freebsd.org/D54608

net-mgmt/librenms: Update to 26.1.0 re: https://github.com/librenms/librenms/releases/tag/26.1.0

misc/shimmy: Update to 1.9.0 While here, add VISION option for visual image/web analysis support. (ON by default) Changelog: https://github.com/Michael-A-Kuykendall/shimmy/blob/v1.9.0/CHANGELOG.md Reported by: GitHub (watch releases)

emulators/virtualbox-ose{,-legacy}: Limit python to 3.10-3.11 This is temporary workaround for build error: /usr/ports/emulators/virtualbox-ose/work/VirtualBox-6.1.50/src/libs/xpcom18a4/python/src/VariantUtils.cpp:197:7: error: use of undeclared identifier 'PyUnicode_GET_SIZE'; did you mean 'PyDict_GET_SIZE'? if (PyUnicode_GET_SIZE(val_use) == 0) { ^~~~~~~~~~~~~~~~~~ PyDict_GET_SIZE /usr/local/include/python3.12/cpython/dictobject.h:53:26: note: 'PyDict_GET_SIZE' declared here static inline Py_ssize_t PyDict_GET_SIZE(PyObject *op) { ^ /usr/ports/emulators/virtualbox-ose/work/VirtualBox-6.1.50/src/libs/xpcom18a4/python/src/VariantUtils.cpp:501:38: error: use of undeclared identifier 'PyUnicode_AS_UNICODE' FILL_SIMPLE_POINTER( PRUnichar, *PyUnicode_AS_UNICODE(val_use) ); ^ /usr/ports/emulators/virtualbox-ose/work/VirtualBox-6.1.50/src/libs/xpcom18a4/python/src/VariantUtils.cpp:829:8: error: use of undeclared identifier 'PyUnicode_GetSize' if (PyUnicode_GetSize(ob) == 0) { ^ Support for the python 3.12+ was added in the VirtualBox 7.0. Maybe I'll partially port this in older VirtualBox ports later. PR: 292189 285957

misc/codex: Update to 0.80.0 Changelog: https://github.com/openai/codex/releases/tag/rust-v0.80.0 Reported by: GitHub (watch releases)

devel/onetbb: Fix procfs-related failing tests 'make test' failed with the following errors: 17 - test_parallel_invoke (Subprocess aborted) 23 - test_task_group (Subprocess aborted) 29 - test_resumable_tasks (SEGFAULT) 63 - test_hw_concurrency (ILLEGAL) 66 - test_global_control (Subprocess aborted) 67 - test_task (SEGFAULT) 71 - test_arena_constraints (Subprocess aborted) 74 - test_tbb_header (Failed) 105 - conformance_resumable_tasks (SEGFAULT) 129 - test_malloc_regression (Subprocess aborted) 131 - test_malloc_compliance (Subprocess aborted) 132 - test_malloc_used_by_lib (Subprocess aborted) 133 - test_malloc_lib_unload (Subprocess aborted) 135 - test_malloc_whitebox (Subprocess aborted) Fix tests 17,23,71,129,132,133,135 by using kinfo_getproc(3) instead of /proc/self/status, whose format differs from Linux. The following tests are still failing: 29 - test_resumable_tasks (SEGFAULT) 63 - test_hw_concurrency (ILLEGAL) 66 - test_global_control (Subprocess aborted) 67 - test_task (SEGFAULT) 74 - test_tbb_header (Failed) 105 - conformance_resumable_tasks (SEGFAULT) 131 - test_malloc_compliance (Subprocess aborted) and will be investigated. PR: 292088 Reported by: diizzy

devel/R-cran-tibble: Update to 3.3.1 Reported by: portscout

audio/mac: fix build on big-endian /wrkdirs/usr/ports/audio/mac/work/mac-11.91/Source/MACLib/Prepare.cpp:35:5: error: use of undeclared identifier 'SwitchBufferBytes' 35 | SwitchBufferBytes(const_cast<unsigned char *>(pRawData), pWaveFormatEx->wBitsPerSample / 8, nTotalBlocks * pWaveFormatEx->nChannels); | ^ /wrkdirs/usr/ports/audio/mac/work/mac-11.91/Source/MACLib/Prepare.cpp:41:5: error: use of undeclared identifier 'SwitchBufferBytes' 41 | SwitchBufferBytes(const_cast<unsigned char *>(pRawData), pWaveFormatEx->wBitsPerSample / 8, nTotalBlocks * pWaveFormatEx->nChannels); | ^ /wrkdirs/usr/ports/audio/mac/work/mac-11.91/Source/MACLib/Prepare.cpp:980:5: error: use of undeclared identifier 'SwitchBufferBytes' 980 | SwitchBufferBytes(const_cast<unsigned char *>(pRawData), pWaveFormatEx->wBitsPerSample / 8, nBlocks * pWaveFormatEx->nChannels); | ^ /wrkdirs/usr/ports/audio/mac/work/mac-11.91/Source/MACLib/Prepare.cpp:987:5: error: use of undeclared identifier 'SwitchBufferBytes' 987 | SwitchBufferBytes(const_cast<unsigned char *>(pRawData), pWaveFormatEx->wBitsPerSample / 8, nBlocks * pWaveFormatEx->nChannels); | ^ 4 errors generated.

x11-wm/dwm: update to 6.7

print/scribus-devel: update to 1.7.2 Changelog: https://wiki.scribus.net/canvas/1.7.2_Release

sysutils/fastfetch: update to 2.57.0 Changelog: https://github.com/fastfetch-cli/fastfetch/releases/tag/2.57.0

cad/freecad-devel: fix pkg-plist without webengine pkg-static: Unable to access file /wrkdirs/usr/ports/cad/freecad-devel/work/stage/usr/local/FreeCAD/Mod/Web/Init.py:No such file or directory pkg-static: Unable to access file /wrkdirs/usr/ports/cad/freecad-devel/work/stage/usr/local/FreeCAD/lib/Web.so:No such file or directory

devel/sbt: update to 1.12.0 release

misc/{,py-}xgboost: update 2.1.4 → 3.1.3 Reported by: portscout

misc/cuttlefish: update 2.10.0 → 2.10.1 Reported by: portscout

devel/linenoise: update 1.0-34 → 2.0 Reported by: portscout

devel/py-uv-build: update 0.9.21 → 0.9.24 Reported by: portscout

devel/{,py-}uv: update 0.9.21 → 0.9.24 Reported by: portscout

math/{,py-}spot: update 2.14.3 → 2.14.5 Reported by: portscout

audio/neuralrack-lv2: update 0.2.0-2 → 0.3.0 Reported by: portscout

misc/llama-cpp: update 7617 → 7709 Reported by: portscout

devel/bacon: update 3.20.1 → 3.21.0 Reported by: portscout

graphics/resvg: update 0.45.1 → 0.46.0 Reported by: portscout

dns/mosdns: update 5.3.3 → 5.3.4 Reported by: portscout

misc/github-copilot-cli: update 0.0.373 → 0.0.377

net-p2p/qbittorrent: Add workaround for the crash in QT6 libraries PR: 291988

devel/py-logbook: update to 1.9.2 Changes: https://github.com/getlogbook/logbook/blob/1.9.2/CHANGES

astro/libnova: fix fetching, improve port * Pull sources from Gentoo repo because upstream stopped tarball releases after v0.15 * Clarify LICENSE * Patch to remove hardcoded AM_FLAGS * Patch to fix linking with libelp PR: 292368 Reported by: diizzy@ Approved by: db@, yuri@ (Mentors, implicit) MFH: 2025Q4

[NEW PORT] dns/register-dnsclient Dynamically register hostnames with a DNS server using GSS-TSIG Differential Revision: https://reviews.freebsd.org/D54447

lang/nll: Update 20250805a => 20260110a Changelog: - Added the 5x5font. - Added the basic color mode. - Added the integer math functions. - Much memory reduction measures. - Many modifications for micro:bit. - Some minimal corrections. https://kozos.jp/nlux/download.html - Improve port-install-* readability. - Merge INSTALL_DATA in post-install-EXAMPLES-on. PR: 292355

devel/pycharm: correct shebang line this fixes build in unclean environment. PR: 292356 Submitted by: rhurlin

security/nuclei: Update to 3.6.2 ChangeLog: https://github.com/projectdiscovery/nuclei/releases/tag/v3.6.2

devel/rust-analyzer: Update to 2026-01-05 ChangeLog: https://github.com/rust-lang/rust-analyzer/releases/tag/2026-01-05 Approved by: rust (mikael, implicit)

net/bsdec2-image-upload: Update to 1.4.10 This adds a --ssm-name-extra option which will be used in src shortly. Sponsored by: Amazon

www/firefox-esr: make legacy firefox compatible with current ffmpeg Import patch from upstream https://bugzilla.mozilla.org/show_bug.cgi?id=1962139 PR: 291974 Reported By: Yusuf Yaman

games/corsix-th: Update to 0.69.2

mail/mailpit: Update to 1.28.2 MFH: 2025Q4 Security: https://www.vuxml.org/freebsd/d822839e-ee4f-11f0-b53e-0897988a1c07.html

biology/sra-tools: Unbreak with extra JDK present Cmake find_package(Java) uses the latest version found, and plist varies depending on the version used. Set JAVE_HOME to limit cmake's search to the version specified in the port. This is the only way to control find_package() for Java versions.

net/py-bonsai: Update 1.5.3 => 1.5.4 Changelog: https://github.com/noirello/bonsai/blob/v1.5.4/CHANGELOG.rst Switch to pep. PR: 292302 Co-authored-by: Vladimir Druzenko <vvd@FreeBSD.org>

mail/mlmmj: update to 1.7.0

biology/sra-tools: pin to java 17 As soon as another JDK is installed it fails the build. This commit will make it possible to bump JAVA_DEFAULT to 21 while the maintainer looks for a solution to build this port with other JDK versions. PR: 292215

lang/asn1c: Update 0.9.27 => 0.9.28 Changelog: https://github.com/vlm/asn1c/releases/tag/v0.9.28 - Switch to tarball from upstream. - Add LICENSE. - Remove GNU_CONFIGURE_MANPREFIX - default value. - Sort USES. - Fix warnings from portclippy. PR: 291348 Approved by: vlm@lionet.info (maintainer, timeout > 1 month) Co-authored-by: Hadi <rezaee.hadi@gmail.com>

devel/jenkins: Update to 2.545 Sponsored by: The FreeBSD Foundation

sysutils/kubie: Update to 0.26.1 Removing support for PowerPC architecture. ChangeLog: https://github.com/sbstp/kubie/releases/tag/v0.26.1

net-p2p/sonarr: Update 4.0.15.2941 => 4.0.16.2944 Changelog: https://github.com/Sonarr/Sonarr/releases/tag/v4.0.16.2944 - Small optimization of the do-install. PR: 292330 Approved by: Michiel van Baak Jansen <michiel@vanbaak.eu> (maintainer)

devel/pyenv: Update to 2.6.18

net/netatalk4: Update to 4.4.0 See https://github.com/Netatalk/netatalk/releases/tag/netatalk-4-4-0 for a list of changes in this release.

security/vuxml: document libtasn1 vulnerability Security: CVE-2025-13151

sysutils/edk2: update to 2025008 Patch to update EDK2 OVMF firmware package used in bhyve and some ARM platforms from 2023 to 2025 stable release. New submodules added in GH_TUPLE, some script for build has been moved to a bash subshell. BHYVE notices: tiny boot speedup, a bug with crashing on CPU sensor wmsr from HWiNFO has stopped occurring, a bug with glibc apps crashing in Linux VMs has stopped occurring, a crash on memtest86+ with more than 1 vCPU has stopped occurring. No new bugs seem to have surfaced. PR: 285554 Tested by: novel MFH: 2025Q4

devel/sse2neon: update to 1.9.1 Changelog: https://github.com/DLTcollab/sse2neon/releases/tag/v1.9.1

textproc/htmldoc: update to 1.9.22 A bug fix release. Changelog: https://www.msweet.org/blog/2025-12-28-htmldoc-1.9.22.html MFH: 2025Q4

finance/ticker: update to 5.2.0 Changelog: https://github.com/achannarasappa/ticker/releases/tag/v5.2.0

benchmarks/libcpucycles: update to 20260105 Changelog: https://cpucycles.cr.yp.to/download.html

devel/gcli: update to 2.10.0 - test suite now Perl based Changelog: https://lists.sr.ht/~herrhotzenplotz/gcli-announce/%3Cnqhauoa5o54n2pib3ruoukonpayu47vh33cvuu4orrdi7qqwmf@n2wveaqb5vdu%3E?__goaway_challenge=meta-refresh&__goaway_id=930519bc434144ceda7b7d8e15def1be PR: 290348 Reported by: mandree

devel/go-critic: update to 0.14.3 Changelog: https://github.com/go-critic/go-critic/releases/tag/v0.14.3

multimedia/libtheora: fix build on armv7 - switch to gmake, which is needed for arm-specific pattern rules - depend on Perl, which is needed to run an assembly-mangling script - depend on GNU as, which is needed for pre-UAL style ARM menmonics - switch to gitlab tarball as the official tarball is missing some important files - turn static REINPLACE_CMD into patch files were possible - make sure "make check" actually runs test suite - add the usual elf_aux_info() polyfill - enable X86 assembly code (builds fine, passes test suite) MFH: 2025Q4 Approved by: mmel (multimedia) Reported by: mmel

shells/mksh: fix crash on 16-CURRENT Kernel now reports support for 126 signals, while the libc headers only report 32. This mismatch caused an out-of-bounds write initialising internal tables. Reported by: hackee <h4ckee@proton.me> PR: 292146 MFH: 2025Q4

graphics/openshadinglanguage: Fix build - add forgotten patch PR: 292316 292059

www/glassfish: Remove temporary file Committed by accident. Reported by: joneum

misc/py-huggingface-hub: Update to 1.3.1 Changelog: - https://github.com/huggingface/huggingface_hub/releases/tag/v1.3.0 - https://github.com/huggingface/huggingface_hub/releases/tag/v1.3.1 Reported by: portscout

devel/py-ty: Update to 0.0.11 Changelog: https://github.com/astral-sh/ty/blob/0.0.11/CHANGELOG.md Reported by: Repology

editors/vscode: Update to 1.108.0 While here, convert to use USES=electron and adjust Makefiles accordingly. Changelog: https://code.visualstudio.com/updates/v1_108 Reported by: GitHub (watch releases)

cad/abc: Update g20251226 => g20260104 Approved by: db@, yuri@ (Mentors, implicit)

security/libtasn1: update to 4.21.0