13:21 Ruslan Makhmatkhanov (rm) 

zope: Remove leaf zope ports that have no sense in absence of zope itself

    c46f669

16:31 Tijl Coosemans (tijl) 

security/mbedtls: Move to security/mbedtls2

The port has expired but isn't removed yet because there are still too
many consumers.  Rename it because the name "security/mbedtls" makes it
look like it's the default version.

PR:		283792

    5e762dc

12:19 Rene Ladan (rene) 

security/maia: Remove expired port

2024-12-31 security/maia: Depends on deprecated dependencies and doesn't work
with PHP 8.

    6075692

12:19 Rene Ladan (rene) 

security/py-first-server: Remove expired port

2024-12-31 security/py-first-server: Upstream project has been archived

    34dc2c1

12:10 Rene Ladan (rene) 

security/dirmngr: Remove expired port

2024-12-31 security/dirmngr: Obsolete, now maintained within GNU Privacy Guard
(GnuPG). Please use security/gnupg

    7d7b23a

11:50 Zsolt Udvari (uzsolt) 

security/hidden-lake: hooked to the build

Forget to add SUBDIR to security/Makefile
in commit c543b2f674564560584e66839f6493a79b02a9d9.

Reported by:    antoine

    e3d1381

11:29 Rene Ladan (rene) 

security/sssd: Remove expired port

2024-12-31 security/sssd: Not supported, please use deve/sssd2

    151bd93

11:25 Rene Ladan (rene) 

security/gnome-ssh-askpass: Remove expired port

2024-12-31 security/gnome-ssh-askpass: Uses deprecated gtk2 library

    11224c5d

16:22 Po-Chuan Hsieh (sunpoet) 

security/py-pysaml26: Remove obsoleted port

Use security/py-pysaml2 instead.

    ebdc77d

15:38 Po-Chuan Hsieh (sunpoet) 

security/py-wassima: Add py-wassima 1.1.6

Wassima offers you a great alternative to certifi. It is a simple yet efficient
wrapper around MIT licensed rustls-native-certs.

This project allows you to access your original operating system trust store,
thus helping you to verify the remote peer certificates.

It works as-is out-of-the-box for MacOS, Windows, and Linux. Automatically
fallback on Certifi otherwise. Available on PyPy and Python 3.7+

If your particular operating system is not supported, we will make this happen!
Open an issue on the repository.

For now, it is not supported to call your OS certificate verify native function.
Use your Python native capabilities for it.

    56fecd5

11:49 Matthias Fechner (mfechner) 

www/gitlab: further isolate port from rexml gem

    1908b78

19:14 Po-Chuan Hsieh (sunpoet) 

security/p5-CPANSA-DB: Add p5-CPANSA-DB 20241208.003

CPANSA::DB provides the CPAN Security Advisory data as a Perl data structure,
mostly for CPAN::Audit.

The db subroutine returns the CPAN Security Advisory (CPANSA) reports as a Perl
data structure. However, anything can use this.

Each release also comes with a .gpg file that has the signature for the file. If
you cannot confirm that the module file has the right signature, it might have
been corrupted or modified.

This module is available outside of CPAN as a release on GitHub:
https://github.com/briandfoy/cpan-security-advisory/releases. Each release on
GitHub includes an attestation.

There is also a JSON file that provides the same datastructure.

    65c406e

02:31 Joseph Mingrone (jrm) 

*/*-ccl: Add Clozure Common Lisp (CCL) fasl ports

Approved by:	olgeni (maintainer of lang/ccl, implicit)
Sponsored by:	The FreeBSD Foundation
Differential Revision:	https://reviews.freebsd.org/D48091

    148251b

02:31 Joseph Mingrone (jrm) 

*/*-clisp: Add CLISP fasl ports

Differential Revision:	https://reviews.freebsd.org/D48089
Sponsored by:	The FreeBSD Foundation

    7f68336

06:17 Matthias Fechner (mfechner) 

www/gitlab: new ports required for 17.7.0

    e8f263d

13:47 Nuno Teixeira (eduardo)  Author: Einar Bjarni Halldórsson

security/py-openssh-wrapper: New port: OpenSSH python wrapper

- Submitter becomes maintainer

Under some circumstances simple wrapper around OpenSSH ssh command-line
utility seems more preferable than paramiko machinery.

This project proposes yet another hopefully thin wrapper around ssh to
execute commands on remote servers. All you need thereis to make sure that
OpenSSH client and Python interpreter are installed, and then install
openssh-wrapper package.

WWW: https://github.com/NetAngels/openssh-wrapper

This port is a needed dependency to run tests on devel/py-proxmoxer

PR:		283381

    b01118e

08:03 Bernard Spil (brnrd) 

security/openssl-oqsprovider: Add new port

Quantum-safe algorithms provider for OpenSSL 3.x

    8f95f03

00:19 Dima Panov (fluffy) 

*/*: Update Rocky Linux 9 packages to 9.5 release (+)

While here, hook up missed packages to resolve all 'not found' libraries

Sponsored by:	Future Crew, LLC

    433660c

21:07 Rene Ladan (rene) 

security/tfsec: Remove expired port

2024-11-26 security/tfsec: tfsec now is party of security/trivy

    925fa88

13:15 Matthias Fechner (mfechner) 

www/gitlab: fix regression from 335fc7c38d61142727cb9f01fd9e401c476e4ad8

Gitlab requires net-http 0.4.1:
Because faraday >= 2, < 2.5 could not be found in locally installed gems
  and faraday >= 2.5, < 2.12.1 could not be found in locally installed gems,
  faraday >= 2, < 2.12.1 cannot be used.
And because faraday >= 2.12.1 depends on faraday-net_http >= 2.0, < 3.5,
  faraday >= 2 requires faraday-net_http >= 2.0, < 3.5.
Because faraday-net_http >= 3.4.0 depends on net-http >= 0.5.0
and faraday-net_http >= 2.0, < 3.4.0 could not be found in locally installed
gems,
  faraday-net_http >= 2.0 requires net-http >= 0.5.0.
Thus, faraday >= 2 requires net-http >= 0.5.0.
So, because Gemfile depends on faraday ~> 2
  and Gemfile depends on net-http = 0.4.1,
  version solving has failed.

While fixing the problem, moved gitlab used packages to own package names with a
PKGNAMESUFFIX of `-gitlab`.
This should make the gitlab package much more stable if updates in the ports are
done.

    edc8d03

21:43 Dima Panov (fluffy) 

security/linux-rl9-trousers: add new port (+)

Open-source TCG Software Stack

Sponsored by:	Future Crew, LLC

    84fcd2d

16:14 Jason E. Hale (jhale) 

security/*gpgme*: Update to 1.24.0

Remove security/gpgme-qt-headers. The Qt headers have been folded back
into security/gpgme-qt since they no longer conflict.

https://dev.gnupg.org/T7376

    ca49e20

08:23 Matthias Fechner (mfechner) 

security/rubygem-ssrf_filter10: make version 1.0.x available

Copied from rubygem-ssrf_filter

    1540df3

15:17 Robert Clausecker (fuz) 

filesystems: add new category for file systems and related utilities

The filesystems category houses file systems and file system utilities.
It is added mainly to turn the sysutils/fusefs-* pseudo-category into
a proper one, but is also useful for the sundry of other file systems
related ports found in the tree.

Ports that seem like they belong there are moved to the new category.
Two ports, sysutils/fusefs-funionfs and sysutils/fusefs-fusepak are
not moved as they currently don't fetch and don't have TIMESTAMP set
in their distinfo, but that is required to be able to push a rename
of the port by the pre-receive hook.

Approved by:	portmgr (rene)
Reviewed by:	mat
Pull Request:	https://github.com/freebsd/freebsd-ports/pull/302
PR:		281988

    6e2da96

16:50 Gleb Popov (arrowd) 

security/gcr: Update to 4.3.0

Move the previous version to security/gcr3 and switch consumer ports to it

PR:		282046
Approved by:	vishwin
Sponsored by:	Future Crew, LLC

    791bbaf

13:20 Po-Chuan Hsieh (sunpoet) 

security/rubygem-doorkeeper57-rails70: Add rubygem-doorkeeper57-rails70 5.7.1
(copied from rubygem-doorkeeper-rails70)

- Add PORTSCOUT

    0b8ec2a

19:58 Yuri Victorovich (yuri) 

security/palisade: Remove

    3768fc6

21:29 Craig Leres (leres) 

security/py-pysrp: New port: cryptographically strong authentication protocol

SRP is used for password-based, mutual authentication over an
insecure network connection.

    3b1dd9a

20:39 Rene Ladan (rene) 

security/rubygem-doorkeeper-rails61: Remove expired port

2024-10-24 security/rubygem-doorkeeper-rails61: Ruby on Rails 6.1.x reaches EOL
on 2024-10-01

    0546890

20:39 Rene Ladan (rene) 

security/rubygem-devise_pam_authenticatable2-rails61: Remove expired port

2024-10-24 security/rubygem-devise_pam_authenticatable2-rails61: Ruby on Rails
6.1.x reaches EOL on 2024-10-01

    dcac530

11:49 Li-Wen Hsu (lwhsu)  Author: Daniel Schaefer

security/fprint_demo: Remove, it's deprecated

See here: https://fprint.freedesktop.org/
> fprint_demo is obsolete. Most features are integrated into fprintd’s
> helpers, and libfprint has an examples section.

It also doesn't build with the latest libfprint anymore.

Co-authored-by:	Sheng-Yi Hung <aokblast@freebsd.org>
Signed-off-by:	Daniel Schaefer <dhs@frame.work>
PR:		280749
Sponsored by:	Framework Computer Inc
Sponsored by:	The FreeBSD Foundation
Pull Request:	https://github.com/freebsd/freebsd-ports/pull/291

    39089f9

11:49 Li-Wen Hsu (lwhsu)  Author: Daniel Schaefer

security/pam_fprint: Remove, it's deprecated

See here: https://fprint.freedesktop.org/
> pam_fprint is replaced by fprintd’s pam_fprintd module, which splits
> the PAM conversation from hardware access.

It also doesn't work with the latest libfprint anymore.

Co-authored-by:	Sheng-Yi Hung <aokblast@FreeBSD.org>
Signed-off-by:	Daniel Schaefer <dhs@frame.work>
PR:		280749
Sponsored by:	Framework Computer Inc
Sponsored by:	The FreeBSD Foundation
Pull Request:	https://github.com/freebsd/freebsd-ports/pull/291

    11a451f

09:17 Po-Chuan Hsieh (sunpoet) 

security/aws-lc: Add aws-lc 1.36.1

AWS-LC is a general-purpose cryptographic library maintained by the AWS
Cryptography team for AWS and their customers. It is based on code from the
Google BoringSSL project and the OpenSSL project.

AWS-LC contains portable C implementations of algorithms needed for TLS and
common applications. For performance critical algorithms, optimized assembly
versions are included for x86 and ARM.

    7116a2d

19:11 Emanuel Haupt (ehaupt) 

*/*: Rename clusterssh to p5-App-ClusterSSH and update to 4.17

* Renamed to match upstream naming on CPAN
* Update to 4.17
* Document move in MOVED

    6f059c2

07:54 Bernard Spil (brnrd) 

security/openssl34: Add new OpenSSL 3.4 port (BETA)

    6b1863a

12:32 Ruslan Makhmatkhanov (rm) 

security/py-zope.password: remove leaf zope port

This port has no consumers and has no use/value as a standalone package

    a073dee

06:27 Bernard Spil (brnrd) 

security/nextcloud-twofactor_nextcloud_notification: Remove port

 * Twofactor_nextcloud_notification is bundled with Nextcloud 30

Reported by:	John W. O'Brien

    323603f

06:29 Robert Clausecker (fuz)  Author: Jesús Daniel Colmenares Oviedo

security/py-passhole: New port: Secure hole for your passwords (KeePass CLI)

passhole is a commandline password manager for KeePass inspired by
pass.

Features:

* fill user/pass field in any application via keyboard shortcut
* add, delete, move, edit, rename entries and groups
* generate alphanumeric, symbolic, or correct horse battery staple style
  passwords
* temporarily cache database password (by default for 10 minutes)
* multiple databases
* supports KeePass v3 and v4 databases
* supports TOTP

WWW: https://pypi.org/project/passhole

PR:		277696
Event:		EuroBSDcon 2024

    6bbcc07

06:29 Robert Clausecker (fuz)  Author: Jesús Daniel Colmenares Oviedo

security/py-pykeepass: New port: Python library to interact with keepass
databases

pykeepass is a python library to interact with keepass databases
(supports KDBX3 and KDBX4). You can perform many tasks such as
finding entries, groups, manipulate entries, group entries,
attachments, and much more. All in a single Python library.

WWW: https://pypi.org/project/pykeepass

PR:		277695
Evenet:		EuroBSDcon 2024

    f05e534

06:29 Robert Clausecker (fuz)  Author: Jesús Daniel Colmenares Oviedo

security/py-pykeepass-cache: New port: Database caching for PyKeePass

pykeepass_cache is a support library for pykeepass. It is a drop-in
replacement for pykeepass.PyKeePass which caches databases in a
background process to make database access faster.

This is useful in situations where the program is terminated between
invocations (e.g. CLI scripts). The background process will
automatically shut down after 300 seconds.

WWW: https://pypi.org/project/pykeepass-cache

PR:		277694
Event:		EuroBSDcon 2024

    2613829

01:00 Vladimir Druzenko (vvd)  Author: jake

security/openbao: New port: open source, community-driven fork of Vault

OpenBao exists to provide a software solution to manage, store, and
distribute sensitive data including secrets, certificates, and keys.
The OpenBao community intends to provide this software under an
OSI-approved open-source license, led by a community run under open
governance principles.

https://openbao.org
https://github.com/openbao/openbao

PR:	280619

    a9cd810

06:13 Po-Chuan Hsieh (sunpoet) 

security/rubygem-brakeman: Add rubygem-brakeman 6.2.1

Brakeman is a static analysis tool which checks Ruby on Rails applications for
security vulnerabilities.

    c445907

05:37 Matthias Fechner (mfechner) 

security/rubygem-ruby-saml115: Remove expired port

security/rubygem-ruby-saml115

    0db09a7

20:09 Po-Chuan Hsieh (sunpoet) 

security/libaegis: Add libaegis 0.1.23

libaegis is a portable C implementations of the AEGIS family of high-performance
authenticated ciphers (AEGIS-128L, AEGIS-128X2, AEGIS-128X4, AEGIS-256,
AEGIS-256X2, AEGIS-256X4), with runtime CPU detection.

Features:
- AEGIS-128L with 16 and 32 bytes tags (software, AES-NI, ARM Crypto)
- AEGIS-128X2 with 16 and 32 bytes tags (software, VAES + AVX2, AES-NI, ARM
  Crypto)
- AEGIS-128X4 with 16 and 32 bytes tags (software, AVX512, VAES + AVX2, AES-NI,
  ARM Crypto)
- AEGIS-256 with 16 and 32 bytes tags (software, AES-NI, ARM Crypto)
- AEGIS-256X2 with 16 and 32 bytes tags (software, VAES + AVX2, AES-NI, ARM
  Crypto)
- AEGIS-256X4 with 16 and 32 bytes tags (software, AVX512, VAES + AVX2, AES-NI,
  ARM Crypto)
- All variants of AEGIS-MAC, supporting incremental updates.
- Encryption and decryption with attached and detached tags
- Incremental encryption and decryption.
- Unauthenticated encryption and decryption (not recommended - only implemented
  for specific protocols)
- Deterministic pseudorandom stream generation.

    9bcaea9

20:09 Po-Chuan Hsieh (sunpoet) 

security/libhydrogen: Add libhydrogen 0.0.0.g20240509

The Hydrogen library is a small, easy-to-use, hard-to-misuse cryptographic
library.

Features:
- Consistent high-level API, inspired by libsodium. Instead of low-level
  primitives, it exposes simple functions to solve common problems that
  cryptography can solve.
- 100% built using just two cryptographic building blocks: the Curve25519
  elliptic curve, and the Gimli permutation.
- Small and easy to audit. Implemented as one tiny file for every set of
  operation, and adding a single .c file to your project is all it takes to use
  libhydrogen in your project.
- The whole code is released under a single, very liberal license (ISC).
- Zero dynamic memory allocations and low stack requirements (median: 32 bytes,
  max: 128 bytes). This makes it usable in constrained environments such as
  microcontrollers.
- Portable: written in standard C99. Supports Linux, *BSD, MacOS, Windows, and
  the Arduino IDE out of the box.
- Can generate cryptographically-secure random numbers, even on Arduino boards.
- Attempts to mitigate the implications of accidental misuse, even on systems
  with an unreliable PRG and/or no clock.

    2177ea1

06:23 Matthias Fechner (mfechner) 

security/rubygem-rack-oauth21: Remove expired port

security/rubygem-rack-oauth21

    92dc7eb

12:33 Matthias Fechner (mfechner) 

security/rubygem-omniauth-multipassword2: new port required for
omniauth-kerberos 0.4.0

    298e483

16:42 Tijl Coosemans (tijl) 

security/mbedtls3: New port, version 3.6.0

PR:		270024

    01623d8

08:10 Nuno Teixeira (eduardo) 

security/qt-sudo: New port: Clone of LXQt sudo tool without LXQt libs

qt-sudo is a clone of LXQt sudo tool (without LXQt libs). It is the ONLY
privilege escalation tool supported by Baiacu, Octopi, OctoPkg, OctoPkgin,
OctoXBPS and QTGZManager applications.

WWW: https://github.com/aarnt/qt-sudo

    8086199

20:44 Gleb Popov (arrowd)  Author: Shapovalov Alexey

security/py-nethsm: Python client for NetHSM

Sponsored by:   Serenity Cybersecurity, LLC
Co-authored-by:	Gleb Popov <arrowd@FreeBSD.org>

    ff99431

13:15 Muhammad Moinur Rahman (bofh) 

*/*php84*: Sunrise

Please DO NOT use this version in production, it is an early test
version.

For upgrade notes please visit:
https://github.com/php/php-src/blob/php-8.4.0alpha1/UPGRADING

Changelog: https://github.com/php/php-src/blob/php-8.4.0alpha1/NEWS

    42db2c3

18:20 Vladimir Druzenko (vvd)  Author: gatekeeper

security/exploit-pattern: new port: Python Exploit Pattern Tool

Python implementation of Metasploit's pattern generator and search.
Should be python version agnostic, tested and working with Python
2.7.12 up to and including Python 3.11.1
Starts faster and rolls both tools into one.
No extra dependencies required, works with vanilla python
https://github.com/Svenito/exploit-pattern

PR:	280341

    2f3f70a

04:49 Matthias Fechner (mfechner) 

www/gitlab: new port required for version 17.2

    aa2456e

13:06 Cy Schubert (cy) 

security/wpa_supplicant210: Clone wpa_supplicant to wpa_supplicant210

We clone security/wpa_supplicant to security/wpa_supplicant210 in
preparation for the wpa_supplicant update to 2.11. In case anyone is
having issues with it they can fall back to security/wpa_supplicant210.

    810299b

01:45 Jason E. Hale (jhale) 

security/libtatsu: New port

Library handling the communication with Apple's Tatsu Signing Server
(TSS).

This library is part of the libimobiledevice project and its main
purpose is to create TSS request payloads, send them to Apple's TSS
server, and ultimately retrieve and process the response.

PR:		280014
Reported by:	<fabio.comolli@gmail.com>

    8a03fb6

17:55 Bernard Spil (brnrd) 

security/rustls-ffi: Add new port

 * Dependency for the experimental www/apache24 mod_tls module

    c0fdd50

15:40 Po-Chuan Hsieh (sunpoet) 

*/Makefile: Sort SUBDIRs

    0bd0aef

09:00 Koichiro Iwao (meta) 

security/Makefile: fix portname

    99bdff3

08:40 Koichiro Iwao (meta)  Author: Ricardo Branco

security/py-mkpasswd: Add new port

PR:		279465

    cee3cb9

21:16 Rene Ladan (rene) 

security/bcrypt: Remove expired port

2024-07-02 security/bcrypt: Hasn't seen updates in 15 years, insecure Blowfish
ECB mode, unauthenticated encryption

    0bb3837

13:12 Rene Ladan (rene) 

security/p5-Protocol-ACME: Remove expired port

2024-06-30 security/p5-Protocol-ACME: upstream maintainer indicated that it is
no longer suitable for use

    08c969b

11:30 Rene Ladan (rene) 

security/sks: Remove expired port

2024-06-30 security/sks: Depends on deprecated port databases/db5

    df9b08e

07:45 Baptiste Daroussin (bapt) 

ICQ: farewell!

Remove programs that are related to ICQ which closed in 2024-06-24

    9a43425

18:29 Vladimir Druzenko (vvd)  Author: Cathal O'Grady

security/opendoas: new port: portable version of OpenBSD's doas

This is not an official port/project from OpenBSD!
OpenBSD doas does not support persist option for non OpenBSD systems,
OpenDoas originally made for Linux and MacOS does support this.
This port includes a patch for the OpenDoas to supports persist on FreeBSD.
This commit adds the OpenDoas as an alternative to sudo that supports persist.

PR:		279598
Approved by:	Cathal O'Grady <fierceinbattle@gmail.com> (maintainer)

    2820df6

17:16 Guido Falsi (madpilot)  Author: Benjamin Jacobs

ocaml: Updates to ocaml compiler and several ocaml ports

- Update devel/ocaml to 4.14.2 [1]
- Specify runtime dependency on GNU AS as full path, this fixes
  build on armv6 - armv7 [1] [2]
- converters/ocaml-base64: Update to 3.5.1, add LICENSE, other
  improvements
- converters/ocaml-jsonm: Strip shared objects [3]
- databases/ocaml-dbm: Update to 1.3, move to gitlub, other
  improvements
- devel/menhir: Update to 20231231
- devel/ocaml-base: Unbreak non-x86 [2]
- devel/ocaml-camlp-streams: Silence patch and strip commands
- devel/ocaml-ipaddr: Update to 5.5.0
- devel/ocaml-lwt: Update to 5.7.0 [4]
- devel/ocaml-result: Set package version, strip shared objects [5]
- devel/ocaml-sexplib: Resurrect and update to 0.16.0.
- devel/ocaml-stdio: Update to 0.17.0
- security/ocaml-cryptokit: Update to 1.19, add LICENSE, other
  improvements
- security/ocaml-ssl: Update to 0.7.0, install stublibs in package
  directory [6]
- x11-toolkits/ocaml-graphics: Reorder Makefile, silence patch
  command
- Bump PORTREVISION on ports requiring it after update.

Adding ports:

- devel/ocaml-cstruct
- devel/ocaml-compiler-libs [7]
- devel/ocaml-ppx_derivers [7]
- devel/ocaml-ppxlib [7]
- devel/ocaml-domain-name
- devel/ocaml-ocplib-endian [8]
- devel/ocaml-parsexp
- devel/ocaml-ppx_sexp_conv
- security/ocaml-lwt_ssl [9]

Resetting maintainership from michipili@gmail.com due to multiple
timeouts and long term unresponsiveness.

Assigning maintainership of lang/ocaml to author of this patch.
Many thanks to him for his work!

PR:			278300 [1], 278791 [2], 277818 [3], 277781 [4],
			277775 [6], 277779 [7], 277780 [8], 277782 [9]
Approved by:		michipili@gmail.com (maintainer timeout) [1],
			danfe@FreeBSD.org (maintainer timeout) [3] [4] [6],
			fixit, avoid breakage [5]
Differential Revision:	https://reviews.freebsd.org/D45254

    bb2bea6

02:07 Yuri Victorovich (yuri) 

security/flawz: New port: Terminal UI for browsing security vulnerabilities
(CVEs)

    67774a5

13:20 Gleb Popov (arrowd)  Author: Alexey Donskov

security/linux-rl9-libsecret: add new port

Sponsored by:   Serenity Cybersecurity, LLC

    b0458f0

06:21 Po-Chuan Hsieh (sunpoet) 

security/rubygem-cancancan: Add rubygem-cancancan 3.5.0

CanCanCan is an authorization library for Ruby and Ruby on Rails which restricts
what resources a given user is allowed to access.

All permissions can be defined in one or multiple ability files and not
duplicated across controllers, views, and database queries, keeping your
permissions logic in one place for easy maintenance and testing.

It consists of two main parts:
- Authorizations library that allows you to define the rules to access different
  objects, and provides helpers to check for those permissions.
- Rails helpers to simplify the code in Rails Controllers by performing the
  loading and checking of permissions of models automatically and reduce
  duplicated code.

    7f7a854

06:21 Po-Chuan Hsieh (sunpoet) 

security/rubygem-pwned: Add rubygem-pwned 2.4.1

Pwned provides an easy, Ruby way to use the Pwned Passwords API.

    06ec163

10:01 Gleb Popov (arrowd)  Author: Dima Panov

Linuxulator ports: Update Rocky Linux to 9.3 and add more packages

Sponsored by:	Serenity Cybersecurity, LLC

Co-authored-by:	awoonya <mzhyneva@gmail.com>

    82dfb2f

10:01 Gleb Popov (arrowd)  Author: Dima Panov

Linuxulator ports: Add gnupg and libassuan from Rocky Linux

Sponsored by:	Serenity Cybersecurity, LLC

    35aca95

10:01 Gleb Popov (arrowd)  Author: Dima Panov

Linuxulator ports: More Rocky Linux 9 packages

Co-authored-by:	Gleb Popov <arrowd@FreeBSD.org>

Sponsored by:	Serenity Cybersecurity, LLC

    bcd8439

10:01 Gleb Popov (arrowd) 

Linuxulator ports: Introduce Rocky Linux 9.

Sponsored by:	Serenity Cybersecurity, LLC
Co-authored-by:	Dima Panov <fluffy@FreeBSD.org>

    5aa75e1

19:56 Rene Ladan (rene) 

security/krb5-119: Remove expired port

2024-04-15 security/krb5-119: Desupported by MIT following 1.21

    4c14a7fa

10:49 Rene Ladan (rene) 

security/sancp: Remove expired port

2024-04-13 security/sancp: Upstream unmaintained and last release in 2007

    ccbe131

02:31 Jason E. Hale (jhale) 

security/pinentry: Update to 1.3.0

Add security/pinentry-qt6 for the new Qt 6 pinentry frontend.

Make a more generic pkg-message for pinentry frontends that have a
dependency loop with the main port. Previously, only the gnome frontend
had this problem, but a dependency loop was also discovered in the efl
frontend.

https://dev.gnupg.org/T7046

    a17ad22

11:56 Rene Ladan (rene) 

security/akmos: Remove expired port

2024-03-31 security/akmos: Last release in 2018, no active development for years
and no users in tree

    2c28bae

11:40 Rene Ladan (rene) 

security/py-nassl: Remove expired port

2024-03-31 security/py-nassl: It does not support OpenSSL 3.0+

    040ab4c

11:38 Rene Ladan (rene) 

security/py-sslyze: Remove expired port

2024-03-31 security/py-sslyze: It does not support OpenSSL 3.0+

    08e63e0

07:40 Yuri Victorovich (yuri) 

devel/libmacaroons: New port: Flexible authorization credentials library

    d5988cb

20:49 Po-Chuan Hsieh (sunpoet) 

security/rubygem-net-sftp2: Remove obsoleted port

Use security/rubygem-net-sftp instead.

    f6a7cd7

20:49 Po-Chuan Hsieh (sunpoet) 

security/py-pysaml24: Remove obsoleted port

Use security/py-pysaml2 instead.

    c6f6ced

20:53 Cy Schubert (cy) 

security/nmap-devel: New port

Introduce nmap development port. The development branch includes
prerequisite updates including the pcre2 replacement of pcre.
This port tracks the nmap/nmap github repo.

    c89426b1

11:02 Philippe Audeoud (jadawin) 

security/py-pnu-certwatch: new port

The certwatch utility monitors X509 certificates expiration dates by
processing one or more data files containing lists of hostnames with
optional port numbers.

It's mainly used to check the expiration date of HTTPS certificates
(which is the default target when the port number is not indicated),
but the tool is protocol-agnostic and can "talk" to any SNI-aware
(Server Name Information) SSL/TLS server (smtps, imaps, ldaps, etc.)
without making too much assumptions on the correctness of servers
certificates.

The certificates can be saved to a specified directory for further
analysis with other tools (such as OpenSSL).

The tool's results are presented as text tables.

The main one is the list of certificates successfully fetched, ordered
by expiration date. This list can be filtered to only show
certificates expired or expiring within the specified number of days.

The second table is the sorted list of hostnames / hostports where
certificates couldn't be fetched, with our best attempts to identify
the reason why.

Two additional tables can be generated in order to print the common
names and alternate names unmentioned in your input data files.

Finally, for user convenience, all these reports can be generated in a
single multi-tabs Excel workbook.

PR:	277970
Approved by:	maintainer, bapt (mentor)

    4ede5b6

18:23 Muhammad Moinur Rahman (bofh) 

security/rubygem-metasploit-aggregator: Remove expired port

security/rubygem-metasploit-aggregator

    99a982e

11:28 Tijl Coosemans (tijl) 

security/beidconnect: New port, version 2.10

BeIDConnect is a browser extension to sign documents with a Belgian eID
card.

    909c172

14:24 Yuri Victorovich (yuri) 

security/ratify: New port: Tool to sign files and directories

    2f19318

14:05 Bernard Spil (brnrd) 

security/openssl33: Add OpenSSL 3.3 port

 * This is in alpha stage, do not use for production

    c2af764

11:06 Nuno Teixeira (eduardo)  Author: Hubert Tournier

security/py-pnu-vuxml: New port: FreeBSD VuXML library and query tool

- Submitter becomes maintainer

pnu-vuxml is both a Python command-line tool and a library that can be
used to query or process the FreeBSD VuXML "database" of vulnerable
ports, making it much more user-friendly and useful.

(Dependency of upcomming Port Tree Linter port)

PR:		277766

    18be097

13:32 Gabriel M. Dutra (dutra)  Author: Jesús Daniel Colmenares Oviedo

security/enc: Add new port

Enc is a CLI tool for encryption. A modern and friendly alternative
to GnuPG

PR:		277637
Approved by:	garga (mentor)
Differential Revision:	https://reviews.freebsd.org/D44336

    cb123ca

00:57 Yasuhiro Kimura (yasu) 

security/pecl-xxtea: Add new port

Add security/pecl-xxtea, XXTEA encryption algorithm extension for PHP.

MFH:		2024Q1

    de40af5

14:05 Po-Chuan Hsieh (sunpoet) 

security/py-joserfc: Add py-joserfc 0.9.0

joserfc is a Python library that provides a comprehensive implementation of
several essential JSON Object Signing and Encryption (JOSE) standards.

    f3a060f

14:05 Po-Chuan Hsieh (sunpoet) 

*/Makefile: Sort SUBDIRs

    52badc3

05:36 Matthias Fechner (mfechner) 

ecurity/trivy: add a new security scanner

Find vulnerabilities, misconfigurations, secrets, SBOM in containers,
Kubernetes,
code repositories, clouds and more

    f08836e

16:45 Rene Ladan (rene) 

security/py-pyblake2: Remove expired port

2024-03-03 security/py-pyblake2: Reached it's End Of Life. Integrated into
Python Standard Library

    b9c8009

12:52 Muhammad Moinur Rahman (bofh) 

security/poly1305aes: Remove expired port

security/poly1305aes

    93f7319

12:52 Muhammad Moinur Rahman (bofh) 

security/pbc: Remove expired port

security/pbc

    99331df

12:52 Muhammad Moinur Rahman (bofh) 

security/fl0p: Remove expired port

security/fl0p

    8c0fa63

12:52 Muhammad Moinur Rahman (bofh) 

security/libzrtpcppcore: Remove expired port

security/libzrtpcppcore

    10d3ad2

12:52 Muhammad Moinur Rahman (bofh) 

security/fcheck: Remove expired port

security/fcheck

    1d2b262