HardenedBSD/ports fab1504lang/crystal pkg-plist, misc/gemini-cli pkg-plist

by HardenedBSD Sync Services on ⎇
Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+859-1,296misc/gemini-cli/pkg-plist
+0-750lang/crystal/pkg-plist
+140-592misc/gemini-cli/files/package-lock.json
+51-0x11/xfce4-terminal/files/patch-revert-mmb-handling
+41-0misc/py-comfy-kitchen/Makefile
+32-0security/vuxml/vuln/2026.xml
+1,123-2,63852 files not shown
+1,271-2,75058 files

HardenedBSD/ports 192d6f6sysutils/slurm-wlm distinfo Makefile

by GenericRikka via Thierry Thomas (thierry) on ⎇
sysutils/slurm-wlm: update to version 25.11.4

PR:             293776
Reported by:    Generic Rikka
DeltaFile
+3-3sysutils/slurm-wlm/distinfo
+1-1sysutils/slurm-wlm/Makefile
+4-42 files

HardenedBSD/ports bb1b2bcjava/javacpp Makefile

by Gleb Popov (arrowd) on ⎇
java/javacpp: Unpin JAVA_VERSION

Reported by:    ronald
Approved by:    Markus Graf <markus.graf at markusgraf.net> (maintainer, via email)
DeltaFile
+0-2java/javacpp/Makefile
+0-21 files

HardenedBSD/src ba4298bshare/man/man9 ecn.9 Makefile

by Pouria Mousavizadeh Tehrani (pouria) on ⎇
ecn.9: Add ecn(9) manual

Add ecn manual for ip_ecn tunneling functions.

Reviewed by: pauamma_gundo.com, tuexen
Differential Revision: https://reviews.freebsd.org/D53517
DeltaFile
+184-0share/man/man9/ecn.9
+5-0share/man/man9/Makefile
+189-02 files

HardenedBSD/src 32a462bsys/netinet ip_ecn.c ip_ecn.h, sys/netinet6 ip6_ecn.h

by Pouria Mousavizadeh Tehrani (pouria) on ⎇
ecn(9): Update ecn tunneling functions to RFC 6040

Update ECN tunneling functions from obsolete RFC 3168 to
newer RFC 6040.
Also, add ECN_COMPLETE to support dangerous packet reporting
without causing extra costs to existing caller functions.
Finally, return values are specified as macro to reduce
confusion, considering extra return values for ECN_WARN
and ECN_ALARM were added.

Reviewed By: glebius, tuexen
Differential Revision: https://reviews.freebsd.org/D53516
DeltaFile
+98-55sys/netinet/ip_ecn.c
+10-7sys/netinet/ip_ecn.h
+0-5sys/netinet6/ip6_ecn.h
+108-673 files

HardenedBSD/ports b775997databases/mongodb-tools distinfo Makefile

by Ronald Klop (ronald) on ⎇
databases/mongodb-tools: 100.15.0

Changelog:
https://github.com/mongodb/mongo-tools/blob/master/CHANGELOG.md#100150
DeltaFile
+3-3databases/mongodb-tools/distinfo
+1-2databases/mongodb-tools/Makefile
+4-52 files

HardenedBSD/ports e3c3616devel/apache-commons-configuration Makefile

by Ronald Klop (ronald) on ⎇
devel/apache-commons-configuration: escape comment char in url

no functional change intended

Approved-by:    no maintainer
Fixes:  aa90efeb409a63622cd04109e6b35772f7a01353 (deprecate)
DeltaFile
+1-1devel/apache-commons-configuration/Makefile
+1-11 files

HardenedBSD/ports affa620databases/mongodb70 distinfo Makefile

by Ronald Klop (ronald) on ⎇
databases/mongodb70: 7.0.31

Announcement:
https://www.mongodb.com/community/forums/t/mongodb-7-0-31-is-released/337038?u=r_k

Release Notes:
https://www.mongodb.com/docs/manual/release-notes/7.0/#7.0.31---mar-17--2026

Security:       CVE-2026-4147 Stack memory disclosure in filemd5 command
Security:       CVE-2026-4148 ExpressionContext use-after-free in classic engine $lookup and $graphLookup aggregation operators
DeltaFile
+3-3databases/mongodb70/distinfo
+1-1databases/mongodb70/Makefile
+4-42 files

HardenedBSD/ports a6b72d9lang/crystal pkg-plist Makefile

by Dave Cottlehuber (dch) on ⎇
lang/crystal: pet port

- apply portclippy & portfmt
- remove duplicate PORTDOCS in pkg-plist

Reported by:    fluffy
Sponsored by:   SkunkWerks, GmbH

Fixes:  4ccbdcb5dd4a3807cfce5f7ca54b1cf18decbe21
DeltaFile
+0-750lang/crystal/pkg-plist
+3-4lang/crystal/Makefile
+3-7542 files

HardenedBSD/ports 51de3b9mail/py-resend distinfo Makefile

by Hiroki Tagato (tagattie) on ⎇
mail/py-resend: Update to 2.25.0

Changelog:
- https://github.com/resend/resend-python/releases/tag/v2.24.0
- https://github.com/resend/resend-python/releases/tag/v2.25.0

Reported by:    portscout
DeltaFile
+3-3mail/py-resend/distinfo
+1-1mail/py-resend/Makefile
+4-42 files

HardenedBSD/ports 92f684fdevel/libgsf distinfo Makefile

by Olivier Duchateau via Gleb Popov (arrowd) on ⎇
devel/libgsf: update to 1.14.56

PR:             293884
DeltaFile
+3-3devel/libgsf/distinfo
+1-1devel/libgsf/Makefile
+1-0devel/libgsf/pkg-plist
+5-43 files

HardenedBSD/ports 2be50b2databases/py-redisvl distinfo Makefile

by Hiroki Tagato (tagattie) on ⎇
databases/py-redisvl: Update to 0.16.0

Changelog: https://github.com/redis/redis-vl-python/releases/tag/v0.16.0

Reported by:    portscout
DeltaFile
+3-5databases/py-redisvl/distinfo
+1-5databases/py-redisvl/Makefile
+4-102 files

HardenedBSD/ports c817f73x11/xfce4-terminal Makefile, x11/xfce4-terminal/files patch-revert-mmb-handling

by Guido Falsi (madpilot) on ⎇
x11/xfce4-terminal: Fix unsafe paste confirmation dialog functionality

Reverting upstream change that causes the unsafe paste confirmation
dialog to not show up when pasting multi line selection with the
middle mouse button.

Issue reported upstream here: https://gitlab.xfce.org/apps/xfce4-terminal/-/issues/385

Reported by:    Marek Zarychta (via irc, nick mzar)
DeltaFile
+51-0x11/xfce4-terminal/files/patch-revert-mmb-handling
+1-0x11/xfce4-terminal/Makefile
+52-02 files

HardenedBSD/ports 202fbacdevel/wasi-libcxx Makefile, devel/wasi-libcxx17 pkg-plist

by Charlie Li (vishwin) on ⎇
devel/wasi-libcxx: cosmetic changes to prepare for devel/wasi-libc update

Use ${TRIPLE} more:
- reference <stdlib.h> from ${WASI_SYSROOT} for the devel/wasi-libc line
- add PLIST_SUB
DeltaFile
+4-4devel/wasi-libcxx19/pkg-plist
+4-4devel/wasi-libcxx20/pkg-plist
+4-4devel/wasi-libcxx21/pkg-plist
+3-3devel/wasi-libcxx17/pkg-plist
+3-3devel/wasi-libcxx18/pkg-plist
+2-1devel/wasi-libcxx/Makefile
+20-196 files

HardenedBSD/ports db3fb95x11-wm/xfce4-panel-profiles Makefile, x11-wm/xfce4-panel-profiles/files patch-Makefile.in.in patch-meson.build

by Guido Falsi (madpilot) on ⎇
x11-wm/xfce4-panel-profiles: Fix python executable path, add missing dependency

- Fix python executable path, avoiding to embed WORKDIR path in command
- Add RUN_DEPENDS on required python library

While here:

- Remove unneded patch, port now uses meson to build, so patching
  the Makefile is not needed

PR:             293751
DeltaFile
+0-21x11-wm/xfce4-panel-profiles/files/patch-Makefile.in.in
+19-0x11-wm/xfce4-panel-profiles/files/patch-meson.build
+5-1x11-wm/xfce4-panel-profiles/Makefile
+24-223 files

HardenedBSD/ports fc7634dx11-toolkits/granite7 distinfo Makefile

by Olivier Duchateau via Gleb Popov (arrowd) on ⎇
x11-toolkits/granite7: update to 7.8.1

PR:             293908
DeltaFile
+3-3x11-toolkits/granite7/distinfo
+3-1x11-toolkits/granite7/Makefile
+6-42 files

HardenedBSD/ports 3558ab0x11/xpra-html5 distinfo Makefile

by Gleb Popov (arrowd) on ⎇
x11/xpra-html5: Update to 20

Reported by:    portscout!
DeltaFile
+3-3x11/xpra-html5/distinfo
+1-1x11/xpra-html5/Makefile
+4-42 files

HardenedBSD/ports cb0855dwww/nextcloud-notes distinfo Makefile

by Bernard Spil (brnrd) on ⎇
www/nextcloud-notes: Update to 4.13.1
DeltaFile
+3-3www/nextcloud-notes/distinfo
+1-1www/nextcloud-notes/Makefile
+4-42 files

HardenedBSD/ports adef1eesecurity/vuxml/vuln 2026.xml

by Bernard Spil (brnrd) on ⎇
security/vuxml: Document Roundcube vulnerabilities
DeltaFile
+32-0security/vuxml/vuln/2026.xml
+32-01 files

HardenedBSD/ports 96f5d3dwww/redmine60 distinfo Makefile, www/redmine60/files patch-Gemfile

by Xin LI (delphij) on ⎇
www/redmine60: upgrade to 6.0.9
DeltaFile
+3-3www/redmine60/distinfo
+2-2www/redmine60/files/patch-Gemfile
+1-2www/redmine60/Makefile
+1-0www/redmine60/pkg-plist
+7-74 files

HardenedBSD/ports d80a1a3misc Makefile, misc/py-comfy-kitchen Makefile pkg-descr

by Yuri Victorovich (yuri) on ⎇
misc/py-comfy-kitchen: New port: ComfyUI: Fast kernel library for Diffusion inference
DeltaFile
+41-0misc/py-comfy-kitchen/Makefile
+17-0misc/py-comfy-kitchen/pkg-descr
+11-0misc/py-comfy-kitchen/files/patch-setup.py
+3-0misc/py-comfy-kitchen/distinfo
+1-0misc/Makefile
+73-05 files

HardenedBSD/ports 227291bmisc/gemini-cli pkg-plist distinfo, misc/gemini-cli/files package-lock.json

by Yuri Victorovich (yuri) on ⎇
misc/gemini-cli: update 0.32.1 → 0.34.0
DeltaFile
+859-1,296misc/gemini-cli/pkg-plist
+140-592misc/gemini-cli/files/package-lock.json
+3-3misc/gemini-cli/distinfo
+1-1misc/gemini-cli/Makefile
+1,003-1,8924 files

HardenedBSD/ports ac1c118devel Makefile

by Charlie Li (vishwin) on ⎇
devel/wasi-compiler-rt22: hook to build

PR: 293101
DeltaFile
+1-0devel/Makefile
+1-01 files

HardenedBSD/ports 1184bdadevel/wasi-compiler-rt22 Makefile

by Charlie Li (vishwin) on ⎇
devel/wasi-compiler-rt22: add

PR: 293101
DeltaFile
+6-0devel/wasi-compiler-rt22/Makefile
+6-01 files

HardenedBSD/ports ff4ea14devel/wasi-compiler-rt Makefile

by Charlie Li (vishwin) on ⎇
devel/wasi-compiler-rt: drop devel/wasi-libc BUILD_DEPENDS

std{arg,def}.h are shipped in the LLVM ports and the build references
them there rather than the mechanical copies in devel/wasi-libc.
Also needed to reverse the dependency order for newer devel/wasi-libc.
DeltaFile
+0-1devel/wasi-compiler-rt/Makefile
+0-11 files

HardenedBSD/ports 47ce16cnet/openldap26-server Makefile, net/openldap26-server/files slapd.in

by yds via Xin LI (delphij) on ⎇
net/openldap26-server: consolidate creation of state directories.

Fix NSLCD_VARDIR when NSSOV is disabled.

PR:             ports/293531
DeltaFile
+2-5net/openldap26-server/files/slapd.in
+3-2net/openldap26-server/Makefile
+5-72 files

HardenedBSD/src a55f9d6sys/dev/cxgbe/common t4_hw.c, sys/netinet in_var.h

by HardenedBSD Sync Services on ⎇
Merge remote-tracking branch 'origin/hardened/current/master' into hardened/current/cross-dso-cfi
DeltaFile
+2-500usr.sbin/ifmcstat/ifmcstat.c
+219-0tests/sys/netinet/raw.c
+1-44usr.sbin/ifmcstat/ifmcstat.8
+15-4sys/dev/cxgbe/common/t4_hw.c
+1-4sys/netinet/in_var.h
+3-0tests/sys/netinet/Makefile
+241-5526 files

HardenedBSD/ports 3828bc8devel/electron39 distinfo, devel/electron39/files patch-electron_shell_browser_native__window__views.cc patch-electron_shell_browser_linux_x11__util.cc

by HardenedBSD Sync Services on ⎇
Merge branch 'freebsd/main' into hardenedbsd/main
DeltaFile
+13-13devel/electron39/files/patch-electron_shell_browser_native__window__views.cc
+20-0devel/electron39/files/patch-electron_shell_browser_linux_x11__util.cc
+13-4devel/electron39/files/patch-electron_shell_browser_api_electron__api__screen.cc
+7-7devel/electron39/distinfo
+2-11devel/electron39/files/patch-electron_spec_api-browser-window-spec.ts
+5-5devel/electron39/files/patch-electron_spec_api-app-spec.ts
+60-4020 files not shown
+108-8626 files

HardenedBSD/ports a3a3f7bdeskutils/joplin-desktop Makefile, editors/vscode Makefile

by Hiroki Tagato (tagattie) on ⎇
*/*: Bump port revision after electron39 update (17b68db36a2a)
DeltaFile
+1-1deskutils/joplin-desktop/Makefile
+1-1textproc/obsidian/Makefile
+1-0editors/vscode/Makefile
+1-0net-im/signal-desktop/Makefile
+1-0net-im/teams/Makefile
+5-25 files

HardenedBSD/ports 17b68dbdevel/electron39 distinfo, devel/electron39/files patch-electron_shell_browser_native__window__views.cc patch-electron_shell_browser_linux_x11__util.cc

by Hiroki Tagato (tagattie) on ⎇
devel/electron39: Update to 39.8.3

Changelog:
- https://github.com/electron/electron/releases/tag/v39.8.1
- https://github.com/electron/electron/releases/tag/v39.8.2
- https://github.com/electron/electron/releases/tag/v39.8.3

Reported by:    GitHub (watch releases)
DeltaFile
+13-13devel/electron39/files/patch-electron_shell_browser_native__window__views.cc
+20-0devel/electron39/files/patch-electron_shell_browser_linux_x11__util.cc
+13-4devel/electron39/files/patch-electron_shell_browser_api_electron__api__screen.cc
+7-7devel/electron39/distinfo
+2-11devel/electron39/files/patch-electron_spec_api-browser-window-spec.ts
+5-5devel/electron39/files/patch-electron_spec_api-app-spec.ts
+60-4010 files not shown
+86-6416 files