BSD Commit Log Search

security/opkssh: New port: Tool which enables SSH to be used with OpenID Connect

opkssh is a tool which enables ssh to be used with OpenID Connect
allowing SSH access to be managed via identities like alice at example.com
instead of long-lived SSH keys. It does not replace SSH, but instead
generates SSH public keys containing PK Tokens and configures sshd
to verify them. These PK Tokens contain standard OpenID Connect ID
Tokens. This protocol builds on the OpenPubkey which adds user
public keys to OpenID Connect without breaking compatibility with
existing OpenID Provider.

x11-wm/phoc: update to 0.51.0

Changes:        https://gitlab.gnome.org/World/Phosh/phoc/-/releases/v0.51.0
Reported by:    GitLab (notify releases)

textproc/scdoc: update to 1.11.4

Changes:        https://git.sr.ht/%7Esircmpwn/scdoc/refs/1.11.4
Reported by:    Repology

devel/jenkins-lts: Update to 2.528.2

Sponsored by:   The FreeBSD Foundation

devel/forgejo-runner: Add supervisor mode for daemon(8)

If the server is not available when act_runner starts, act_runner
terminates.

Notes:
1. This is a breaking change - previously set act_runner_flags specified
   in rc.conf are applied to daemon(8), not act_runner. To pass
   parameters to act_runner, act_runner_args is used.
2. The system must be updated due to FreeBSD-EN-25:06.daemon.

While here fix build with non-default user/group and split long line.

PR:     288957

net-im/telegram-desktop: update from 6.2.4 to 6.3.0

Patch obtained from:    https://cvsweb.openbsd.org/ports/net/tdesktop/patches/patch-Telegram_SourceFiles_platform_linux_specific_linux_cpp

Sponsored by:   tipi.work

net-im/tg_owt: update to the recent snapshot

audio/lilv: Update to 0.26.0

ChangeLog: https://drobilla.net/2025/11/12/lilv-0-26-0.html

devel/R-cran-testthat: Update to 3.3.0

- Put tests as safe
  A custom do-test and UTF-8 env needed to be set so tests succeed

ChangeLog: https://cloud.r-project.org/web/packages/testthat/news/news.html

math/intx: Update to 0.14.0

ChangeLog: https://github.com/chfast/intx/releases/tag/v0.14.0

www/osticket: Remove defunct IGNORE_WITH_PHP

php80 has retired a couple of years ago and this line is defunct.

Approved by:    portmgr (blanket)

devel/py-perceval-weblate: Return to pool

Used in cluster and releasing so that others can update as necessary
without my intervention.

Changelog: https://github.com/chaoss/grimoirelab-perceval-weblate/releases/tag/${NEW_VERSION}

databases/clickhouse: Update version 24.5.1.1763=>25.10.2.65

Changelog: https://github.com/ClickHouse/ClickHouse/releases/tag/v25.10.2.65-stable

Sponsored by:   Nepustil

lang/php85: Update version 8.5.0RC4=>8.5.0RC5

Please DO NOT use this version in production, it is an early test
version.

Changelog: https://github.com/php/php-src/blob/php-8.5.0RC5/NEWS

security/sslproxy: Update version 0.9.9=>0.9.10

Changelog: https://github.com/sonertari/SSLproxy/releases/tag/v0.9.10

emulators/qemu-devel: Update version 10.1.20250930=>10.1.20251031

databases/freetds-devel: Update version 1.5.147=>1.5.151

devel/kodi-platform: Bump after update multimedia/kodi

While here replace PORTVERSION with DISTVERSION.

PR:             290895
Approved by:    decke (maintainer, implicit)

multimedia/kodi: Update 21.2 => 21.3

Changelog:
https://github.com/xbmc/xbmc/releases/tag/21.3-Omega

PR:     290895

editors/abiword: Fix pkg-plist with COLSUGAR off

PR:             278929
Reported by:    Harald Schmalzbauer <bugzilla.freebsd at omnilan.de>
MFH:            2025Q4

(cherry picked from commit 2c4e0e5335c05f56851687d99b0c826e13d95353)

editors/abiword: Fix pkg-plist with COLSUGAR off

PR:             278929
Reported by:    Harald Schmalzbauer <bugzilla.freebsd at omnilan.de>
MFH:            2025Q4

sysutils/gol: Remove redundant WWW entry

As fuz@ mentioned, WWW is automatically inferred from GH_PROJECT
and GH_ACCOUNT.

www/pocket-id: Update to 1.15.0

ChangeLog: https://github.com/pocket-id/pocket-id/releases/tag/v1.15.0

devel/gitlab-runner: install the gitlab secrets scanner

This makes it now possible to have a gitlab-runner with shell
and in the pipeline of the repository the default
gitlab pipeline can be used now, like:
include:
  - template: Jobs/Secret-Detection.gitlab-ci.yml

www/gitlab: enable the gitlab secrets scanner in the standard pipeline

This makes it now possible to have a gitlab-runner with shell
and in the pipeline of the repository the default
gitlab pipeline can be used now, like:
include:
  - template: Jobs/Secret-Detection.gitlab-ci.yml

security/gitlab-analyzers-secrets: added gitlab secret detection scanner

devel/R-cran-covr: Update to 3.6.5

Update dependencies.

Changelog: https://cran.r-project.org/web/packages/covr/news/news.html

databases/litestream: update to 0.5.2, also convert to GO_MODULE.

editors/zed: Update to 0.212.6

All codes related to the crash handling function (including its
dependencies, crash-handler and minidumper crates) are disabled to
make it build. The function is mainly used by developers of the
software so it would be okay for users' viewpoint.

Changelog: https://github.com/zed-industries/zed/releases

Reported by:    GitHub (watch releases)

net/gerbera: Update to 3.0.0

Changelog: https://github.com/gerbera/gerbera/releases/tag/v3.0.0