The port is based on the github repository at https://github.com/imapsync/imapsync where currently version 2.229 can be found. That version has at least one open security issue CVE-2023-34204, which is fixed in the principal authors version 2.264 according to the changelog since about a year ago. It's possible to find that version, but the author himself doesn't provide the current stable version freely anymore, if I understand him correctly. Debian simply removed the software from their archives a couple of years ago, don't know if that's possibly the prudent position to take if upstream doesn't fix issues in a timely manner.
Upstream is a bit special with the location of upstream, so it needs a bit of guess work on where to find it this time...
A commit in branch main references this bug: URL: https://cgit.FreeBSD.org/ports/commit/?id=9dcebd190d9532a1cd595e03630b90a438a54efe commit 9dcebd190d9532a1cd595e03630b90a438a54efe Author: Kurt Jaeger <pi@FreeBSD.org> AuthorDate: 2025-01-06 10:09:57 +0000 Commit: Kurt Jaeger <pi@FreeBSD.org> CommitDate: 2025-01-06 10:09:57 +0000 mail/imapsync: update 2.229 -> 2.290 PR: 280206 Changes: https://imapsync.lamiral.info/ChangeLog mail/imapsync/Makefile | 7 +++---- mail/imapsync/distinfo | 6 +++--- 2 files changed, 6 insertions(+), 7 deletions(-)
Committed, thanks!