Created attachment 184207 [details]
devel/oniguruma5 suffered from security problems.
Created attachment 184208 [details]
A commit references this bug:
Date: Thu Jul 13 10:52:33 UTC 2017
New revision: 445643
textproc/jq: change dependency from oniguruma5 to oniguruma6
Submitted by: Yuri Victorovich <email@example.com> (maintainer)
User requested  MFH. Given security context, re-opening
(In reply to Kubilay Kocak from comment #4)
@pi: Should I MFH?
Yes, please MFH
Can this be merged into the quarterly ports? This is causing problems, for example, on FreeBSD systems with PHP at Digital Ocean. The cloud init scripts use jq to parse JSON configuration files, and requires oniguruma5. The php56-mbstring package requires oniguruma6. To make a long story short, this can result in the server coming up without any network configuration after a reboot.
It should be mer(In reply to Fred Condo from comment #7)
Requested MFH from ports-secteam/portmgr (as I don't believe this is covered by any blanket approval).
A new quarterly has seen the light, so this is done.