Hello. We still have devel/pear 1.10.1 in the port tree: it is vulnerable, although "pkg audit" does not report this. 1.10.3 has been out for almost a month now. Do you have any plan to upgrade this? Are you encountering any showstopper? bye & Thanks av.