Package audit

The Package Tool, which is used for installing and updating software under TwinCAT/BSD, has an audit function for checking installed software for known vulnerabilities.

doas pkg audit -F

The command downloads the list of known vulnerabilities and compares it with the local packages. You will receive the CVE number (Common Vulnerabilities and Exposures) and a link to more information about the vulnerability.