Node.js

News from 2019

15 Mar Node v11.12.0 (Current)
- bootstrap:
  - Add experimental --frozen-intrinsics flag (Guy Bedford) #25685
- build:
  - Enable v8's siphash for hash seed creation (Rod Vagg) #26367
- deps:
  - Upgrade openssl to 1.1.1b (Sam Roberts) #26327
- process:
  - Make process[Symbol.toStringTag] writable again (Ruben Bridgewater) #26488
- repl:
  - Add util.inspect.replDefaults to customize the writer (Ruben Bridgewater) #26375
- report:
  - Rename triggerReport() to writeReport() (Colin Ihrig) #26527
Read more...
06 Mar Node v11.11.0 (Current)
- n-api:
  - Implement date object (Jarrod Connolly) #25917
- util:
  - Add compact depth mode for util.inspect() (Ruben Bridgewater) #26269
- worker:
  - Improve integration with native addons (Anna Henningsen) #26175
  - MessagePort.prototype.onmessage takes arguments closer to the Web specification now (Anna Henningsen) #26082
Read more...
05 Mar Node v10.15.3 (LTS)
- doc
  - add antsmartian to collaborators (Anto Aravinth) #24655
- http
  - fix error check in Execute() (Brian White) #25863
- stream
  - fix end-of-stream for HTTP/2 (Anna Henningsen) #24926
Read more...
28 Feb February 2019 Security Releases

(Update 28-February-2018) Security releases available
Updates are now available for all active Node.js release lines. In addition to fixes for security flaws in Node.js, they also include upgrades of Node.js 6 and 8 to OpenSSL 1.0.2r which contains a fix for a moderate severity security vulnerability. The original announcement is included below.
Read more...
28 Feb Node v11.10.1 (Current)

This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/february-2019-security-releases/ for details on patched vulnerabilities.
Read more...
28 Feb Node v10.15.2 (LTS)

This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/february-2019-security-releases/ for details on patched vulnerabilities.
Read more...
28 Feb Node v8.15.1 (LTS)

This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/february-2019-security-releases/ for details on patched vulnerabilities.
Read more...
28 Feb Node v6.17.0 (LTS)

This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/february-2019-security-releases/ for details on patched vulnerabilities.
Read more...
14 Feb Node v11.10.0 (Current)
deps
- Updated libuv to 1.26.0. #26037
- Updated npm to 6.7.0. #25804 http, http2
- response.writeHead now returns the response object. #25974 perf_hooks
- Implemented a histogram based API. #25378 process
- Exposed process.features.inspector. #25819 repl
- Added repl.setupHistory for programmatic repl. #25895 tls
- Introduced client "session" event. #25831
Read more...
30 Jan Node v11.9.0 (Current)
deps:
- OpenSSL has been updated to 1.1.1a, which is API/ABI compatible with the previous OpenSSL 1.1.0j. Note that while OpenSSL 1.1.1a supports TLS1.3, Node.js still does not. #25381)
- [bc81a68f20] - build: make compress_json python3 compatible (Sakthipriyan Vairamani (thefourtheye)) #25582
- [30949f8dba] - build: make configure.py compatible with python 3 (Sakthipriyan Vairamani (thefourtheye)) #25580
- [d4ec110c65] - (SEMVER-MINOR) deps: update archs files for OpenSSL-1.1.1a (Sam Roberts) #25381
- [5225214d07] - (SEMVER-MINOR) deps: fix for non GNU assembler in AIX (Shigeki Ohtsu) #25381
- [ad04d7bea1] - (SEMVER-MINOR) deps: add only avx2 configs for OpenSSL-1.1.1 (Shigeki Ohtsu) #25381
- [670f10053a] - (SEMVER-MINOR) deps: add s390 asm rules for OpenSSL-1.1.1 (Shigeki Ohtsu) #25381
- [0a0f15f768] - (SEMVER-MINOR) deps: fix MacOS and Win build for OpenSSL-1.1.1 (Shigeki Ohtsu) #25381
- [e2043999bd] - (SEMVER-MINOR) deps: fix gyp/gypi for openssl-1.1.1 (Shigeki Ohtsu) #25381
- [c581b9a253] - (SEMVER-MINOR) deps: upgrade openssl sources to 1.1.1a (Sam Roberts) #25381
- [c82f2445e5] - dns: use IDNA 2008 to encode non-ascii hostnames (Ben Noordhuis) #25679
- [c56ddc7736] - doc: document uniqueness of worker.threadId (Anna Henningsen) #25644
- [7c8d57d4a9] - doc: revise breaking changes material in COLLABORATOR_GUIDE (Rich Trott) #25730
- [edc9ceb16e] - doc: fix issue with worker_threads docs (Lee Byron) #25712
- [1d6e18b128] - doc: fix http.Agent timeout option description (Luigi Pinca) #25489
- [5d5c528120] - (SEMVER-MINOR) doc: fix assembler requirement for OpenSSL-1.1.1 (Shigeki Ohtsu) #25381
- [34bc69d376] - doc: fix file extension on ESM file example (Eric Whitebloom) #25692
- [b218b1204a] - doc: remove outdated s_client information in tls.md (Rich Trott) #25678
- [1aa7f4d72d] - doc: fix metadata for v11.8.0 doc changes (Richard Lau) #25709
- [3c5a7a2f97] - doc: fix keyObject.symmetricSize to be keyObject.symmetricKeySize (Filip Skokan) #25670
- [e47511943b] - doc: add metadata to report docs (Richard Lau) #25708
- [237ec396d0] - doc: fix 11.8.0 changelog (Myles Borins) #25705
- [48149cfa3a] - doc: clarify what dns.setResolvers() affects (Sam Roberts) #25570
- [3488f0df3b] - doc: link nextTick docs to the nextTick guide (Sam Roberts) #25619
- [c93e5e1f65] - doc: simplify process.binding() deprecation message (Rich Trott) #25654
- [0640b09243] - lib: refactor policy code for readability (Anna Henningsen) #25629
- [634cf131f4] - module: do not use process.exit() (Anna Henningsen) #25769
- [143274af38] - module: silence ModuleJob unhandled rejection warnings (Anna Henningsen) #25769
- [fc38b20c7c] - perf_hooks: clean up GC listeners (Anna Henningsen) #25647
- [f3179f7701] - policy: ensure workers do not read fs for policy (Bradley Farias) #25710
- [ee61ab6894] - repl: improve doc for disabling REPL history on Windows (Samuel D. Leslie) #25672
- [ce28caf517] - report: represent numbers as numbers (Anna Henningsen) #25651
- [1dfdbc6cf7] - report: refactor JSON writer (Anna Henningsen) #25651
- [14bce1ea5a] - report: do not use uv\_default\_loop() as fallback (Anna Henningsen) #25652
- [152d633366] - src: remove unused env_ field from env.h (Daniel Bevenius) #25784
- [c0951062b9] - src: pass along errors from i18n converter instantiation (Anna Henningsen) #25734
- [deebf10bd5] - src: pass along errors from vm data wrapper creation (Anna Henningsen) #25734
- [8ee4810029] - src: pass along errors from KeyObject instantiation (Anna Henningsen) #25734
- [ced4e71504] - src: pass along errors from perf obj instantiation (Anna Henningsen) #25734
- [5add2b56ac] - src: pass along errors from process obj instantiation (Anna Henningsen) #25734
- [2928672679] - src: pass along errors from stream obj instantiation (Anna Henningsen) #25734
- [ebcdbebcee] - src: remove unused field in node_http2.h (gengjiawen) #25727
- [6d9af41aef] - src: in-source comments and minor TLS cleanups (Sam Roberts) #25713
- [09a10858f7] - src: remove unnecessary call to SSL_get_mode (Sam Roberts) #25711
- [86e79a521d] - src: remove unused and unimplemented method in env.h (gengjiawen) #25699
- [021d1975ff] - src: fix macro duplicate declaration in env.h (gengjiawen) #25703
- [845bcfa1ce] - src: simplify inspector initialization in node::Start() (Joyee Cheung) #25612
- [797111a69b] - src: avoid race condition in tracing code (Anna Henningsen) #25624
- [b113332daf] - src: ensure no more platform foreground tasks after Deinit (Clemens Hammacher) #25653
- [7cc51531a7] - src: remove has_experimental_policy option (Anna Henningsen) #25628
- [4b43eeaf9a] - src,test: fix JSON escaping in node-report (Denys Otrishko) #25626
- [af9592d6b1] - test: refactor test/common/report.js (cjihrig) #25754
- [e2ee031060] - test: move client renegotiation tests to parallel (Rich Trott) #25757
- [b174dd7280] - test: use fipsMode in test-crypto-fips (Daniel Bevenius) #25563
- [fa2a857e6a] - test: refactor test-http-client-timeout-option-with-agent (Rich Trott) #25752
- [15f6b8e25d] - test: add test for worker.terminate() + timeout fns (Anna Henningsen) #25735
- [c2136348a1] - test: move heapdump tests to pummel (Rich Trott) #25181
- [ae19f944f8] - test: exit sequence sanity tests (Gireesh Punathil) #25083
- [af6e439ad8] - test: enable marking of failing coverage tests (Michael Dawson) #25671
- [6203d05a3c] - test: fix zlib-brotli output assumptions (Adam Majer) #25697
- [77274d07d2] - test: rewrite fs {f}utimes test file (Jeremiah Senkpiel) #25656
- [29002ceb4e] - (SEMVER-MINOR) test: assert on client and server side seperately (Sam Roberts) #25381
- [c7dbb72530] - test: remove pummel/test-exec (Rich Trott) #25722
- [4b2a1eadbd] - test: replace s_client in test-https-ci-reneg-attack (Rich Trott) #25720
- [7d682234a6] - test: remove unused uncaughtException handler (Anna Henningsen) #25641
- [271126ad3b] - test: remove s_client from test-tls-ci-reneg-attack (Rich Trott) #25700
- [190c063ecb] - test: replace Google servers with localhost (Rich Trott) #25694
- [f33d705033] - test: fix sequential/test-performance delay (Anatoli Papirovski) #25695
- [1905f8ef55] - test: remove common.isOSXMojave (Rich Trott) #25658
- [9f1b5c6193] - test: remove known_issues/test-cluster-bind-privileged-port (Rich Trott) #25649
- [d0705bd24b] - timers: truncate decimal values (Jeremiah Senkpiel) #24819
- [d5b2135dde] - tls: fix malloc mismatch in SSL_set_tlsext_status_ocsp_resp call (David Benjamin) #25706
- [6e80f6d9a1] - (SEMVER-MINOR) tls: workaround handshakedone in renegotiation (Shigeki Ohtsu) #25381
- [c34c5694eb] - (SEMVER-MINOR) tls: make ossl 1.1.1 cipher list throw error (Sam Roberts) #25381
- [8032969c69] - tools: make trailing commas consistent in .eslintrc (Rich Trott) #25739
- [7ba66505e3] - tools: make test.py Queue part Python 3 compatible (gengjiawen) #25701
- [e6ad7f4c9c] - tools: make mkssldef.py Python 3 compatible (Sakthipriyan Vairamani (thefourtheye)) #25584
- [bc81fef988] - vm: mark scripts as shareable cross-origin (Jeremy Apthorp) #25380
- [fb69b2bf14] - worker: export workerData to ESM workers (Anna Henningsen) #25768
Read more...
29 Jan Node v10.15.1 (LTS)
25 Jan Node v11.8.0 (Current)
18 Jan Node v11.7.0 (Current)