[no description] https://git.osdyson.ru/mirror/pkgsrc/atom?h=trunk 2022-12-03T17:07:13Z 2022-12-03T17:07:13Z adam adam@pkgsrc.org 2022-12-03T17:07:13Z urn:sha1:94dd0b2935953a4de00117644799aeab278365f8 Version 19.2.0 (Current) Notable changes Time zone update Time zone data has been updated to 2022f. This includes changes to Daylight Savings Time (DST) for Fiji and Mexico. For more information, see https://mm.icann.org/pipermail/tz-announce/2022-October/000075.html. Version 19.1.0 (Current) Notable changes Support function mocking on Node.js test runner fs.watch recursive support on Linux Version 19.0.1 (Current) This is a security release. Notable changes The following CVEs are fixed in this release: CVE-2022-3602: X.509 Email Address 4-byte Buffer Overflow (High) CVE-2022-3786: X.509 Email Address Variable Length Buffer Overflow (High) CVE-2022-43548: DNS rebinding in --inspect via invalid octal IP address (Medium) Version 19.0.0 (Current) Node.js 19 is here! Highlights include the update of the V8 JavaScript engine to 10.7, HTTP(s)/1.1 KeepAlive enabled by default, and ESM Resolution adjusts. Node.js 19 will replace Node.js 18 as our ‘Current’ release line when Node.js 18 enters long-term support (LTS) later this month. As per the release schedule, Node.js 19 will be ‘Current' release for the next 6 months, until April 2023. 2022-11-23T12:09:44Z adam adam@pkgsrc.org 2022-11-23T12:09:44Z urn:sha1:3b2f4f4cc6cf3d7cbff16506b5feee67bb8637f3 Version 18.12.1 'Hydrogen' (LTS) This is a security release. Notable changes The following CVEs are fixed in this release: CVE-2022-3602: X.509 Email Address 4-byte Buffer Overflow (High) CVE-2022-3786: X.509 Email Address Variable Length Buffer Overflow (High) CVE-2022-43548: DNS rebinding in --inspect via invalid octal IP address (Medium) 2022-11-06T16:28:29Z triaxx triaxx@pkgsrc.org 2022-11-06T16:28:29Z urn:sha1:459431c0af37516999a316f0cfccdfd9f6b128f2 Node.js v18 does not want to build with Python 3.11. 2022-11-01T17:58:22Z schmonz schmonz@pkgsrc.org 2022-11-01T17:58:22Z urn:sha1:4d759fd06b3f8cc9a118f1166e6cbaa525b4708f PKGREVISION). For earlier versions, no change. 2022-10-31T15:19:06Z adam adam@pkgsrc.org 2022-10-31T15:19:06Z urn:sha1:58696e826396f15f90a28fe7ec978ae87f44aaf4 Version 18.12.0 'Hydrogen' (LTS) Notable Changes This release marks the transition of Node.js 18.x into Long Term Support (LTS) with the codename 'Hydrogen'. The 18.x release line now moves into "Active LTS" and will remain so until October 2023. After that time, it will move into "Maintenance" until end of life in April 2025. 2022-10-17T11:03:07Z adam adam@pkgsrc.org 2022-10-17T11:03:07Z urn:sha1:758c38fe325799b0dd78f59fa08bc9155601069b Version 18.11.0 (Current) Notable changes watch mode (experimental) Running in 'watch' mode using node --watch restarts the process when an imported file is changed. Contributed by Moshe Atlow in Other notable changes fs: (SEMVER-MINOR) add FileHandle.prototype.readLines (Antoine du Hamel) http: (SEMVER-MINOR) add writeEarlyHints function to ServerResponse (Wing) http2: (SEMVER-MINOR) make early hints generic (Yagiz Nizipli) lib: (SEMVER-MINOR) refactor transferable AbortSignal (flakey5) src: (SEMVER-MINOR) add detailed embedder process initialization API (Anna Henningsen) util: (SEMVER-MINOR) add default value option to parsearg (Manuel Spigolon) 2022-10-02T03:29:35Z ryoon ryoon@pkgsrc.org 2022-10-02T03:29:35Z urn:sha1:ccb3cf316eab12c740843ade1e7afb840a09b84c 2022-09-29T19:38:07Z adam adam@pkgsrc.org 2022-09-29T19:38:07Z urn:sha1:156e365fdce42f13512e1d2a4220b6d4cdb70a1a Version 18.10.0 (Current) Notable changes doc: (SEMVER-MINOR) deprecate modp1, modp2, and modp5 groups (Tobias Nießen) add legendecas to TSC list (Michael Dawson) move policy docs to the permissions scope (Rafael Gonzaga) gyp: libnode for ios app embedding (chexiongsheng) http: (SEMVER-MINOR) throw error on content-length mismatch (sidwebworks) stream: (SEMVER-MINOR) add ReadableByteStream.tee() (Daeyeon Jeong) 2022-09-27T07:59:10Z adam adam@pkgsrc.org 2022-09-27T07:59:10Z urn:sha1:f3666294d02982443a05fc92cd465df16330ac64 Version 18.9.1 (Current) This is a security release. Notable changes The following CVEs are fixed in this release: CVE-2022-32212: DNS rebinding in --inspect on macOS (High) Insufficient fix for macOS devices on v18.5.0 CVE-2022-32222: Node 18 reads openssl.cnf from /home/iojs/build/ upon startup on MacOS (Medium) CVE-2022-32213: HTTP Request Smuggling - Flawed Parsing of Transfer-Encoding (Medium) Insufficient fix on v18.5.0 CVE-2022-32215: HTTP Request Smuggling - Incorrect Parsing of Multi-line Transfer-Encoding (Medium) Insufficient fix on v18.5.0 CVE-2022-35256: HTTP Request Smuggling - Incorrect Parsing of Header Fields (Medium) CVE-2022-35255: Weak randomness in WebCrypto keygen 2022-08-29T06:30:11Z adam adam@pkgsrc.org 2022-08-29T06:30:11Z urn:sha1:dfcb9a0db7067b3bf1f5e6055f0de3edb1da980a Version 18.8.0 (Current) Notable changes bootstrap: implement run-time user-land snapshots via --build-snapshot and --snapshot-blob crypto: (SEMVER-MINOR) allow zero-length IKM in HKDF and in webcrypto PBKDF2 (SEMVER-MINOR) allow zero-length secret KeyObject deps: upgrade npm to 8.18.0 (npm team) doc: add Erick Wendel to collaborators add theanarkh to collaborators add MoLow to collaborators add cola119 to collaborators deprecate --trace-atomics-wait http: (SEMVER-MINOR) make idle http parser count configurable net: (SEMVER-MINOR) add local family src: (SEMVER-MINOR) print source map error source on demand tls: (SEMVER-MINOR) pass a valid socket on tlsClientError