fix(major deps): update major dependencies (major)

[renovate]

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
node (source)	20.11.1 -> 21.6.2
postcss-cli	10.1.0 -> 11.0.0

---

Release Notes

nodejs/node (node)

v21.6.2: 2024-02-14, Version 21.6.2 (Current), @​RafaelGSS

Compare Source

Notable changes

This is a security release.

Notable changes

• CVE-2024-21892 - Code injection and privilege escalation through Linux capabilities- (High)
• CVE-2024-22019 - http: Reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks- (High)
• CVE-2024-21896 - Path traversal by monkey-patching Buffer internals- (High)
• CVE-2024-22017 - setuid() does not drop all privileges due to io_uring - (High)
• CVE-2023-46809 - Node.js is vulnerable to the Marvin Attack (timing variant of the Bleichenbacher attack against PKCS#1 v1.5 padding) - (Medium)
• CVE-2024-21891 - Multiple permission model bypasses due to improper path traversal sequence sanitization - (Medium)
• CVE-2024-21890 - Improper handling of wildcards in --allow-fs-read and --allow-fs-write (Medium)
• CVE-2024-22025 - Denial of Service by resource exhaustion in fetch() brotli decoding - (Medium)
• undici version 5.28.3
• libuv version 1.48.0
• OpenSSL version 3.0.13+quic1

Commits

• [8344719369] - crypto: disable PKCS#1 padding for privateDecrypt (Michael Dawson) nodejs-private/node-private#525
• [d093600ac4] - deps: update archs files for openssl-3.0.13+quic1 (Node.js GitHub Bot) #​51614
• [6cd930e5e8] - deps: upgrade openssl sources to quictls/openssl-3.0.13+quic1 (Node.js GitHub Bot) #​51614
• [9590c15d3d] - deps: upgrade libuv to 1.48.0 (Santiago Gimeno) #​51698
• [666096298c] - deps: disable io_uring support in libuv by default (Tobias Nießen) nodejs-private/node-private#528
• [a4edd22e30] - fs: protect against modified Buffer internals in possiblyTransformPath (Tobias Nießen) nodejs-private/node-private#497
• [6155a1ffaf] - http: add maximum chunk extension size (Paolo Insogna) nodejs-private/node-private#518
• [777509495e] - lib: use cache fs internals against path traversal (RafaelGSS) nodejs-private/node-private#516
• [9d2ac2b3fc] - lib: update undici to v5.28.3 (Matteo Collina) nodejs-private/node-private#538
• [208b3940c7] - src: fix HasOnly(capability) in node::credentials (Tobias Nießen) nodejs-private/node-private#505
• [fc2454f29c] - src,deps: disable setuid() etc if io_uring enabled (Tobias Nießen) nodejs-private/node-private#528
• [ef3eea20be] - test,doc: clarify wildcard usage (RafaelGSS) nodejs-private/node-private#517
• [8547196964] - zlib: pause stream if outgoing buffer is full (Matteo Collina) nodejs-private/node-private#540

v21.6.1: 2024-01-22, Version 21.6.1 (Current), @​RafaelGSS

Compare Source

Notable Changes

This release fixes a bug in undici using WebStreams

Commits

• [662ac95729] - Revert "stream: fix cloned webstreams not being unref'd" (Matteo Collina) #​51491
• [1b8bba8aee] - test: add regression test for 51586 (Matteo Collina) #​51491

v21.6.0: 2024-01-15, Version 21.6.0 (Current), @​RafaelGSS

Compare Source

New connection attempt events

Three new events were added in the net.createConnection flow:

• connectionAttempt: Emitted when a new connection attempt is established. In case of Happy Eyeballs, this might emitted multiple times.
• connectionAttemptFailed: Emitted when a connection attempt failed. In case of Happy Eyeballs, this might emitted multiple times.
• connectionAttemptTimeout: Emitted when a connection attempt timed out. In case of Happy Eyeballs, this will not be emitted for the last attempt. This is not emitted at all if Happy Eyeballs is not used.

Additionally, a previous bug has been fixed where a new connection attempt could have been started after a previous one failed and after the connection was destroyed by the user.
This led to a failed assertion.

Contributed by Paolo Insogna in #​51045.

Changes to the Permission Model

Node.js 21.6.0 comes with several fixes for the experimental permission model and two new semver-minor commits.
We're adding a new flag --allow-addons to enable addon usage when using the Permission Model.

$ node --experimental-permission --allow-addons

Contributed by Rafael Gonzaga in #​51183

And relative paths are now supported through the --allow-fs-* flags.
Therefore, with this release one can use:

$ node --experimental-permission --allow-fs-read=./index.js

To give only read access to the entrypoint of the application.

Contributed by Rafael Gonzaga and Carlos Espa in #​50758

Support configurable snapshot through --build-snapshot-config flag

We are adding a new flag --build-snapshot-config to configure snapshots through a custom JSON configuration file.

$ node --build-snapshot-config=/path/to/myconfig.json

When using this flag, additional script files provided on the command line will
not be executed and instead be interpreted as regular command line arguments.

These changes were contributed by Joyee Cheung and Anna Henningsen in #​50453

Other Notable Changes

• [c31ed51373] - (SEMVER-MINOR) timers: export timers.promises (Marco Ippolito) #​51246

Commits

• [13a1241b83] - assert,crypto: make KeyObject and CryptoKey testable for equality (Filip Skokan) #​50897
• [4dcc5114aa] - benchmark: remove dependency on unshipped tools (Adam Majer) #​51146
• [2eb41f86b3] - build: fix for VScode "Reopen in Container" (Serg Kryvonos) #​51271
• [e03ac83c19] - build: fix arm64 cross-compilation (Michaël Zasso) #​51256
• [cd61fce34e] - build: add -flax-vector-conversions to V8 build (Michaël Zasso) #​51257
• [e5017a522e] - crypto: update CryptoKey symbol properties (Filip Skokan) #​50897
• [c0d2e8be11] - deps: update corepack to 0.24.0 (Node.js GitHub Bot) #​51318
• [24a9a72492] - deps: update acorn to 8.11.3 (Node.js GitHub Bot) #​51317
• [e53cbb22c2] - deps: update ngtcp2 and nghttp3 (James M Snell) #​51291
• [f00f1204f1] - deps: update brotli to 1.1.0 (Node.js GitHub Bot) #​50804
• [a41dca0c51] - deps: update zlib to 1.3.0.1-motley-40e35a7 (Node.js GitHub Bot) #​51274
• [efa12a89c6] - deps: update simdutf to 4.0.8 (Node.js GitHub Bot) #​51000
• [25eba3d20b] - deps: V8: cherry-pick de611e6 (Keyhan Vakil) #​51200
• [a07d6e23e4] - deps: update simdjson to 3.6.3 (Node.js GitHub Bot) #​51104
• [6d1bfcb2dd] - deps: update googletest to 530d5c8 (Node.js GitHub Bot) #​51191
• [75e5615c43] - deps: update acorn-walk to 8.3.1 (Node.js GitHub Bot) #​50457
• [3ecc7dcc00] - deps: update acorn-walk to 8.3.0 (Node.js GitHub Bot) #​50457
• [e2f8d741c8] - deps: update zlib to 1.3.0.1-motley-dd5fc13 (Node.js GitHub Bot) #​51105
• [4a5d3bda72] - doc: the GN files should use Node's license (Cheng Zhao) #​50694
• [84127514ba] - doc: improve localWindowSize event descriptions (Davy Landman) #​51071
• [8ee882a49c] - doc: mark --jitless as experimental (Antoine du Hamel) #​51247
• [876743ece1] - doc: run license-builder (github-actions[bot]) #​51199
• [ec6fcff009] - doc: fix limitations and known issues in pm (Rafael Gonzaga) #​51184
• [c13a5c0373] - doc: mention node:wasi in the Threat Model (Rafael Gonzaga) #​51211
• [4b19e62444] - doc: remove ambiguous 'considered' (Rich Trott) #​51207
• [5453abd6ad] - doc: set exit code in custom test runner example (Matteo Collina) #​51056
• [f9d4e07faf] - doc: remove version from maintaining-dependencies.md (Antoine du Hamel) #​51195
• [df8927a073] - doc: mention native addons are restricted in pm (Rafael Gonzaga) #​51185
• [e636d83914] - doc: correct note on behavior of stats.isDirectory (Nick Reilingh) #​50946
• [1c71435c2a] - doc: fix TestsStream parent class (Jungku Lee) #​51181
• [2c227b0d64] - doc: fix simdjson wrong link (Marco Ippolito) #​51177
• [efa13e1943] - (SEMVER-MINOR) doc: add documentation for --build-snapshot-config (Anna Henningsen) #​50453
• [941aedc6fc] - errors: fix stacktrace of SystemError (uzlopak) #​49956
• [47548d9e61] - esm: fix hint on invalid module specifier (Antoine du Hamel) #​51223
• [091098f40a] - fs: fix fs.promises.realpath for long paths on Windows (翠 / green) #​51032
• [e5a8fa01aa] - fs: make offset, position & length args in fh.read() optional (Pulkit Gupta) #​51087
• [c87e5d51cc] - fs: add missing jsdoc parameters to readSync (Yagiz Nizipli) #​51225
• [e24249cf37] - fs: remove internalModuleReadJSON binding (Yagiz Nizipli) #​51224
• [7421467812] - fs: improve mkdtemp performance for buffer prefix (Yagiz Nizipli) #​51078
• [5b229d775f] - fs: validate fd synchronously on c++ (Yagiz Nizipli) #​51027
• [c7a135962d] - http: remove misleading warning (Luigi Pinca) #​51204
• [a325746ff4] - http: do not override user-provided options object (KuthorX) #​33633
• [89eee7763f] - http2: addtl http/2 settings (Marten Richter) #​49025
• [624142947f] - lib: fix use of --frozen-intrinsics with --jitless (Antoine du Hamel) #​51248
• [8f845eb001] - lib: move function declaration outside of loop (Sanjaiyan Parthipan) #​51242
• [ed7305e49b] - lib: reduce overhead of SafePromiseAllSettledReturnVoid calls (Antoine du Hamel) #​51243
• [291265ce27] - lib: expose default prepareStackTrace (Chengzhong Wu) #​50827
• [8ff6bc45ca] - lib,permission: handle buffer on fs.symlink (Rafael Gonzaga) #​51212
• [416b4f8063] - (SEMVER-MINOR) lib,src,permission: port path.resolve to C++ (Rafael Gonzaga) #​50758
• [6648a5c576] - meta: notify tsc on changes in SECURITY.md (Rafael Gonzaga) #​51259
• [83a99ccedd] - meta: update artifact actions to v4 (Michaël Zasso) #​51219
• [b621ada69a] - module: move the CJS exports cache to internal/modules/cjs/loader (Joyee Cheung) #​51157
• [e4be5b60f0] - (SEMVER-MINOR) net: add connection attempt events (Paolo Insogna) #​51045
• [3a492056e2] - node-api: type tag external values without v8::Private (Chengzhong Wu) #​51149
• [b2135ae7dc] - node-api: segregate nogc APIs from rest via type system (Gabriel Schulhof) #​50060
• [8f4325dcd5] - permission: fix wildcard when children > 1 (Rafael Gonzaga) #​51209
• [7ecf99404e] - quic: update quic impl to use latest ngtcp2/nghttp3 (James M Snell) #​51291
• [5b32e21f3b] - quic: add quic internalBinding, refine Endpoint, add types (James M Snell) #​51112
• [3310095bea] - repl: fix prepareStackTrace frames array order (Chengzhong Wu) #​50827
• [a0ff00b526] - src: avoid draining platform tasks at FreeEnvironment (Chengzhong Wu) #​51290
• [115e0585cd] - src: add fast api for Histogram (James M Snell) #​51296
• [29b81576c6] - src: refactor GetCreationContext calls (Yagiz Nizipli) #​51287
• [54dd978400] - src: enter isolate before destructing IsolateData (Ben Noordhuis) #​51138
• [864ecb0dfa] - src: do not treat all paths ending with node_modules as such (Michaël Zasso) #​51269
• [df31c8114c] - src: eliminate duplicate code in histogram.cc (James M Snell) #​51263
• [17c73e6d0c] - src: fix unix abstract socket path for trace event (theanarkh) #​50858
• [96d64edc94] - src: use BignumPointer and use BN_clear_free (James M Snell) #​50454
• [8a2dd93a14] - src: implement FastByteLengthUtf8 with simdutf::utf8_length_from_latin1 (Daniel Lemire) #​50840
• [e54ddf898f] - (SEMVER-MINOR) src: support configurable snapshot (Joyee Cheung) #​50453
• [a69c7d7bc3] - (SEMVER-MINOR) src,permission: add --allow-addon flag (Rafael Gonzaga) #​51183
• [e7925e66fc] - src,stream: improve WriteString (ywave620) #​51155
• [82de6603af] - stream: fix code style (Mattias Buelens) #​51168
• [e443953656] - stream: fix cloned webstreams not being unref'd (James M Snell) #​51255
• [757a84c9ea] - test: fix flaky conditions for ppc64 SEA tests (Richard Lau) #​51422
• [85ee2f7255] - test: replace forEach() with for...of (Alexander Jones) #​50608
• [549e4b4142] - test: replace forEach with for...of (Ospite Privilegiato) #​50787
• [ef44f9bef2] - test: replace foreach with for of (lucacapocci94-dev) #​50790
• [652af45485] - test: replace forEach() with for...of (Jia) #​50610
• [684dd9db2f] - test: fix inconsistency write size in test-fs-readfile-tostring-fail (Jungku Lee) #​51141
• [aaf710f535] - test: replace forEach test-http-server-multiheaders2 (Marco Mac) #​50794
• [57c64550cc] - test: replace forEach with for-of in test-webcrypto-export-import-ec (Chiara Ricciardi) #​51249
• [88e865181b] - test: move to for of loop in test-http-hostname-typechecking.js (Luca Del Puppo) #​50782
• [3db376f67a] - test: skip test-watch-mode-inspect on arm (Michael Dawson) #​51210
• [38232d1c52] - test: replace forEach with for of in file test-trace-events-net.js (Ianna83) #​50789
• [f1cb58355a] - test: replace forEach() with for...of in test/parallel/test-util-log.js (Edoardo Dusi) #​50783
• [9bfd84c117] - test: replace forEach with for of in test-trace-events-api.js (Andrea Pavone) #​50784
• [7e9834915a] - test: replace forEach with for-of in test-v8-serders.js (Mattia Iannone) #​50791
• [b6f232e841] - test: add URL tests to fs-read in pm (Rafael Gonzaga) #​51213
• [8a2178c5f5] - test: use tmpdir.refresh() in test-esm-loader-resolve-type.mjs (Luigi Pinca) #​51206
• [7e9a0b192a] - test: use tmpdir.refresh() in test-esm-json.mjs (Luigi Pinca) #​51205
• [d7c2572fe0] - test: fix flakiness in worker*.test-free-called (Jithil P Ponnan) #​51013
• [979cebc955] - test_runner: fixed test object is incorrectly passed to setup() (Pulkit Gupta) #​50982
• [63db82abe6] - test_runner: fixed to run after hook if before throws an error (Pulkit Gupta) #​51062
• [c31ed51373] - (SEMVER-MINOR) timers: export timers.promises (Marco Ippolito) #​51246
• [fc10f889eb] - tools: update lint-md-dependencies to [email protected] (Node.js GitHub Bot) #​51320
• [d5a5f12d15] - tools: fix dep_updaters dir updates (Michaël Zasso) #​51294
• [bdcb5ed510] - tools: update inspector_protocol to c488ba2 (cola119) #​51293
• [69a46add77] - tools: update inspector_protocol to 9b4a4aa (cola119) #​51293
• [e325f49d19] - tools: update inspector_protocol to 2f51e05 (cola119) #​51293
• [60d804851b] - tools: update inspector_protocol to d7b099b (cola119) #​51293
• [d18168489f] - tools: update inspector_protocol to 912eb68 (cola119) #​51293
• [ef4f46fc39] - tools: update inspector_protocol to 547c5b8 (cola119) #​51293
• [c3126fc016] - tools: update inspector_protocol to ca525fc (cola119) #​51293
• [917d887dde] - tools: update lint-md-dependencies to [email protected] (Node.js GitHub Bot) #​51276
• [37594918e0] - tools: check timezone current version (Marco Ippolito) #​51178
• [d0d2faf899] - tools: update lint-md-dependencies to [email protected] (Node.js GitHub Bot) #​51193
• [c96ef6533c] - tools: update eslint to 8.56.0 (Node.js GitHub Bot) #​51194
• [f4f781d493] - util: pass invalidSubtypeIndex instead of trimmedSubtype to error (Gaurish Sethia) #​51264
• [867b484429] - watch: clarify that the fileName parameter can be null (Luigi Pinca) #​51305
• [56e8969b65] - watch: fix null fileName on windows systems (vnc5) #​49891
• [3f4fd6efbb] - watch: fix infinite loop when passing --watch=true flag (Pulkit Gupta) #​51160

v21.5.0: 2023-12-19, Version 21.5.0 (Current), @​RafaelGSS

Compare Source

Notable Changes

• [0dd53da722] - (SEMVER-MINOR) deps: add simdjson (Yagiz Nizipli) #​50322
• [9f54987fbc] - module: merge config with package_json_reader (Yagiz Nizipli) #​50322
• [45e4f82912] - src: move package resolver to c++ (Yagiz Nizipli) #​50322

Deprecations

• [26ed4ad01f] - doc: deprecate hash constructor (Marco Ippolito) #​51077
• [58ca66a1a7] - doc: deprecate dirent.path (Antoine du Hamel) #​51020

Commits

• [1bbdbdfbeb] - benchmark: update iterations in benchmark/perf_hooks (Lei Shi) #​50869
• [087fb0908e] - benchmark: update iterations in benchmark/crypto/aes-gcm-throughput.js (Lei Shi) #​50929
• [53b16c71fb] - benchmark: update iteration and size in benchmark/crypto/randomBytes.js (Lei Shi) #​50868
• [38fd0ca753] - benchmark: add undici websocket benchmark (Chenyu Yang) #​50586
• [b148c43244] - benchmark: add create-hash benchmark (Joyee Cheung) #​51026
• [fdd8c18f96] - benchmark: update interations and len in benchmark/util/text-decoder.js (Lei Shi) #​50938
• [a9972057ac] - benchmark: update iterations of benchmark/util/type-check.js (Lei Shi) #​50937
• [b80bb1329b] - benchmark: update iterations in benchmark/util/normalize-encoding.js (Lei Shi) #​50934
• [dbee03d646] - benchmark: update iterations in benchmark/util/inspect-array.js (Lei Shi) #​50933
• [f2d83a3a84] - benchmark: update iterations in benchmark/util/format.js (Lei Shi) #​50932
• [2581fce553] - bootstrap: improve snapshot unsupported builtin warnings (Joyee Cheung) #​50944
• [735bad3694] - build: fix warnings from uv for gn build (Cheng Zhao) #​51069
• [8da9d969f9] - deps: V8: cherry-pick 0fd478b (Joyee Cheung) #​50572
• [429fbb37c1] - deps: update simdjson to v3.6.2 (Yagiz Nizipli) #​50986
• [9950103253] - deps: update zlib to 1.3-22124f5 (Node.js GitHub Bot) #​50910
• [0b61823e8b] - deps: update undici to 5.28.2 (Node.js GitHub Bot) #​51024
• [95d8a273cc] - deps: cherry-pick bfbe4e3 from libuv upstream (Abdirahim Musse) #​50650
• [06038a489e] - deps: update libuv to 1.47.0 (Node.js GitHub Bot) #​50650
• [0dd53da722] - (SEMVER-MINOR) deps: add simdjson (Yagiz Nizipli) #​50322
• [04eaa5cdd7] - doc: run license-builder (github-actions[bot]) #​51111
• [26ed4ad01f] - doc: deprecate hash constructor (Marco Ippolito) #​51077
• [637ffce4c4] - doc: add note regarding --experimental-detect-module (Shubherthi Mitra) #​51089
• [838179b096] - doc: correct tracingChannel.traceCallback() (Gerhard Stöbich) #​51068
• [539bee4f0a] - doc: use length argument in pbkdf2Key (Tobias Nießen) #​51066
• [c45a9a3187] - doc: add deprecation notice to dirent.path (Antoine du Hamel) #​51059
• [58ca66a1a7] - doc: deprecate dirent.path (Antoine du Hamel) #​51020
• [c2b6edf9ab] - esm: fix hook name in error message (Bruce MacNaughton) #​50466
• [35e8f26f07] - fs: throw fchownSync error from c++ (Yagiz Nizipli) #​51075
• [c3c8237089] - fs: update params in jsdoc for createReadStream and createWriteStream (Jungku Lee) #​51063
• [3f7f3ce8c9] - fs: improve error performance of readvSync (IlyasShabi) #​50100
• [7f95926f17] - http: handle multi-value content-disposition header (Arsalan Ahmad) #​50977
• [7a8a2d5632] - lib: don't parse windows drive letters as schemes (华) #​50580
• [aa2be4bb76] - module: load source maps in commonjs translator (Hiroki Osame) #​51033
• [c0e5e74876] - module: document parentURL in register options (Hiroki Osame) #​51039
• [4eedf5e694] - module: fix recently introduced coverity warning (Michael Dawson) #​50843
• [9f54987fbc] - module: merge config with package_json_reader (Yagiz Nizipli) #​50322
• [5f95dca638] - node-api: introduce experimental feature flags (Gabriel Schulhof) #​50991
• [3fb7fc909e] - quic: further implementation details (James M Snell) #​48244
• [fa25e069fc] - src: implement countObjectsWithPrototype (Joyee Cheung) #​50572
• [abe90527e4] - src: register udp_wrap external references (Joyee Cheung) #​50943
• [84e2f51d14] - src: register spawn_sync external references (Joyee Cheung) #​50943
• [2cfee53d7b] - src: register process_wrap external references (Joyee Cheung) #​50943
• [9b7f79a8bd] - src: fix double free reported by coverity (Michael Dawson) #​51046
• [fc5503246e] - src: remove unused headers in node_file.cc (Jungku Lee) #​50927
• [c3abdc58af] - src: implement --trace-promises (Joyee Cheung) #​50899
• [f90fc83e97] - src: fix dynamically linked zlib version (Richard Lau) #​51007
• [9bf144379f] - src: omit bool values of package.json main field (Yagiz Nizipli) #​50965
• [45e4f82912] - src: move package resolver to c++ (Yagiz Nizipli) #​50322
• [71acd36778] - stream: implement TransformStream cleanup using "transformer.cancel" (Debadree Chatterjee) #​50126
• [5112306064] - stream: fix fd is null when calling clearBuffer (kylo5aby) #​50994
• [ed070755ec] - test: deflake test-diagnostics-channel-memory-leak (Joyee Cheung) #​50572
• [aee01ff1b4] - test: test syncrhnous methods of child_process in snapshot (Joyee Cheung) #​50943
• [cc949869a3] - test: handle relative https redirect (Richard Lau) #​51121
• [048349ed4c] - test: fix test runner colored output test (Moshe Atlow) #​51064
• [7f5291d783] - test: resolve path of embedtest binary correctly (Cheng Zhao) #​50276
• [4ddd0daf5f] - test: escape cwd in regexp (Jérémy Lal) #​50980
• [3ccd5faabb] - test_runner: format coverage report for tap reporter (Pulkit Gupta) #​51119
• [d5c9adf3df] - test_runner: fix infinite loop when files are undefined in test runner (Pulkit Gupta) #​51047
• [328a41701c] - tools: update lint-md-dependencies to [email protected] (Node.js GitHub Bot) #​51106
• [297cb6f5c2] - tools: update doc to [email protected] [email protected] (Node.js GitHub Bot) #​50459
• [4705023343] - tools: fix simdjson updater (Yagiz Nizipli) #​50986
• [c9841583db] - tools: update eslint to 8.55.0 (Node.js GitHub Bot) #​51025
• [2b4671125e] - tools: update lint-md-dependencies to [email protected] (Node.js GitHub Bot) #​51022
• [cd891b37f6] - util: improve performance of function areSimilarFloatArrays (Liu Jia) #​51040
• [e178a43509] - vm: use v8::DeserializeInternalFieldsCallback explicitly (Joyee Cheung) #​50984
• [fd028e146f] - win,tools: upgrade Windows signing to smctl (Stefan Stojanovic) #​50956

v21.4.0: 2023-12-05, Version 21.4.0 (Current), @​targos

Compare Source

Notable Changes

This release fixes a regression introduced in v21.3.0 that caused the fs.writeFileSync
method to throw when called with 'utf8' encoding, no flag option, and if the target file didn't exist yet.

• [32acafeeb6] - (SEMVER-MINOR) fs: introduce dirent.parentPath (Antoine du Hamel) #​50976
• [724548674d] - fs: use default w flag for writeFileSync with utf8 encoding (Murilo Kakazu) #​50990

Commits

• [b24ee15fb2] - benchmark: update iterations in benchmark/crypto/hkdf.js (Lei Shi) #​50866
• [f79b54e60e] - benchmark: update iterations in benchmark/crypto/get-ciphers.js (Lei Shi) #​50863
• [dc049acbbb] - benchmark: update number of iterations for util.inspect (kylo5aby) #​50651
• [d7c562ae38] - deps: update googletest to 76bb2af (Node.js GitHub Bot) #​50555
• [59a45ddbef] - deps: update googletest to b10fad3 (Node.js GitHub Bot) #​50555
• [099ebdb781] - deps: update undici to 5.28.1 (Node.js GitHub Bot) #​50975
• [4b1bed04f7] - deps: update undici to 5.28.0 (Node.js GitHub Bot) #​50915
• [b281e98b1e] - doc: add additional details about --input-type (Shubham Pandey) #​50796
• [b7036f2028] - doc: add procedure when CVEs don't get published (Rafael Gonzaga) #​50945
• [7adf239af0] - doc: fix some errors in esm resolution algorithms (Christopher Jeffrey (JJ)) #​50898
• [759ebcaead] - doc: reserve 121 for Electron 29 (Shelley Vohr) #​50957
• [cedc3427fa] - doc: run license-builder (github-actions[bot]) #​50926
• [30a6f19769] - doc: document non-node_modules-only runtime deprecation (Joyee Cheung) #​50748
• [eecab883f0] - doc: add doc for Unix abstract socket (theanarkh) #​50904
• [ec74b93b38] - doc: remove flicker on page load on dark theme (Dima Demakov) #​50942
• [724548674d] - fs: use default w flag for writeFileSync with utf8 encoding (Murilo Kakazu) #​50990
• [32acafeeb6] - (SEMVER-MINOR) fs: introduce dirent.parentPath (Antoine du Hamel) #​50976
• [c1ee506454] - fs: remove workaround for esm package (Yagiz Nizipli) #​50907
• [1cf087dfb3] - lib: refactor to use validateFunction in diagnostics_channel (Deokjin Kim) #​50955
• [c37d18d5e1] - lib: streamline process.binding() handling (Joyee Cheung) #​50773
• [246cf73631] - lib,src: replace toUSVString with toWellFormed() (Yagiz Nizipli) #​47342
• [9bc79173a0] - loader: speed up line length calc used by moduleProvider (Mudit) #​50969
• [812ab9e4f8] - meta: bump step-security/harden-runner from 2.6.0 to 2.6.1 (dependabot[bot]) #​50999
• [1dbe1af19a] - meta: bump github/codeql-action from 2.22.5 to 2.22.8 (dependabot[bot]) #​50998
• [bed1b93f8a] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) #​50931
• [1e7d101428] - src: make ModifyCodeGenerationFromStrings more robust (Joyee Cheung) #​50763
• [709ac479eb] - src: disable uncaught exception abortion for ESM syntax detection (Yagiz Nizipli) #​50987
• [f6ff11c9f9] - src: fix backtrace with tail [[noreturn]] abort (Chengzhong Wu) #​50849
• [74f5a1cbc9] - src: print MKSNAPSHOT debug logs to stderr (Joyee Cheung) #​50759
• [3a1c664a97] - test: replace forEach to for.. test-webcrypto-export-import-cfrg.js (Angelo Parziale) #​50785
• [ac3a6eefe3] - test: log more information in SEA tests (Joyee Cheung) #​50759
• [94462d42f5] - test: consolidate utf8 text fixtures in tests (Joyee Cheung) #​50732
• [8e1a70a347] - tools: add triggers to update release links workflow (Moshe Atlow) #​50974
• [ca10cbb774] - tools: update lint-md-dependencies to [email protected] (Node.js GitHub Bot) #​50913
• [1e40c4a366] - tools: fix current version check (Marco Ippolito) #​50951
• [3faed331e1] - typings: fix JSDoc in internal/modules/esm/hooks (Alex Yang) #​50887
• [6a087ceffa] - url: throw error if argument length of revokeObjectURL is 0 (DylanTet) #​50433

v21.3.0: 2023-11-30, Version 21.3.0 (Current), @​RafaelGSS

Compare Source

Notable Changes

New --disable-warning flag

This version adds a new --disable-warning option that allows users to disable specific warnings either by code
(i.e. DEP0025) or type (i.e. DeprecationWarning, ExperimentalWarning).

This option works alongside existing --warnings and --no-warnings.

For example, the following script will not emit DEP0025 require('node:sys') when executed with
node --disable-warning=DEP0025:

import sys from 'node:sys';

Contributed by Ethan-Arrowood in #​50661

Update Root Certificates to NSS 3.95

This is the certdata.txt from NSS 3.95, released on 2023-11-16.

This is the version of NSS that will ship in Firefox 121 on
2023-12-19.

Certificates added:

• TrustAsia Global Root CA G3
• TrustAsia Global Root CA G4
• CommScope Public Trust ECC Root-01
• CommScope Public Trust ECC Root-02
• CommScope Public Trust RSA Root-01
• CommScope Public Trust RSA Root-02

Certificates removed:

• Autoridad de Certificacion Firmaprofesional CIF A626340

Fast fs.writeFileSync with UTF-8 Strings

Enhanced writeFileSync functionality by implementing a highly efficient fast path primarily in C++ for UTF8-encoded string data.
Additionally, optimized the appendFileSync method by leveraging the improved writeFileSync functionality.
For simplicity and performance considerations, the current implementation supports only string data,
as benchmark results raise concerns about the efficacy of using Buffer for this purpose.
Future optimizations and expansions may be explored, but for now, the focus is on maximizing efficiency for string data operations.

Contributed by CanadaHonk in #​49884.

Other Notable Changes

• [c7a7493ca2] - (SEMVER-MINOR) module: bootstrap module loaders in shadow realm (Chengzhong Wu) #​48655
• [bc3f7b5401] - (SEMVER-MINOR) module: remove useCustomLoadersIfPresent flag (Chengzhong Wu) #​48655
• [aadff07e59] - (SEMVER-MINOR) src: create per isolate proxy env template (Chengzhong Wu) #​48655
• [91aa9dd23a] - (SEMVER-MINOR) src: create fs_dir per isolate properties (Chengzhong Wu) #​48655
• [5c5834190a] - **

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.