Update all #1215
Open
Update all #1215
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
renovate
bot
force-pushed
the
renovate/all
branch
3 times, most recently
from
5529f5a to
c35765f
Compare
renovate
bot
force-pushed
the
renovate/all
branch
6 times, most recently
from
986117b to
f95066d
Compare
renovate
bot
force-pushed
the
renovate/all
branch
2 times, most recently
from
169dcd4 to
9392ade
Compare
renovate
bot
force-pushed
the
renovate/all
branch
7 times, most recently
from
5516dd5 to
6242a8d
Compare
renovate
bot
force-pushed
the
renovate/all
branch
3 times, most recently
from
8f92f27 to
a8d64f3
Compare
renovate
bot
force-pushed
the
renovate/all
branch
6 times, most recently
from
8d96b49 to
50724cb
Compare
renovate
bot
force-pushed
the
renovate/all
branch
3 times, most recently
from
02a9ac2 to
375a626
Compare
renovate
bot
force-pushed
the
renovate/all
branch
2 times, most recently
from
7603068 to
b38203b
Compare
renovate
bot
force-pushed
the
renovate/all
branch
3 times, most recently
from
9e5075c to
499e092
Compare
renovate
bot
force-pushed
the
renovate/all
branch
6 times, most recently
from
8cb650e to
02c0820
Compare
renovate
bot
force-pushed
the
renovate/all
branch
4 times, most recently
from
c00c0fd to
50e28de
Compare
renovate
bot
force-pushed
the
renovate/all
branch
2 times, most recently
from
1ee983b to
d0e6d39
Compare
renovate
bot
force-pushed
the
renovate/all
branch
2 times, most recently
from
20cbd2b to
d10c03a
Compare
renovate
bot
force-pushed
the
renovate/all
branch
3 times, most recently
from
1b58a5e to
bb7256e
Compare
renovate
bot
force-pushed
the
renovate/all
branch
from
bb7256e to
412acf2
Compare
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
6.0.4->6.1.018.19.112->18.19.1306.4.0->6.4.19.1.3->9.2.16.10.0->6.11.00.30.17->0.30.212.8.1->2.9.422.16.0->22.21.110.19.6->10.27.23.2.5->3.6.23.6.0->3.6.25.0.5->5.0.104.44.0->4.52.50.3.4->0.4.03.0.1->3.0.25.8.3->5.9.3Release Notes
rollup/plugins (@rollup/plugin-babel)
v6.1.02025-10-13
Features
avajs/ava (ava)
v6.4.1Compare Source
What's Changed
New Contributors
Full Changelog: avajs/ava@v6.4.0...v6.4.1
babel/babel-loader (babel-loader)
v9.2.1Compare Source
What's Changed
Full Changelog: babel/babel-loader@v9.2.0...v9.2.1
v9.2.0Compare Source
What's Changed
cacheIdentifieris computed from the merged options by @JLHwung in #1000Full Changelog: babel/babel-loader@v9.1.3...v9.2.0
webpack-contrib/css-loader (css-loader)
v6.11.0Compare Source
Features
Bug Fixes
@scopeat-rule without params (#1581) (e022e3b)Rich-Harris/magic-string (magic-string)
v0.30.21Compare Source
v0.30.19Compare Source
Bug Fixes
Features
replace(All)support replacement for functions when the first parameter is a string (#304) (fd1d887)v0.30.18Compare Source
Bug Fixes
webpack-contrib/mini-css-extract-plugin (mini-css-extract-plugin)
v2.9.4Compare Source
v2.9.3Compare Source
v2.9.2Compare Source
v2.9.1Compare Source
v2.9.0Compare Source
Features
defaultExportoption to generate default and named export together (#1084) (74ae781)Bug Fixes
2.8.1 (2024-02-27)
Bug Fixes
nonceif__webpack_nonce__has been defined (c7f0aee)nodejs/node (node)
v22.21.1: 2025-10-28, Version 22.21.1 'Jod' (LTS), @aduh95Compare Source
Commits
af33e8e668] - benchmark: remove unused variable from util/priority-queue (Bruno Rodrigues) #598726764ce8756] - benchmark: update count to n in permission startup (Bruno Rodrigues) #598724e8d99f0dc] - benchmark: update num to n in dgram offset-length (Bruno Rodrigues) #59872af0a8ba7f8] - benchmark: adjust dgram offset-length len values (Bruno Rodrigues) #5970878efd1be4a] - benchmark: update num to n in dgram offset-length (Bruno Rodrigues) #59708df72dc96e9] - console,util: improve array inspection performance (Ruben Bridgewater) #60037ef67d09f50] - http: improve writeEarlyHints by avoiding for-of loop (Haram Jeong) #5995823468fd76b] - http2: fix allowHttp1+Upgrade, broken by shouldUpgradeCallback (Tim Perry) #5992456abc4ac76] - lib: optimize priority queue (Gürgün Dayıoğlu) #60039ea5cfd98c5] - lib: implement passive listener behavior per spec (BCD1me) #59995c2dd6eed2f] - process: fix wrong asyncContext under unhandled-rejections=strict (Shima Ryuhei) #6010381a3055710] - process: fix defaultenvforprocess.execve(Richard Lau) #60029fe492c7ace] - process: fix hrtime fast call signatures (Renegade334) #5960076b4cab8fc] - src: bring permissions macros in line with general C/C++ standards (Anna Henningsen) #6005321970970c7] - src: removeAnalyzeTemporaryDtorsoption from .clang-tidy (iknoom) #60008609c063e81] - src: remove unused variables from report (Moonki Choi) #60047987841a773] - src: avoid unnecessary string allocations in SPrintF impl (Anna Henningsen) #600526e386c0632] - src: make ToLower/ToUpper input args more flexible (Anna Henningsen) #60052c3be1226c7] - src: allowstd::string_viewarguments toSPrintF()and friends (Anna Henningsen) #60058764d35647d] - src: remove unnecessarystd::stringerror messages (Anna Henningsen) #600571289ef89ec] - src: remove unnecessary shadowed functions on Utf8Value & BufferValue (Anna Henningsen) #60056d1fb8a538d] - src: avoid unnecessary string ->char*-> string round trips (Anna Henningsen) #6005554b439fb5a] - src: filloptions_args,options_envafter vectors are finalized (iknoom) #59945c7c597e2ca] - src: use RAII for uv_process_options_t (iknoom) #59945b928ea9716] - test: ensure that the message event is fired (Luigi Pinca) #59952e4b95a5158] - test: replace diagnostics_channel stackframe in output snapshots (Chengzhong Wu) #600244206406694] - test: mark test-web-locks skip on IBM i (SRAVANI GUNDEPALLI) #5999626394cd5bf] - test: expand tls-check-server-identity coverage (Diango Gavidia) #60002b58df47995] - test: fix typo of test-benchmark-readline.js (Deokjin Kim) #59993af3a59dba8] - test: verify tracing channel doesn't swallow unhandledRejection (Gerhard Stöbich) #59974cee362242b] - timers: fix binding fast call signatures (Renegade334) #5960040fea57fdd] - tools: add message on auto-fixing js lint issues in gh workflow (Dario Piotrowicz) #59128aac90d351b] - tools: verify signatures when updating nghttp* (Antoine du Hamel) #601139fae03c7d9] - tools: use dependabot cooldown and move tools/doc (Rafael Gonzaga) #5997881548abdf6] - wasi: fix WasiFunction fast call signature (Renegade334) #59600v22.21.0: 2025-10-20, Version 22.21.0 'Jod' (LTS), @aduh95Compare Source
Notable Changes
1486fedea1] - (SEMVER-MINOR) cli: add--use-env-proxy(Joyee Cheung) #59151bedaaa11fc] - (SEMVER-MINOR) http: support http proxy for fetch underNODE_USE_ENV_PROXY(Joyee Cheung) #57165af8b5fa29d] - (SEMVER-MINOR) http: addshouldUpgradeCallbackto let servers control HTTP upgrades (Tim Perry) #5982442102594b1] - (SEMVER-MINOR) http,https: add built-in proxy support inhttp/https.requestandAgent(Joyee Cheung) #58980686ac49b82] - (SEMVER-MINOR) src: add percentage support to--max-old-space-size(Asaf Federman) #59082Commits
a71dd592e3] - benchmark: calibrate config dgram multi-buffer (Bruno Rodrigues) #5969616c4b466f4] - benchmark: calibrate config cluster/echo.js (Nam Yooseong) #5983653cb9f3b6c] - build: add the missing macro definitions for OpenHarmony (hqzing) #59804ec5290fe01] - build: do not include custom ESLint rules testing in tarball (Antoine du Hamel) #598091486fedea1] - (SEMVER-MINOR) cli: add --use-env-proxy (Joyee Cheung) #591511f93913446] - crypto: usereturn awaitwhen returning Promises from async functions (Renegade334) #59841f488b2ff73] - crypto: use async functions for non-stub Promise-returning functions (Renegade334) #59841aed9fd5ac4] - crypto: avoid calls topromise.catch()(Renegade334) #5984137c2d186f0] - deps: update amaro to 1.1.4 (pmarchini) #6004428aea13419] - deps: update archs files for openssl-3.5.4 (Node.js GitHub Bot) #60101ddbc1aa0bb] - deps: upgrade openssl sources to openssl-3.5.4 (Node.js GitHub Bot) #60101badbba2da9] - deps: update googletest to50b8600(Node.js GitHub Bot) #5995548aaf98a08] - deps: update archs files for openssl-3.5.3 (Node.js GitHub Bot) #59901e02a562ea6] - deps: upgrade openssl sources to openssl-3.5.3 (Node.js GitHub Bot) #599017e0e86cb92] - deps: upgrade npm to 10.9.4 (npm team) #6007491dda5facf] - deps: update undici to 6.22.0 (Matteo Collina) #601123a3220a2f0] - dgram: restore buffer optimization in fixBufferList (Yoo) #5993409bdcce6b8] - diagnostics_channel: fix race condition with diagnostics_channel and GC (Ugaitz Urien) #59910b3eeb3bd13] - doc: provide alternative tourl.parse()using WHATWG URL (Steven) #597361ddaab1904] - doc: mention reverse proxy and include simple example (Steven) #597363b3b71e99c] - doc: mark.envfiles support as stable (Santeri Hiltunen) #59925d37f67d1bd] - doc: remove optional title prefixes (Aviv Keller) #60087ca2dff63f9] - doc: fix typo on child_process.md (Angelo Gazzola) #601143fca564a05] - doc: add automated migration info to deprecations (Augustin Mauroy) #600224bc366fc16] - doc: use "WebAssembly" instead of "Web Assembly" (Tobias Nießen) #599544808dbdd9a] - doc: fix typo in section on microtask order (Tobias Nießen) #59932d6e303d645] - doc: update V8 fast API guidance (René) #589990a3a3f729e] - doc: add security escalation policy (Ulises Gascón) #598068fd669c70d] - doc: type improvement of filehttp.md(yusheng chen) #581899833dc6060] - doc: rephrase dynamic import() description (Nam Yooseong) #592242870a73681] - doc,crypto: update subtle.generateKey and subtle.importKey (Filip Skokan) #5985185818db93c] - fs,win: do not add a second trailing slash in readdir (Gerhard Stöbich) #59847bedaaa11fc] - (SEMVER-MINOR) http: support http proxy for fetch under NODE_USE_ENV_PROXY (Joyee Cheung) #57165af8b5fa29d] - (SEMVER-MINOR) http: add shouldUpgradeCallback to let servers control HTTP upgrades (Tim Perry) #59824758271ae66] - http: optimize checkIsHttpToken for short strings (방진혁) #5983242102594b1] - (SEMVER-MINOR) http,https: add built-in proxy support in http/https.request and Agent (Joyee Cheung) #58980a33ed9bf96] - inspector: ensure adequate memory allocation forBinary::toBase64(René) #5987034c686be2b] - lib: update inspect output format for subclasses (Miguel Marcondes Filho) #5968712e553529c] - lib: add source map support for assert messages (Chengzhong Wu) #59751d2a70571f8] - lib,src: refactor assert to load error source from memory (Chengzhong Wu) #5975120a9e86b5d] - meta: move Michael to emeritus (Michael Dawson) #60070c591cca15c] - meta: bump github/codeql-action from 3.30.0 to 3.30.5 (dependabot[bot]) #60089090ba141b1] - meta: bump codecov/codecov-action from 5.5.0 to 5.5.1 (dependabot[bot]) #60091a0ba6884a5] - meta: bump actions/stale from 9.1.0 to 10.0.0 (dependabot[bot]) #600920feca0c541] - meta: bump actions/setup-node from 4.4.0 to 5.0.0 (dependabot[bot]) #600937cd2b42d18] - meta: bump step-security/harden-runner from 2.12.2 to 2.13.1 (dependabot[bot]) #600941f3b9d66ac] - meta: bump actions/cache from 4.2.4 to 4.3.0 (dependabot[bot]) #600950fedbb3de7] - meta: bump ossf/scorecard-action from 2.4.2 to 2.4.3 (dependabot[bot]) #6009604590b8267] - meta: bump actions/setup-python from 5.6.0 to 6.0.0 (dependabot[bot]) #600902bf0a9318f] - meta: add .npmrc with ignore-scripts=true (Joyee Cheung) #59914e10dc7b81c] - module: allow overriding linked requests for a ModuleWrap (Chengzhong Wu) #595272237142369] - module: link module with a module request record (Chengzhong Wu) #588866d24b88fbc] - node-api: added SharedArrayBuffer api (Mert Can Altin) #590714cc84c96f4] - node-api: make napi_delete_reference use node_api_basic_env (Jeetu Suthar) #59684e790eb6b50] - repl: fix cpu overhead pasting big strings to the REPL (Ruben Bridgewater) #5985799ea08dc43] - repl: add isValidParentheses check before wrap input (Xuguang Mei) #59607e4a4f63019] - sqlite: fix crash session extension callbacks with workers (Bart Louwers) #5984842c5544b97] - src: assert memory calc for max-old-space-size-percentage (Asaf Federman) #59460686ac49b82] - (SEMVER-MINOR) src: add percentage support to --max-old-space-size (Asaf Federman) #5908284701ff668] - src: clear all linked module caches once instantiated (Chengzhong Wu) #591178e182e561f] - src: remove unnecessaryEnvironment::GetCurrent()calls (Moonki Choi) #59814c9cde35c4d] - src: simplify is_callable by making it a concept (Tobias Nießen) #58169892b425ee1] - src: rename private fields to follow naming convention (Moonki Choi) #5992336b68db7f5] - src: reduce the nearest parent package JSON cache size (Michael Smith) #5988826b40bad02] - src: replace FIXED_ONE_BYTE_STRING with Environment-cached strings (Moonki Choi) #5989134dcb7dc32] - src: create strings inFIXED_ONE_BYTE_STRINGas internalized (Anna Henningsen) #598264d748add05] - src: removestd::arrayoverload ofFIXED_ONE_BYTE_STRING(Anna Henningsen) #59826bb6fd7c2d1] - src: ensurev8::Eternalis empty before setting it (Anna Henningsen) #598257a91282bf9] - src: use simdjson::pad (0hm☘️) #59391ba00875f01] - stream: use new AsyncResource instead of bind (Matteo Collina) #59867ebec3ef68b] - (SEMVER-MINOR) test: move http proxy tests to test/client-proxy (Joyee Cheung) #589807067d79fb3] - test: mark sea tests flaky on macOS x64 (Richard Lau) #60068ca1942c9d5] - test: testcase demonstrating issue 59541 (Eric Rannaud) #59801660d57355e] - test,doc: skip --max-old-space-size-percentage on 32-bit platforms (Asaf Federman) #6014419a7b1ef26] - tls: load bundled and extra certificates off-thread (Joyee Cheung) #59856095e7a81fc] - tls: only do off-thread certificate loading on loading tls (Joyee Cheung) #59856c42c1204c7] - tools: fixtools/make-v8.shfor clang (Richard Lau) #59893b632a1d98d] - tools: skip test-internet workflow for draft PRs (Michaël Zasso) #598176021c3ac76] - tools: copyeditbuild-tarball.yml(Antoine du Hamel) #59808ef005d0c9b] - typings: update 'types' binding (René) #5969228ef564ecd] - typings: remove unused imports (Nam Yooseong) #59880f88752ddb6] - url: replaced slice with at (Mikhail) #5918124c224960c] - url: add type checking to urlToHttpOptions() (simon-id) #59753f2fbcc576d] - util: fix debuglog.enabled not being present with callback logger (Ruben Bridgewater) #598586277058e43] - vm: sync-ify SourceTextModule linkage (Chengzhong Wu) #590005bf21a4309] - vm: explain how to share promises between contexts w/ afterEvaluate (Eric Rannaud) #59801312b33a083] - vm: "afterEvaluate", evaluate() return a promise from the outer context (Eric Rannaud) #598011eadab863c] - win,tools: add description to signature (Martin Costello) #59877816e1befb1] - zlib: reduce code duplication (jhofstee) #57810v22.20.0: 2025-09-24, Version 22.20.0 'Jod' (LTS), @richardlauCompare Source
Notable Changes
OpenSSL updated to 3.5.2
For official Node.js builds, or builds using the default build configuration, Node.js now bundles OpenSSL 3.5.2. This update allows Node.js 22.x to be supported through to the planned End-of-Life date of 2027-04-30 as the previously bundled OpenSSL 3.0.x goes out of support in September 2026.
This change does not affect third-party builds of Node.js that link to an external OpenSSL (or OpenSSL-compatible) library.
Other notable changes
5b83e1e0a2] - crypto: update root certificates to NSS 3.114 (Node.js GitHub Bot) #5957134b25fd97b] - doc: stabilize --disable-sigusr1 (Rafael Gonzaga) #59707bf41218ed9] - doc: markpath.matchesGlobas stable (Aviv Keller) #595721dbad2058f] - (SEMVER-MINOR) http: add Agent.agentKeepAliveTimeoutBuffer option (Haram Jeong) #59315062e837d5f] - (SEMVER-MINOR) http2: add support for raw header arrays in h2Stream.respond() (Tim Perry) #59455b8066611c3] - inspector: add http2 tracking support (Darshan Sen) #596119b7dd40da8] - (SEMVER-MINOR) sea: implement execArgvExtension (Joyee Cheung) #5956048bfbd3dca] - (SEMVER-MINOR) sea: support execArgv in sea config (Joyee Cheung) #59314cf06e74076] - (SEMVER-MINOR) stream: add brotli support to CompressionStream and DecompressionStream (Matthew Aitken) #5946462bb80c17e] - (SEMVER-MINOR) test_runner: support object property mocking (Idan Goshen) #584389e2aa23be9] - (SEMVER-MINOR) worker: add cpu profile APIs for worker (theanarkh) #59428Commits
b7b78fd565] - assert: cap input size in myersDiff to avoid Int32Array overflow (Haram Jeong) #595789da50a6c53] - benchmark: sqlite prevent create both tables on prepare selects (Bruno Rodrigues) #597094c1538770e] - benchmark: calibrate config array-vs-concat (Rafael Gonzaga) #59587fc3f82d683] - benchmark: calibrate config v8/serialize.js (Rafael Gonzaga) #59586e95c9b2950] - benchmark: reduce readfile-permission-enabled config (Rafael Gonzaga) #59589e4fea38b31] - benchmark: calibrate length of util.diff (Rafael Gonzaga) #59588c5d68c4a0f] - benchmark, test: replace CRLF variable with string literal (Lee Jiho) #59466129a1d673b] - build: fix getting OpenSSL version on Windows (Michaël Zasso) #596099f53db7162] - build: fix 'implicit-function-declaration' on OpenHarmony platform (hqzing) #595473839593e07] - build: usewindows-2025runner (Michaël Zasso) #59673e430464669] - build: compile bundled uvwasi conditionally (Carlo Cabrera) #59622e2c9cab0cd] - build: do not set-mminimal-tocwithclang(Richard Lau) #59484208bc810a1] - child_process: remove unsafe array iteration (hotpineapple) #59347d74799d90c] - crypto: load system CA certificates off thread (Joyee Cheung) #595505b83e1e0a2] - crypto: update root certificates to NSS 3.114 (Node.js GitHub Bot) #59571d289b1d1af] - deps: V8: cherry-picke3df60f(Chengzhong Wu) #58691cf5d91e2a6] - deps: update uvwasi to 0.0.23 (Node.js GitHub Bot) #597911cf24a0445] - deps: update histogram to 0.11.9 (Node.js GitHub Bot) #596898638bd3f2e] - deps: update googletest toeb2d85e(Node.js GitHub Bot) #593353ff4eb5b37] - deps: update amaro to 1.1.2 (Node.js GitHub Bot) #596164d268ac034] - deps: V8: cherry-pick7b91e3e(Milad Fa) #5948583410eb0e3] - deps: V8: cherry-pick59d52e3(Milad Fa) #594855780af02cb] - deps: update amaro to 1.1.1 (Node.js GitHub Bot) #591412986eca821] - deps: V8: cherry-pick6b1b9bc(zhoumingtao) #5928398e399b3ea] - deps: update archs files for openssl-3.5.2 (Node.js GitHub Bot) #593712b983a7520] - deps: upgrade openssl sources to openssl-3.5.2 (Node.js GitHub Bot) #593717ffbb42454] - deps: update archs files for openssl-3.5.1 (Node.js GitHub Bot) #59234bd48a60a75] - deps: upgrade openssl sources to openssl-3.5.1 (Node.js GitHub Bot) #5923424762a10ca] - deps: fix OpenSSL security level at 1 (Richard Lau) #598591233e92d10] - diagnostics_channel: revoke DEP0163 (René) #5975834b25fd97b] - doc: stabilize --disable-sigusr1 (Rafael Gonzaga) #59707d7adf8be64] - doc: update "Type stripping in dependencies" section (Josh Kelley) #59652a1d7e4fdbf] - doc: add Miles Guicent as triager (Miles Guicent) #59562bf41218ed9] - doc: markpath.matchesGlobas stable (Aviv Keller) #59572afaa1ccb74] - doc: improve documentation for raw headers in HTTP/2 APIs (Tim Perry) #59633b95ff56102] - doc: update install_tools.bat free disk space (Stefan Stojanovic) #595796ff939b8d3] - doc: fix filehandle.read typo (Ruy Adorno) #59635963bfa9d6f] - doc: fix missing link to the Error documentation in thehttppage (Alexander Makarenko) #590800e10a8ea27] - doc: improvesqlite.backup()progress/fulfillment documentation (René) #5959818ceefbabd] - doc: clarify experimental platform vulnerability policy (Matteo Collina) #5959166cdd00368] - doc: link toTypedArray.from()in signature (Aviv Keller) #592269f058ce7c0] - doc: fix typos inenvironment_variables.md(PhistucK) #595363cfec820e9] - doc: add security incident reponse plaConfiguration
📅 Schedule: Branch creation - Between 12:00 AM and 03:59 AM, only on Monday ( * 0-3 * * 1 ) (UTC), Automerge - At any time (no schedule defined).
🚦 Automerge: Enabled.
♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.