JavaGolangJavaScriptSwiftAndroidRustMiddleware
7 hours ago
seaweedfs
seaweedfs

4.36

What's Changed

S3 / S3 API

  • s3api: sort repeated SigV4 query values — @7y-9 (#10031)
  • s3api: reject malformed Range offsets — @guankai (#10034)
  • s3api: preserve requested AES256 copy encryption — @7y-9 (#10049)
  • s3api: preserve equals signs in tag values — @guankai (#10058)
  • s3api: apply static config file updates on reload — @chrislusf (#10096)
  • s3: keep a file promoted to a directory retrievable as an object — @chrislusf (#10070)
  • s3: skip 503 when client disconnects during remote cache wait — @chrislusf (#10071)
  • s3: avoid reading upload body when writing JSON errors — @qzhello (#10073)
  • s3: propagate IAM changes from standalone weed s3 to peer pods — @chrislusf (#10095)
  • s3: replicate by fanning out from the gateway to every holder — @chrislusf (#10078)

Iceberg

  • iceberg: support namespace property updates — @chrislusf (#10052)
  • iceberg: return 400 for invalid namespace/table names — @chrislusf (#10051)
  • iceberg: support table register — @chrislusf (#10067)
  • iceberg: support multi-table transaction commit — @chrislusf (#10066)
  • iceberg: support views — @chrislusf (#10069)
  • iceberg: support table rename — @chrislusf (#10068)
  • iceberg: detect table-exists through the wrapped manager error — @chrislusf (#10075)

S3 Tables

  • s3tables: fix create-after-rename overwriting the renamed table — @chrislusf (#10091)
  • s3tables: allow hyphens in namespace and table names — @chrislusf (#10093)

STS / IAM / Security

  • sts: authorize AssumeRole by the role's trust policy — @chrislusf (#10097)
  • sts: enforce session-policy explicit deny during role chaining — @chrislusf (#10103)
  • security: add BearerPrefix constant for Authorization headers — @chrislusf (#10101)

Filer

  • filer: propagate proxyChunkId query params to volume server — @MorezMartin (#10036)
  • filer: apply -filer.disk default to metadata log assigns — @jk2lx (#10080)
  • filer.backup: repair chunk-incomplete and stale destination entries — @kisow (#10082)
  • filer: mint volume read JWT when proxying chunk reads — @chrislusf (#10100)

Mount (FUSE)

  • mount: don't hang close() when a writer is killed during flush — @chrislusf (#10090)
  • mount: skip redundant permission checks under default_permissions — @chrislusf (#10089)
  • mount: confirm an empty directory rebuild before caching it — @chrislusf (#10092)
  • mount: don't fail close() on a benign FUSE interrupt — @chrislusf (#10102)
  • fix: enforce XATTR_REPLACE semantics in setxattr — @shiftraodd (#10059)

Volume / EC / Storage

  • feat: support marking volumes by collection — @7y-9 (#9585)
  • Volume balancing by step — @m-sementsov (#10035)
  • Fix stale cache fallback for empty volume locations in wdclient — @os-pradipbabar (#10081)
  • chunk_cache: close data/index files on initialization error — @AlexArtemis (#10057)

Shell (EC tooling)

  • shell: support batched EC encode and multi-volume selection in ec.encode — @qzhello (#10030)
  • shell: exclude failed EC shard copies from rebuild recoverability gate — @qzhello (#10043)
  • shell ec.rebuild: allow targeting rebuild to specific volume IDs — @plisandro (#10087)

Worker

  • worker: don't leak task goroutines on forced shutdown — @chrislusf (#10062)

PostgreSQL

  • postgres: resolve startup message length type mismatch and uint underflow OOM risk — @198wmj (#10065)
  • postgres: prevent uint32 underflow & OOM in message parsing — @sshhan (#10099)

Util / Core

  • util: support IPv6 host port parsing — @guankai (#10046)
  • util: trim minFreeSpace values before parsing — @guankai (#10083)
  • util/http: lazily init the global HTTP client to fix admin metrics nil panic — @chrislusf (#10044)
  • benchmark: close CPU profile file handle after profiling — @AlexArtemis (#10048)

Error-handling cleanups

  • fix: use %w instead of %v in fmt.Errorf to preserve error chain — @DanielWu-star (#10047)
  • refactor: 将 fmt.Errorf 中的 %v 替换为 %w 以保留错误链 — @aCuteBegCinner (#10050)
  • fix: resolve inconsistent usage of error variables — @mumingl (#10060)

Dependencies

  • bump cassandra-gocql-driver to v2.1.2 — @chrislusf (#10033)
  • bump ydb-go-sdk/v3 3.139.5 → 3.141.0 — @dependabot (#10041)
  • bump modernc.org/sqlite 1.49.1 → 1.53.0 — @dependabot (#10040)
  • bump reedsolomon 1.14.0 → 1.14.1 — @dependabot (#10039)
  • bump testcontainers-go 0.40.0 → 0.43.0 — @dependabot (#10042)
  • bump iceberg-go 0.5.0 → 0.6.0 — @dependabot (#10038)
  • bump jackson-databind 2.18.6 → 2.22.0 (test/java/spark) — @dependabot (#10094)
  • deps: replace deleted tyler-smith/go-bip39 with cosmos fork — @chrislusf (#10088)

Build / CI / Telemetry

  • build(deps): bump actions/checkout 6 → 7 — @dependabot (#10037)
  • telemetry: sync go.mod/go.sum with parent module deps — @chrislusf (#10045)

New Contributors

Full Changelog: https://github.com/seaweedfs/seaweedfs/compare/4.35...4.36

10 hours ago
higress
higress-group

v2.2.3

Higress

📋 Overview of This Release

This release includes 48 updates, covering AI Gateway enhancements, multi-provider LLM protocol compatibility, gateway stability, Gateway API and Helm improvements, test coverage, and release maintenance.

Distribution of Updates

  • New Features: 11 items
  • Bug Fixes: 28 items
  • Documentation Updates: 1 item
  • Testing Improvements: 5 items
  • Release and Dependency Maintenance: 3 items

📝 Full Change Log

🚀 New Features (Features)

  • Related PR: #3849
    Contributor: @GHX5T-SOL
    Change Log: Key Auth now supports multiple credentials for a single service.
    Feature Value: Simplifies migration and multi-client access scenarios where more than one key must be managed for the same service.

  • Related PR: #3838
    Contributor: @Betula-L
    Change Log: jwt-auth now supports remote JWKS.
    Feature Value: Makes centralized key management and key rotation easier for JWT-based authentication.

  • Related PR: #3894
    Contributor: @JianweiWang
    Change Log: ai-security-guard adds structured x_higress deny responses, error-path metrics, and AI logging.
    Feature Value: Improves observability and policy feedback for AI content safety enforcement.

  • Related PR: #3898
    Contributor: @zat366
    Change Log: ai-load-balancer adds a cluster_hash load balancing policy based on FNV-1a consistent hashing.
    Feature Value: Provides more stable routing across model backend clusters.

  • Related PR: #3895
    Contributor: @JianweiWang
    Change Log: ai-security-guard adds Embedding API content detection support.
    Feature Value: Extends AI content safety checks beyond chat/completion-style requests.

  • Related PR: #3916
    Contributor: @ponypony0123
    Change Log: model-router adds keepOriginalModelName to preserve the full original model name.
    Feature Value: Helps users keep downstream model identity semantics intact while still applying model routing rules.

  • Related PR: #3979
    Contributor: @EndlessSeeker
    Change Log: Helm now supports skipping IngressClass creation.
    Feature Value: Better supports clusters where IngressClass resources are pre-managed or controlled by platform teams.

  • Related PR: #3981
    Contributor: @EndlessSeeker
    Change Log: GatewayClass isolation is now configurable.
    Feature Value: Gives operators more control over resource boundaries in multi-GatewayClass environments.

  • Related PR: #3943
    Contributor: @zijiren233
    Change Log: Enhanced SSL passthrough support.
    Feature Value: Improves Higress support for TLS passthrough scenarios.

  • Related PR: #3989
    Contributor: @Rand01ph
    Change Log: AI Proxy adds vLLM passthrough support for Anthropic Messages and newer OpenAI endpoints.
    Feature Value: Improves compatibility for users running vLLM behind Higress as an AI gateway.

  • Related PR: #4000
    Contributor: @ponypony0123
    Change Log: Added the ai-context-limit WASM plugin for context window limit enforcement.
    Feature Value: Helps reduce failures and cost risks caused by requests that exceed model context limits.

🐛 Bug Fixes (Bug Fixes)

  • Related PR: #3864
    Contributor: @Jing-ze
    Change Log: ai-proxy re-anchors X-HI-ORIGINAL-AUTH on the first hop to fix cascaded-gateway 401 responses.
    Feature Value: Restores correct authentication behavior in cascaded gateway deployments.

  • Related PR: #3839
    Contributor: @zat366
    Change Log: ai-proxy uses HasSuffix instead of Contains in Claude API name detection.
    Feature Value: Avoids sub-path misidentification and improves Claude-compatible routing accuracy.

  • Related PR: #3870
    Contributor: @CH3CHO
    Change Log: Fixed descriptions for basePath-related fields in the ai-proxy plugin.
    Feature Value: Makes plugin configuration documentation clearer and less error-prone.

  • Related PR: #3869
    Contributor: @CH3CHO
    Change Log: Fixed test cases in registry/nacos/mcpserver/watcher_test.go.
    Feature Value: Improves reliability of registry and MCP server watcher tests.

  • Related PR: #3860
    Contributor: @Jing-ze
    Change Log: ai-proxy now routes Anthropic Messages natively to Vertex :rawPredict.
    Feature Value: Improves Vertex AI compatibility for Anthropic Messages requests.

  • Related PR: #3851
    Contributor: @JianweiWang
    Change Log: ai-statistics skips empty streaming model values.
    Feature Value: Prevents inaccurate or noisy model statistics for streaming requests.

  • Related PR: #3904
    Contributor: @Jing-ze
    Change Log: ai-proxy strips anthropic-beta and anthropic-version headers in Vertex passthrough mode.
    Feature Value: Avoids incompatible headers when routing Anthropic-style requests through Vertex.

  • Related PR: #3914
    Contributor: @Jing-ze
    Change Log: Bumped oauth2-proxy to fix a nil panic in the OIDC verifier callback.
    Feature Value: Improves OIDC authentication stability.

  • Related PR: #3923
    Contributor: @johnlanni
    Change Log: Removed request-count rebuild triggers in WASM.
    Feature Value: Reduces unnecessary rebuild behavior.

  • Related PR: #3922
    Contributor: @johnlanni
    Change Log: Rebuilds the MCP filter under high memory usage.
    Feature Value: Improves runtime stability under memory pressure.

  • Related PR: #3928
    Contributor: @Jing-ze
    Change Log: Fixed Set-Cookie header corruption during OIDC session refresh.
    Feature Value: Prevents broken sessions during OIDC refresh flows.

  • Related PR: #3964
    Contributor: @EndlessSeeker
    Change Log: Merges InferencePool route configs correctly during HTTPRoute merging.
    Feature Value: Fixes route config loss in Gateway API inference routing scenarios.

  • Related PR: #3971
    Contributor: @EndlessSeeker
    Change Log: Helm disables alpha Gateway API watches by default.
    Feature Value: Reduces default install risk from alpha API watchers.

  • Related PR: #3980
    Contributor: @EndlessSeeker
    Change Log: Sets Gateway status address type by value.
    Feature Value: Fixes Gateway status address reporting.

  • Related PR: #3956
    Contributor: @XinhhD
    Change Log: ai-proxy cleans client Authorization headers for API-key providers.
    Feature Value: Prevents client credentials from leaking into upstream API-key provider requests.

  • Related PR: #3973
    Contributor: @XinhhD
    Change Log: ai-proxy preserves Vertex thoughtSignature values in OpenAI tool calls.
    Feature Value: Improves Vertex tool-call compatibility.

  • Related PR: #3985
    Contributor: @XinhhD
    Change Log: ai-proxy includes tool call type in Claude stream deltas.
    Feature Value: Improves Claude stream compatibility for tool calls.

  • Related PR: #3924
    Contributor: @geekspeng
    Change Log: Helm moves imagePullPolicy from PodSpec to the gateway container level.
    Feature Value: Aligns rendered gateway manifests with Kubernetes container-level image pull policy semantics.

  • Related PR: #3905
    Contributor: @philo-x
    Change Log: Fixed golang-filter architecture mismatch during local gateway builds on arm64 macOS.
    Feature Value: Improves local build reliability on Apple Silicon machines.

  • Related PR: #3998
    Contributor: @yyyCode
    Change Log: Helm uses Chart.Version as the default plugin-server image tag.
    Feature Value: Keeps plugin-server image tag defaults aligned with chart versions.

  • Related PR: #3994
    Contributor: @EndlessSeeker
    Change Log: Preserves Ingress LoadBalancer hostnames.
    Feature Value: Avoids losing hostname-based load balancer addresses in Ingress status.

  • Related PR: #4002
    Contributor: @geekspeng
    Change Log: Helm applies imagePullPolicy to the controller container and promtail sidecar.
    Feature Value: Ensures rendered manifests apply image pull behavior consistently across containers.

  • Related PR: #3988
    Contributor: @enkilee
    Change Log: Fixed several typos.
    Feature Value: Improves repository documentation and code readability.

  • Related PR: #3962
    Contributor: @CH3CHO
    Change Log: ai-cache handles SSE first chunks that only contain a role, fixing #3953.
    Feature Value: Improves AI cache compatibility with streaming responses.

  • Related PR: #3990
    Contributor: @XinhhD
    Change Log: ai-proxy adds IDs for Vertex tool calls.
    Feature Value: Improves downstream tool-call correlation and compatibility.

  • Related PR: #4013
    Contributor: @EndlessSeeker
    Change Log: OIDC now fails closed when the verifier is unavailable.
    Feature Value: Avoids unsafe authentication behavior during verifier failures.

  • Related PR: #4012
    Contributor: @EndlessSeeker
    Change Log: Hardened cluster key rate-limit cookie parsing.
    Feature Value: Improves robustness for cluster-level rate-limit cookie handling.

  • Related PR: #4016
    Contributor: @EndlessSeeker
    Change Log: Reverted "Skip TLS certificate verification for HTTPS upstreams".
    Feature Value: Restores safer TLS verification behavior for HTTPS upstreams.

📚 Documentation Updates (Documentation)

  • Related PR: #3890
    Contributor: @FAUST-BENCHOU
    Change Log: Added the missing Chinese README for extensions.
    Feature Value: Improves documentation coverage for Chinese users.

🧪 Testing Improvements (Testing)

  • Related PR: #3871
    Contributor: @Jing-ze
    Change Log: Expanded unit test coverage for the wasm-go/mcp mcp-server framework.
    Feature Value: Improves confidence in MCP server framework behavior.

  • Related PR: #3873
    Contributor: @Jing-ze
    Change Log: Added end-to-end transformer coverage and fixed silent error wrapping.
    Feature Value: Improves transformer reliability and error visibility.

  • Related PR: #3875
    Contributor: @Jing-ze
    Change Log: Covered the hmac-auth-apisix algorithm matrix, clock skew, and authentication edge cases.
    Feature Value: Strengthens authentication plugin reliability.

  • Related PR: #3878
    Contributor: @Jing-ze
    Change Log: Covered traffic-tag operators, weight CDF boundaries, and parser rejection paths.
    Feature Value: Improves confidence in traffic tagging behavior under edge conditions.

  • Related PR: #3879
    Contributor: @Jing-ze
    Change Log: Increased unit test coverage to at least 90% across 9 WASM plugins.
    Feature Value: Improves plugin quality and regression protection.

🔧 Release and Dependency Maintenance

  • Related PR: #3987
    Contributor: @johnlanni
    Change Log: Updated the Envoy submodule.
    Feature Value: Keeps the gateway data-plane dependency aligned with the release baseline.

  • Related PR: #4017
    Contributor: @johnlanni
    Change Log: Updated the Envoy submodule.
    Feature Value: Pulls in the latest Envoy dependency updates for the release.

  • Related PR: #4019
    Contributor: @EndlessSeeker
    Change Log: Released v2.2.3.
    Feature Value: Updates release metadata and versioned dependencies for Higress v2.2.3.

📊 Release Statistics

  • 🚀 New Features: 11 items
  • 🐛 Bug Fixes: 28 items
  • 📚 Documentation Updates: 1 item
  • 🧪 Testing Improvements: 5 items
  • 🔧 Release and Dependency Maintenance: 3 items

Total: 48 changes

Thank you to all contributors for your hard work! 🎉

Higress Console

📋 Overview of This Release

This release includes 8 updates, covering MCP configuration fixes, LLM provider usability improvements, route and service stability, YAML cleanup, and workflow maintenance.

Distribution of Updates

  • New Features: 1 item
  • Bug Fixes: 7 items

📝 Full Change Log

🚀 New Features (Features)

  • Related PR: #722
    Contributor: @CH3CHO
    Change Log: Added support for collapsing token lists for LLM providers.
    Feature Value: Improves readability and usability when configuring providers with many tokens.

🐛 Bug Fixes (Bug Fixes)

  • Related PR: #724
    Contributor: @JayLi52
    Change Log: Fixed parsing when MCP service names contain colons.
    Feature Value: Prevents MCP service configuration failures caused by service-name parsing.

  • Related PR: #733
    Contributor: @CH3CHO
    Change Log: Fixed stale state in ServiceWeightTable.
    Feature Value: Keeps service weight display and edits aligned with the current state.

  • Related PR: #729
    Contributor: @CH3CHO
    Change Log: Fixed a possible NPE in SystemServiceImpl.
    Feature Value: Improves backend stability for system service operations.

  • Related PR: #730
    Contributor: @CH3CHO
    Change Log: Trims trailing whitespace in higress-config YAML data before submission.
    Feature Value: Avoids configuration noise and accidental YAML formatting issues.

  • Related PR: #734
    Contributor: @CH3CHO
    Change Log: Improved SSE transport path concatenation in DirectRoutingDetailStrategy.
    Feature Value: Prevents incorrect direct-routing paths for SSE transport.

  • Related PR: #735
    Contributor: @JayLi52
    Change Log: Preserves same-name routes when deleting MCP servers.
    Feature Value: Avoids deleting unrelated routes that share a name with the MCP server.

  • Related PR: #737
    Contributor: @CH3CHO
    Change Log: Fixed deploy-to-OSS workflow failures caused by Node.js 20 deprecation.
    Feature Value: Restores release and deployment automation reliability.

📊 Release Statistics

  • 🚀 New Features: 1 item
  • 🐛 Bug Fixes: 7 items

Total: 8 changes

Thanks to all contributors for their hard work! 🎉

New Contributors

Full Changelog:

Contributors

@GHX5T-SOL @Betula-L @JianweiWang @zat366 @ponypony0123 @EndlessSeeker @zijiren233 @Rand01ph @Jing-ze @CH3CHO @johnlanni @XinhhD @geekspeng @philo-x @yyyCode @enkilee @FAUST-BENCHOU @JayLi52

13 hours ago
node
nodejs

2026-06-24, Version 26.4.0 (Current), @aduh95

Notable Changes

  • [cde0daabcc] - (SEMVER-MINOR) doc: update blockList stability status to release candidate (alphaleadership) #63050
  • [b78f5a7537] - (SEMVER-MINOR) fs: support caller-supplied readFile() buffers (Matteo Collina) #63634
  • [417aacbc36] - (SEMVER-MINOR) http: close pre-request sockets in closeIdleConnections (semimikoh) #63470
  • [fbb108be7d] - (SEMVER-MINOR) loader: implement package maps (Maël Nison) #62239
  • [45494d5a8a] - (SEMVER-MINOR) net: support TCP_KEEPINTVL and TCP_KEEPCNT in setKeepAlive (Guy Bedford) #63825
  • [ee29465e77] - (SEMVER-MINOR) tls: add certificateCompression option (Tim Perry) #62217
  • [b17817eb2b] - (SEMVER-MINOR) vfs: dispatch node:fs/promises to mounted VFS instances (Matteo Collina) #63537
  • [7bc93a6ac5] - (SEMVER-MINOR) vfs: add minimal node:vfs subsystem (Matteo Collina) #63115

Commits

  • [c7eb83b46a] - benchmark: add child_process async path baselines (Yagiz Nizipli) #63929
  • [066fff17a5] - benchmark: remove old alias usage in ffi benchmarks (Anna Henningsen) #63666
  • [509cd1b94f] - buffer: optimize Buffer.prototype.copy (Robert Nagy) #63828
  • [86e651bbd0] - buffer: use simdutf for two-byte utf8 byteLength (Mert Can Altin) #63639
  • [d3f4ed9015] - build: suppress compiler warnings for histogram (Richard Lau) #63980
  • [82dd7ddbe6] - build: add QUIC CI job for PRs matching QUIC related paths (Tim Perry) #63875
  • [1124c0652d] - build: remove redundant intermediate node_aix_shared (Chengzhong Wu) #63747
  • [e510ee8087] - build: build codecache and snapshot with libnode (Chengzhong Wu) #63626
  • [5b583dace5] - build: enable maglev by default on Linux ppc64le (Richard Lau) #63474
  • [a2324246b4] - build: remove duplicated node_use_sqlite and node_use_ffi conditions (Chengzhong Wu) #63629
  • [2a467a5f69] - Revert "build, doc: generate node.1 with doc-kit" (Antoine du Hamel) #64091
  • [e01dec45b8] - build, doc: generate node.1 with doc-kit (Aviv Keller) #62044
  • [2ab9848fe4] - child_process: pass spawn options to the binding positionally (Yagiz Nizipli) #63930
  • [04c04c8b5c] - child_process: serialize advanced IPC messages natively (Yagiz Nizipli) #63933
  • [1eef57293d] - crypto: support non-byte WebCrypto lengths and cSHAKE (Filip Skokan) #63988
  • [788a66e147] - crypto: share WebCrypto method and usage helpers (Filip Skokan) #63975
  • [f9fdce3f46] - crypto: use EVP_MAC for HMAC on OpenSSL >=3 (Filip Skokan) #63942
  • [7e9ca87e58] - crypto: make webcrypto aliasKeyFormat directional (Filip Skokan) #63910
  • [656e57ebbf] - crypto: fix unhandled error in Hash._transform (Haram Jeong) #63261
  • [65536f0d98] - crypto: refactor keyObject.toCryptoKey() and SubtleCrypto.getPublicKey() (Filip Skokan) #63622
  • [978f1d2bcc] - crypto: handle cipher context allocation failures (Tian Teng) #63542
  • [5551e8f773] - crypto: deduplicate X509 subject matching logic (Tobias Nießen) #63644
  • [57ae87640a] - crypto: fix warnings in test_node_crypto.cc (Maya Lekova) #63490
  • [9984b05dff] - crypto: coerce -0 to +0 before native calls (Filip Skokan) #63556
  • [88011a3689] - crypto,tls: do not ignore BN_get_word error (Tobias Nießen) #63895
  • [9a3393d14f] - debugger: lazily wait for initial break output (Trivikram Kamat) #63969
  • [b0bfcb9c59] - debugger: defer probe pause handling until startup (Trivikram Kamat) #63608
  • [8516003953] - debugger: await initialization after run and restart (Trivikram Kamat) #63607
  • [4438cb5284] - debugger: add --max-hit option to probe mode (Joyee Cheung) #63704
  • [238b54ed2a] - debugger: add more logs to probe mode (Joyee Cheung) #63663
  • [bbef54b413] - deps: libffi: cherry-pick 9ca53a19833d (Anthony Green) #64040
  • [9761385dbd] - deps: update libffi to 3.6.0 (Node.js GitHub Bot) #64040
  • [373ec2d092] - deps: update acorn to 8.17.0 (Node.js GitHub Bot) #63901
  • [e44b5d487e] - (SEMVER-MINOR) deps: update OpenSSL build config to support compression (Tim Perry) #62217
  • [3ed287a2e2] - deps: upgrade npm to 11.17.0 (npm team) #63857
  • [b1b597c797] - deps: add ngtcp2_fmt.c to build configuration (ngtcp2.gyp) (沈鸿飞) #63821
  • [0bf8e12305] - deps: V8: add CopyArrayBufferBytes API (Robert Nagy) #63828
  • [e49d7301a5] - deps: update ngtcp2 to 1.23.0 (Node.js GitHub Bot) #63777
  • [e5c079004b] - deps: update nghttp3 to 1.16.0 (Node.js GitHub Bot) #63776
  • [d599fa2346] - deps: update googletest to 7140cd416cecd7462a8aae488024abeee55598e4 (Node.js GitHub Bot) #63775
  • [bc09f1508c] - deps: update sqlite to 3.53.2 (Node.js GitHub Bot) #63774
  • [60787746c4] - deps: update zlib to 1.3.2.1-motley-3246f1b (Node.js GitHub Bot) #63773
  • [971af104f1] - deps: update amaro to 1.1.10 (Node.js GitHub Bot) #63670
  • [e17f665444] - deps: update googletest to 8736d2cd5c1dcba41170ed2fddca14021d4916c3 (Node.js GitHub Bot) #63669
  • [7591949457] - dgram: add synchronous Socket connectSync() (Guy Bedford) #63932
  • [d75222d7cb] - dgram: add synchronous Socket.prototype.bindSync() (Guy Bedford) #63838
  • [0cf8342ae2] - dns: coerce -0 to +0 in lookup and resolver inputs (Filip Skokan) #63556
  • [e068299320] - doc: update gcc toolchains to gcc-13 and g++-13 (Louie Llaneta) #64018
  • [65178bdcf3] - doc: add aduh95 to last security release steward (Antoine du Hamel) #63981
  • [83eedfe85b] - doc: fix typo in util.md (Daijiro Wachi) #63961
  • [54948c78e7] - doc: clarify callback exceptions (Matteo Collina) #63939
  • [205d0a57f2] - doc: fix incorrect test runner mock examples (Kimaswa Emmanuel Yusufu) #63656
  • [44809b176c] - doc: clarify fromReadable() duck-typed contract (Trivikram Kamat) #63682
  • [9cb15fcc85] - doc: fix typo in cli.md (Daijiro Wachi) #63883
  • [394d0bb928] - doc: fix typo in vm.md (Daijiro Wachi) #63881
  • [59b7be8193] - doc: fix typo in packages.md (Daijiro Wachi) #63882
  • [33c236cea9] - doc: fix a/an article typos in module, util, and dns (Daijiro Wachi) #63766
  • [30595da67b] - doc: update npm supported versions link (hojeong park) #63672
  • [5919ba7e97] - doc: fix AES-OCB IV length in SubtleCrypto.supports example (Anshika Jain) #63717
  • [51cab5cb72] - doc: add webstreams to args for pipeline from stream/promises (David Sanders) #63628
  • [ce85b2af88] - doc: fix "used to sent" → "used to send" in http2 (Daijiro Wachi) #63700
  • [298735e8df] - doc: mark Node.js 25 as End-of-Life (Antoine du Hamel) #63692
  • [56948518b9] - doc: clarify tty raw mode applies to input processing only (Muhammad Zeeshan) #63438
  • [32ff731248] - doc: add worker_threads history entries (Bob Put) #63545
  • [cde0daabcc] - (SEMVER-MINOR) doc: update blockList stability status to release candidate (alphaleadership) #63050
  • [d29483fc4f] - doc,crypto: mark argon2 and encap/decap as stable (Filip Skokan) #63924
  • [6e668331d9] - events: improve addAbortListener perf by caching options object (Raz Luvaton) #52367
  • [97aafe2519] - ffi: add fast support for almost all other platforms (Paolo Insogna) #63941
  • [f52cf5eeaa] - ffi: add experimental fast FFI call API for AArch64 and x86_64 (Paolo Insogna) #63068
  • [d9461fee05] - ffi: port semi-colon fix for riscv64 (and others) (Stewart X Addison) #63794
  • [4c8402e0a8] - fs: do not treat EPERM as ENOTEMPTY on Windows (Kirill Saied) #63709
  • [b78f5a7537] - (SEMVER-MINOR) fs: support caller-supplied readFile() buffers (Matteo Collina) #63634
  • [3d0097d489] - fs: prevent spurious recursive watch events on prefix siblings (Marco) #63095
  • [14d829cb3c] - fs: ignore deleted dirs in recursive watch scan (Trivikram Kamat) #63686
  • [ceba08a1ea] - fs: coerce -0 to +0 in mode flags and watch intervals (Filip Skokan) #63556
  • [6577d3b282] - http: avoid stream listeners on idle agent sockets (Matteo Collina) #64004
  • [417aacbc36] - (SEMVER-MINOR) http: close pre-request sockets in closeIdleConnections (semimikoh) #63470
  • [b7fd13a59a] - http2: retain header memory in session accounting (Matteo Collina) #63752
  • [e611ccd167] - inspector: fix inspector.close() documented behavior (Chengzhong Wu) #63837
  • [a44f51eef3] - lib: fix missing lazyDOMException import (Filip Skokan) #64033
  • [27cc4ec598] - lib: add lint rule to enforce use of kEmptyObject (Antoine du Hamel) #63790
  • [7ee31b0bf4] - lib: improve control abstraction coverage in frozen intrinsics (Renegade334) #63698
  • [078457839a] - lib: add Iterator global to primordials (Renegade334) #63698
  • [58837dc4dd] - lib: remove source map deadcode in type stripping (Chengzhong Wu) #63738
  • [e7513a8b9e] - lib: make Navigator#language getter throw on invalid this (Mohamed Sayed) #63601
  • [fbb108be7d] - (SEMVER-MINOR) loader: implement package maps (Maël Nison) #62239
  • [ea0b8e1dc2] - meta: bump github/codeql-action from 4.35.3 to 4.36.1 (dependabot[bot]) #63724
  • [ac90719532] - meta: bump actions/cache from 5.0.4 to 5.0.5 (dependabot[bot]) #62847
  • [3ed3de3062] - meta: bump actions/checkout from 6.0.2 to 6.0.3 (dependabot[bot]) #63726
  • [d08d57bf70] - meta: bump codecov/codecov-action from 6.0.0 to 6.0.1 (dependabot[bot]) #63725
  • [e748d192cf] - meta: bump cachix/cachix-action (dependabot[bot]) #63729
  • [10554eb131] - meta: bump actions/stale from 10.2.0 to 10.3.0 (dependabot[bot]) #63728
  • [791885f2af] - meta: bump step-security/harden-runner from 2.19.0 to 2.19.4 (dependabot[bot]) #63727
  • [32d9a407d9] - meta: bump cachix/install-nix-action from 31.10.5 to 31.10.6 (dependabot[bot]) #63723
  • [b97c7bed07] - module: enable existing machinery for deferred import of static modules (Maya Lekova) #63712
  • [4becad2117] - module: use file: URL as sourceURL for type-stripped CommonJS (Joyee Cheung) #63705
  • [c71c85b95f] - net: early TCP binding via synchronous net.BoundSocket (Guy Bedford) #63951
  • [45494d5a8a] - (SEMVER-MINOR) net: support TCP_KEEPINTVL and TCP_KEEPCNT in setKeepAlive (Guy Bedford) #63825
  • [3988efa1f3] - net: coerce -0 to +0 in BlockList prefixes (Filip Skokan) #63556
  • [484efd1c44] - quic: fix get_reader bug that dropped data on FIN (Tim Perry) #63946
  • [04a17fe6f0] - quic: expose QUIC certificates as JS X509Certificate, not raw handles (Tim Perry) #63191
  • [b62d5696dc] - quic: fix reader backpressure deadlock on idle connections (Tim Perry) #63950
  • [3f1c8d7453] - quic: fix broken listEndpoints export, test callbacks & nghttp3 include (Tim Perry) #63874
  • [d8538b9deb] - quic: impl. cb for http/3 settings/app. options (Marten Richter) #63558
  • [643b19716e] - quic: add listEndpoints API (James M Snell) #63536
  • [2bce35bea4] - sqlite: do not leave database open after failed open (Yagiz Nizipli) #63854
  • [394af52abb] - sqlite: fix stack-use-after-scope with function callback (ndossche) #63640
  • [10f03e5958] - src: omit unconvertible names in cjs_lexer::Parse (Yagiz Nizipli) #63943
  • [1723773d41] - src: keep global list of addon-provided cleanup hooks (Anna Henningsen) #63985
  • [ef12e9ea44] - src: guard OpenSSL compression header include (Filip Skokan) #64009
  • [48af8a6d8d] - src: handle empty MaybeLocal in cjs_lexer::Parse (Yagiz Nizipli) #63885
  • [2a672ee9e8] - src: fast path empty native immediate drain (Gürgün Dayıoğlu) #62969
  • [db6a31d1a1] - src: do not track weak BaseObjects as childrens of Realms (Anna Henningsen) #63842
  • [5fb837ff46] - src: allow tracking children in MemoryTracker with weak edges (Anna Henningsen) #63842
  • [6d22d373a9] - src: use C++14 deprecated attribute for NODE_DEPRECATED (Anna Henningsen) #63755
  • [7ac3fe1992] - src: add cleanup hooks to node::ObjectWrap (Anna Henningsen) #63642
  • [d82d369155] - src: fix edge case when deflateInit2() fails with Z_VERSION_ERROR (Nora Dossche) #63476
  • [03858d152b] - src: remove redundant handle_ field in ffi (Anna Henningsen) #63665
  • [1682264f6b] - src: add Latin1 fast path in StringBytes::Encode utf8 (Mert Can Altin) #63385
  • [cc29696acf] - stream: fix Writable.toWeb() desiredSize for non-object-mode (Matteo Collina) #62986
  • [d9967a25b2] - stream: handle falsy push writer fail reasons (Trivikram Kamat) #63569
  • [b53f8f75c9] - stream: reduce allocations on WHATWG streams hot paths (Matteo Collina) #63876
  • [315ca426d8] - stream: handle setEncoding after buffered data (Matteo Collina) #63973
  • [06413cd6bd] - stream: fix Utf8Stream stall after full write of multi-byte data (Daijiro Wachi) #63964
  • [a9f9a3dafa] - stream: keep overlapping broadcast reads pending (Trivikram Kamat) #63500
  • [009cca11bd] - stream: refine the stream/iter backpressure (James M Snell) #63697
  • [3f81dcfc99] - stream: only pass the expected number of parameters to callbacks (Antoine du Hamel) #63909
  • [9a83b5d1fe] - stream: fix dropped first chunk in Utf8Stream buffer mode (Daijiro Wachi) #63833
  • [0bdf5adea9] - stream: remove transform-writer handling in pipeTo (Trivikram Kamat) #63684
  • [10272a94b6] - stream: check done before backpressure in stream reader (Daijiro Wachi) #63699
  • [792c410631] - stream: fix pipeToSync byte accounting (Trivikram Kamat) #63564
  • [3cfafbc54b] - stream: reject pull() reads on abort (Trivikram Kamat) #63498
  • [640a8cede5] - stream: fast-path stateless transform flush results (Trivikram Kamat) #63605
  • [ece4477872] - stream: optimize pipeTo promise handling (Matteo Collina) #63572
  • [2cb84c2daf] - stream: handle sync writev completion in pipeTo (Trivikram Kamat) #63561
  • [7d9fdda5fa] - stream: settle pending broadcast reads on return (Trivikram Kamat) #63603
  • [e2aea3aac7] - test: tolerate duplicate watch change events (Trivikram Kamat) #63937
  • [ea6300593a] - test: mark test-debugger-run-after-quit-restart as flaky on macOS (Matteo Collina) #64006
  • [be1b204fa4] - test: update WPT for url to d4598eba09 (Node.js GitHub Bot) #63899
  • [b3d0d05b05] - test: update WPT for WebCryptoAPI to 03a1476844 (Node.js GitHub Bot) #63900
  • [046af2609f] - test: update WPT for urlpattern to 23aac92784 (Node.js GitHub Bot) #63898
  • [562b831a98] - test: add tests for 3 methods in utils (Daijiro Wachi) #63765
  • [28e3629dd3] - test: mark SEA tests flaky on linux arm debug (Trivikram Kamat) #63743
  • [243aa846de] - test: validate ERR_INVALID_THIS for scheduler methods (Daijiro Wachi) #63764
  • [6bd07df2bc] - test: add coverage outside SEA (Daijiro Wachi) #63744
  • [bd67c9d11b] - test: update WPT for urlpattern to 2f28df545c (Node.js GitHub Bot) #63771
  • [e40bfe7081] - test: make Brotli 16GB test wait for backpressure (Trivikram Kamat) #63389
  • [444c03fd3b] - test: add regression test for using ObjectWrap in worker (Mohamed Akram) #63642
  • [771230df78] - test: accept SIGILL aborts in async-hooks tests (Trivikram Kamat) #63687
  • [0b3cd8e5e6] - test: add more test cases for pathToFileURL (Rafael Gonzaga) #63293
  • [0cbc77c60e] - test: update test426-fixtures to 2965987bf4c96afa400c9356c8e620cb340aaee (Node.js GitHub Bot) #63668
  • [f53dee5fe4] - test: update WPT for WebCryptoAPI to 0c413fb56b (Node.js GitHub Bot) #63647
  • [3048f8dc1a] - test,debugger: add test for type stripping in debugger probe mode (Joyee Cheung) #63748
  • [9485caa97e] - test_runner: remove unused shuffleArrayWithSeed (Daijiro Wachi) #63847
  • [34433a4a87] - test_runner: fix watch cwd with isolation none (Trivikram Kamat) #63690
  • [2e7da29b7c] - test_runner: avoid recompiling coverage globs for every file (sangwook) #63675
  • [205295a31e] - test_runner: cache shouldSkipFileCoverage result per URL (sangwook) #63675
  • [ee29465e77] - (SEMVER-MINOR) tls: add certificateCompression option (Tim Perry) #62217
  • [57d060ed2b] - tls: route event listener exceptions through error handlers (Antoine du Hamel) #63822
  • [d2dc6f8506] - tools: bump piscina from 5.1.4 to 5.2.0 in /tools/doc (dependabot[bot]) #64002
  • [b0c418f605] - tools: update sccache to v0.16.0 (Michaël Zasso) #63078
  • [2af8433bef] - tools: bump js-yaml from 4.1.1 to 4.2.0 in /tools/lint-md (dependabot[bot]) #63948
  • [8ba5b8574b] - tools: bump js-yaml from 4.1.1 to 4.2.0 in /tools/eslint (dependabot[bot]) #63947
  • [325087be5b] - tools: enforce iterator result property order (Trivikram Kamat) #63526
  • [314f417db7] - tools: update the llhttp updater script (Antoine du Hamel) #63819
  • [c6e4f5a4fe] - tools: avoid test/fixtures/wpt/README.md conflicts (Filip Skokan) #63938
  • [363912acc3] - tools: align Bash snippets in GHA with lint-sh conventions (Antoine du Hamel) #63829
  • [cfd16e973c] - tools: bump @node-core/doc-kit in /tools/doc in the doc group (dependabot[bot]) #63760
  • [1566872706] - tools: bump the eslint group in /tools/eslint with 7 updates (dependabot[bot]) #63730
  • [08437a3a5b] - tools: fix zlib updater script (Antoine du Hamel) #63707
  • [e883366172] - url: fix URLSearchParams(null) to prudce null= per spec (Marco) #63782
  • [60e83d9bfd] - util: fix scientific notation formatting (Daijiro Wachi) #63823
  • [5f7f60ac36] - util: fix -0 formatting when numericSeparator is enabled (Daijiro Wachi) #63815
  • [af1a11e0dd] - util: remove style caches from styleText slow path (Guilherme Araújo) #63706
  • [b17817eb2b] - (SEMVER-MINOR) vfs: dispatch fs/promises to mounted VFS instances (Matteo Collina) #63537
  • [7bc93a6ac5] - (SEMVER-MINOR) vfs: add minimal node:vfs subsystem (Matteo Collina) #63115
  • [584e7527c4] - vm: fix property queries for proxy sandboxes (Brian Meek) #63742
  • [a926e72eaf] - watch: print name of changed file that triggers restart (Marco) #63781
  • [32a2621ca4] - watch: cancel pending restart on shutdown (Trivikram Kamat) #63383
  • [692215d1b1] - zlib: coerce -0 to +0 for crc32 seeds (Filip Skokan) #63556
22 hours ago
zuul
Netflix

v3.6.16

What's Changed

Full Changelog: https://github.com/Netflix/zuul/compare/v3.6.15...v3.6.16

1 days ago
MeiliSearch
meilisearch

v1.48.2 🫎

1 days ago
superset
apache

superset-helm-chart-0.17.3

Apache Superset is a modern, enterprise-ready business intelligence web application

1 days ago
fluent-bit
fluent

Fluent Bit 5.0.8

https://fluentbit.io/announcements/v5.0.8/

What's Changed

New Contributors

Full Changelog: https://github.com/fluent/fluent-bit/compare/v5.0.7...v5.0.8

1 days ago
node
nodejs

2026-06-23, Version 24.18.0 'Krypton' (LTS), @richardlau prepared by @sxa

Notable Changes

  • [e07e7a31e1] - crypto: update root certificates to NSS 3.123.1 (Node.js GitHub Bot) #63527
  • [44c8ebcbd6] - http: avoid stream listeners on idle agent sockets (Matteo Collina) #64004
  • [d3ef4122ee] - (SEMVER-MINOR) buffer: increase Buffer.poolSize default to 64 KiB (Matteo Collina) #63597
  • [bb2857b85a] - (SEMVER-MINOR) crypto: align key argument names in docs and error messages (Filip Skokan) #62527
  • [b9d5e87880] - (SEMVER-MINOR) crypto: accept key data in crypto.diffieHellman() and cleanup DH jobs (Filip Skokan) #62527
  • [ccd756d61e] - (SEMVER-MINOR) crypto: add TurboSHAKE and KangarooTwelve Web Cryptography algorithms (Filip Skokan) #62183
  • [4c9251fc09] - (SEMVER-MINOR) http: add writeInformation to send arbitrary 1xx status codes (Tim Perry) #63155
  • [8c989ec4a3] - (SEMVER-MINOR) inspector: expose precise coverage start to JS runtime (sangwook) #63079
  • [3f54c8ba32] - Revert "stream: noop pause/resume on destroyed streams" (Stewart X Addison) #63834

Commits

  • [d3ef4122ee] - (SEMVER-MINOR) buffer: increase Buffer.poolSize default to 64 KiB (Matteo Collina) #63597
  • [9ff36e40f0] - build: add --enable-all-experimentals build flag (Paolo Insogna) #62755
  • [7c22ee23aa] - build: def NODE_USE_NODE_CODE_CACHE only used in node_mksnapshot (Chengzhong Wu) #63588
  • [2551abdb4a] - build,win: enable x64 PGO (Stefan Stojanovic) #62761
  • [e8a55ce9b1] - crypto: strengthen argument CHECKs in TurboSHAKE (Tobias Nießen) #62763
  • [ae61cd68f3] - crypto: harden WebCrypto against prototype pollution (Filip Skokan) #63363
  • [3d05a1d396] - crypto: pass CryptoKey handles to KDF jobs (Filip Skokan) #63363
  • [f9d10a3f6b] - crypto: remove async from WebCrypto methods (Filip Skokan) #63363
  • [e431d93e9e] - crypto: add WebCrypto CryptoJob mode (Filip Skokan) #63363
  • [56e2505e48] - crypto: wire ML-DSA and ML-KEM for use when using BoringSSL (Filip Skokan) #63255
  • [3bac77f2a8] - crypto: wire ChaCha20-Poly1305 in Web Cryptography when using BoringSSL (Filip Skokan) #63255
  • [1bff901b09] - crypto: wire AES-KW in Web Cryptography when using BoringSSL (Filip Skokan) #63255
  • [4433fca3df] - crypto: harden CryptoKey algorithm slots (Filip Skokan) #63111
  • [b5cf01217a] - crypto: harden KeyObject internal slots (Filip Skokan) #63111
  • [ce84aef37d] - crypto: add guards and adjust tests for BoringSSL (Filip Skokan) #62883
  • [26781689b0] - crypto: reject duplicate ML-KEM JWK key_ops (Filip Skokan) #62905
  • [aeea8f4970] - crypto: add JWK support for ML-KEM and SLH-DSA key types (Filip Skokan) #62706
  • [407cf91656] - crypto: guard against size_t overflow on experimental 32-bit arch (Filip Skokan) #62626
  • [bb2857b85a] - (SEMVER-MINOR) crypto: align key argument names in docs and error messages (Filip Skokan) #62527
  • [b9d5e87880] - (SEMVER-MINOR) crypto: accept key data in crypto.diffieHellman() and cleanup DH jobs (Filip Skokan) #62527
  • [b46d52b283] - crypto: unify asymmetric key import through KeyObjectHandle::Init (Filip Skokan) #62499
  • [ccd756d61e] - (SEMVER-MINOR) crypto: add TurboSHAKE and KangarooTwelve Web Cryptography algorithms (Filip Skokan) #62183
  • [e07e7a31e1] - crypto: update root certificates to NSS 3.123.1 (Node.js GitHub Bot) #63527
  • [61826df455] - crypto: coerce -0 keylen to +0 in pbkdf2 and scrypt (Jordan Harband) #63531
  • [16d2fd3c07] - crypto: align verifyOneShot accepted types (Anshika Jain) #63280
  • [3b8330deda] - crypto: improve system certificate enumeration logic on macOS (Robo) #62576
  • [141de35399] - debugger: add --help to node inspect and improve docs (Joyee Cheung) #63201
  • [b76bfcd4fa] - deps: upgrade npm to 11.16.0 (npm team) #63602
  • [4ec142314c] - deps: SQLite: cherry-pick b869ed6b067d623cb1383549f2a18aa35508385d (Junsu Han) #63525
  • [19e8ce1c36] - deps: upgrade npm to 11.15.0 (npm team) #63463
  • [8a264260e2] - deps: update sqlite to 3.53.1 (Node.js GitHub Bot) #63217
  • [50c8ff3f94] - deps: update simdjson to 4.6.4 (Node.js GitHub Bot) #62811
  • [6e56f01c4b] - deps: V8: cherry-pick 435a2cdf664c (Matthias Liedtke) #63136
  • [3ba813b242] - deps: cherry-pick libuv/libuv@a43e543 (Ali Hassan) #63222
  • [2390e3a5ac] - doc: remove duplicated sentences in large-pull-requests.md (Joyee Cheung) #63650
  • [52a1c18374] - doc: update git node land instructions for security releases (Antoine du Hamel) #63586
  • [3e6b4da037] - doc: drop --experimental from --permission (Rafael Gonzaga) #63583
  • [84d05163b9] - doc: explicitly ask for reproducible in JS (Rafael Gonzaga) #63479
  • [7da2a4450e] - doc: fix URL postMessage example in worker_threads (Kit Dallege) #62203
  • [3d79bd8b29] - doc: clarify filter option of sqlite.database.applyChangeset (Antoine du Hamel) #63515
  • [4f4174aace] - doc: fix double spaces in ERR_TLS_INVALID_PROTOCOL_METHOD (Daijiro Wachi) #63511
  • [388323ca4b] - doc: fix double space in modules.md (Daijiro Wachi) #63512
  • [5258ccc058] - doc: fix "options" to "option" in tls.createServer (Daijiro Wachi) #63453
  • [43e83e6507] - doc: fix typo in deprecations (Daijiro Wachi) #63434
  • [f05a61d54c] - doc: remove unsupported template type from v8.md (René) #63410
  • [c39d5fc820] - doc: fix article usage before vowel-sound acronyms (joao-oliveira-softtor) #62696
  • [398261f911] - doc: remove the bi-monthly contributor spotlight section (Claudio Wunder) #62734
  • [fd9e14c405] - doc: update http2's push and trailers events with rawHeaders param (YuSheng Chen) #63259
  • [b943ce6933] - doc: remove inactive members from Triagers list (Antoine du Hamel) #63329
  • [4b9cdfc022] - doc: reference correct function in Module docs (Robin Malfait) #63247
  • [bed84b6df2] - doc: replace Visual Studio 2022 Evergreen version reference with 17.14 (Mike McCready) #63211
  • [32ea70569b] - doc: recommend explicitly Tier 1 or 2 for production applications (Mike McCready) #63187
  • [4627bcfd82] - doc: run license-builder (github-actions[bot]) #63232
  • [28eba71845] - doc: add large pull requests contributing guide (Matteo Collina) #62829
  • [2648efd438] - doc: remove unnecessary <!-- eslint- magic comments (Antoine du Hamel) #63200
  • [a95fc1f8fc] - doc: clarify SEA platform support excludes darwin-x64 (MJSHANG) #63181
  • [aaef29e2e1] - doc: update release steps when post-release fails (Rafael Gonzaga) #63131
  • [7d81419cf2] - doc: add Hmac.digest() documentation-only deprecation (DEP0206) (Anshika Jain) #63121
  • [ececd80d81] - doc: document the latest-vX.x schema (Marco Ippolito) #63033
  • [27c1c1d842] - doc: remove list of versions in BUILDING.md (Antoine du Hamel) #63113
  • [e369886a65] - doc,sqlite: document entryPoint argument for loadExtension (Edy Silva) #63152
  • [e4e5137cbd] - errors: handle V8 warnings in DisallowJavascriptExecutionScope (Divyanshu Sharma) #63491
  • [6d1f6048d2] - fs: make Date properties on Stats enumerable (LiviaMedeiros) #63328
  • [44c8ebcbd6] - http: avoid stream listeners on idle agent sockets (Matteo Collina) #64004
  • [4c9251fc09] - (SEMVER-MINOR) http: add writeInformation to send arbitrary 1xx status codes (Tim Perry) #63155
  • [39f61fb06c] - http2: emit session close before stream close (Matteo Collina) #63414
  • [8a8f2127d1] - http2: validate non-link headers in writeEarlyHints (Matteo Collina) #62017
  • [8c989ec4a3] - (SEMVER-MINOR) inspector: expose precise coverage start to JS runtime (sangwook) #63079
  • [c05f38229b] - lib: cleanup stateless diffiehellman key handling (Filip Skokan) #62645
  • [1c16b45d35] - lib: refactor internal webidl converters (Filip Skokan) #62979
  • [02f35d6dce] - lib: define kEnumerableProperty atomically (Antoine du Hamel) #63609
  • [12c51547ba] - lib: fix typos in esm loader comments (RonGamzu) #63465
  • [9b03b84262] - lib: fix typo idenity => identity (Daijiro Wachi) #63112
  • [a84e6b0567] - lib: fixes validator message (Daijiro Wachi) #62823
  • [11734166a8] - lib: narrow ReadableStreamBYOBRequest.view return type to Uint8Array (RoomWithOutRoof) #63017
  • [7cead61d21] - meta: flip mcollina emails in .mailmap (Matteo Collina) #63621
  • [a08cfcfd35] - meta: label "source maps" PRs (Chengzhong Wu) #63591
  • [d56e8d2512] - meta: add vfs subsystem label (René) #62331
  • [6201cfe488] - meta: skip scheduled workflows on forks (Jamie Magee) #63565
  • [f095e2bd31] - meta: add additional gitignore entries (James M Snell) #63267
  • [1ea52c444c] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) #63402
  • [b1b2327611] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) #63235
  • [7d88e130a9] - meta: ignore AI assistants files (Matteo Collina) #62612
  • [a53b51df38] - module: load ESM helpers eagerly in the snapshot (Joyee Cheung) #63550
  • [69df688fff] - module: fix sync hook short-circuit in require() in imported CJS (Joyee Cheung) #62920
  • [75d9a4ed47] - node-api: support SharedArrayBuffer in napi_create_typedarray (Yilong Li) #62710
  • [c20aa4c47b] - quic: add reusePort option to QuicEndpoint (James M Snell) #63267
  • [26a30d8a7f] - quic: implement rate limiting for version nego and immediate close (James M Snell) #63267
  • [0b534b5770] - quic: fixup linting issue after other changes (James M Snell) #63267
  • [4b367cbe09] - quic: remove unused binding variable in session.cc (James M Snell) #63177
  • [2574bef5a6] - repl: fix dedup comparing normalized line against raw history (Daijiro Wachi) #62886
  • [30e71c7e49] - sqlite: keep source database alive during backup (Matteo Collina) #62673
  • [677ca7e76c] - src: simplify OpenSSL feature gates (Filip Skokan) #63255
  • [c863c75c39] - src: add BoringSSL EVP enumeration fallback (Filip Skokan) #63206
  • [f6b2466921] - src: decouple KeyObject and CryptoKey and move CryptoKey to src (Filip Skokan) #62924
  • [92d4f07dd2] - src: remove license headers for new node_profiling files (Chengzhong Wu) #63066
  • [8ac5d771c8] - src: split profiling helpers from util (Ilyas Shabi) #63008
  • [85d1639495] - src: remove TOCTOU race condition when encoding SAB-backed Buffers (Antoine du Hamel) #63517
  • [9473c5f05c] - src: skip duplicate UTF-8 validation in TextDecoder fatal path (Mert Can Altin) #63231
  • [f35c91ee68] - src: improve token return value check (James M Snell) #63483
  • [26f677c1c5] - src: expose node::RegisterContext to make a node managed context (Chengzhong Wu) #62322
  • [275cf909b6] - src,sqlite: only pass xFilter when user provided a callback (Antoine du Hamel) #63516
  • [287e02303f] - src,sqlite: remove dead code (Edy Silva) #63204
  • [58fa2ee189] - stream: switch to internal sleep binding (Antoine du Hamel) #63611
  • [f954ab3f1a] - stream: use data listener for compose forwarding (Trivikram Kamat) #63593
  • [dc57173003] - stream: fix Writable.toWeb() hang on synchronous drain (sangwook) #61197
  • [3f54c8ba32] - Revert "stream: noop pause/resume on destroyed streams" (Stewart X Addison) #63834
  • [cee279c5d6] - stream: remove unnecessary check (Antoine du Hamel) #63030
  • [61b20f60a3] - test: update tls/crypto behaviour expectations when using BoringSSL (Filip Skokan) #63161
  • [a835363808] - test: update WPT for WebCryptoAPI to 97bbc7247a (Node.js GitHub Bot) #63417
  • [a00297480b] - test: update WPT resources, interfaces and WebCryptoAPI (Node.js GitHub Bot) #62389
  • [5a95a2b055] - test: shorten path in net pipe connect errors (Matteo Collina) #63405
  • [5e8ff22d8f] - test: remove test-node-output-v8-warning (Joyee Cheung) #63469
  • [ee15380950] - test: update test426-fixtures to 9b9e225b5a63139e9a95cdd1bf874a8f0b9d131 (Node.js GitHub Bot) #63373
  • [9e063d9bea] - test: update WPT for url to e4a4672e9e (Node.js GitHub Bot) #63372
  • [503bee4b43] - test: deflake async-hooks statwatcher test (Trivikram Kamat) #63396
  • [cccc7c32d8] - test: avoid test_runner watch restart in spec snapshot (Trivikram Kamat) #63392
  • [c89489258c] - test: reduce watch mode restart flakiness (Trivikram Kamat) #63390
  • [e4d5e2578e] - test: isolate rerun-failures state file under tmpdir (Chemi Atlow) #63449
  • [362644a9ba] - test: wait for ok before initial break after restart (Yuya Inoue) #62807
  • [c4058d0e05] - test: disable Maglev in near-heap-limit worker test (Trivikram Kamat) #63398
  • [214da630a7] - test: deflake connection refused proxy tests (Trivikram Kamat) #63395
  • [1d61a29876] - test: avoid repeated writes in watch helper (Trivikram Kamat) #63386
  • [2004e25387] - test: deflake watch mode worker test (Trivikram Kamat) #63384
  • [d691cccfc1] - test: relax test-memory-usage arrayBuffers check (inoway46) #63244
  • [0ff6bf853c] - test: reduce flakiness of different-registry-per-thread (Antoine du Hamel) #63244
  • [d9f4e8e503] - test: fix flaky test-watch-mode-inspect timeout (Matteo Collina) #63361
  • [6d7cd50328] - test: relax min assertion in test-performance-eventloopdelay (Marco) #63100
  • [9dafe1d2d8] - test: avoid flaky restart sync in debugger exceptions test (Yuya Inoue) #62055
  • [989b2de973] - test: avoid initial-break wait in restart-message (inoway46) #62060
  • [a072a25ee7] - test: move FFI tests to NATIVE_SUITES (Antoine du Hamel) #63165
  • [64efbfd878] - test: use ERM to destroy sqlite database handles after tests (René) #63076
  • [7dee66cd94] - test_runner: dont buffer unordered events in process isolation mode (Moshe Atlow) #63432
  • [d257eec1e3] - test_runner: fix --test-rerun-failures swallowing failures on retry (Chemi Atlow) #63431
  • [288c320e2f] - test_runner: show replayed-from-attempt hint in spec reporter (Moshe Atlow) #63429
  • [904bdf5bb4] - test_runner: preserve run duration when using test-rerun (Moshe Atlow) #63429
  • [df183d7bfa] - test_runner: avoid hanging on incomplete v8 frames (Ali Hassan) #62704
  • [ec86c69726] - test_runner: fix diagnostics channel context tracking (Moshe Atlow) #63283
  • [94e5f63b83] - tls: add unsupported renegotiation error (Filip Skokan) #63161
  • [06d308fb61] - tools: prevent lib code from reading KeyObject and CryptoKey accessors (Filip Skokan) #63111
  • [2e4a0d0c91] - tools: bump brace-expansion from 5.0.5 to 5.0.6 in /tools/eslint (dependabot[bot]) #63415
  • [4c9666b366] - tools: skip commit-lint on backport pull requests (Marco) #63378
  • [67d0c490a8] - tools: fix skip of test-internet on forks (Antoine du Hamel) #63492
  • [02f73c7cac] - tools: bump the eslint group in /tools/eslint with 4 updates (dependabot[bot]) #63075
  • [5d016d3241] - tools: update gyp-next to 0.22.2 (Node.js GitHub Bot) #63374
  • [55af0f0edb] - tools: fix test426 updater (Antoine du Hamel) #63271
  • [d8475e167a] - tools: use different branch for tool updates on staging branches (Antoine du Hamel) #63110
  • [c605df9e50] - util: remove unused functions (Antoine du Hamel) #63612
  • [fe4540ebdb] - util: create hex style cache and fast path (Guilherme Araújo) #62999
1 days ago
superset
apache

superset-helm-chart-0.17.2

Apache Superset is a modern, enterprise-ready business intelligence web application

1 days ago
node
nodejs

2026-06-23, Version 22.23.1 'Jod' (LTS), @RafaelGSS

This release includes a fix for an unexpected behavior introduced by the recent security release (22.23.0).

Commits

  • [41d2ee13be] - build: switch coverage-windows to windows-2022 (Richard Lau) #63940
  • [eaa292549e] - http: avoid stream listeners on idle agent sockets (Matteo Collina) #64004