head	1.28;
access;
symbols
	pkgsrc-2026Q1:1.27.0.2
	pkgsrc-2026Q1-base:1.27
	pkgsrc-2025Q4:1.24.0.2
	pkgsrc-2025Q4-base:1.24
	pkgsrc-2025Q3:1.22.0.2
	pkgsrc-2025Q3-base:1.22
	pkgsrc-2025Q2:1.21.0.2
	pkgsrc-2025Q2-base:1.21
	pkgsrc-2025Q1:1.19.0.2
	pkgsrc-2025Q1-base:1.19
	pkgsrc-2024Q4:1.17.0.2
	pkgsrc-2024Q4-base:1.17
	pkgsrc-2024Q3:1.14.0.2
	pkgsrc-2024Q3-base:1.14
	pkgsrc-2024Q2:1.10.0.2
	pkgsrc-2024Q2-base:1.10
	pkgsrc-2024Q1:1.5.0.2
	pkgsrc-2024Q1-base:1.5
	pkgsrc-2023Q4:1.3.0.2
	pkgsrc-2023Q4-base:1.3;
locks; strict;
comment	@# @;


1.28
date	2026.05.18.10.18.55;	author adam;	state dead;
branches;
next	1.27;
commitid	JPBfOYOlO34wyhGG;

1.27
date	2026.03.25.16.40.15;	author adam;	state Exp;
branches;
next	1.26;
commitid	GFYeh6OanogLonzG;

1.26
date	2026.03.13.08.42.38;	author adam;	state Exp;
branches;
next	1.25;
commitid	P9zvOpwU7MgT8NxG;

1.25
date	2026.01.14.19.07.48;	author adam;	state Exp;
branches;
next	1.24;
commitid	SzvNgB27FwGNsoqG;

1.24
date	2025.12.12.09.07.16;	author adam;	state Exp;
branches;
next	1.23;
commitid	T2YdnVDt1WUAc6mG;

1.23
date	2025.10.21.11.48.28;	author adam;	state Exp;
branches;
next	1.22;
commitid	OL6kp8mdHZVCLqfG;

1.22
date	2025.07.17.07.23.28;	author adam;	state Exp;
branches;
next	1.21;
commitid	MgK4GFXcAUtKn43G;

1.21
date	2025.06.09.18.10.13;	author adam;	state Exp;
branches;
next	1.20;
commitid	6avCqGwcajeMbfYF;

1.20
date	2025.05.17.14.14.46;	author adam;	state Exp;
branches;
next	1.19;
commitid	vZfK6p7jPBQHCgVF;

1.19
date	2025.02.21.16.59.27;	author adam;	state Exp;
branches;
next	1.18;
commitid	8gX56N1JUGgwgmKF;

1.18
date	2025.01.22.11.00.01;	author adam;	state Exp;
branches;
next	1.17;
commitid	vMVJo6ULzs97ftGF;

1.17
date	2024.11.21.14.47.34;	author adam;	state Exp;
branches;
next	1.16;
commitid	6Pw9gLe1CkYIuwyF;

1.16
date	2024.11.15.10.58.31;	author adam;	state Exp;
branches;
next	1.15;
commitid	swwcRZd9v83dqJxF;

1.15
date	2024.10.08.17.23.31;	author adam;	state Exp;
branches;
next	1.14;
commitid	JOHRK90g7seDLSsF;

1.14
date	2024.08.23.10.11.24;	author adam;	state Exp;
branches;
next	1.13;
commitid	3PTAYmMvQtWfRVmF;

1.13
date	2024.08.13.08.56.09;	author adam;	state Exp;
branches;
next	1.12;
commitid	zJgQaXCeXfOlLDlF;

1.12
date	2024.07.11.18.59.31;	author adam;	state Exp;
branches;
next	1.11;
commitid	4OZH3Oar4uXdashF;

1.11
date	2024.06.27.07.12.31;	author adam;	state Exp;
branches;
next	1.10;
commitid	D5hOWJ4jvw2jHAfF;

1.10
date	2024.05.31.05.41.58;	author adam;	state Exp;
branches;
next	1.9;
commitid	xIZ9z38E7Oyj47cF;

1.9
date	2024.05.15.08.50.35;	author adam;	state Exp;
branches;
next	1.8;
commitid	AoHtvHOOVC6VC4aF;

1.8
date	2024.05.07.18.07.05;	author adam;	state Exp;
branches;
next	1.7;
commitid	TRF4ZXAqiqTzX59F;

1.7
date	2024.04.11.14.50.02;	author adam;	state Exp;
branches;
next	1.6;
commitid	L25cn4sfXtjZHJ5F;

1.6
date	2024.04.05.05.31.44;	author adam;	state Exp;
branches;
next	1.5;
commitid	fRFMljxcIslqOU4F;

1.5
date	2024.02.14.21.16.23;	author adam;	state Exp;
branches;
next	1.4;
commitid	eXPm4WihK53aGrYE;

1.4
date	2024.01.11.09.33.41;	author adam;	state Exp;
branches;
next	1.3;
commitid	G8A0mUBewEiAS0UE;

1.3
date	2023.11.26.07.55.53;	author adam;	state Exp;
branches;
next	1.2;
commitid	bD0tgap0nYMZO5OE;

1.2
date	2023.11.02.13.22.01;	author adam;	state Exp;
branches;
next	1.1;
commitid	ayYrLLghQYmKo2LE;

1.1
date	2023.11.02.13.16.54;	author adam;	state Exp;
branches;
next	;
commitid	7iQVZRYIk52Fm2LE;


desc
@@


1.28
log
@nodejs20: removed; end-of-life
@
text
@$NetBSD: distinfo,v 1.27 2026/03/25 16:40:15 adam Exp $

BLAKE2s (node-v20.20.2.tar.xz) = 63e14c679664f3eba353ad33dcef110291b437675a0270fa4aa6d6ebb2581fb3
SHA512 (node-v20.20.2.tar.xz) = 5f6977a8e678c334362535f6f6f87d397b4dcae4c3e215b77652094259bb2d83fb2c24fdc968693c89679039217b166090e560473b58321ef3325083bfb3a0ad
Size (node-v20.20.2.tar.xz) = 42662736 bytes
SHA1 (patch-common.gypi) = f50615affd26c2c7902d2112c8e9f2704c057b9c
SHA1 (patch-deps_cares_cares.gyp) = 22b44f2ac59963f694dfe4f4585e08960b3dec32
SHA1 (patch-deps_uv_common.gypi) = 29f0c382b68f77749a71ce39fa2ca37338ca18ec
SHA1 (patch-deps_uvwasi_include_wasi__serdes.h) = 32b85ef5824b96b35aba9280bbe7aa7899d9e5cf
SHA1 (patch-deps_v8_src_base_platform_memory.h) = 0921b5eeecfe03b774f85a15628c559901e7fea8
SHA1 (patch-deps_v8_src_base_platform_platform-freebsd.cc) = b47025f33d2991275bbcd15dbabb28900afab0e1
SHA1 (patch-deps_v8_src_base_platform_platform-openbsd.cc) = 5e593879dbab095f99e82593272a0de91043f9a8
SHA1 (patch-deps_v8_src_base_platform_platform-posix.cc) = e797043e7fa1379f086ffe3a919e140260b0632e
SHA1 (patch-deps_v8_src_base_platform_semaphore.cc) = 802a95f1b1d131e0d85c1f99c659cc68b31ba2f6
SHA1 (patch-deps_v8_src_base_strings.h) = 4d2b37491f2f74f1a573f8c1942790204e23a8bb
SHA1 (patch-deps_v8_src_codegen_arm_cpu-arm.cc) = 84c75d61bc99c2ff9adeac3152f5b11ebb0e582b
SHA1 (patch-deps_v8_src_common_globals.h) = 86637724864389f2b24251904de41669a2f00fbc
SHA1 (patch-deps_v8_src_compiler_types.h) = 2a212282ab9d71e98ae56827fdb1d9778a6047a5
SHA1 (patch-deps_v8_src_heap_code-range.cc) = b281f76f4e3d8e562f596235049a6be7c5ff4de2
SHA1 (patch-deps_v8_tools_profiling_run-llprof.sh) = b19994d3195cc97424a3cc2ffd3ae02eacc6ffa8
SHA1 (patch-node.gypi) = 4a104dba6c22702211009bc60a6be6f87554e2fa
SHA1 (patch-src_crypto_crypto__rsa.cc) = 9ffd8de2fac76014696c8dfac7ba200eab56f6f6
SHA1 (patch-src_inspector__agent.cc) = 3fd3d71f9d6013a6eb2a79e0442b31d2e2408a2f
SHA1 (patch-src_node__postmortem__metadata.cc) = 9938482d724ad6636af5dc3fa719ec26ed8539ff
SHA1 (patch-tools_gyp_pylib_gyp_generator_make.py) = 570fe9889767c555468a225cd7f0b398ea6a193c
SHA1 (patch-tools_gyp_pylib_gyp_xcode__emulation.py) = 4ee24115f5e97ffbd23aaa6dc62f408d381d4e22
SHA1 (patch-tools_install.py) = af72313d5b6ff261a62da271e677c7c86486313a
SHA1 (patch-tools_v8_gypfiles_v8.gyp) = 8b1b0e2216f9e8025f8e623d5aa8af3f8d670804
@


1.27
log
@nodejs*: updated to 25.8.2, 24.14.1, 22.22.2, 20.20.2

Notable Changes

(CVE-2026-21710) use null prototype for headersDistinct/trailersDistinct (Matteo Collina) - High
(CVE-2026-21637) wrap SNICallback invocation in try/catch (Matteo Collina) - High
(CVE-2026-21717) test array index hash collision (Joyee Cheung) - Medium
(CVE-2026-21713) use timing-safe comparison in Web Cryptography HMAC and KMAC (Filip Skokan) - Medium
(CVE-2026-21714) handle NGHTTP2_ERR_FLOW_CONTROL error code (RafaelGSS) - Medium
(CVE-2026-21712) handle url crash on different url formats (RafaelGSS) - Medium
(CVE-2026-21716) include permission check on lib/fs/promises (RafaelGSS) - Low
(CVE-2026-21715) add permission check to realpath.native (RafaelGSS) - Low
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.26 2026/03/13 08:42:38 adam Exp $
@


1.26
log
@nodejs20: updated to 20.20.1

20.20.1 'Iron' (LTS)
Notable Changes

- build: test on Python 3.14 (Christian Clauss)
- crypto: update root certificates to NSS 3.119 (Node.js GitHub Bot)
- crypto: update root certificates to NSS 3.117
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.25 2026/01/14 19:07:48 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.20.1.tar.xz) = 1c3271b8862d3ae44c01e38fa4a25ed48ef6d096a43f7cfe7d5fd6d9a415bf17
SHA512 (node-v20.20.1.tar.xz) = e0dedab9860aebb3e60bfa2d1756c7e7b30982456cf2642825fecf7790a48a3cdc88875ace42b01f8ef224579bd73784fad43315966ae446fff9bec816898bda
Size (node-v20.20.1.tar.xz) = 42654076 bytes
@


1.25
log
@nodejs20: updated to 20.20.0

20.20.0 'Iron' (LTS)

Notable Changes

lib:

(CVE-2025-55132) disable futimes when permission model is enabled (RafaelGSS)
(CVE-2025-59465) add TLSSocket default error handler (RafaelGSS)
lib,permission:
(CVE-2025-55130) require full read and write to symlink APIs (RafaelGSS)
src:
(CVE-2025-59466) rethrow stack overflow exceptions in async_hooks (Matteo Collina)
src,lib:
(CVE-2025-55131) refactor unsafe buffer creation to remove zero-fill toggle (Сковорода Никита Андреевич)
tls:
(CVE-2026-21637) route callback exceptions through error handlers (Matteo Collina)
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.24 2025/12/12 09:07:16 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.20.0.tar.xz) = 771e6118baa16a6df210b1ebf7746d8ce20acb9c6f2406f8df0a12b1ee060eb2
SHA512 (node-v20.20.0.tar.xz) = 7248b881320c4e8e957aea39dc313b52e458c6462215b2d80e67fed382d611c66f520c96da4baa96663f25b98ec90549edd27028bffe9a791f4f6b137b54eb4d
Size (node-v20.20.0.tar.xz) = 42430884 bytes
@


1.24
log
@nodejs20: updated to 20.19.6

20.19.6 'Iron' (LTS)

Notable Changes

- crypto: update root certificates to NSS 3.114 (Node.js GitHub Bot)
- doc: update the instruction on how to verify releases (Antoine du Hamel)
- doc: deprecate HTTP/2 priority signaling (Matteo Collina)
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.23 2025/10/21 11:48:28 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.19.6.tar.xz) = 592656df80ecb5cd0275db77047c8d865839010666baea14b7db6f12a87553f7
SHA512 (node-v20.19.6.tar.xz) = cf3a3813db814ffe23dd9c2c201b950522c4a115569d568cb3ef2f6b3f9a33cdd7d3f6d52f7d8970df6fadc0b8aa86dd2ef1fd34a4537cbdbe5d05363c47976d
Size (node-v20.19.6.tar.xz) = 42530628 bytes
@


1.23
log
@nodejs20: updated to 20.19.5

20.19.5

Notable Changes

- doc: add JonasBa to collaborators (Jonas Badalic)
- doc: add puskin to collaborators (Giovanni Bucci)
- doc: add Filip Skokan to TSC (Rafael Gonzaga)
- doc: add @@geeksilva97 to collaborators (Edy Silva)
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.22 2025/07/17 07:23:28 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.19.5.tar.xz) = 583f46f8e0885880b15d7dddac86e3cf7630cf2136f19f0a43b8b2672e0f37f5
SHA512 (node-v20.19.5.tar.xz) = b585222636b0ed05567f99dba3312586ac64d0a1a751a471305f10e85a77ad32ed6c4a30b2fc0a876f1e9b4f6880c1ccf596346605f5298d882396b3677efe0f
Size (node-v20.19.5.tar.xz) = 42505652 bytes
@


1.22
log
@nodejs20: updated to 20.19.4

20.19.4 'Iron' (LTS)

Notable Changes

(CVE-2025-27210) Windows Device Names (CON, PRN, AUX) Bypass Path Traversal Protection in path.normalize()
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.21 2025/06/09 18:10:13 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.19.4.tar.xz) = 9ca68d99f7a18505983f33a82ae2e86dd41d75611b77444002c0f4e8d7bdf748
SHA512 (node-v20.19.4.tar.xz) = 0ee411ad0968ed8dfb1918d779af3cccee3277f47eadbe31d3f3cae59321d602f368c54720b876b12f9c5ad0ad9390364795c011572fdc3d3961d6773b0ae621
Size (node-v20.19.4.tar.xz) = 42460588 bytes
@


1.21
log
@nodejs20: add missing patch
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.20 2025/05/17 14:14:46 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.19.2.tar.xz) = ea3dbf57d958b5245f7d9cfbe4c3199c5b3946615cacf6c9b737de332a23a6a8
SHA512 (node-v20.19.2.tar.xz) = fea753af76e45ad773fd26988dc6e6eb83cf4ee71f2c02eac0660ce40b823bb991ad70567502c54de8723fbeed68e7a81c15655dca2da4982cbe8391e76d97c8
Size (node-v20.19.2.tar.xz) = 42289480 bytes
a19 1
SHA1 (patch-deps_v8_third__party_zlib_zutil.h) = 7b58b0dc74dc530f90ddf8298d40c6aca48f4fee
@


1.20
log
@nodejs20: updated to 20.19.2

20.19.2 'Iron' (LTS)

Notable Changes

(CVE-2025-23166) fix error handling on async crypto operation
(CVE-2025-23167) (SEMVER-MAJOR) update llhttp to 9.2.0
(CVE-2025-23165) add missing call to uv_fs_req_cleanup
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.19 2025/02/21 16:59:27 adam Exp $
a7 1
SHA1 (patch-deps_third__party_zlib_zutil.h) = 7b58b0dc74dc530f90ddf8298d40c6aca48f4fee
d20 1
@


1.19
log
@nodejs20: updated to 20.18.3

Version 20.18.3 'Iron' (LTS)

Notable Changes

- esm: mark import attributes and JSON module as stable (Nicolò Ribaudo)
- doc: add LJHarb to collaborators (Jordan Harband)
- doc: enforce strict policy to semver-major releases (Rafael Gonzaga)
- crypto: update root certificates to NSS 3.104 (Richard Lau)
- tools: fix root certificate updater (Richard Lau)
- doc: add jazelly to collaborators (Jason Zhang)
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.18 2025/01/22 11:00:01 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.18.3.tar.xz) = 380a8902e5c5bd01b7dccbd06b358fad52c6999825679cc8884cc5f945b8a595
SHA512 (node-v20.18.3.tar.xz) = 0eb83c1c8bacf4af2034911bf91cc548b5c5c4d5a042dffa991eed81a1435f2865df64053a2fed1ec819f5fd8f4296efafb1212b83194ac3096f1e303abc783b
Size (node-v20.18.3.tar.xz) = 41858348 bytes
d8 1
@


1.18
log
@nodejs20: updated to 20.18.2

Version 20.18.2 'Iron' (LTS)

otable Changes

CVE-2025-23083 - throw on InternalWorker use when permission model is enabled (High)
CVE-2025-23085 - src: fix HTTP2 mem leak on premature close and ERR_PROTO (Medium)
CVE-2025-23084 - path: fix path traversal in normalize() on Windows (Medium)

Dependency update:

CVE-2025-22150 - Use of Insufficiently Random Values in undici fetch() (Medium)
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.17 2024/11/21 14:47:34 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.18.2.tar.xz) = ba304f06d42ed52b06fa156f129584cb9f5df82f6ec2379336b884f36b28da65
SHA512 (node-v20.18.2.tar.xz) = c0b294a7dba42d1b898a552b66d6cdc6e5a55a2ef951f272e9614578c656d72bf727c9ebb39e27de671cfecc36bc8bf60330fb00285de012f256dbd69142868c
Size (node-v20.18.2.tar.xz) = 41933624 bytes
a6 1
SHA1 (patch-configure.py) = 983ed01cce632bc286e34c5845e338bf1128f99f
@


1.17
log
@nodejs20: updated to 20.18.1

Version 20.18.1 'Iron' (LTS)

Notable Changes

- doc: add abmusse to collaborators (Abdirahim Musse)
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.16 2024/11/15 10:58:31 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.18.1.tar.xz) = dd5229acb74227acd0531b426c617e399472230743d4dcaf13ed4e38209efa56
SHA512 (node-v20.18.1.tar.xz) = 7b421ced5d96aa90af9d96e5a3f84d5b6967db9f107740da7cfe4980b7e9f74a00aedac6db28f42f670da536abb957298069c7498e1d744f6212e75defb5305b
Size (node-v20.18.1.tar.xz) = 41962272 bytes
@


1.16
log
@nodejsNN: fix building with ICU 76
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.15 2024/10/08 17:23:31 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.18.0.tar.xz) = c41ee12e4659b4a9a80feca62244303776cd9f7c4157eb9ac3f661c4d722f9c7
SHA512 (node-v20.18.0.tar.xz) = e7d43bb7324df59362591c4d3f2c91a870bec17c4024666ae92e2a3ffc0711b82d05b91a21802a0b252ad7469f8da430f7d427b2d8291d91107dd8589ea91f66
Size (node-v20.18.0.tar.xz) = 41937144 bytes
@


1.15
log
@nodejs20: updated to 20.18.0

Version 20.18.0 'Iron' (LTS)

Experimental Network Inspection Support in Node.js
Exposes X509_V_FLAG_PARTIAL_CHAIN to tls.createSecureContext
New option for vm.createContext() to create a context with a freezable globalThis
repl: doc-deprecate instantiating node:repl classes without new
zlib: deprecate instantiating classes without new
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.14 2024/08/23 10:11:24 adam Exp $
d7 1
@


1.14
log
@nodejs20: updated to 20.17.0

Version 20.17.0 'Iron' (LTS)

module: support require()ing synchronous ESM graphs
path: add matchesGlob method
stream: expose DuplexPair API
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.13 2024/08/13 08:56:09 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.17.0.tar.xz) = 2953e990e9e43cae0148c6828bdf60aea6955c7384ac7d23c83fd0909860c2fc
SHA512 (node-v20.17.0.tar.xz) = 3f21c9b5b292143d25a9d51e24d8f9b366429872b3d905d705fb2293e4f4b11e8861650535425d498b999974971a8dec7bf9f9c398af03170caa84bdc63b94da
Size (node-v20.17.0.tar.xz) = 41751520 bytes
@


1.13
log
@nodejs20: updated to 20.16.0

Version 20.16.0 'Iron' (LTS)

process: add process.getBuiltinModule(id)
doc: doc-only deprecate OpenSSL engine-based APIs
inspector: fix disable async hooks on Debugger.setAsyncCallStackDepth
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.12 2024/07/11 18:59:31 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.16.0.tar.xz) = f0a44ab5b7f905c8171fab4d5fc00270c7cb96c8bb829d2e4bf42d2e0a3f1765
SHA512 (node-v20.16.0.tar.xz) = 494ac16904ecb9f799789f190b869b7509bc66e99713d72723d2bf5051a8a5ca57a4f7303c732aa1fd121cff0defd238be4f656cb4d4e81cc7416b63d9c8677d
Size (node-v20.16.0.tar.xz) = 41822608 bytes
@


1.12
log
@nodejs20: updated to 20.15.1

Version 20.15.1 'Iron' (LTS)

Notable Changes
CVE-2024-36138 - Bypass incomplete fix of CVE-2024-27980 (High)
CVE-2024-22020 - Bypass network import restriction via data URL (Medium)
CVE-2024-22018 - fs.lstat bypasses permission model (Low)
CVE-2024-36137 - fs.fchown/fchmod bypasses permission model (Low)
CVE-2024-37372 - Permission model improperly processes UNC paths (Low)
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.11 2024/06/27 07:12:31 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.15.1.tar.xz) = b239004492bc2c99ba2ec2bf5bb98176481b5a535108130eab1cc0a3e175a196
SHA512 (node-v20.15.1.tar.xz) = 2a2935490c4c629f47cc67819094904a1b91eaf0b75cbb8ebe92f5eb34b0929230932fa456bf1bec00213155ea8b6337b2e02e946fc18606543c8c71082615b9
Size (node-v20.15.1.tar.xz) = 41880412 bytes
@


1.11
log
@nodejs20: updated to 20.15.0

Version 20.15.0 'Iron' (LTS)

test_runner: support test plans
inspector: introduce the --inspect-wait flag
zlib: expose zlib.crc32()
cli: allow running wasm in limited vmem with --disable-wasm-trap-handler
doc: add pimterry to collaborators (Tim Perry)
(SEMVER-MINOR) tools: fix get_asan_state() in tools/test.py (Joyee Cheung)
(SEMVER-MINOR) tools: support max_virtual_memory test configuration (Joyee Cheung)
(SEMVER-MINOR) tools: support != in test status files (Joyee Cheung)
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.10 2024/05/31 05:41:58 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.15.0.tar.xz) = 724a0beb01432b30397450195c211040117e49e12e963e3a7c5fdc402bebd289
SHA512 (node-v20.15.0.tar.xz) = 2b041ee368ca27fa1f92ec8a43237423b7e2f81dabf525e20df7b9b200a46e6d9a8c4b82beb33ec58a9351e0eea865eadfadac3d9e4d3733b1d699f0b5d4bbf3
Size (node-v20.15.0.tar.xz) = 41868532 bytes
@


1.10
log
@nodejs20: updated to 20.14.0

Version 20.14.0 'Iron' (LTS)

Notable Changes
- src,permission: throw async errors on async APIs
- (SEMVER-MINOR) test_runner: support forced exit
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.9 2024/05/15 08:50:35 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.14.0.tar.xz) = fa5f229fb4749d8ce94a35926deae61eec3eb379d94396320afe4d650b2adab5
SHA512 (node-v20.14.0.tar.xz) = b6148c705b2152b20c6567a9bbcbbb3925972d17273e126613b350d1d117600e2d895a93d70f793523cb903337ace9527c541a38cb10137eb81ba992778ed243
Size (node-v20.14.0.tar.xz) = 41795876 bytes
@


1.9
log
@nodejs20: updated to 20.13.1

Version 20.13.1 'Iron' (LTS)

Revert "tools: install npm PowerShell scripts on Windows"
Due to a regression in the npm installation on Windows, this commit reverts the change that installed npm PowerShell scripts on Windows.
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.8 2024/05/07 18:07:05 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.13.1.tar.xz) = 03c4c3e6e58c6e8882c9a8cf83c5a4c9bb123640a5b064cfb5be1eb134ae49aa
SHA512 (node-v20.13.1.tar.xz) = 646ac044e5699ba4740d3d4caa262b1c39b0a590c333fdb05bd35f4cb1bc52695b31169fb94264417dd553f46706e6dfea5b31eb336ba865d05397df67ba3b15
Size (node-v20.13.1.tar.xz) = 41770976 bytes
@


1.8
log
@nodejs20: updated to 20.13.0

Node.js v20.13.0

buffer: improve base64 and base64url performance
crypto: deprecate implicitly shortened GCM tags
events,doc: mark CustomEvent as stable
fs: add stacktrace to fs/promises
report: add --report-exclude-network option
src: add uv_get_available_memory to report and process
stream: support typed arrays
util: support array of formats in util.styleText
v8: implement v8.queryObjects() for memory leak regression testing
watch: mark as stable
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.7 2024/04/11 14:50:02 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.13.0.tar.xz) = 9ce9b0a4132192ff742eb55ebe6dcb4b16f3c33139daa9b240111b19d6536f99
SHA512 (node-v20.13.0.tar.xz) = c0972eb5555c78c28e3e85ce5c3e9d12c1d77dcf1072e8c00a92be33269800fee1a6cf21af9c1d14f02a23e7944e5db4cc2274eccf76505c8d042290f362c21a
Size (node-v20.13.0.tar.xz) = 41765344 bytes
@


1.7
log
@nodejs20: updated to 20.12.2

Version 20.12.2 'Iron' (LTS)

Notable Changes
CVE-2024-27980 - Command injection via args parameter of child_process.spawn without shell option enabled on Windows
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.6 2024/04/05 05:31:44 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.12.2.tar.xz) = eaa411d640adc12d19ad8ec02f1b51a9fef4961a617948be41054427020e9198
SHA512 (node-v20.12.2.tar.xz) = 2ff2873f3e1a15d529d07a74af601194c9dc7c24e566b989c96fadda8636d7ea1c97787642e9483a00db320cf1cf0817b43c4ba3ad45b15a241997c9f0c6c288
Size (node-v20.12.2.tar.xz) = 41634476 bytes
d27 1
a27 1
SHA1 (patch-tools_install.py) = 6777bbc94aa9cc7f0dc616fa30102eb01f43b943
@


1.6
log
@nodejs20: updated to 20.12.1

Version 20.12.1 'Iron' (LTS)

Notable Changes
CVE-2024-27983 - Assertion failed in node::http2::Http2Session::~Http2Session() leads to HTTP/2 server crash- (High)
CVE-2024-27982 - HTTP Request Smuggling via Content Length Obfuscation - (Medium)
llhttp version 9.2.1
undici version 5.28.4
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.5 2024/02/14 21:16:23 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.12.1.tar.xz) = 01500caaeeb52bee1806022df606ee88c50bde4a3329642f431f9d02baad8558
SHA512 (node-v20.12.1.tar.xz) = c51c4aa37cc80f3fe34381f2cdf431053124ec6b83fc8490573502adfab48601c382448132c9962ab135bebaffc257a9d5b63334ba8ff480db57b5706bbfed67
Size (node-v20.12.1.tar.xz) = 41743360 bytes
@


1.5
log
@nodejs20: updated to 20.11.1

Version 20.11.1 'Iron' (LTS)

Notable changes

CVE-2024-21892 - Code injection and privilege escalation through Linux capabilities- (High)
CVE-2024-22019 - http: Reading unprocessed HTTP request with unbounded chunk extension allows DoS attacks- (High)
CVE-2024-21896 - Path traversal by monkey-patching Buffer internals- (High)
CVE-2024-22017 - setuid() does not drop all privileges due to io_uring - (High)
CVE-2023-46809 - Node.js is vulnerable to the Marvin Attack (timing variant of the Bleichenbacher attack against PKCS#1 v1.5 padding) - (Medium)
CVE-2024-21891 - Multiple permission model bypasses due to improper path traversal sequence sanitization - (Medium)
CVE-2024-21890 - Improper handling of wildcards in --allow-fs-read and --allow-fs-write (Medium)
CVE-2024-22025 - Denial of Service by resource exhaustion in fetch() brotli decoding - (Medium)
undici version 5.28.3
libuv version 1.48.0
OpenSSL version 3.0.13+quic1
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.4 2024/01/11 09:33:41 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.11.1.tar.xz) = d8c854118240391964ce156ce25175a5eee54d905265964018d93250519a94bf
SHA512 (node-v20.11.1.tar.xz) = b3a3ab3cdeccb54eb38a5b95eece5d180077393e7c1766bc591bbdc0445d78fdd4e19d2d3a3325cb6788a19cef83f48172ff7a6ec152eb1c352b3862dd955596
Size (node-v20.11.1.tar.xz) = 42159296 bytes
d27 1
a27 1
SHA1 (patch-tools_install.py) = c01515e3001bebd50f12bcada548f1cc0c25a49f
@


1.4
log
@nodejs20: updated to 20.11.0

Version 20.11.0 'Iron' (LTS)

Notable Changes

- crypto: update root certificates to NSS 3.95 (Node.js GitHub Bot)
- doc: add MrJithil to collaborators (Jithil P Ponnan)
- doc: add Ethan-Arrowood as a collaborator (Ethan Arrowood)
- (SEMVER-MINOR) esm: add import.meta.dirname and import.meta.filename (James Sumners)
- fs: add c++ fast path for writeFileSync utf8 (CanadaHonk)
- (SEMVER-MINOR) module: remove useCustomLoadersIfPresent flag (Chengzhong Wu)
- (SEMVER-MINOR) module: bootstrap module loaders in shadow realm (Chengzhong Wu)
- (SEMVER-MINOR) src: add --disable-warning option (Ethan Arrowood)
- (SEMVER-MINOR) src: create per isolate proxy env template (Chengzhong Wu)
- (SEMVER-MINOR) src: make process binding data weak (Chengzhong Wu)
- stream: use Array for Readable buffer (Robert Nagy)
- stream: optimize creation (Robert Nagy)
- (SEMVER-MINOR) test_runner: adds built in lcov reporter (Phil Nash)
- (SEMVER-MINOR) test_runner: add Date to the supported mock APIs (Lucas Santos)
- (SEMVER-MINOR) test_runner, cli: add --test-timeout flag (Shubham Pandey)
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.3 2023/11/26 07:55:53 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.11.0.tar.xz) = 44c2fceaaa2b66b7bfcd0667136d5cf93dcb5166aa8cff0265e932b0df487182
SHA512 (node-v20.11.0.tar.xz) = 405cbd53f75d94b9c31536a638c6508215b34a77505471319c46f66eb87ac907cb6796b25efa27162da53cb6a013aaf9ad1a5690eb7ed793969055a648d1d53c
Size (node-v20.11.0.tar.xz) = 42162348 bytes
@


1.3
log
@nodejs20: updated to 20.10.0

Version 20.10.0 'Iron' (LTS)

--experimental-default-type flag to flip module defaults

The new flag --experimental-default-type can be used to flip the default module system used by Node.js. Input that is already explicitly defined as ES modules or CommonJS, such as by a package.json "type" field or .mjs/.cjs file extension or the --input-type flag, is unaffected. What is currently implicitly CommonJS would instead be interpreted as ES modules under --experimental-default-type=module:

String input provided via --eval or STDIN, if --input-type is unspecified.

Files ending in .js or with no extension, if there is no package.json file present in the same folder or any parent folder.

Files ending in .js or with no extension, if the nearest parent package.json field lacks a type field; unless the folder is inside a node_modules folder.

In addition, extensionless files are interpreted as Wasm if --experimental-wasm-modules is passed and the file contains the "magic bytes" Wasm header.


Detect ESM syntax in ambiguous JavaScript

The new flag --experimental-detect-module can be used to automatically run ES modules when their syntax can be detected. For “ambiguous” files, which are .js or extensionless files with no package.json with a type field, Node.js will parse the file to detect ES module syntax; if found, it will run the file as an ES module, otherwise it will run the file as a CommonJS module. The same applies to string input via --eval or STDIN.

We hope to make detection enabled by default in a future version of Node.js. Detection increases startup time, so we encourage everyone—especially package authors—to add a type field to package.json, even for the default "type": "commonjs". The presence of a type field, or explicit extensions such as .mjs or .cjs, will opt out of detection.


New flush option in file system functions

When writing to files, it is possible that data is not immediately flushed to permanent storage. This allows subsequent read operations to see stale data. This PR adds a 'flush' option to the fs.writeFile family of functions which forces the data to be flushed at the end of a successful write operation.


Experimental WebSocket client

Adds a --experimental-websocket flag that adds a WebSocket global, as standardized by WHATWG.


vm: fix V8 compilation cache support for vm.Script

Previously repeated compilation of the same source code using vm.Script stopped hitting the V8 compilation cache after v16.x when support for importModuleDynamically was added to vm.Script, resulting in a performance regression that blocked users (in particular Jest users) from upgrading from v16.x.

The recent fixes allow the compilation cache to be hit again for vm.Script when --experimental-vm-modules is not used even in the presence of the importModuleDynamically option, so that users affected by the performance regression can now upgrade. Ongoing work is also being done to enable compilation cache support for vm.CompileFunction.
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.2 2023/11/02 13:22:01 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.10.0.tar.xz) = 2e621b08ce561852f694a80715213ad18765b7a0928d9baef7135334eb5f7eb0
SHA512 (node-v20.10.0.tar.xz) = 8da1c1471808cb1ecc17cf2c60bbeec003e559c722dfc0a5ec95ec320fa92e03f01a0c0ce5ff5e2d5896bb38485cf624b3edeca0c3f22c32f437f9558581dfd3
Size (node-v20.10.0.tar.xz) = 42201036 bytes
a6 2
SHA1 (patch-configure) = b1ac7b6baa594bb49f04dad9705e9f38fe9ed13d
SHA1 (patch-configure.py) = 2c9abb8231a8d7e9950998cc90a3db75a22a74b5
a25 1
SHA1 (patch-tools_gyp_pylib_gyp_input.py) = fe9a9f0e62d54e0553ebda0a305280dc70968c8e
@


1.2
log
@nodejs20: cleanup
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.1 2023/11/02 13:16:54 adam Exp $
d3 3
a5 3
BLAKE2s (node-v20.9.0.tar.xz) = 6ba49fb45e5f5796c95b2e76778f23352d04eef74bdabb25ad6fa6b438269168
SHA512 (node-v20.9.0.tar.xz) = 2b9453723149e0a94e759131460699a6fdf8656f0c1b7243307442cabef606a4e1d40781b80eaf632874952cb2468fa1e766ababdaa103d5dab623e0ca2f85de
Size (node-v20.9.0.tar.xz) = 41857572 bytes
@


1.1
log
@nodejs20: added version 20.9.0 (from lang/nodejs)

Version 20.9.0 'Iron' (LTS)

Notable Changes

This release marks the transition of Node.js 20.x into Long Term Support (LTS) with the codename 'Iron'. The 20.x release line now moves into "Active LTS" and will remain so until October 2024. After that time, it will move into "Maintenance" until end of life in April 2026.

Known issue

Collecting code coverage via the NODE_V8_COVERAGE environment variable may lead to a hang. This is not thought to be a regression in Node.js 20 (some reports are on Node.js 18). For more information, including some potential workarounds.
@
text
@d1 1
a1 1
$NetBSD: distinfo,v 1.248 2023/10/29 13:44:04 ryoon Exp $
d7 1
a7 1
SHA1 (patch-configure) = e59589e138ecaf1c36a9809b70c426ef5446543a
@