Node v18.7.0 (Current)

Notable changes doc : add F3n67u to collaborators (Feng Yu) #43953 deprecate coercion to integer in process.exit (Daeyeon Jeong) #43738 (SEMVER-MINOR) deprecate diagnostics_channel object subscribe method (Stephen Belanger) #42714 events : (SEMVER-MINOR) ... more

Node v18.6.0 (Current)

Notable Changes Experimental ESM Loader Hooks API Node.js ESM Loader hooks now support multiple custom loaders, and composition is achieved via "chaining": foo-loader calls bar-loader calls qux-loader (a custom loader must now signal a short ... more

Node v14.20.0 (LTS)

Notable Changes [ 8e8aef836c ] - (SEMVER-MAJOR) src,deps,build,test : add OpenSSL config appname (Daniel Bevenius) #43124 [ 98965b137d ] - deps : upgrade openssl sources to 1.1.1q (RafaelGSS) #43686 Commits [ b93e048bf6 ] - deps : update archs files ... more

Node v18.5.0 (Current)

Notable Changes [ 3f0c3e142d ] - (SEMVER-MAJOR) src,deps,build,test : add OpenSSL config appname (Daniel Bevenius) #43124 [ 9578158ff8 ] - (SEMVER-MAJOR) src,doc,test : add --openssl-shared-config option (Daniel Bevenius) #43124 Node.js now reads nodejs_conf ... more

Node v16.16.0 (LTS)

Notable changes deps : upgrade openssl sources to OpenSSL_1_1_1q (RafaelGSS) #43692 src : add OpenSSL config appname (Daniel Bevenius) #43124 Commits [ 2303fd3fe5 ] - deps : update archs files for OpenSSL-1.1.1q (RafaelGSS) #43692 [ b219a63c28 ] - deps ... more

July 5th 2022 Security Releases

Summary The Node.js project will release new versions of the 14.x, 16.x, and 18.x releases lines on or shortly after Tuesday, July 5th, 2022 in order to address: Three medium severity issues. Two high severity issues. Impact The 18.x release line of Node.js ... more

OpenSSL update assessment, and Node.js project plans

Summary The vulnerabilities in the OpenSSL Security releases of Jun 21 2022 do not affect any active Node.js release lines. Analysis Our assessment of the security advisory is: The c_rehash script allows command injection (CVE-2022-2068) Node.js doesn't ... more

Node v18.4.0 (Current)

Notable Changes crypto : remove Node.js-specific webcrypto extensions (Filip Skokan) #43310 add CFRG curves to Web Crypto API (Filip Skokan) #42507 dns : accept 'IPv4' and 'IPv6' for family (Antoine du Hamel) #43054 report : add more heap infos in process ... more

Bringing forward the End-of-Life Date for Node.js 16

Changing the End-of-Life Date for Node.js 16 to September 11th, 2023Summary We are moving the End-of-Life date of Node.js 16 by seven months to coincide with the end of support of OpenSSL 1.1.1 on September 11th, 2023. Why? When we put together Node.js ... more

Node v18.3.0 (Current)

Notable Changes [ dc3b91f351 ] - deps : update undici to 5.4.0 (Node.js GitHub Bot) #43262 [ d6cf409d78 ] - (SEMVER-MINOR) util : add parseArgs module (Benjamin Coe) #42675 [ 9539cfa358 ] - (SEMVER-MINOR) http : add uniqueHeaders option to request and ... more

Node v17.9.1 (Current)

Notable Changes Upgrade npm to 8.11.0 Update to OpenSSL 3.0.3 This update can be treated as a security release as the issues addressed in OpenSSL 3.0.3 slightly affect Node.js 17. See https://nodejs.org/en/blog/vulnerability/openssl-fixes-in-regular-releases-may2022/ ... more

Node v16.15.1 (LTS)

Notable Changes deps : upgrade npm to 8.11.0 ([email protected]) #43210 docs : add release key for RafaelGSS (Rafael Gonzaga) #43131 add release key for Juan Arboleda (Juan José) #42961 Commits [ f7c4ce2255 ] - deps : V8: cherry-pick 3ebf2052a1b2 ... more

Node v14.19.3 (LTS)

Notable Changes This release updates OpenSSL to 1.1.1o. This update is not being treated as a security release as the issues addressed in OpenSSL 1.1.1o were assessed to not affect Node.js 14. See https://nodejs.org/en/blog/vulnerability/openssl-fixes-in-regular-releases-may2022/ ... more

Node v18.2.0 (Current)

Notable Changes OpenSSL 3.0.3 This update can be treated as a security release as the issues addressed in OpenSSL 3.0.3 slightly affect Node.js 18. See https://nodejs.org/en/blog/vulnerability/openssl-fixes-in-regular-releases-may2022/ for more information ... more

OpenSSL update assessment, and Node.js project plans

Summary The OpenSSL Security releases of May 3 2022 affects Node.js 17.x and 18.x but highest serverity is "Low" Analysis Our assessment of the security advisory is: The c_rehash script allows command injection (CVE-2022-1292) Node.js doesn't ... more

Node v14.19.2 (LTS)

Notable Changes doc: New release key for Bryan English Learn more at: https://github.com/nodejs/node/pull/42102 Contributed by Bryan English (@bengl) npm: Upgrade npm to v6.14.17 . Learn more at: https://github.com/nodejs/node/pull/42900 Contributed ... more

Node v18.1.0 (Current)

Notable Changes [ c46e7bbf69 ] - doc : add @kuriyosh to collaborators (Yoshiki Kurihara) #42824 [ b0f7c4c8f9 ] - (SEMVER-MINOR) lib,src : implement WebAssembly Web API (Tobias Nießen) #42701 [ 78a860ae58 ] - (SEMVER-MINOR) test_runner : add initial CLI ... more

Node v16.15.0 (LTS)

Notable changes Add fetch API Adds experimental support to the fetch API. This adds the --experimental-fetch flag that installs the fetch , Request , Response , Headers , and FormData globals. (SEMVER-MINOR) add fetch (Michaël Zasso) #41749 (SEMVER-MINOR) ... more

Node v18.0.0 (Current)

Notable Changes Deprecations and Removals (SEMVER-MAJOR) fs : runtime deprecate string coercion in fs.write , fs.writeFileSync (Livia Medeiros) #42607 (SEMVER-MAJOR) dns : remove dns.lookup and dnsPromises.lookup options type coercion (Antoine du Hamel) ... more

Node.js 18 is now available!

We’re excited to announce that Node.js 18 was released today! Highlights include the update of the V8 JavaScript engine to 10.1, global fetch enabled by default, and a core test runner module. Initially, Node.js 18 will replace Node.js 17 as our ‘Current’ ... more

Node v17.9.0 (Current)

Notable Changes [ 7124f91cbf ] - (SEMVER-MINOR) crypto : make authTagLength optional for CC20P1305 (Tobias Nießen) #42427 [ 30dc6dd3fb ] - deps : update undici to 4.16.0 (Node.js GitHub Bot) #42414 [ f0fc2744a5 ] - doc : add @meixg to collaborators (Xuguang ... more

Node v12.22.12 (LTS)

Notable Changes This is planned to be the final Node.js 12 release. Node.js 12 will reach End-of-Life status on 30 April 2022, after which it will no receive updates. You are strongly advised to migrate your applications to Node.js 16 or 14 (both of ... more

Node v17.8.0 (Current)

Notable Changes [ 3bd0078457 ] - doc : add @ShogunPanda to collaborators (Shogun) #42362 [ 23354673be ] - doc : deprecate string coercion in fs.write , fs.writeFileSync (Livia Medeiros) #42149 [ da42ffb85e ] - (SEMVER-MINOR) http : trace http client ... more

Node v14.19.1 (LTS)

Notable Changes Update to OpenSSL 1.1.1n, which addresses the following vulnerability: Infinite loop in BN_mod_sqrt() reachable when parsing certificates (High)(CVE-2022-0778) More details are available at https://www.openssl.org/news/secadv/20220315.txt ... more

Node v17.7.2 (Current)

Notable Changes Update to OpenSSL 3.0.2, which addresses the following vulnerability: Infinite loop in BN_mod_sqrt() reachable when parsing certificates (High)(CVE-2022-0778) More details are available at https://www.openssl.org/news/secadv/20220315.txt ... more

Node v16.14.2 (LTS)

Notable Changes Update to OpenSSL 1.1.1n, which addresses the following vulnerability: Infinite loop in BN_mod_sqrt() reachable when parsing certificates (High)(CVE-2022-0778) More details are available at https://www.openssl.org/news/secadv/20220315.txt ... more

Node v12.22.11 (LTS)

Notable changes Update to OpenSSL 1.1.1n, which addresses the following vulnerability: Infinite loop in BN_mod_sqrt() reachable when parsing certificates (High)(CVE-2022-0778) More details are available at https://www.openssl.org/news/secadv/20220315.txt ... more

Node v16.14.1 (LTS)

Notable changes doc : add release key for Bryan English (Bryan English) #42102 Commits [ 2a24e763d5 ] - async_hooks : fix imports in context example (Yash Ladha) #39229 [ c4a296f59b ] - benchmark : enable no-empty ESLint rule (Rich Trott) #41831 [ abe2eb9fc0 ... more

OpenSSL security releases may require Node.js security releases

Summary The Node.js project may be releasing new versions across all of its supported release lines late this week to incorporate upstream patches from OpenSSL. Please read on for full details. OpenSSL The OpenSSL project announced this week that they ... more

Node v17.7.1 (Current)

Notable Changes Fixed regression in url.resolve() This release fixes an issue introduced in Node.js v17.7.0 with some URLs that contain @ . This issue affected yarn 1. This version reverts the change that introduced the regression. Commits [ 96a9e00fb3 ... more