#385 — April 22, 2021 Read on the Web Node Weekly Node.js 16 Available Now — It’s always nice to see Node step another version number ahead (unless, perhaps, you find the upgrading process a bit nervewracking!) and 16 immediately replaces 15.x as the ‘current’ release line with 16 due Read more…
Notable Changes Deprecations and Removals (SEMVER-MAJOR) fs: remove permissive rmdir recursive (Antoine du Hamel) #37216 (SEMVER-MAJOR) fs: runtime deprecate rmdir recursive option (Antoine du Hamel) #37302 (SEMVER-MAJOR) lib: runtime deprecate access to process.binding(‘http_parser’) (James M Snell) #37813 (SEMVER-MAJOR) lib: runtime deprecate access to process.binding(‘url’) (James M Snell) #37799 (SEMVER-MAJOR) lib: Read more…
Node.js 16 was released on April 20, adding Apple Silicon binaries and additional stable APIs to the popular JavaScript runtime. The release is the first to ship with prebuilt binaries for Apple Silicon. While Node.js will provide separate tarballs for the Intel and Arm architectures, the MacOS installer will be Read more…
#384 — April 15, 2021 Read on the Web 👋 If you’ve enjoyed our previous package maintainer interviews, we’re back with a bumper sized one today in the shape of some Q&A with the creators of Middy, the AWS Lambda middleware system for Node. Enjoy it at the end of Read more…
The latest version of the Deno JavaScript/TypeScript runtime features native HTTP/2 web server capabilities. Deno 1.9 was introduced April 13. For this release, the developers enlisted hyper, a fast HTTP implementation based on the Rust language, to build a new native HTTP/2 server API in Deno. The prior TypeScript-based HTTP Read more…
#383 — April 8, 2021 Read on the Web Node Weekly April 2021 Security Releases Out Now — As mentioned last week, releases were on their way to fix a variety of high severity security issues and 15.14.0 (Latest), 14.16.1 (LTS), 12.22.1 (LTS) and 10.24.1 (LTS) are now here. More Read more…
Notable Changes Vulnerabilties Fixed: CVE-2021-3450: OpenSSL – CA certificate check bypass with X509_V_FLAG_X509_STRICT (High) This is a vulnerability in OpenSSL which may be exploited through Node.js. You can read more about it in https://www.openssl.org/news/secadv/20210325.txt Impacts: All versions of the 15.x, 14.x, 12.x and 10.x releases lines CVE-2021-3449: OpenSSL – NULL Read more…
Notable Changes Vulnerabilities fixed: CVE-2021-3450: OpenSSL – CA certificate check bypass with X509_V_FLAG_X509_STRICT (High) This is a vulnerability in OpenSSL which may be exploited through Node.js. You can read more about it in https://www.openssl.org/news/secadv/20210325.txt Impacts: All versions of the 15.x, 14.x, 12.x and 10.x releases lines CVE-2021-3449: OpenSSL – NULL Read more…
Notable Changes Vulnerabilities fixed: CVE-2021-3450: OpenSSL – CA certificate check bypass with X509_V_FLAG_X509_STRICT (High) This is a vulnerability in OpenSSL which may be exploited through Node.js. You can read more about it in https://www.openssl.org/news/secadv/20210325.txt Impacts: All versions of the 15.x, 14.x, 12.x and 10.x releases lines CVE-2021-3449: OpenSSL – NULL Read more…
