Closed
Description
openedon Sep 27, 2017
We can no longer run our development environment on node.js v0.10/v0.12 (see request/request#2772) without adding a npm-shrinkwrap.json
or doing other high-effort/low-reward things to work around this.
furthermore, it's making it more difficult to apply security fixes. at least one of these Node.js versions (v0.10) has known vulnerabilities which have gone unpatched (in an official capacity).
we should not continue to supply updates for these environments.
- remove
0.10
,0.12
,iojs
&5
from.travis-ci.yml
andappveyor.yml
- update
engines
field inpackage.json
- necessary security upgrades (this includes
debug
andgrowl
) - upgrade anything else we can get away with (stick to dev deps)
To be clear, Mocha still runs in Node.js v0.10 and v0.12; you just can't clone a working copy and run the test suite.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Metadata
Assignees
Labels
involving vulnerabilitiesinvolving vulnerabilitiesimplementation requires increase of "major" version number; "breaking changes"implementation requires increase of "major" version number; "breaking changes"generally involving deps, tooling, configuration, etc.generally involving deps, tooling, configuration, etc.