Skip to content

Issues: nodejs/node

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
17 Open 187 Closed
17 Open 187 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

[v20.x] deps: V8: backport 2944ee9846e7 (CVE-2024-4947) backport-blocked-v20.x PRs that should land on the v20.x-staging branch but are blocked by another PR's pending backport. build Issues and PRs related to build files or the CI. needs-ci PRs that need a full CI run. security Issues and PRs related to security. v8 engine Issues and PRs related to the V8 dependency. v20.x v20.x Issues that can be reproduced on v20.x or PRs targeting the v20.x-staging branch.
#54795 opened Sep 5, 2024 by giancorderoortiz Loading…
7
[v18.x] deps: V8: backport 2944ee9846e7 (V18.x CVE-2024-4947) build Issues and PRs related to build files or the CI. needs-ci PRs that need a full CI run. security Issues and PRs related to security. v8 engine Issues and PRs related to the V8 dependency. v18.x Issues that can be reproduced on v18.x or PRs targeting the v18.x-staging branch.
#54793 opened Sep 5, 2024 by giancorderoortiz Loading…
17
deps: V8: backport f320600cd1f4 (V20.x CVE-2024-4761) build Issues and PRs related to build files or the CI. commit-queue-squash Add this label to instruct the Commit Queue to squash all the PR commits into the first one. needs-ci PRs that need a full CI run. security Issues and PRs related to security. v8 engine Issues and PRs related to the V8 dependency. v20.x v20.x Issues that can be reproduced on v20.x or PRs targeting the v20.x-staging branch.
#54598 opened Aug 27, 2024 by giancorderoortiz Loading…
6
Warn about full access on --allow-fs-read=* and --allow-fs-write=* feature request Issues that request new features to be added to Node.js. permission Issues and PRs related to the Permission Model security Issues and PRs related to security.
#53598 opened Jun 26, 2024 by LeoDog896
1
src: add NODE_SECURITY_REVERT environment variable c++ Issues and PRs that require attention from people who are familiar with C++. needs-ci PRs that need a full CI run. security Issues and PRs related to security. semver-minor PRs that contain new features and should be released in the next minor version.
#52365 opened Apr 4, 2024 by tniessen Loading…
1
27
Restrict authentication tag length for GCM by default crypto Issues and PRs related to the crypto subsystem. feature request Issues that request new features to be added to Node.js. security Issues and PRs related to security.
#52327 opened Apr 2, 2024 by Starkteetje
3
src: add process.cveRevert c++ Issues and PRs that require attention from people who are familiar with C++. lib / src Issues and PRs related to general changes in the lib or src directory. needs-ci PRs that need a full CI run. security Issues and PRs related to security.
#52090 opened Mar 15, 2024 by mhdawson Draft
40
Enable --security-revert to be used in NODE_OPTIONS environment variable feature request Issues that request new features to be added to Node.js. security Issues and PRs related to security. stale
#52017 opened Mar 8, 2024 by singyantam
1
28
node:internal/url getpathfromurlwin32(url) security Issues and PRs related to security. url Issues and PRs related to the legacy built-in url module.
#50445 opened Oct 28, 2023 by hh0y
3
Tweak security disclaimer regarding legacy url.parse doc Issues and PRs related to the documentations. security Issues and PRs related to security. url Issues and PRs related to the legacy built-in url module.
#45311 opened Nov 4, 2022 by ghost
6
Weak Diffie-Hellman groups provided by crypto module crypto Issues and PRs related to the crypto subsystem. security Issues and PRs related to security.
#44539 opened Sep 6, 2022 by davidben
6
SRI should be checked before Unicode conversion policy Issues and PRs related to the policy subsystem. security Issues and PRs related to security.
#39707 opened Aug 8, 2021 by tniessen
setcap on Node.js prevents processing of NODE_OPTIONS linux Issues and PRs related to the Linux platform. security Issues and PRs related to security.
#37588 opened Mar 3, 2021 by connor4312
4
Consider adding some scripting, etc. to make sure that the key used to sign a release is listed in README.md release Issues and PRs related to Node.js releases. security Issues and PRs related to security.
#32561 opened Mar 30, 2020 by haqer1
Secure memory: Yay or nay memory Issues and PRs related to the memory management or memory footprint. security Issues and PRs related to security.
#30956 opened Dec 14, 2019 by tniessen
28
Warn on potentially insecure inspector options (--inspect=0.0.0.0) doc Issues and PRs related to the documentations. help wanted Issues that need assistance from volunteers or PRs that need help to proceed. inspector Issues and PRs related to the V8 inspector protocol security Issues and PRs related to security.
#23444 opened Oct 12, 2018 by ChALkeR
2
3
Add testcases for all documented safeguards help wanted Issues that need assistance from volunteers or PRs that need help to proceed. security Issues and PRs related to security. test Issues and PRs related to the tests.
#22492 opened Aug 23, 2018 by ChALkeR
8
ProTip! Exclude everything labeled bug with -label:bug.