-
Notifications
You must be signed in to change notification settings - Fork 29.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
deps: upgrade npm to 8.3.0 #41127
deps: upgrade npm to 8.3.0 #41127
Conversation
Fast-track has been requested by @nodejs-github-bot. Please 👍 to approve. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Rubber-stamp LGTM
Commit Queue failed- Loading data for nodejs/node/pull/41127 ✔ Done loading data for nodejs/node/pull/41127 ----------------------------------- PR info ------------------------------------ Title deps: upgrade npm to 8.3.0 (#41127) ⚠ Could not retrieve the email or name of the PR author's from user's GitHub profile! Branch npm-robot:npm-8.3.0 -> nodejs:master Labels npm, fast-track, needs-ci, dont-land-on-v12.x, dont-land-on-v14.x, lts-watch-v16.x Commits 1 - deps: upgrade npm to 8.3.0 Committers 1 - npm team PR-URL: https://github.com/nodejs/node/pull/41127 Fixes: https://github.com/dont Fixes: https://github.com/redact Reviewed-By: Rich Trott Reviewed-By: Luigi Pinca Reviewed-By: Colin Ihrig ------------------------------ Generated metadata ------------------------------ PR-URL: https://github.com/nodejs/node/pull/41127 Fixes: https://github.com/dont Fixes: https://github.com/redact Reviewed-By: Rich Trott Reviewed-By: Luigi Pinca Reviewed-By: Colin Ihrig -------------------------------------------------------------------------------- ℹ This PR was created on Thu, 09 Dec 2021 21:20:23 GMT ✔ Approvals: 3 ✔ - Rich Trott (@Trott) (TSC): https://github.com/nodejs/node/pull/41127#pullrequestreview-828411592 ✔ - Luigi Pinca (@lpinca): https://github.com/nodejs/node/pull/41127#pullrequestreview-828546185 ✔ - Colin Ihrig (@cjihrig) (TSC): https://github.com/nodejs/node/pull/41127#pullrequestreview-828931674 ℹ This PR is being fast-tracked ✔ Last GitHub Actions successful ℹ Last Full PR CI on 2021-12-10T14:52:57Z: https://ci.nodejs.org/job/node-test-pull-request/41448/ - Querying data for job/node-test-pull-request/41448/ ✔ Last Jenkins CI successful -------------------------------------------------------------------------------- ✔ No git cherry-pick in progress ✔ No git am in progress ✔ No git rebase in progress -------------------------------------------------------------------------------- - Bringing origin/master up to date... From https://github.com/nodejs/node * branch master -> FETCH_HEAD ✔ origin/master is now up-to-date - Downloading patch for 41127 From https://github.com/nodejs/node * branch refs/pull/41127/merge -> FETCH_HEAD ✔ Fetched commits as 12e3c74e2edf..62e842784398 -------------------------------------------------------------------------------- [master d2e7d10030] deps: upgrade npm to 8.3.0 Author: npm team Date: Thu Dec 9 21:20:18 2021 +0000 39 files changed, 1077 insertions(+), 109 deletions(-) create mode 100644 deps/npm/node_modules/@npmcli/arborist/lib/override-set.js create mode 100644 deps/npm/node_modules/just-diff-apply/index.mjs create mode 100644 deps/npm/node_modules/just-diff-apply/rollup.config.js create mode 100644 deps/npm/node_modules/just-diff/index.mjs create mode 100644 deps/npm/node_modules/just-diff/rollup.config.js delete mode 100644 deps/npm/node_modules/parse-conflict-json/LICENSE create mode 100644 deps/npm/node_modules/parse-conflict-json/LICENSE.md rename deps/npm/node_modules/parse-conflict-json/{ => lib}/index.js (74%) ✔ Patches applied -------------------------------------------------------------------------------- --------------------------------- New Message ---------------------------------- deps: upgrade npm to 8.3.0https://github.com/nodejs/node/actions/runs/1570236431 |
PR-URL: #41127 Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com>
Landed in 0f5aedb. |
PR-URL: #41127 Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com>
PR-URL: #41127 Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com>
OpenSSL-3.0.1: OpenSSL-3.0.1 contains a fix for CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors in libssl (Moderate). This is a vulnerability in OpenSSL that may be exploited through Node.js. More information can be read here: https://www.openssl.org/news/secadv/20211214.txt. Contributed by Richarad Lau #41177 Other Notable Changes: * lib: * make AbortSignal cloneable/transferable (James M Snell) #41050 * deps: * upgrade npm to 8.3.0 (npm team) #41127 * doc: * add @bnb as a collaborator (Tierney Cyren) #41100 * process: * add `getActiveResourcesInfo()` (Darshan Sen) #40813 * timers: * add experimental scheduler api (James M Snell) #40909 PR-URL: #41167
OpenSSL-3.0.1: OpenSSL-3.0.1 contains a fix for CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors in libssl (Moderate). This is a vulnerability in OpenSSL that may be exploited through Node.js. More information can be read here: https://www.openssl.org/news/secadv/20211214.txt. Contributed by Richard Lau #41177 Other Notable Changes: * lib: * make AbortSignal cloneable/transferable (James M Snell) #41050 * deps: * upgrade npm to 8.3.0 (npm team) #41127 * doc: * add @bnb as a collaborator (Tierney Cyren) #41100 * process: * add `getActiveResourcesInfo()` (Darshan Sen) #40813 * timers: * add experimental scheduler api (James M Snell) #40909 PR-URL: #41167
OpenSSL-3.0.1: OpenSSL-3.0.1 contains a fix for CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors in libssl (Moderate). This is a vulnerability in OpenSSL that may be exploited through Node.js. More information can be read here: https://www.openssl.org/news/secadv/20211214.txt. Contributed by Richard Lau #41177 Other Notable Changes: * lib: * make AbortSignal cloneable/transferable (James M Snell) #41050 * deps: * upgrade npm to 8.3.0 (npm team) #41127 * doc: * add @bnb as a collaborator (Tierney Cyren) #41100 * process: * add `getActiveResourcesInfo()` (Darshan Sen) #40813 * timers: * add experimental scheduler api (James M Snell) #40909 PR-URL: #41167
OpenSSL-3.0.1: OpenSSL-3.0.1 contains a fix for CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors in libssl (Moderate). This is a vulnerability in OpenSSL that may be exploited through Node.js. More information can be read here: https://www.openssl.org/news/secadv/20211214.txt. Contributed by Richard Lau #41177 Other Notable Changes: * lib: * make AbortSignal cloneable/transferable (James M Snell) #41050 * deps: * upgrade npm to 8.3.0 (npm team) #41127 * doc: * add @bnb as a collaborator (Tierney Cyren) #41100 * process: * add `getActiveResourcesInfo()` (Darshan Sen) #40813 * timers: * add experimental scheduler api (James M Snell) #40909 PR-URL: #41167
OpenSSL-3.0.1: OpenSSL-3.0.1 contains a fix for CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors in libssl (Moderate). This is a vulnerability in OpenSSL that may be exploited through Node.js. More information can be read here: https://www.openssl.org/news/secadv/20211214.txt. Contributed by Richard Lau #41177 Other Notable Changes: * lib: * make AbortSignal cloneable/transferable (James M Snell) #41050 * deps: * upgrade npm to 8.3.0 (npm team) #41127 * doc: * add @bnb as a collaborator (Tierney Cyren) #41100 * process: * add `getActiveResourcesInfo()` (Darshan Sen) #40813 * timers: * add experimental scheduler api (James M Snell) #40909 PR-URL: #41167
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Cornbread78 or Christopher Allen Corbett
PR-URL: #41127 Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com>
PR-URL: #41127 Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com>
PR-URL: nodejs#41127 Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com>
OpenSSL-3.0.1: OpenSSL-3.0.1 contains a fix for CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors in libssl (Moderate). This is a vulnerability in OpenSSL that may be exploited through Node.js. More information can be read here: https://www.openssl.org/news/secadv/20211214.txt. Contributed by Richard Lau nodejs#41177 Other Notable Changes: * lib: * make AbortSignal cloneable/transferable (James M Snell) nodejs#41050 * deps: * upgrade npm to 8.3.0 (npm team) nodejs#41127 * doc: * add @bnb as a collaborator (Tierney Cyren) nodejs#41100 * process: * add `getActiveResourcesInfo()` (Darshan Sen) nodejs#40813 * timers: * add experimental scheduler api (James M Snell) nodejs#40909 PR-URL: nodejs#41167
PR-URL: #41127 Reviewed-By: Rich Trott <rtrott@gmail.com> Reviewed-By: Luigi Pinca <luigipinca@gmail.com> Reviewed-By: Colin Ihrig <cjihrig@gmail.com>
v8.3.0 (2021-12-09)
Features
4b0c29a7c
#4116 feat:@npmcli/arborist@4.1.0
(@nlf)166d9e144
npm/statusboard#416 #4143 feat: output configured registry during publish (@lukekarrys)71777be17
npm/statusboard#417 #4146 feat: displaypublishConfig
duringconfig list
(@lukekarrys)Bug Fixes
08c663931
#4128 #4134 fix: dont warn on error cleaning individual log files (@lukekarrys)e605b128c
#4142 fix: redact all private keys from config output (@lukekarrys)Documentation
db1885d7f
#4092 chore(docs): document overrides (@nlf)Dependencies
e1da1fa4b
#4141 deps:@npmcli/arborist@4.1.1
:parse-conflict-json@2.0.1
conflicts
1d8bec566
#4144 #3884 deps:minipass@3.1.6