Update Node.js to v10.19.0

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
node		minor	10.5.0 -> 10.19.0
node	engines	minor	10.5.0 -> 10.19.0

---

Release Notes

nodejs/node

v10.19.0

Compare Source

Notable changes

This is a security release.

Vulnerabilities fixed:

• CVE-2019-15606: HTTP header values do not have trailing OWS trimmed.
• CVE-2019-15605: HTTP request smuggling using malformed Transfer-Encoding header.
• CVE-2019-15604: Remotely trigger an assertion on a TLS server with a malformed certificate string.

Also, HTTP parsing is more strict to be more secure. Since this may
cause problems in interoperability with some non-conformant HTTP
implementations, it is possible to disable the strict checks with the
--insecure-http-parser command line flag, or the insecureHTTPParser
http option. Using the insecure HTTP parser should be avoided.

Commits

• [f940bee3b7] - crypto: fix assertion caused by unsupported ext (Fedor Indutny) nodejs-private/node-private#​175
• [49f4220ce5] - deps: upgrade http-parser to v2.9.3 (Sam Roberts) nodejs-private/http-parser-private#​4
• [a28e5cc1ed] - (SEMVER-MINOR) deps: upgrade http-parser to v2.9.1 (Sam Roberts) #​30471
• [0082f62d9c] - (SEMVER-MINOR) http: make --insecure-http-parser configurable per-stream or per-server (Anna Henningsen) #​31448
• [a9849c0ff6] - (SEMVER-MINOR) http: opt-in insecure HTTP header parsing (Sam Roberts) #​30567
• [2eee90e959] - http: strip trailing OWS from header values (Sam Roberts) nodejs-private/node-private#​191
• [e2c8f89b75] - test: using TE to smuggle reqs is not possible (Sam Roberts) nodejs-private/node-private#​192
• [d616722f65] - test: check that --insecure-http-parser works (Sam Roberts) #​31253

v10.18.1

Compare Source

Notable changes

• http2: fix session memory accounting after pausing (Michael Lehenbauer) #​30684
• n-api: correct bug in napi_get_last_error (Octavian Soldea) #​28702
• tools: update tzdata to 2019c (Myles Borins) #​30479

Commits

• [a80c59130e] - build: fix configure script to work with Apple Clang 11 (Saagar Jha) #​28071
• [68b2b5cc51] - build,win: propagate error codes in vcbuild (João Reis) #​30724
• [3e0709cf5e] - deps: V8: backport fb63e5c (Michaël Zasso)
• [25b8fbda35] - doc: allow \<code> in header elements (Rich Trott) #​31086
• [a1b095dd46] - doc,dns: use code markup/markdown in headers (Rich Trott) #​31086
• [8f3b8ca515] - http2: fix session memory accounting after pausing (Michael Lehenbauer) #​30684
• [20f64a96de] - http2: use the latest settings (ZYSzys) #​29780
• [81c31005fd] - lib: fix comment nits in bootstrap\loaders.js (Vse Mozhet Byt) #​24641
• [88e8b7cf83] - n-api: correct bug in napi_get_last_error (Octavian Soldea) #​28702
• [77e0318849] - stream: increase MAX_HWM (Robert Nagy) #​29938
• [894aaa2040] - stream: extract Readable.from in its own file (Matteo Collina) #​30140
• [7e941eb17d] - test: do not fail SLOW tests if they are not slow (Yang Guo) #​25868
• [0f3ae77aaf] - tools: update tzdata to 2019c (Myles Borins) #​30479
• [4ae8d204cb] - tools: move python code out of jenkins shell (Sam Roberts) #​28458
• [4879b80d87] - tools: fix v8 testing with devtoolset on ppcle (Sam Roberts) #​28458

v10.18.0

Compare Source

This is a security release.

For more details about the vulnerability please consult the npm blog:

https://blog.npmjs.org/post/189618601100/binary-planting-with-the-npm-cli

Notable changes

• deps: update npm to 6.13.4 #​30904

Commits

• [54a466a865] - build,win: add test-ci-native and test-ci-js (João Reis) #​30724
• [f9b31edb25] - deps: update npm to 6.13.4 (Isaac Z. Schlueter) #​30904

v10.17.0

Compare Source

Notable changes

• crypto:
  • add support for chacha20-poly1305 for AEAD (chux0519) #​24081
  • increase maxmem range from 32 to 53 bits (Tobias Nießen) #​28799
• deps:
  • update npm to 6.11.3 (claudiahdz) #​29430
  • upgrade openssl sources to 1.1.1d (Sam Roberts) #​29921
• dns: remove dns.promises experimental warning (cjihrig) #​26592
• fs: remove experimental warning for fs.promises (Anna Henningsen) #​26581
• http: makes response.writeHead return the response (Mark S. Everitt) #​25974
• http2: makes response.writeHead return the response (Mark S. Everitt) #​25974
• n-api:
  • make func argument of napi_create_threadsafe_function optional (legendecas) #​27791
  • mark version 5 N-APIs as stable (Gabriel Schulhof) #​29401
  • implement date object (Jarrod Connolly) #​25917
• process: add --unhandled-rejections flag (Ruben Bridgewater) #​26599
• stream:
  • implement Readable.from async iterator utility (Guy Bedford) #​27660
  • make Symbol.asyncIterator support stable (Matteo Collina) #​26989

Commits

• [f1a5a36961] - build: update Windows icon to Feb 2016 rebrand (Mike MacCana) #​28524
• [63de2ade85] - (SEMVER-MINOR) crypto: add support for chacha20-poly1305 for AEAD (chux0519) #​24081
• [4f0f12c3d6] - crypto: fix rsa key gen with non-default exponent (Sam Roberts) #​27092
• [7735824d2c] - (SEMVER-MINOR) crypto: increase maxmem range from 32 to 53 bits (Tobias Nießen) #​28799
• [e53dbba6bc] - deps: update npm to 6.11.3 (claudiahdz) #​29430
• [55cd01c5c3] - (SEMVER-MINOR) deps: update npm to 6.10.3 (isaacs) #​29023
• [e2291cf805] - deps: upgrade npm to 6.10.2 (isaacs) #​28853
• [03b69660f9] - deps: upgrade npm to 6.10.0 (isaacs) #​28525
• [333963ef73] - deps: dlloads node static linked executable (Luca Lindhorst) #​28045
• [7202792ad3] - deps: update archs files for OpenSSL-1.1.1d (Sam Roberts) #​29921
• [9c393f1d02] - deps: upgrade openssl sources to 1.1.1d (Sam Roberts) #​29921
• [7f48519413] - deps: do not link against librt (Sam Roberts) #​29729
• [fcc22d31a0] - (SEMVER-MINOR) dns: make dns.promises enumerable (cjihrig) #​26592
• [fa27aac5fb] - (SEMVER-MINOR) dns: remove dns.promises experimental warning (cjihrig) #​26592
• [90fb146933] - (SEMVER-MINOR) doc: move dns.promises to stable status (cjihrig) #​26592
• [65e68d1f4f] - doc: add documentation for stream readableFlowing (Chetan Karande) #​29506
• [c285e694e2] - doc: fix the links tls default version sections (Chetan Karande) #​28827
• [cef5010135] - doc: describe tls.DEFAULT_MIN_VERSION/_MAX_VERSION (Chetan Karande) #​28827
• [15c2eb0e58] - doc: update N-API version matrix (Gabriel Schulhof) #​29461
• [a3eda2896d] - doc: fixup changelog for v10.16.3 (Andrew Hughes) #​29159
• [56a834a53f] - doc,test: clarify that Http2Stream is destroyed after data is read (Alba Mendez) #​27891
• [85ce8ef19a] - (SEMVER-MINOR) fs: remove experimental warning for fs.promises (Anna Henningsen) #​26581
• [ccf2823f83] - (SEMVER-MINOR) http: makes response.writeHead return the response (Mark S. Everitt) #​25974
• [66387cd45e] - http2: send out pending data earlier (Anna Henningsen) #​29398
• [925849650b] - (SEMVER-MINOR) http2: makes response.writeHead return the response (Mark S. Everitt) #​25974
• [69b0212df3] - http2: do not start reading after write if new write is on wire (Anna Henningsen) #​29399
• [36a0e9a063] - http2: do not crash on stream listener removal w/ destroyed session (Anna Henningsen) #​29459
• [c74c6a5ccf] - n-api: mark version 5 N-APIs as stable (Gabriel Schulhof) #​29401
• [f8622762e3] - (SEMVER-MINOR) n-api: make func argument of napi_create_threadsafe_function optional (legendecas) #​27791
• [4f41e4f471] - (SEMVER-MINOR) n-api: implement date object (Jarrod Connolly) #​25917
• [69bf5b7944] - net: treat ENOTCONN at shutdown as success (Anna Henningsen) #​29912
• [d6c998a478] - process: use public readableFlowing property (Chetan Karande) #​29502
• [b43d7e8f42] - (SEMVER-MINOR) process: add --unhandled-rejections flag (Ruben Bridgewater) #​26599
• [79f3844fb0] - (SEMVER-MINOR) readline: make Symbol.asyncIterator support stable (Matteo Collina) #​26989
• [18b140ae75] - src: use maybe version v8::Function::Call (Ouyang Yadong) #​23826
• [1bb5102999] - src: use more explicit return type in Sign::SignFinal() (Anna Henningsen) #​23779
• [859d47593e] - src: reduce platform worker barrier lifetime (Ali Ijaz Sheikh) #​23419
• [00831f0293] - (SEMVER-MINOR) stream: make Symbol.asyncIterator support stable (Matteo Collina) #​26989
• [ddb5152e9b] - (SEMVER-MINOR) stream: implement Readable.from async iterator utility (Guy Bedford) #​27660
• [13d8549abd] - test: well-defined DH groups now verify clean (Sam Roberts) #​29550
• [f78ecc3f93] - test: fix race in test-http2-origin (Alba Mendez) #​28903
• [2afbb3efab] - test,win: cleanup exec-timeout processes (João Reis) #​28723
• [fe58bca878] - tls: group chunks into TLS segments (Alba Mendez) #​27861
• [2eae030a4b] - (SEMVER-MINOR) worker: add missing return value in case of fatal exceptions (Ruben Bridgewater) #​29036
• [e8c90bf4d1] - zlib: do not coalesce multiple .flush() calls (Anna Henningsen) #​28520

v10.16.3

Compare Source

Notable changes

This is a security release.

Node.js, as well as many other implementations of HTTP/2, have been found
vulnerable to Denial of Service attacks.
See https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md
for more information.

Vulnerabilities fixed:

• CVE-2019-9511 “Data Dribble”: The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both, potentially leading to a denial of service.
• CVE-2019-9512 “Ping Flood”: The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both, potentially leading to a denial of service.
• CVE-2019-9513 “Resource Loop”: The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU, potentially leading to a denial of service.
• CVE-2019-9514 “Reset Flood”: The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both, potentially leading to a denial of service.
• CVE-2019-9515 “Settings Flood”: The attacker sends a stream of SETTINGS frames to the peer. Since the RFC requires that the peer reply with one acknowledgement per SETTINGS frame, an empty SETTINGS frame is almost equivalent in behavior to a ping. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both, potentially leading to a denial of service.
• CVE-2019-9516 “0-Length Headers Leak”: The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory, potentially leading to a denial of service.
• CVE-2019-9517 “Internal Data Buffering”: The attacker opens the HTTP/2 window so the peer can send without constraint; however, they leave the TCP window closed so the peer cannot actually write (many of) the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the servers queue the responses, this can consume excess memory, CPU, or both, potentially leading to a denial of service.
• CVE-2019-9518 “Empty Frames Flood”: The attacker sends a stream of frames with an empty payload and without the end-of-stream flag. These frames can be DATA, HEADERS, CONTINUATION and/or PUSH_PROMISE. The peer spends time processing each frame disproportionate to attack bandwidth. This can consume excess CPU, potentially leading to a denial of service. (Discovered by Piotr Sikora of Google)

Commits

• [74507fae34] - deps: update nghttp2 to 1.39.2 (Anna Henningsen) #​29122
• [a397c881ec] - deps: update nghttp2 to 1.39.1 (gengjiawen) #​28448
• [fedfa12a33] - deps: update nghttp2 to 1.38.0 (gengjiawen) #​27295
• [ab0f2ace36] - deps: update nghttp2 to 1.37.0 (gengjiawen) #​26990
• [0acbe05ee2] - http2: allow security revert for Ping/Settings Flood (Anna Henningsen) #​29122
• [c152449012] - http2: pause input processing if sending output (Anna Henningsen) #​29122
• [0ce699c7b1] - http2: stop reading from socket if writes are in progress (Anna Henningsen) #​29122
• [17357d37a9] - http2: consider 0-length non-end DATA frames an error (Anna Henningsen) #​29122
• [460f896c63] - http2: shrink default vector::reserve() allocations (Anna Henningsen) #​29122
• [f4242e24f9] - http2: handle 0-length headers better (Anna Henningsen) #​29122
• [477461a51f] - http2: limit number of invalid incoming frames (Anna Henningsen) #​29122
• [05dada46ee] - http2: limit number of rejected stream openings (Anna Henningsen) #​29122
• [7f11465572] - http2: do not create ArrayBuffers when no DATA received (Anna Henningsen) #​29122
• [2eb914ff5f] - http2: only call into JS when necessary for session events (Anna Henningsen) #​29122
• [76a7ada15d] - http2: improve JS-side debug logging (Anna Henningsen) #​29122
• [00f153da13] - http2: improve http2 code a bit (James M Snell) #​23984
• [a0a14c809f] - src: pass along errors from http2 object creation (Anna Henningsen) #​25822
• [d85e4006ab] - test: apply test-http2-max-session-memory-leak from v12.x (Anna Henningsen) #​29122

v10.16.2

Compare Source

Notable changes

This release patches a regression in the OpenSSL upgrade to 1.1.1c that causes intermittent hangs in machines that have low entropy.

Commits

• [894a9dd230] - deps: cherry-pick c19c5a6 from openssl upstream (Ali Ijaz Sheikh) #​28983

v10.16.1

Compare Source

Notable changes

• deps: upgrade openssl sources to 1.1.1c (Sam Roberts) #​28212
• stream: do not unconditionally call \_read() on resume() (Anna Henningsen) #​26965
• worker: fix nullptr deref after MessagePort deser failure (Anna Henningsen) #​25076

Commits

• [65ef26fdcb] - async_hooks: avoid double-destroy HTTPParser (Gerhard Stoebich) #​27477
• [8f5d6cf5f5] - deps: update archs files for OpenSSL-1.1.1c (Sam Roberts) #​28212
• [9e62852724] - deps: upgrade openssl sources to 1.1.1c (Sam Roberts) #​28212
• [c59e0c256d] - deps: updated openssl upgrade instructions (Sam Roberts) #​28212
• [609d2b9ea4] - deps: V8: backport f27ac28 (Michaël Zasso) #​28061
• [8f780e8f99] - deps: cherry-pick 88f8fe1 from upstream V8 (Yang Guo) #​24514
• [ad588eb5fc] - doc: adjust TOC margins (Roman Reiss) #​28075
• [b3d8a1b1d0] - doc: add missing changes entry (Ruben Bridgewater) #​24758
• [819a647d8f] - esm: fix esm load bug (ZYSzys) #​25491
• [f34bb968c4] - process: make stdout and stderr emit 'close' on destroy (Matteo Collina) #​26691
• [0339fba1bb] - src: handle empty Maybe in uv binding initialize (Anna Henningsen) #​25079
• [f9e8e8856a] - src: fix Get() usage in tls_wrap.cc (cjihrig) #​24060
• [b689008dea] - src: in-source comments and minor TLS cleanups (Sam Roberts) #​25713
• [76af23a32b] - src: remove internalBinding('config').warningFile (Joyee Cheung) #​24959
• [b7dbc1c537] - src: fix warning in cares_wrap.cc (cjihrig) #​25230
• [a8f78f02cb] - src: fulfill Maybe contract in InlineDecoder (Anna Henningsen) #​25140
• [0dee607409] - src: extract common Bind method (Jon Moss) #​22315
• [08a32fbf57] - src: elevate v8 namespaces for node_process.cc (Jayasankar) #​24578
• [f3841c6750] - stream: convert existing buffer when calling .setEncoding (Anna Henningsen) #​27936
• [274b97c4ea] - stream: do not unconditionally call \_read() on resume() (Anna Henningsen) #​26965
• [044e753aaf] - stream: make _read() be called indefinitely if the user wants so (Matteo Collina) #​26135
• [f332265cda] - test: remove util.inherits() usage (ZYSzys) #​25245
• [ada0ed55d1] - test: fix pty test hangs on aix (Ben Noordhuis) #​28600
• [2ae99160e5] - test: skip stringbytes-external-exceed-max on AIX (Sam Roberts) #​28516
• [39637cb95f] - test: skip tests related to CI failures on AIX (Sam Roberts) #​28469
• [35be08a16f] - test: clean up build files (Gabriel Schulhof) #​28297
• [cc3ca08046] - test: clearing require cache crashes esm loader (Antoine du HAMEL) #​25491
• [75052cadaa] - tls: add debugging to native TLS code (Anna Henningsen) #​26843
• [99dad28ebf] - tls: add CHECK for impossible condition (Anna Henningsen) #​26843
• [5ffe04753e] - tls: renegotiate should take care of its own state (Sam Roberts) #​25997
• [4a607fab49] - tools: replace rollup with ncc (Rich Trott) #​24813
• [14090b59fc] - worker: fix nullptr deref after MessagePort deser failure (Anna Henningsen) #​25076

v10.16.0

Compare Source

Notable Changes

• deps:
  • update ICU to 64.2 (Ujjwal Sharma) #​27361
  • upgrade npm to 6.9.0 (Kat Marchán) #​26244
  • upgrade openssl sources to 1.1.1b (Sam Roberts) #​26327
  • upgrade to libuv 1.28.0 (cjihrig) #​27241
• events: add once method to use promises with EventEmitter (Matteo Collina) #​26078
• n-api: mark thread-safe function as stable (Gabriel Schulhof) #​25556
• repl: support top-level for-await-of (Shelley Vohr) #​23841
• zlib: add brotli support (Anna Henningsen) #​24938

Commits

• [77ed1bbea4] - benchmark: fix net-wrap-js-stream-passthrough (Rich Trott) #​25273
• [a8cbe0e6d2] - benchmark: replace deprecated and eliminate var in buffer-from.js (gengjiawen) #​26585
• [5249a22704] - benchmark: refactor path benchmarks (Ruben Bridgewater) #​26359
• [de7db26879] - benchmark,lib: add process.hrtime.bigint benchmark (Anna Henningsen) #​26381
• [c670358d7e] - (SEMVER-MINOR) benchmark,test: add brotli (Anna Henningsen) #​24938
• [ff647fda13] - buffer: do not affect memory after target for utf16 write (Anna Henningsen) #​26432
• [99a653e9ee] - build: make compress_json python3 compatible (Sakthipriyan Vairamani (thefourtheye)) #​25582
• [1c7f6a51c4] - build: make configure.py compatible with python 3 (Sakthipriyan Vairamani (thefourtheye)) #​25580
• [de268667e7] - build: remove AIX/ppc (32bit) dead code (Refael Ackermann) #​25523
• [a575a410fa] - build: remove erroneous duplicate declaration from node_inspector.gypi (Refael Ackermann) #​25586
• [6348d71a8a] - build: do not lint python scripts under test/fixtures (Joyee Cheung) #​25639
• [7ead9af0f5] - build: add check for empty openssl-fips flag (Daniel Bevenius) #​25391
• [554a4345c2] - build: fix Windows shared lib build (Richard Lau) #​25166
• [ffd62b129d] - build: correct fi indentation in Makefile (Daniel Bevenius) #​25107
• [5760e419d7] - build: add a space to clarify skipping crypto msg (Daniel Bevenius) #​25011
• [513913c672] - build: restore running tests on Travis (Richard Lau) #​26720
• [9512f3938a] - build: temporarily don't run tests on Travis (Richard Lau) #​26720
• [add5141933] - build: use Xenial and gcc 6 on Travis (Richard Lau) #​26720
• [9f5ad9b476] - build,deps: less warnings from V8 (Refael Ackermann) #​26405
• [16a92f66a1] - child_process: truncate output when maxBuffer is exceeded (Jeremiah Senkpiel) #​24951
• [274fc16178] - child_process: simplify argument handling (cjihrig) #​25194
• [fce822f6e9] - child_process: ensure message sanity at source (Gireesh Punathil) #​24787
• [a193a0f9dd] - child_process: spawn ignores options in case args is undefined (Eduard Bondarenko) #​24913
• [4b3e9486ca] - cluster: refactor empty for in round_robin_handle.js (gengjiawen) #​26560
• [fb73c06025] - cluster: improve for-loop (gengjiawen) #​26336
• [b8b23a3d78] - crypto: add crypto modules to cannotUseCache (Daniel Bevenius) #​25606
• [3a2814367b] - crypto: add crypto/keys to cannotUseCache (Daniel Bevenius) #​25237
• [a0dc65d0ed] - crypto: update root certificates (Sam Roberts) #​25113
• [4c87c1b1bc] - deps: upgrade to libuv 1.28.0 (cjihrig) #​27241
• [7e5ef4a0e1] - deps: upgrade to libuv 1.27.0 (cjihrig) #​26707
• [8ea22bbb88] - deps: upgrade to libuv 1.26.0 (cjihrig) #​26037
• [e6275f939a] - deps: upgrade to libuv 1.25.0 (cjihrig) #​25571
• [aceac0581c] - deps: patch to fix *.onion MX query on c-ares (XadillaX) #​25840
• [be219bd559] - deps: update archs files for OpenSSL-1.1.1b (Sam Roberts) #​26327
• [6a6aa6f038] - (SEMVER-MINOR) deps: add s390 asm rules for OpenSSL-1.1.1 (Shigeki Ohtsu) #​25381
• [5109c4f432] - deps: add ARM64 Windows support in openssl (Shigeki Ohtsu) #​26001
• [f270eeec52] - deps: openssl-1.1.1b no longer packages .gitignore (Sam Roberts) #​26327
• [ebe0b05a24] - deps: upgrade openssl sources to 1.1.1b (Sam Roberts) #​26327
• [bbf5373041] - deps: update OpenSSL upgrade process (Sam Roberts) #​26378
• [a9c68a05d9] - (SEMVER-MINOR) deps: add brotli (Hackzzila) #​24938
• [281b52d6ec] - deps: upgrade npm to 6.9.0 (Kat Marchán) #​26244
• [d2413d630c] - deps: upgrade npm to 6.7.0 (Kat Marchán) #​25804
• [e880904d22] - deps: upgrade npm to v6.5.0 (Jordan Harband) #​25234
• [f91a818508] - deps: backport ICU-20575 to fix err/crasher (Steven R. Loomis) #​27435
• [c7931e4438] - deps: backport ICU-20558 to fix Intl crasher (Steven R. Loomis) #​27415
• [c9d0b6a9a0] - deps: update ICU to 64.2 (Ujjwal Sharma) #​27361
• [391185e550] - (SEMVER-MINOR) deps: upgrade npm to 6.5.0 (Audrey Eschright) #​24734
• [4875e881cd] - deps: upgrade to libuv 1.24.1 (cjihrig) #​25078
• [74f4741b63] - (SEMVER-MINOR) deps: upgrade to libuv 1.24.0 (cjihrig) #​24332
• [e9a9c88363] - (SEMVER-MINOR) deps: icu 63.1 bump (CLDR 34) (Steven R. Loomis) #​23715
• [23ea7ee64b] - deps: v8, backport coverage fixes (bcoe) #​26579
• [b0b73fa561] - (SEMVER-MINOR) deps: update archs files for OpenSSL-1.1.1a (Sam Roberts) #​25381
• [56441a0900] - (SEMVER-MINOR) deps: fix for non GNU assembler in AIX (Shigeki Ohtsu) #​25381
• [639b1d2f68] - (SEMVER-MINOR) deps: add only avx2 configs for OpenSSL-1.1.1 (Shigeki Ohtsu) #​25381
• [f5369da047] - (SEMVER-MINOR) deps: fix MacOS and Win build for OpenSSL-1.1.1 (Shigeki Ohtsu) #​25381
• [70a785cd9f] - (SEMVER-MINOR) deps: fix gyp/gypi for openssl-1.1.1 (Shigeki Ohtsu) #​25381
• [0e7019ff76] - (SEMVER-MINOR) deps: add s390 asm rules for OpenSSL-1.1.1 (Shigeki Ohtsu) #​25381
• [2d396fe058] - (SEMVER-MINOR) deps: upgrade openssl sources to 1.1.1a (Sam Roberts) #​25381
• [ce6fec53a4] - (SEMVER-MINOR) deps,tools: update license-builder.sh and LICENSE (Hackzzila) #​24938
• [b7dd0b841e] - deps,tools: include SipHash in LICENSE (Rod Vagg) #​26367
• [4fcfa5a63f] - dns: fix TTL value for AAAA replies to resolveAny() (Anna Henningsen) #​25187
• [2a98b9cf2f] - doc: add "tick" function name and argument description (Artur Hayrapetyan) #​23551
• [93edf907ca] - (SEMVER-MINOR) doc: add documentation for brotli support (Anna Henningsen) #​24938
• [7ed29fc1e8] - doc: revise breaking changes material in COLLABORATOR_GUIDE (Rich Trott) #​25730
• [498edfde9b] - doc: fix http.Agent timeout option description (Luigi Pinca) #​25489
• [a040a73ee3] - doc: fix file extension on ESM file example (Eric Whitebloom) #​25692
• [6a2d9d192f] - doc: remove outdated s_client information in tls.md (Rich Trott) #​25678
• [bb96d79a7e] - doc: clarify what dns.setResolvers() affects (Sam Roberts) #​25570
• [a382932097] - doc: simplify process.binding() deprecation message (Rich Trott) #​25654
• [b1a15ab4cf] - doc: add note regarding pushing release tags (Myles Borins) #​25569
• [6ae41bde4d] - doc: reword stream docs to clarify that decodeStrings encodes strings (Daniel George Holz) #​25468
• [13205d5805] - doc: correct my wrong note about buf.fill() (Vse Mozhet Byt) #​25585
• [12fe2d30fe] - doc: add a note to buf.fill() description (Vse Mozhet Byt) #​25547
• [92d0794d63] - doc: fix typo in Buffer API (H1Gdev) #​25544
• [37082bd149] - doc: add Rich back to TSC list (Michael Dawson) #​25535
• [5631d7a6e0] - doc: add metadata about ecdh curve options (Sam Roberts) #​25502
• [5c602dabc4] - doc: add TLSSocket.isSessionReused() docs (Sam Roberts) #​25423
• [07f878b0c1] - doc: fix sorting in buffer.md (Vse Mozhet Byt) #​25477
• [9dffc2ba0c] - doc: fix napi\_open\_callback\_scope description (Philipp Renoth) #​25366
• [0c33ecb2bd] - doc: document that stream.on('close') was changed in Node 10 (Matteo Collina) #​25413
• [8f0fa61406] - doc: fix the path to postMessage() (Mitar) #​25332
• [3a30c87e88] - doc: update os.networkInterfaces() example (jvelezpo) #​25417
• [530f005d7d] - doc: make sure that calls to .read() are looped (Matteo Collina) #​25375
• [487f6536bc] - doc: add history to http.request.setTimeout() (James Bunton) #​25121
• [66ab7e4a99] - doc: add clarification for exception behaviour (Michael Dawson) #​25339
• [ce3cf0dffd] - doc: clarify timing of socket.connecting (Sam Roberts) #​25333
• [b68d47a246] - doc: update benchmark doc (Kazushi Kitaya) #​25367
• [252a696568] - doc: use lowercase for zlib (Rich Trott) #​25371
• [0d3212aa5c] - doc: fix heading in cpp style guide (Kazushi Kitaya) #​25303
• [8d5ac6c8ef] - doc: fix process.stdin example (Anna Henningsen) #​25344
• [ef6e4f15a0] - doc: fs.mkdir('/') throws EPERM on Windows (Corey Farrell) #​25340
• [fc5dc9c13e] - doc: include license for src/large_pages in LICENSE (Ujjwal Sharma) #​25246
• [b76931b7e9] - doc: describe TLS session resumption (Sam Roberts) #​25174
• [c84b4fb51a] - doc: link and expand --tls-cipher-list docs (Sam Roberts) #​25174
• [18e0a61f91] - doc: revise "Breaking Changes to Internal Elements" (Rich Trott) #​25190
• [b980fa3a21] - doc: fix NAPI typo (Philipp Renoth) #​25216
• [173e5fee9d] - doc: revise "Breaking Changes and Deprecations" (Rich Trott) #​25116
• [c571e9e18b] - doc: describe root cert update process (Sam Roberts) #​25113
• [09a97f29df] - doc: edit LTS material in Collaborator Guide (Rich Trott) #​26845
• [f52160d385] - doc: change error message to 'not defined' (Mohammed Essehemy) #​26857
• [6bd33dde62] - doc: fix comma of the list in worker_threads.md (Hang Jiang) #​26838
• [889d68ce6d] - doc: remove discord community (Aymen Naghmouchi) #​26830
• [ddfa756797] - doc: remove How Does LTS Work section from Collaborator Guide (Rich Trott) #​26723
• [a228254d6b] - doc: condense LTS material in Collaborator Guide (Rich Trott) #​26722
• [09f162b18f] - doc: add Note of options.stdio into child_process (kohta ito) #​26604
• [83c2a14e08] - doc: update spawnSync() status value possibilities (Rich Trott) #​26680
• [621099ebed] - doc: add ZYSzys to collaborators (ZYSzys) #​26730
• [30021881f8] - doc: simplify force-push guidelines (Rich Trott) #​26699
• [1e6faf9ee0] - doc: note about DNS ANY queries / RFC 8482 (Thomas Hunter II) #​26695
• [fc3552305a] - doc: simplify Troubleshooting text (Rich Trott) #​26652
• [983ea7f3e0] - doc: update copy/paste error message in Troubleshooting (Rich Trott) #​26652
• [c07619d581] - doc: add Gireesh to TSC (Rich Trott) #​26657
• [07ded7c975] - doc: edit "Technical How-To" section of guide (Rich Trott) #​26601
• [0a976ecb63] - doc: fix misleading sentence in http.md (Luigi Pinca) #​26465
• [f30172fa25] - doc: fix typo in http2.md (TJKoury) #​26616
• [4fed47ab79] - doc: edit "Using git-node" section of Guide (Rich Trott) #​26580
• [033d49c1f4] - doc: add version for http.createServer() options addition (Ben Swinburne) #​25001
• [d4a1d79e3d] - doc: add inspector API example for heapdump (Sam Roberts) #​26498
• [72f0efc1f2] - doc: edit Landing Pull Requests (Rich Trott) #​26536
• [132a457ed4] - doc: add decode() & encode() methods into querystring.md (ZYSzys) #​23889
• [74dac5913d] - doc: update partner communities link in releases.md (Beth Griggs) #​26475
• [5279a884cc] - doc: fix nits in writing-tests.md (Vse Mozhet Byt) #​26543
• [11d163b439] - doc: edit "Involving the TSC" (Rich Trott) #​26481
• [[5fedf0f257](https://togithub.com/nodejs/node

---

Renovate configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻️ Rebasing: Whenever PR becomes conflicted, or if you tick the rebase/retry checkbox below.

🔕 Ignore: Close this PR and you won't be reminded about these updates again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by WhiteSource Renovate. View repository job log here.