2025-01-30, Version 23.7.0 (Current)

[github-actions]

Notable Changes

• [36dd9ecc41] - crypto: update root certificates to NSS 3.107 (Node.js GitHub Bot) #56566
• [9414d3cbf1] - (SEMVER-MINOR) fs: allow exclude option in globs to accept glob patterns (Daeyeon Jeong) #56489
• [9c5c3b3115] - (SEMVER-MINOR) module: add ERR_UNSUPPORTED_TYPESCRIPT_SYNTAX (Marco Ippolito) #56610
• [1e201fd5fd] - (SEMVER-MINOR) sqlite: support TypedArray and DataView in StatementSync (Alex Yang) #56385
• [48c813fb67] - (SEMVER-MINOR) src: add --disable-sigusr1 to prevent signal i/o thread (Rafael Gonzaga) #56441
• [cf16123785] - (SEMVER-MINOR) src,worker: add isInternalWorker (Carlos Espa) #56469
• [13bdd9c961] - (SEMVER-MINOR) test_runner: add TestContext.prototype.waitFor() (Colin Ihrig) #56595
• [00a1943858] - (SEMVER-MINOR) test_runner: add t.assert.fileSnapshot() (Colin Ihrig) #56459
• [3143566045] - (SEMVER-MINOR) test_runner: add assert.register() API (Colin Ihrig) #56434

Commits

• [334a3ac7c6] - assert: make myers_diff function more performant (Giovanni Bucci) #56303
• [eb2bf460b7] - assert: make partialDeepStrictEqual work with urls and File prototypes (Giovanni Bucci) #56231
• [d184453b90] - assert: show diff when doing partial comparisons (Giovanni Bucci) #56211
• [4aa1afd607] - benchmark: add validateStream to styleText bench (Rafael Gonzaga) #56556
• [8bbdb1203e] - child_process: fix parsing messages with splitted length field (Maksim Gorkov) #56106
• [d83d89a08e] - crypto: add missing return value check (Michael Dawson) #56615
• [36dd9ecc41] - crypto: update root certificates to NSS 3.107 (Node.js GitHub Bot) #56566
• [3915152c36] - crypto: fix checkPrime crash with large buffers (Santiago Gimeno) #56559
• [c8d1dcb063] - crypto: fix warning of ignoring return value (Cheng) #56527
• [1994eaaf52] - crypto: make generatePrime/checkPrime interruptible (James M Snell) #56460
• [5f1ee05390] - deps: update corepack to 0.31.0 (Node.js GitHub Bot) #56795
• [9cfac712b8] - deps: move inspector_protocol to deps (Chengzhong Wu) #56649
• [b2ec816a31] - deps: macro ENODATA is deprecated in libc++ (Cheng) #56698
• [edd9361499] - deps: fixup some minor coverity warnings (James M Snell) #56612
• [9ffe3ad4b1] - deps: update libuv to 1.50.0 (Node.js GitHub Bot) #56616
• [73ad3ca238] - deps: update amaro to 0.3.0 (Node.js GitHub Bot) #56568
• [0657f6270a] - deps: update amaro to 0.2.2 (Node.js GitHub Bot) #56568
• [47fad8cbc0] - deps: update simdutf to 6.0.3 (Node.js GitHub Bot) #56567
• [c9a211ae29] - diagnostics_channel: capture console messages (Stephen Belanger) #56292
• [cf5d2d6598] - doc: move anatoli to emeritus (Michael Dawson) #56592
• [5dd08d10be] - doc: fix styles of the expandable TOC (Antoine du Hamel) #56755
• [09fb3adf80] - doc: add "Skip to content" button (Antoine du Hamel) #56750
• [ad012ca1f3] - doc: improve accessibility of expandable lists (Antoine du Hamel) #56749
• [38acdb57eb] - doc: add note regarding commit message trailers (Dario Piotrowicz) #56736
• [f4a9b134c0] - doc: fix typo in example code for util.styleText (Robin Mehner) #56720
• [8a61aaa734] - doc: fix inconsistencies in WeakSet and WeakMap comparison details (Shreyans Pathak) #56683
• [4ade128184] - doc: add RafaelGSS as latest sec release stewards (Rafael Gonzaga) #56682
• [e1e1200b79] - doc: clarify cjs/esm diff in queueMicrotask() vs process.nextTick() (Dario Piotrowicz) #56659
• [57a7b931fb] - doc: WeakSet and WeakMap comparison details (Shreyans Pathak) #56648
• [56b21489f4] - doc: mention prepare --security (Rafael Gonzaga) #56617
• [67f39b597a] - doc: tweak info on reposts in ambassador program (Michael Dawson) #56589
• [6381e0761d] - doc: add type stripping to ambassadors program (Marco Ippolito) #56598
• [9bd438acd3] - doc: improve internal documentation on built-in snapshot (Joyee Cheung) #56505
• [f54118c84a] - doc: correct customization hook types & clarify descriptions (Jacob Smith) #56454
• [6af5053153] - doc: document CLI way to open the nodejs/bluesky PR (Antoine du Hamel) #56506
• [4a77a9e1eb] - doc: add history info for Permission Model (Antoine du Hamel) #56707
• [097b8b4889] - doc: add note for features using InternalWorker with permission model (Antoine du Hamel) #56706
• [f600466c73] - doc: add section about using npx with permission model (Rafael Gonzaga) #56539
• [c2d5a0c629] - doc: update gcc-version for ubuntu-lts (Kunal Kumar) #56553
• [202af46793] - doc: fix parentheses in options (Tobias Nießen) #56563
• [4e4b0c63d0] - doc: fix location of NO_COLOR in CLI docs (Colin Ihrig) #56525
• [92eeeb98a5] - doc: include CVE to EOL lines as sec release process (Rafael Gonzaga) #56520
• [233a6a93a1] - doc: add esm examples to node:trace_events (Alfredo González) #56514
• [d9cff6c73f] - doc: reserve NMV 133 for Electron 35 (Keeley Hammond) #56513
• [6047fd7c5c] - doc: add message for Ambassadors to promote (Michael Dawson) #56235
• [a4045c9488] - doc: allow request for TSC reviews via the GitHub UI (Antoine du Hamel) #56493
• [dd3f94873e] - esm: fix jsdoc type refs to ModuleJobBase in esm/loader (Jacob Smith) #56499
• [9414d3cbf1] - (SEMVER-MINOR) fs: allow exclude option in globs to accept glob patterns (Daeyeon Jeong) #56489
• [4202045673] - http2: omit server name when HTTP2 host is IP address (islandryu) #56530
• [f48a562776] - inspector: roll inspector_protocol (Chengzhong Wu) #56649
• [9a954fbf4a] - inspector: add undici http tracking support (Chengzhong Wu) #56488
• [f185e8a34a] - inspector: report loadingFinished until the response data is consumed (Chengzhong Wu) #56372
• [2fb007fdce] - lib: allow skipping source maps in node_modules (Chengzhong Wu) #56639
• [2f69dc2659] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) #56580
• [0d869963e0] - meta: add codeowners of security release document (Rafael Gonzaga) #56521
• [59510ab819] - module: fix bad require.resolve with option paths for . and .. (Dario Piotrowicz) #56735
• [58d2dad67d] - module: integrate TypeScript into compile cache (Joyee Cheung) #56629
• [9f99a6acb5] - module: use more defensive code when handling SWC errors (Antoine du Hamel) #56646
• [7347d34053] - module: fixing url change in load sync hook chain (Vitalii Akimov) #56402
• [9c5c3b3115] - (SEMVER-MINOR) module: add ERR_UNSUPPORTED_TYPESCRIPT_SYNTAX (Marco Ippolito) #56610
• [afd1f91a1e] - module: fix jsdoc for format parameter in cjs/loader (pacexy) #56501
• [86d783fa51] - module: rethrow amaro error message (Marco Ippolito) #56568
• [7b6df4a97a] - process: fix symbol key and mark experimental new node:process methods (Antoine du Hamel) #56517
• [21362cc4f4] - punycode: limit deprecation warning (Colin Ihrig) #56632
• [93f60a1c15] - sqlite: disable memstatus APIs at build time (Colin Ihrig) #56541
• [1e201fd5fd] - (SEMVER-MINOR) sqlite: support TypedArray and DataView in StatementSync (Alex Yang) #56385
• [3aca628a11] - sqlite: enable SQL math functions (Colin Ihrig) #56447
• [575251ae6a] - src: add nullptr handling from X509_STORE_new() (Burkov Egor) #56700
• [8fb03d8f43] - src: move more crypto to ncrypto (James M Snell) #56653
• [55a0135261] - src: add default value for RSACipherConfig mode field (Burkov Egor) #56701
• [83c56da328] - src: fix build with GCC 15 (tjuhaszrh) #56740
• [872d68d87c] - src: fix to generate path from wchar_t via wstring (yamachu) #56696
• [2b6a82dcea] - src: replace NoArrayBufferZeroFillScope with v8 option (James M Snell) #56658
• [a5f9023297] - src: initialize FSReqWrapSync in path that uses it (Michaël Zasso) #56613
• [90f70ed8dd] - src: use cppgc to manage ContextifyContext (Joyee Cheung) #56522
• [0b1ac9653e] - src: handle duplicate paths granted (Rafael Gonzaga) #56591
• [33f5345002] - src: update ECKeyPointer in ncrypto (James M Snell) #56526
• [c7b95fcf95] - src: update ECPointPointer in ncrypto (James M Snell) #56526
• [c008b15108] - src: update ECGroupPointer in ncrypto (James M Snell) #56526
• [5673dc7de7] - src: update ECDASSigPointer implementation in ncrypto (James M Snell) #56526
• [87ba48b2c6] - src: cleaning up more crypto internals for ncrypto (James M Snell) #56526
• [48c813fb67] - (SEMVER-MINOR) src: add --disable-sigusr1 to prevent signal i/o thread (Rafael Gonzaga) #56441
• [50c65eed78] - src: fix undefined script name in error source (Chengzhong Wu) #56502
• [b3c66d2493] - src: refactor --trace-env to reuse option selection and handling (Joyee Cheung) #56293
• [17d59efe3c] - src: minor cleanups on OneByteString usage (James M Snell) #56482
• [3e6e0106f6] - src: move more crypto impl detail to ncrypto dep (James M Snell) #56421
• [5e1ddd5d4c] - src: fixup more ToLocalChecked uses in node_file (James M Snell) #56484
• [aa3fd2f58f] - src: make some minor ToLocalChecked cleanups (James M Snell) #56483
• [7dd8165b0b] - src: lock the thread properly in snapshot builder (Joyee Cheung) #56327
• [edafab7248] - src: drain platform tasks before creating startup snapshot (Chengzhong Wu) #56403
• [e1887d2c58] - src: use LocalVector in more places (James M Snell) #56457
• [cf16123785] - (SEMVER-MINOR) src,worker: add isInternalWorker (Carlos Espa) #56469
• [df78515664] - stream: fix typo in ReadableStreamBYOBReader.readIntoRequests (Mattias Buelens) #56560
• [4ff79fb22a] - test: reduce number of written chunks (Luigi Pinca) #56757
• [2e7b7b7674] - test: fix invalid common.mustSucceed() usage (Luigi Pinca) #56756
• [0af368ce5e] - test: use strict mode in global setters test (Rich Trott) #56742
• [e49f3e944c] - test: cleanup and simplify test-crypto-aes-wrap (James M Snell) #56748
• [85f7bbf4e4] - test: do not use common.isMainThread (Luigi Pinca) #56768
• [36b02bf1b1] - test: make some requires lazy in common/index (James M Snell) #56715
• [bcb35c3fb7] - test: add test that uses multibyte for path and resolves modules (yamachu) #56696
• [917f98b29c] - test: replace more uses of global with globalThis (James M Snell) #56712
• [bf34a49206] - test: make common/index slightly less node.js specific (James M Snell) #56712
• [ef2ed71389] - test: rely less on duplicative common test harness utilities (James M Snell) #56712
• [e654c8b84a] - test: simplify common/index.js (James M Snell) #56712
• [a62345e73b] - test: move hasMultiLocalhost to common/net (James M Snell) #56716
• [6edf04ee5e] - test: move crypto related common utilities in common/crypto (James M Snell) #56714
• [c7a132229f] - test: add missing test for env file (Jonas) #56642
• [2a219eddf6] - test: enforce strict mode in test-zlib-const (Rich Trott) #56689
• [f885496d9c] - test: fix localization data for ICU 74.2 (Antoine du Hamel) #56661
• [eb3148fb5c] - test: use --permission instead of --experimental-permission (Rafael Gonzaga) #56685
• [86d7ba09c4] - test: test-stream-compose.js doesn't need internals (Meghan Denny) #56619
• [676276889e] - test: add maxCount and gcOptions to gcUntil() (Joyee Cheung) #56522
• [5b7a012144] - test: add line break at end of file (Rafael Gonzaga) #56588
• [27cfec619f] - test: mark test-worker-prof as flaky on smartos (Joyee Cheung) #56583
• [7e58da68c1] - test: update ts eval snapshots (Marco Ippolito) #56568
• [b1c54439ae] - test: update test-child-process-bad-stdio to use node:test (Colin Ihrig) #56562
• [0d772a963e] - test: disable openssl 3.4.0 incompatible tests (Jelle van der Waa) #56160
• [6fa6d699ff] - test: make test-crypto-hash compatible with OpenSSL > 3.4.0 (Jelle van der Waa) #56160
• [90e12f2945] - test: clarify fork inherit permission flags (Rafael Gonzaga) #56523
• [323f96f7b3] - test: add error only reporter for node:test (Carlos Espa) #56438
• [cbbcaf9108] - test: mark test-http-server-request-timeouts-mixed as flaky (Joyee Cheung) #56503
• [295db19ba2] - test: update error code in tls-psk-circuit for for OpenSSL 3.4 (sebastianas) #56420
• [f7563780a6] - test: update compiled sqlite tests to match other tests (Colin Ihrig) #56446
• [8feb2737e7] - test: add initial test426 coverage (Chengzhong Wu) #56436
• [b9cd7895c0] - test: update test-set-http-max-http-headers to use node:test (Colin Ihrig) #56439
• [332ce548cb] - test: update test-child-process-windows-hide to use node:test (Colin Ihrig) #56437
• [e2668c0e00] - test_runner: print failing assertion only once with spec reporter (Pietro Marchini) #56662
• [f97cd5b02b] - test_runner: remove unused errors (Pietro Marchini) #56607
• [13bdd9c961] - (SEMVER-MINOR) test_runner: add TestContext.prototype.waitFor() (Colin Ihrig) #56595
• [00a1943858] - (SEMVER-MINOR) test_runner: add t.assert.fileSnapshot() (Colin Ihrig) #56459
• [c4979ebfb2] - test_runner: run single test file benchmark (Pietro Marchini) #56479
• [839a06e908] - test_runner: differentiate test types in enqueue dequeue events (Eddie Abbondanzio) #54049
• [3143566045] - (SEMVER-MINOR) test_runner: add assert.register() API (Colin Ihrig) #56434
• [3aa864904f] - test_runner: finish marking snapshot testing as stable (Colin Ihrig) #56425
• [b7b0768cda] - tls: fix error stack conversion in cryptoErrorListToException() (Joyee Cheung) #56554
• [8f59f5ba47] - tools: update doc to new version (Node.js GitHub Bot) #56259
• [ebf4527730] - tools: update inspector_protocol roller (Chengzhong Wu) #56649
• [649cf0c0f6] - tools: do not throw on missing create-release-proposal.sh (Antoine du Hamel) #56704
• [69cb44e315] - tools: fix tools-deps-update (Daniel Lemire) #56684
• [02f36ca11b] - tools: do not throw on missing create-release-proposal.sh (Antoine du Hamel) #56695
• [bcc1c65066] - tools: fix permissions in lint-release-proposal workflow (Antoine du Hamel) #56614
• [ab4cfef600] - tools: remove github reporter (Carlos Espa) #56468
• [477e674a2a] - tools: edit create-release-proposal workflow (Antoine du Hamel) #56540
• [5f6785b1cb] - tools: validate commit list as part of lint-release-commit (Antoine du Hamel) #56291
• [2a0fbd8731] - tools: fix loong64 build failed (Xiao-Tao) #56466
• [aea088f79e] - tools: disable unneeded rule ignoring in Python linting (Rich Trott) #56429
• [7a0dd2d04f] - tools: use a configurable value for number of open dependabot PRs (Antoine du Hamel) #56427
• [c249c9715a] - tools: bump the eslint group in /tools/eslint with 4 updates (dependabot[bot]) #56426
• [a9d332a16f] - util: inspect: do not crash on an Error stack that contains a Symbol (Jordan Harband) #56573
• [6a16012fd7] - util: inspect: do not crash on an Error with a regex name (Jordan Harband) #56574
• [c7f16192f4] - util: rename CallSite.column to columnNumber (Chengzhong Wu) #56584
• [e652781934] - util: do not crash on inspecting function with Symbol name (Jordan Harband) #56572
• [d066acfcf9] - util: expose CallSite.scriptId (Chengzhong Wu) #56551
• [e1b0f44d19] - watch: reload env file for --env-file-if-exists (Jonas) #56643
• [538e19489f] - worker: refactor stdio to improve performance (Matteo Collina) #56630
• [aab53e6965] - worker: flush stdout and stderr on exit (Matteo Collina) #56428

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/64796/
CITGM (v23.x): https://ci.nodejs.org/view/Node.js-citgm/job/citgm-smoker/3542/
CITGM (v23.7.0): https://ci.nodejs.org/view/Node.js-citgm/job/citgm-smoker/3543/

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 88.64%. Comparing base (9fa6aeb) to head (73b4c04).
Report is 165 commits behind head on v23.x.

Additional details and impacted files

@@            Coverage Diff             @@
##            v23.x   #56800      +/-   ##
==========================================
+ Coverage   88.55%   88.64%   +0.09%     
==========================================
  Files         657      661       +4     
  Lines      190741   191292     +551     
  Branches    36622    36709      +87     
==========================================
+ Hits       168909   169574     +665     
+ Misses      15003    14907      -96     
+ Partials     6829     6811      -18     

Files with missing lines	Coverage Δ
lib/assert.js	99.04% <ø> (+<0.01%)	⬆️
lib/internal/assert/assertion_error.js	95.44% <ø> (+0.07%)	⬆️
lib/internal/assert/myers_diff.js	89.38% <ø> (-0.44%)	⬇️
lib/internal/bootstrap/node.js	99.57% <ø> (+<0.01%)	⬆️
.../internal/bootstrap/switches/is_not_main_thread.js	100.00% <ø> (ø)
lib/internal/child_process/serialization.js	95.85% <ø> (+0.12%)	⬆️
lib/internal/console/constructor.js	98.54% <ø> (+0.51%)	⬆️
lib/internal/errors.js	97.46% <ø> (+0.45%)	⬆️
lib/internal/fs/glob.js	92.14% <ø> (-0.49%)	⬇️
lib/internal/http2/core.js	95.61% <ø> (+0.07%)	⬆️
... and 91 more

... and 37 files with indirect coverage changes

[nodejs-github-bot]

CI: https://ci.nodejs.org/job/node-test-pull-request/64802/
📦 : https://ci-release.nodejs.org/job/iojs+release/10771/

[aduh95]

📦: https://ci-release.nodejs.org/job/iojs+release/10776/

[ljharb]

Thanks - indeed builtin modules are only supposed to be listed when they’re consumable, so if a flag controls the latter it should also control the former.