2021-07-29

Node v16.6.0(현재 버전)

작성자: Bethany Nicolle Griggs
원문: Node v16.6.0 (Current)
번역: taggon

주요 변경사항

다른 주요 변경사항

CVE-2021-22930: 스트림 취소시 http2를 종료할 때 메모리 해제 후 참조 문제 (높음)
- Node.js는 공격자가 메모리 손상을 일으켜 프로세스의 동작을 변경할 수 있는
  메모리 해제 후 참조(use-after-free)에 취약합니다.
  자세한 내용은 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22930에서 볼 수 있습니다.
[f93d2ac587] - inspector: 안정 상태로 바뀌었습니다. (Gireesh Punathil) #37748
[89b4770d5c] - punycode: 곧 폐지 예정일 기능이 되었습니다. (Antoine du Hamel) #38444
[b67214fe31] - (SEMVER-MINOR) repl: --experimental-repl-await 플래그가 기본값이 되었습니다. (hemanth.hm) #34733

Commits

[b5248d4000] - async_hooks: emit promise trace events from JS (Stephen Belanger) #39135
[e18778d409] - async_hooks: eliminate native PromiseHook (Stephen Belanger) #39135
[90b9bb1a7d] - build: use Node.js 14 in commit-lint.yml (Rich Trott) #39506
[5182e26f14] - build: reset embedder string to “-node.0” (Michaël Zasso) #39470
[e1910ef290] - build: fix host_arch_cc() for AIX/IBM i (Richard Lau) #39481
[ce2011b7a1] - build: update coverage Makefile target comments (Richard Lau) #39365
[6b055f17b6] - build: run workflows when a PR is ready for review (Michaël Zasso) #39405
[25f45d5018] - build: update to setup-node@v2 (Rich Trott) #39366
[a7472576d7] - build: add library_files to gyp variables (himself65) #39293
[d16d36f1c2] - crypto: support Big(U)Int64Array in getRandomValues (Michaël Zasso) #39443
[95db54482a] - debugger: validate sec-websocket-accept response header (Chris Opperwall) #39357
[3751b92fa2] - debugger: rename internal module (Rich Trott) #39378
[0e5eb8b17d] - deps: restore minimum ICU version to 68 (Michaël Zasso) #39470
[e8da1f25fb] - (SEMVER-MINOR) deps: make V8 9.2 abi-compatible with 9.0 (Michaël Zasso) #39470
[a93e6ef777] - deps: V8: backport 5c76da8ddcf8 (Michaël Zasso) #39337
[d612544199] - deps: V8: cherry-pick 359d44df4cdd (Michaël Zasso) #39337
[c6ec2b4817] - deps: V8: cherry-pick 3805a698f7b6 (Michaël Zasso) #39337
[e6b84dfe84] - deps: V8: cherry-pick 56fe020eec0c (Michaël Zasso) #39337
[2393fae427] - deps: V8: cherry-pick 2b77ca200c56 (Michaël Zasso) #39337
[c8e7d80475] - deps: V8: cherry-pick 53784bdb8f01 (Michaël Zasso) #39337
[65062b3e0d] - deps: V8: cherry-pick 7ff6609a5385 (Michaël Zasso) #38990
[c3efc70df7] - deps: V8: cherry-pick a5cea1bfc38c (Michaël Zasso) #38990
[201da87bc1] - deps: V8: cherry-pick 986299250e6d (Richard Lau) #38990
[794ad2e016] - deps: V8: backport 71e8f8bb3c26 (Michaël Zasso) #38990
[53cc6c8000] - deps: V8: cherry-pick 3d24b3ab8af0 (Michaël Zasso) #38990
[7f7cb8bfe1] - deps: silence irrelevant V8 warning (Michaël Zasso) #38990
[16cbd8c8b6] - deps: silence irrelevant V8 warnings (Michaël Zasso) #37587
[98150e2bc6] - deps: fix V8 build issue with inline methods (Jiawen Geng) #35415
[3f3e167fea] - deps: make v8.h compatible with VS2015 (Joao Reis) #32116
[785b8990de] - deps: V8: forward declaration of Rtl*FunctionTable (Refael Ackermann) #32116
[38cb655f04] - deps: V8: patch register-arm64.h (Refael Ackermann) #32116
[9082ecef66] - deps: V8: un-cherry-pick bd019bd (Refael Ackermann) #32116
[6114198717] - (SEMVER-MINOR) deps: update V8 to 9.2.230.21 (Michaël Zasso) #39470
[89796d0c7f] - deps: bump HdrHistogram_C to 0.11.2 (Matteo Collina) #39462
[9dd232c42b] - deps: update to cjs-module-lexer@1.2.2 (Guy Bedford) #39402
[626eb07fda] - deps: extract gtest source files to deps/googletest (legendecas) #39386
[487c45ffd9] - doc: move lball@redhat.com to emeritus (Lance Ball) #39501
[5f84f47e13] - doc: update AUTHORS (Rich Trott) #39488
[1d27ae1514] - doc: update strategic initiative champion (Rich Trott) #39487
[e552b1a791] - doc: improve node.js+fips instructions (Benjamin Mayr) #39390
[aa1dfb3111] - doc: simplify unnecessarily specific .mailmap entries (Rich Trott) #39430
[ae69656c61] - doc: update checkbox label in backporting guide (Darshan Sen) #39420
[4fd8db687d] - doc: remove _Addenda_ from headers (Rich Trott) #39427
[cefd2fb1e4] - doc: simplify .mailmap file (Rich Trott) #39418
[ade2eed9a6] - doc: fix broken internal link in http.md (Rich Trott) #39425
[5fdfcc069f] - doc: remove outdated step in onboarding exercise (Rich Trott) #39410
[94706c7012] - doc: revise strategic initiatives text (Rich Trott) #39417
[9932e3589c] - doc: remove typo (extra ’ character) (Nikita Rykov) #39414
[2b92b4ea2d] - doc: update mailmap and AUTHORS (Rich Trott) #39393
[6d6396594b] - doc: use a details tag for completed initiatves (Rich Trott) #39416
[ac43e3331c] - doc: update commit-queue.md to indicate GitHub Actions are checked (Rich Trott) #39411
[75130c94d1] - doc: use _pull request_ instead of _PR_ in onboarding doc (Rich Trott) #39409
[20bb3f6df0] - doc: add strategic initiatives from TSC repo (Rich Trott) #39394
[6979313abb] - doc: standardize on _pull request_ (Rich Trott) #39384
[20124cc275] - doc: make minor edits to pull request text (Rich Trott) #39383
[11482f02cf] - doc: add docker-node and build-wg issue contents (Daniel Bevenius) #39215
[c535956b6e] - doc: add instructions for core vuln files (Daniel Bevenius) #39220
[353a8bb27b] - doc: standardize on not capitalizing _collaborator_ (Rich Trott) #39379
[9b15e5c155] - doc: update mailmap and deduplicate AUTHORS entry (Rich Trott) #39391
[e44ccd9aad] - doc: update AUTHORS (Rich Trott) #39367
[39e6536a87] - doc: move jdalton to emeritus (Rich Trott) #39380
[bbff5a9e47] - doc: edit guide on pull requests (Rich Trott) #39359
[902ef9aca0] - doc,meta: update email addresses for misterdjules (Rich Trott) #39433
[cc7b61721c] - doc,tools: remove checkLinks.mjs (Antoine du Hamel) #39206
[e2fd015cda] - domain: do not add domain to promise from other context (Stephen Belanger) #39135
[93eff3f5a6] - esm: refine ERR_REQUIRE_ESM errors (Guy Bedford) #39175
[1fb0954202] - events: allow an event to be dispatched multiple times (Luigi Pinca) #39395
[6f2989c346] - events: allow the options argument to be null (Luigi Pinca) #39486
[72ad6d3f27] - fs: check closing_ in FileHandle::Close (James M Snell) #39472
[8b58e574ba] - fs: fix FileHandle::ClosePromise to return persisted Promise (James M Snell) #39331
[9d950a0956] - http2: on receiving rst_stream with cancel code add it to pending list (Akshay K) #39423
[19e9accf91] - inspector: mark as stable (Gireesh Punathil) #37748
[e4331cd43d] - lib: comment explaining special-case handling of promises (Stephen Belanger) #39135
[0a47f5fc54] - meta: update collaborator email in README (Rich Trott) #39510
[65020110e8] - meta: remove unneeded .mailmap entry (Rich Trott) #39512
[864ef11be8] - meta: update email address for collaborator (Rich Trott) #39511
[d3f58cb650] - meta: align collaborator name in .mailmap/AUTHORS with README (Rich Trott) #39489
[5f9b2187a1] - meta: align email address in README/.mailmap/AUTHORS (Rich Trott) #39503
[9fbe3f6b49] - meta: revise .mailmap for README consistency (Rich Trott) #39457
[f6fbb38924] - meta: alphabetize .mailmap file (Rich Trott) #39434
[dc9c6aa428] - meta: align collaborator email in .mailmap/AUTHORS with README (Rich Trott) #39478
[febeb0df16] - meta: update AUTHORS (Rich Trott) #39461
[d059ed9242] - meta: add .mailmap entry for new email for existing contributor (Rich Trott) #39431
[cdf7251370] - process: add api to enable source-maps programmatically (legendecas) #39085
[eccc9a6578] - punycode: add pending deprecation (Antoine du Hamel) #38444
[a082a705b3] - (SEMVER-MINOR) repl: enable --experimental-repl-await /w opt-out (hemanth.hm) #34733
[b230ac12d9] - src: stop using deprecated v8::ApiObject (Michaël Zasso) #38990
[929205e6b9] - src: use non-deprecated Symbol::Description (Michaël Zasso) #38990
[42ff6d952a] - src: print native module id on native module not found (legendecas) #39460
[f0287e52aa] - src: close HandleWraps instead of deleting them in OnGCCollect() (Anna Henningsen) #39441
[2cf52f8db1] - src: set SSL_OP_ALLOW_CLIENT_RENEGOTIATION (Daniel Bevenius) #38753
[fc138376aa] - src: remove unused guards around node-api reference (legendecas) #38334
[26ada4971c] - stream: import internal/util/types instead (James M Snell) #39331
[e91053a465] - stream: implement TextEncoderStream and TextDecoderStream (James M Snell) #39347
[efe74746f0] - stream: fixup property definition to avoid prototype polution (James M Snell) #39371
[4709da0372] - test: ensure microtask queues are not automatically drained (Jochen Eisinger) #38990
[86ca9a8a80] - test: remove test-debug-args (Michaël Zasso) #38990
[bbcd651cfd] - test: update trace events test expectations (Michaël Zasso) #38990
[039f64f249] - test: fix WASI link test (Richard Lau) #39485
[b1d38ddc8a] - test: update OpenSSL3 error messages for beta-1 (Daniel Bevenius) #39437
[db4f802fba] - Revert “test: skip tests for openssl-3.0.0-alpha15” (Daniel Bevenius) #39437
[a30d021b94] - test: add test for WebSocket secret verification in debugger (Rich Trott) #39357
[04355afd24] - test: add NumberFormat resolvedOptions test (Richard Lau) #39401
[d0fb02c26a] - test: put common lint exceptions into config file (Rich Trott) #39358
[259d091366] - test: mark test-domain-error-types flaky (James M Snell) #39369
[5517769472] - tools: fetch googletest dependency for V8 CI (Michaël Zasso) #38990
[5fe74aa403] - tools: update V8 gypfiles for 9.2 (Michaël Zasso) #38990
[e58cf4e44c] - tools: flag README/mailmap mismatches in find-inactive-collaborators (Rich Trott) #39477
[0a46e66253] - tools: use mailmap for find-inactive-collaborators (Rich Trott) #39432
[7570f998df] - tools: email matchin is case insensitive for .mailmap (Rich Trott) #39430
[5c11a0279d] - tools: make internal link checker more robust (Rich Trott) #39429
[4c32aa02db] - tools: added remark-frontmatter (Ben Halverson) #38717
[c6a7c3d00d] - tools: fix broken link hash (Rich Trott) #39426
[0f1d51578e] - tools: change commit fetch limiting in find-inactive-collaborators (Rich Trott) #39362
[e5d64473e8] - tools: use Node.js 16.x for GitHub workflow (Rich Trott) #39362
[68fd6d5282] - url: prevent pathname setter from erasing path of path-only URLs (Darshan Sen) #39060

SHASUMS

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

ed07957f3c6075294cb1c5ed5760b8471c6fab880fd85bb29dabd44d64d12869  node-v16.6.0-aix-ppc64.tar.gz
07720d1bc18dca0bb3abdcd3c2e4f39a7cb532ca7f56c48bd42a4233de7fcd89  node-v16.6.0-darwin-arm64.tar.gz
95218b0cc0a90264be5a7dc30014ac46748f2f9468d39ba79ba3359524004ebf  node-v16.6.0-darwin-arm64.tar.xz
4dc28f83bc1165ae28c937458b7277b4af3ff8c6e61cccf2d9b87b4bfbcbffec  node-v16.6.0-darwin-x64.tar.gz
49800406470cc756ee511dc0ea3306c32faeaf280bc87668b62494475adc3569  node-v16.6.0-darwin-x64.tar.xz
f61ce6ba822f6710a45aff9dc5e64879670b93c454ce66881df579895964bb12  node-v16.6.0-headers.tar.gz
484ce3c7d0fa58f7495c7ecb263a5c7940f3d1b1f2a34769421f5ad1d6627eb6  node-v16.6.0-headers.tar.xz
046a352a4ff2f986a026622dc61c0f9c38cb07099e63b643ca5a5ee12c8ac5bd  node-v16.6.0-linux-arm64.tar.gz
8dd59632de8eadb49723b86e04d7940f7c80d96167a9fd1c4e39d7df2d145b52  node-v16.6.0-linux-arm64.tar.xz
1a991b4f706064c6eba27652021dbccd510b056a121316b182e43d54b2a4a0cc  node-v16.6.0-linux-armv7l.tar.gz
fb51660c4b22600f417314879ac8cc3ce8a2114b74b92493229e5941885c1552  node-v16.6.0-linux-armv7l.tar.xz
6f1dbb2cf8f8936a5c2c2a4a8980067e658084992ec6811606d2479466acd497  node-v16.6.0-linux-ppc64le.tar.gz
bf0c1e42bc6d149c7800b2ae01d174a59ee9ead2157481c3a8ae0b1a7ec41c69  node-v16.6.0-linux-ppc64le.tar.xz
c9b836129c4bc75e1932202628ab17857aa11d8dbde835db772a05240f041638  node-v16.6.0-linux-s390x.tar.gz
397ebd068a8fc9e2b05e54001609f5d386102c4f3d539e750614414623024b72  node-v16.6.0-linux-s390x.tar.xz
4658500d47ab2373b9c5ffb8256bd4e514b6326a6c8a9c6186105fba4de75548  node-v16.6.0-linux-x64.tar.gz
0f3cc33cfaa85e156bd694c7375196002b45d7fa7e50615b02bff8cf16d4767b  node-v16.6.0-linux-x64.tar.xz
60450ae814a0c29e703e8ae417604edad688c46b007a761d3def2d0600387405  node-v16.6.0.pkg
cb24f609abba81a27536955135f0b3ca0b72e70b7aa561fec39490b386bba7ab  node-v16.6.0.tar.gz
5c5714a08b0881f37b57ab1f1b4801a1af316a2aea17faedc9c2d43247c7b9d9  node-v16.6.0.tar.xz
58d9ec0876256d68040d35a606f18dcbf1331da63adfb96af17e43179f6e9f1b  node-v16.6.0-win-x64.7z
479bd81469ade081381d441de9e3dc9a1d276ec8408f3297f282452dac7b0b3c  node-v16.6.0-win-x64.zip
ce52307b52e994d763f5da048bf3db3811bf9771d19d63bf96c8937499c7d29b  node-v16.6.0-win-x86.7z
9f21096d494328cf724de4a9ef00e8d1412e6882243e952917eeb67dae232086  node-v16.6.0-win-x86.zip
dcbfe8fd618383117abf158ae8af2c7584ddff77a0102f349d45f612e8b1e633  node-v16.6.0-x64.msi
f26e9e749eb339cabc53150091542f5acd75bed4fbbdfb86dfa226290c6e2293  node-v16.6.0-x86.msi
552e7a2d278a5c4b66aeafed2cfadacae06df040b55140ef764eb555bc82c507  win-x64/node.exe
2756cffae3acb00752ee92d5cabd252881ce5104620fde5f594de0ae9f5d324e  win-x64/node.lib
7e58d85a01e9ce1f58a4e2dec2c039aaa56f983c8461ed1d6921135ba7cda8d8  win-x64/node_pdb.7z
a226d6ce4492158396d7e86192bb5cd81cc6ecaac5ac7e0f05e654124dfc543a  win-x64/node_pdb.zip
81b0a47aede508406f69f47566928a411710402362c96e78783723c8d2f89c84  win-x86/node.exe
53e28b2d2a0c06c438081c39d45c34782d8052a87dd0c59b3388ba9212f5eb6f  win-x86/node.lib
ffa06f2808a23f9ef1790e6c80dc3179a881adca8c1abf2eab94eb10aa6b9509  win-x86/node_pdb.7z
4616b9abc301daf257668f2c24097d167a93335ac6ae711bec1e212f76348beb  win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEETtd49TnjY0x3nIfG1wYoSKGrAFwFAmEDMmcACgkQ1wYoSKGr
AFxAUAgAkaLoBZJQ2LZ/W/aPNyJm3Pmes0ZFrVJzBIFUPEfWIiOi3LfjsNb2RYqo
2drbtIja3jLiypdkmOzaGYAkCmyUqV4D+5MeP2asF/I25paIvn+FrsMUcsm0DK5F
pYeYfQvLzv3KVc912aIJEHeMTLoEx2Z6mXCgja4lolOCxazdrBhegW6+MnjjoAOG
y5PBqF0c37FDe8RNF43g9wGNNtuDpvOizffd1j5cUC/2P0UnGAoQNv/Ni4wPTxL3
YYq3fvUuq/Es3ELrLNkIOZwNnPyxMz8HR+NdQpVifMGdxEWefNl4l7zK7njO+M9D
SjSoQOk23Zbzl/GqYjGq4B5vJfVmdA==
=znoD
-----END PGP SIGNATURE-----

2021-07-14

articles

Node v16.5.0(현재 버전)

작성자: Michaël Zasso
원문: Node v16.5.0 (Current)
번역: taggon

주요 변경사항

다른 주요 변경사항

[83f3b959f9] - (SEMVER-MINOR) fs: 임시 디렉토리 접두어에 빈 문자열을 사용할 수 있습니다. (Voltrex) #39028
[c04fd2bb97] - deps: npm의 버전을 7.19.1으로 업그레이드했습니다. (npm team) #39225

Commits

[aafa08d7b9] - bootstrap: load perf_hooks eagerly during bootstrap (Joyee Cheung) #38971
[6e46eb186c] - bootstrap: support perf hooks in snapshot (Joyee Cheung) #38971
[10681828ac] - build: update gcovr for gcc 8 compatibility (Richard Lau) #39326
[8381132f76] - build: add riscv into host_arch_cc (Lu Yahan) #39004
[a7ba21864d] - build: restore libplatform headers in distribution (Jeroen Ooms) #39288
[41161eabf2] - build: remove unused comment in Makefile (LitoMore) #39171
[f6a1092471] - build: allow to build riscv64 using Makefile (Makoto Kato) #39048
[a7cd40ed8d] - build: uvwasi honours node_shared_libuv (Jérémy Lal) #39260
[3ed04994b7] - build: shorten path used in tarball build workflow (Richard Lau) #39192
[65b56b3774] - build: fix building with external builtins (Momtchil Momtchev) #39091
[412b1012d2] - build: pass directory instead of list of files to js2c.py (Joyee Cheung) #39069
[171ca6bb3c] - build: don’t pass --mode argument to V8 test-runner (Richard Lau) #39055
[cf8536ea3f] - build: fix commit linter on unrebased PRs (Mary Marchini) #39121
[cf0533b8b2] - build: use Actions to validate commit message (Mary Marchini) #32417
[4202274851] - crypto: move OPENSSL_IS_BORINGSSL guard (Shelley Vohr) #39136
[89f5a73ba5] - crypto: use compatible ecdh function (Shelley Vohr) #39054
[30e878b603] - crypto: add OPENSSL_IS_BORINGSSL guard (Shelley Vohr) #39138
[630266cba2] - debugger: indicate server is ending (Rich Trott) #39334
[48d9680f84] - debugger: remove final lint exceptions in inspect_repl.js (Rich Trott) #39078
[4507714f9d] - deps: V8: backport 5c76da8ddcf8 (Michaël Zasso) #39337
[0e64bd0dd6] - deps: V8: cherry-pick 359d44df4cdd (Michaël Zasso) #39337
[142ce6838b] - deps: V8: cherry-pick 3805a698f7b6 (Michaël Zasso) #39337
[2657c305cb] - deps: V8: cherry-pick 56fe020eec0c (Michaël Zasso) #39337
[5c5a93e533] - deps: V8: cherry-pick 2b77ca200c56 (Michaël Zasso) #39337
[cf49ebb052] - deps: V8: cherry-pick 53784bdb8f01 (Michaël Zasso) #39337
[3d351b29c1] - deps: V8: cherry-pick cb4faa902e9f (Michaël Zasso) #39337
[165130a3e0] - deps: patch V8 to 9.1.269.38 (Michaël Zasso) #39196
[c04fd2bb97] - deps: upgrade npm to 7.19.1 (npm team) #39225
[bf4c50f9d9] - deps: upgrade npm to 7.19.0 (npm team) #39148
[8630b39376] - deps: update Acorn to v8.4.1 (Michaël Zasso) #39166
[38ae4077c7] - doc: fix typos in Web Streams API documentation (Tobias Nießen) #39351
[fb6616ecbb] - doc: add text about moving long commit lists out of PR description (Danielle Adams) #39186
[29c9cc8f03] - doc: do not use & for “and” in text (Rich Trott) #39345
[0b3b2695bc] - doc: do not use tilde for “about” or “approximately” (Rich Trott) #39344
[64a185e595] - doc: use consistent abbreviation formatting (Rich Trott) #39343
[2573bf5116] - doc: update AUTHORS (Rich Trott) #39277
[63b6084724] - doc: put information about the past in details tags (Rich Trott) #39321
[e26635085a] - doc: replace outdated util.promisify timer examples with references (foxxyz) #39164
[d101a85e36] - doc: move AndreasMadsen to emeritus (Rich Trott) #39315
[2d552a32d6] - doc: move ofrobots to collaborator emeritus (Rich Trott) #39307
[131d676f64] - doc: simplify CRAN mirror text in benchmark guide (Rich Trott) #39287
[c92b80e631] - doc: use “repository” instead of “repo” in onboarding.md (Rich Trott) #39286
[81df9b1e92] - doc: update collaborator email address (Rich Trott) #39263
[b8860f35c9] - doc: remove GitHub mark (Rich Trott) #39251
[f06ebf1775] - doc: remove emailing the TSC from offboarding doc (Rich Trott) #39280
[175a6569f4] - doc: add annotation to writeFile data as Object (Jacob) #39167
[4d53c63c22] - doc: fix boldface punctuation for full sentences (Rich Trott) #39278
[146f733f43] - doc: fix constants usage in fs.access example (Cyrille Bourgois) #39289
[eacee0ab17] - doc: use “repository” in guides versus repo (Michael Dawson) #39198
[04bcfcfff1] - doc: update Node-api version matrix (Michael Dawson) #39197
[4dd6ab389a] - doc: remove onboarding-extras (Rich Trott) #39252
[a01dacfdcd] - doc: move Sam Ruby to emeritus (Rich Trott) #39264
[2bb3713b74] - doc: update AUTHORS file (Rich Trott) #39250
[2227c1368f] - doc: fix color contrast for anchor marks in dark mode (Rich Trott) #39168
[f8cdaad9d4] - doc: rename datatypes to data types (FrankEntriken) #39209
[250024eaec] - doc: normalize CSS variable names and indentation (Rich Trott) #39199
[db74a35348] - doc: remove unnecessary module format comments (Rich Trott) #39219
[24a1f7ec84] - doc: use more consistent formatting for deprecations (Rich Trott) #39218
[24c0d7d872] - doc: update AUTHORS (Rich Trott) #39217
[3e5ed72b0a] - doc: use “pull request” instead of “PR” in packages.md (Rich Trott) #39213
[ddc24b2105] - doc: move v8.stopCoverage() to expected location in doc (Rich Trott) #39212
[68c334c8c9] - doc: move vm.measureMemory() to expected location in doc (Rich Trott) #39211
[81d52d7c79] - doc: fix CHANGELOG.md formatting (Richard Lau) #39223
[9c3a5fd53e] - doc: add cc oss-security@lists.openwall.com (Daniel Bevenius) #39191
[07ba2875ae] - doc: remove instructions for unsupported Node.js versions (Rich Trott) #39185
[482851f647] - doc: remove obsolete cc recommendations (Rich Trott) #39181
[8311b29083] - doc: use “repository” in maintaining-V8 doc (Rich Trott) #39179
[952580e1bf] - doc: fix broken link in errors.md (Rich Trott) #39200
[af1e1dba36] - doc: correct JavaScript primitive value names in n-api.md (legendecas) #39129
[00728d1301] - doc: apply logical ordering to CSS variables (Rich Trott) #39169
[aec2744e14] - doc: remove file name from self-reference links (Antoine du Hamel) #39165
[74bb915178] - doc: use repository instead of repo (Rich Trott) #39157
[a669a191a1] - doc: use ASCII order for md refs (Antoine du Hamel) #39170
[21e8720155] - doc: fix EventTarget.dispatchEvent docs (Rohan Sharma) #39127
[90ec7660bc] - doc: update AUTHORS file (Rich Trott) #39082
[81cebec5cc] - doc: esm examples /w imports for process, Buffer (Guy Bedford) #39043
[c1588887a6] - doc: fix napi_default_property name (Davidson Francis) #39104
[a440f6c69c] - doc: fix dead links in packages.md (Michaël Zasso) #39113
[33cad271c5] - errors: remove eager stack generation for node errors (Gus Caplan) #39182
[ac05a0a8a3] - errors: don’t throw TypeError on missing export (Benjamin Coe) #39017
[83f3b959f9] - (SEMVER-MINOR) fs: allow empty string for temp directory prefix (Voltrex) #39028
[ac7184d8c7] - http: clean up HttpParser correctly (Tobias Koppers) #39292
[35331cbd13] - http,https: align server option of https with http (Qingyu Deng) #38992
[29194d4f88] - inspector: move inspector async hooks to environment (Joyee Cheung) #39112
[ecf627a9af] - lib: rename TransferedReadableStream etc (Tobias Nießen) #39352
[0e55cb72df] - lib: make lazyDOMException more common (Khaidi Chu) #39105
[cfd96aa8f9] - meta: fix tls code owners (Robert Nagy) #39355
[e5c2d80560] - meta: use form schema for bug report template (Michaël Zasso) #39194
[bd472daf0c] - meta: add @nodejs/actions as CODEOWNERS (Mary Marchini) #39119
[63f87027e3] - node-api: cctest on v8impl::Reference (legendecas) #38970
[7ea98fbccd] - perf_hooks: refactor perf_hooks for snapshot building (Joyee Cheung) #38971
[20cc8ec2af] - readline: allow completer to rewrite existing input (Anna Henningsen) #39178
[b168ec2a2a] - repl: processTopLevelAwait fallback error handling (ejose19) #39290
[a101fe68ad] - repl: correctly hoist top level await declarations (ejose19) #39265
[d441d91450] - repl: ensure correct syntax err for await parsing (Guy Bedford) #39154
[9184259a54] - src: add JSDoc typings for v8 (Voltrex) #38944
[66553feeba] - src: compare IPv4 addresses in host byte order (Colin Ihrig) #39096
[ea8d83bf59] - src,crypto: fix 0-length output crash in webcrypto (Khaidi Chu) #38913
[683c995001] - src,zlib: tighten up Z_*_WINDOWBITS macros (Khaidi Chu) #39115
[cb32f69e00] - stream: cleanup async handling (Robert Nagy) #39329
[1fc6382942] - stream: don’t emit prefinish after error or close (Robert Nagy) #39332
[35b6669e13] - stream: use finished for pump (Robert Nagy) #39203
[9af62a1357] - (SEMVER-MINOR) stream: implement WHATWG streams (James M Snell) #39062
[0bb980aeaf] - test: remove eslint-disable comment from fixture file (Rich Trott) #39320
[21f77031fb] - test: move debugger test case to parallel (Rich Trott) #39300
[0ec93a1fc1] - test: use common.PORT instead of hardcoded port number (Rich Trott) #39298
[11a8b81caf] - test: remove debugger workaround for AIX (Rich Trott) #39296
[8e77aa23f1] - test: add test for debugger restart message issue (Rich Trott) #39273
[13755599e1] - test: remove workaround code in debugger test (Rich Trott) #39238
[1f31e3c774] - test: remove checks for armv6 (Rich Trott) #39162
[d486d0117c] - test: move test-debugger-address to parallel (Rich Trott) #39236
[cdc7a19f48] - test: remove common.enoughTestCpu (Rich Trott) #39161
[cc32365f56] - (SEMVER-MINOR) test: add WPT streams tests (James M Snell) #39062
[fff21a4afb] - test: replace “inspector-cli” with “debugger” (Rich Trott) #39156
[df17c62818] - test: use localhost test instead of connecting to remote (Adam Majer) #39011
[dfe99d2aac] - tls: move legacy code into own file (Robert Nagy) #39333
[f338fddbb0] - tools: add GitHub Action to run find-inactive-collaborators.mjs (Rich Trott) #39335
[b3a0dd1e4a] - tools: pass bot token to node-pr-labeler (Michaël Zasso) #39271
[b56a3d9009] - tools: update gyp-next to v0.9.3 (Jiawen Geng) #39291
[3cd9f5e298] - tools: add find-inactive-collaborators.js (Rich Trott) #39262
[0673ede3ad] - tools: take ownership of deps/v8/tools/node (Michaël Zasso) #39222
[cb8c6ffbce] - tools: update ESLint to 7.30.0 (Colin Ihrig) #39242
[d5113f9e34] - tools: remove armv6 from test tools (Rich Trott) #39162
[802d9c4488] - tools: update path-parse to 1.0.7 (Rich Trott) #39232
[ab9ccd014c] - tools: remove unused lint-pr-commit-message.sh (Richard Lau) #39120
[6200f3b35f] - tools: update @babel/eslint-parser to 7.14.7 (Rich Trott) #39160
[dfe5d1139c] - tools: update remark-preset-lint-node to 2.4.1 (Rich Trott) #39201
[4715105581] - tools: upgrade highlight.js to version 11.0.1 (Antoine du Hamel) #39032
[2481ddd08d] - tools,doc: fix error message for unrecognized type (Antoine du Hamel) #39221
[adb812c042] - typings: add a few JSDoc typings for the net lib module (nerdthatnoonelikes) #38953
[29673b8ac8] - typings: add JSDoc typings for timers (Voltrex) #38834
[fe1c81f247] - wasi: use missing validator (Voltrex) #39070

SHASUMS

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

3d134a7499d7b022febaa50d1923fb799c8edd9c2478be180eb88bfee06165b1  node-v16.5.0-aix-ppc64.tar.gz
4296521e8b5d73d4c3b9b7f6f9f666e577342ea92a520f33040f1a252387d079  node-v16.5.0-darwin-arm64.tar.gz
cc28582b5e4d91d92d61a29c8c63473dc151e816801a4718ef7518162bd4fd60  node-v16.5.0-darwin-arm64.tar.xz
b779bd40b7c9366adcbe4f9fd2afd9ee5f085e333200380b34d285eb32c121bc  node-v16.5.0-darwin-x64.tar.gz
681fa06160fd9f7534508e7bdd114fb70bc7f25747560335f552ffb6bb5de9ed  node-v16.5.0-darwin-x64.tar.xz
3dd36740be57f63135653c241ed671aa1b1a10cde949e79d3dc99f7ec19ee77c  node-v16.5.0-headers.tar.gz
6c3434c609b37205405198c4faf6ea7904fbca97d63be9e6a3b04fe33c804aa5  node-v16.5.0-headers.tar.xz
9447361c2b19d0f59b2f3acdcd9326bd1542c13828f9c8807ed46d3b6024fe09  node-v16.5.0-linux-arm64.tar.gz
acbadd349afe21cbd41280ae3512fe8121fc93a0778a63354e6cca87190ff0f1  node-v16.5.0-linux-arm64.tar.xz
17e887d9182cd6d7f92be4ecebd05ebf4dc887ec5eb05244403625a4c84ed337  node-v16.5.0-linux-armv7l.tar.gz
df3b2269150ba7494a7f59ebf551277ba32530529c9d168caa16bd8cee8c4cf4  node-v16.5.0-linux-armv7l.tar.xz
935cbd6195c0b08edd801eb3c0373bb97454a1105d032365d0df1bbc782e836a  node-v16.5.0-linux-ppc64le.tar.gz
6b3f26648c7f28dd7cf3de919d05f0cfcdae3ee35154b1789cbd3bd2eb280258  node-v16.5.0-linux-ppc64le.tar.xz
fbe5c2d3f5e6d490357f4a451ba0355113d6e8175d8939542f11a81c6c65a8f7  node-v16.5.0-linux-s390x.tar.gz
b5c294a39c1400ef32dee365323ecdaf78a205f8625a3f67d8ed4f7f3f6e81ea  node-v16.5.0-linux-s390x.tar.xz
837d76357d8622aac81a5b7f27ba0fd9556faa311a44254f1ffd26aaf42b052f  node-v16.5.0-linux-x64.tar.gz
e41fb3f6ba1ba248d6facd0ccb35ea3b043845b5d358839a344ef3fb39d744c3  node-v16.5.0-linux-x64.tar.xz
c0510db7132fcc97f483f77b68d62a57944500e5ae4d8a33844c292afdf9424e  node-v16.5.0.pkg
a0d233cde072822af7fd3043b866e526a1739df32c3ace6210ae289f3266ccb7  node-v16.5.0.tar.gz
3f37e38dd1129b6905f8d184616d41b3ab8433fa54cadce8a8c18b7a8bbcaa99  node-v16.5.0.tar.xz
eb2136d451cbc4c7027437c48450b3da99f04e9863011504c0308b99df2b82ea  node-v16.5.0-win-x64.7z
9223eb2cbd913fd313ab4456d5fdc6b73e44f916e76189bdaecaa08dc9f5de7d  node-v16.5.0-win-x64.zip
c2ced414a78a6d6965292408fe28efa033f7b30775f9d0401feb841abee86a00  node-v16.5.0-win-x86.7z
456675c3c7bba7d219a493f9b2109bb2dd05d95c9d660a0384b3a91e0a9b8610  node-v16.5.0-win-x86.zip
f80b770b00896672d7d26c70b2d7ecafecef492d260b0552c81138a675758f59  node-v16.5.0-x64.msi
691e8225e6eb4ce5850078dc0d8d4c18836ab92e6032a77fb98566df5b568518  node-v16.5.0-x86.msi
d1751bd9eeb147a48971e40ae9e4374ace30678bbca3754ba35231e0add1a8f4  win-x64/node.exe
4218ef0c41c2d9c8e236a276e8abd8cc36dacdeba54b147cfcbab54848cfb28e  win-x64/node.lib
c184211d64d7616806949db63cb70dd07fe6afb87a0aaf17f1d54f07593d5d12  win-x64/node_pdb.7z
8fe6df2fad2e969c2ee8cb42c400875f9b902c7ca1aee38f4a61c02079afbfc4  win-x64/node_pdb.zip
ff1bf2e0330a5599117bcfd371f929574aa2b7213d9bec21345b4e80185160a8  win-x86/node.exe
e899517caf4e57f674ff37ca8c9db892d676d86960698b2663bbe16e82fa2542  win-x86/node.lib
78d1bd79b287590c4b577e6c66d982b7519f66a73190c4ddd38a00b9e04ef3ec  win-x86/node_pdb.7z
57f82d54e082619c38eacc7b7d88043a6102143b3198c988508ad7e1402e5bfd  win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----
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=uuQR
-----END PGP SIGNATURE-----

2021-07-05

articles

Node v12.22.3(LTS)

작성자: Richard Lau
원문: Node v12.22.3 (LTS)
번역: outsideris

주요 변경사항

Node.js 12.22.2에서 발생한, 영어가 아닌 로케일에서 Windows 설치 프로그램에 생긴 회귀 문제를 이번 릴리스에서 수정했습니다.
Windows 설치 프로그램을 사용하지 않으면 이번 릴리스를 다운로드받을 필요가 없습니다.

Commits

[182f86a4d4] - win,msi: use localized “Authenticated Users” name (Richard Lau) #39241

SHASUMS

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

84755fb1e0d8c87b7da168f5d29b53427275c3899f9542d64a56b188d19305fc  node-v12.22.3-aix-ppc64.tar.gz
c223e375567804efa312c3c04d78b1c27901dd671210d5bc588ae1e3439dd3e5  node-v12.22.3-darwin-x64.tar.gz
58507dacbec21ef55940c9f4bcab5d0f036c2e7dd25dc6d5fde60441640bc2fc  node-v12.22.3-darwin-x64.tar.xz
8fa6565cc096f19c26d423b7b89c0bc709d8f5f551714b682bd651cbdb15802d  node-v12.22.3-headers.tar.gz
d6b13d5eed9c602b13b12b0600017afd08eeaeae2856e76cd4d29016ebea6939  node-v12.22.3-headers.tar.xz
fea8d7801dbea6aa45d8fe58351f758a9262e187b8e86eaf500bbe01c7f02362  node-v12.22.3-linux-arm64.tar.gz
fbdcd0bfd58c66c6e2eeeae1a6c3935a9b5d6162292a6d2ac3f4ac0364da4baa  node-v12.22.3-linux-arm64.tar.xz
4a93906080d58c0591646815c4fed1f1e30864cedf62f19e3fb9bae97e48fc89  node-v12.22.3-linux-armv7l.tar.gz
595302c9be0d0c5773a0bbdaf1f21de6583202f992c0579e090c1f6c1965694b  node-v12.22.3-linux-armv7l.tar.xz
d0e0c1cbb175a8555d5ac29ec4e419f8b5b42d43fe9c89e3ffa6ad10c0e4fb1d  node-v12.22.3-linux-ppc64le.tar.gz
1af91d2aa28ae803944c533f22ca00391f5527d98a4c4741f1ac6f3d45ba2d02  node-v12.22.3-linux-ppc64le.tar.xz
4e55e25f33625d06e5fef0a2f7886d50c5a2fa27faffff39a3ceecfb3f671e7d  node-v12.22.3-linux-s390x.tar.gz
c9a4410d12fb28009d3c86edfac27a2b39ba191f6018dc1ff884c09bc7ed0cd3  node-v12.22.3-linux-s390x.tar.xz
948249f40252c65080ee311404353960226fdd8847f575d3118df6656e0d8fea  node-v12.22.3-linux-x64.tar.gz
1d626cbe78bf7689fbe78d2525742a0dd602e37f3df1939b8b6f9aa885d20e6d  node-v12.22.3-linux-x64.tar.xz
e59035bd0e8329986dc9de8ba4630db6642dd76bd27ce2435bbfcee8bf8ad44f  node-v12.22.3.pkg
cf844ab1a31f62f03a6e658b3e80b4d2babe97d08147c7d4e02d5c28d4a39a65  node-v12.22.3-sunos-x64.tar.gz
eba20ee2b7e82e68262a38d173fb6762e7aacf8069c230008ab1929341d4cd05  node-v12.22.3-sunos-x64.tar.xz
30acec454f26a168afe6d1c55307c5186ef23dba66527cc34e4497d01f91bda4  node-v12.22.3.tar.gz
350211fae3a688f41889680c8efcf689353a2e36b62b9dc2b408340986857190  node-v12.22.3.tar.xz
adefdcbe920ecb4a9a1d1bc75536b68aa71b2428d9d158e466ee49d2f6efeca9  node-v12.22.3-win-x64.7z
d84aea39d419607d5756ecbf850c6c8849f13369d8fea9486b9625ac6082aa5a  node-v12.22.3-win-x64.zip
cf0f17e803628a55188a5d1f1e4a3a7230ff8457a962a34c6ebd27e5b65f45fe  node-v12.22.3-win-x86.7z
f5b9c485bf25f7408b8c597f20efda0d15f3e93566b4a4034e5deba5d1dd1c37  node-v12.22.3-win-x86.zip
fb9a1524542af3a0afc959148823096dc9f9fb1a987999e6701a01ae83ac3e9e  node-v12.22.3-x64.msi
66cd8c2fbccf74040b5457d872162994c72776f1cdf4b5df0168327167a1a1c5  node-v12.22.3-x86.msi
2c1da4d48af10a55a01d627c54be93fec7614a5ebff7366d2c6a8772082d0e0d  win-x64/node.exe
28e5c24831deedbf4fb8a9560f2c4f95205479c589f54a9a53ec346f6a5cf8bf  win-x64/node.lib
24bfb1c46515b8a2e7f59513deb9b380427933e694fb26c74952c5405a8d3024  win-x64/node_pdb.7z
0eb238f7fdb1b2f4d557c022a9e37f5ffc56f1d4c7c9e8a908c052b5fb25f3c9  win-x64/node_pdb.zip
0779521c949f71322043c00476941e29905ad95763261e078590a78cdd5915eb  win-x86/node.exe
8bbcf3b9305b83f54bd80f8ec19d4e237841bde5bfaeb2aec708c36daa6435f6  win-x86/node.lib
5f64c2f4de9a473de8c05f2870692b257f2611e3acaac57b379351eacc8cc577  win-x86/node_pdb.7z
754df77f9cee18471d2c7463dcd1d4f432d3db5273525d600ed2a9cdeb64c894  win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----
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=SKLd
-----END PGP SIGNATURE-----

2021-07-05

articles

Node v14.17.3(LTS)

작성자: Richard Lau
원문: Node v14.17.3 (LTS)
번역: outsideris

주요 변경사항

Node.js 14.17.2에서 발생한, 영어가 아닌 로케일에서 Windows 설치 프로그램에 생긴 회귀 문제를 이번 릴리스에서 수정했습니다.
Windows 설치 프로그램을 사용하지 않으면 이번 릴리스를 다운로드받을 필요가 없습니다.

Commits

[0f00104a2c] - win,msi: use localized “Authenticated Users” name (Richard Lau) #39241

SHASUMS

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

20e2ce162be33e76a256f48f2c33a2a6458e26c9052d58ff63e8458e05f7f08f  node-v14.17.3-aix-ppc64.tar.gz
522f85db1d1fe798cba5f601d1bba7b5203ca8797b2bc934ff6f24263f0b7fb2  node-v14.17.3-darwin-x64.tar.gz
ce8b4b9db5b65da4b007644036b743c397c7aa1a280e293bdfe35d7ded463c9d  node-v14.17.3-darwin-x64.tar.xz
ca6657d6c9d8c29fefa0a4a9a59fad81908ea974e4404c55f57a2e2d6f53aa5e  node-v14.17.3-headers.tar.gz
f658706d2eee70340d266c00376f62dbfd0e34023050f5406fec4fc28f202d60  node-v14.17.3-headers.tar.xz
784ede0c9faa4a71d77659918052cca39981138edde2c799ffdf2b4695c08544  node-v14.17.3-linux-arm64.tar.gz
80f4143d3c2d4cf3c4420eea3202c7bf16788b0a72fd512e60bfc8066a08a51c  node-v14.17.3-linux-arm64.tar.xz
922d61a0e28688fdb10082821560730fa7f3188eea93c8e8d88a8f90d7eadf03  node-v14.17.3-linux-armv7l.tar.gz
57d9635bda508a449dccd22b5fef779af1441bef2cbc258c7dfed267fd504510  node-v14.17.3-linux-armv7l.tar.xz
589e11da7c68025d4ac2e1e2a9a3b1b16dea1424ca8eb91c5aede1a0b24ef976  node-v14.17.3-linux-ppc64le.tar.gz
c1854583d9bb883f17aa2b953d2f0b62b03d88098cb8548818acdb6b7ccb27b4  node-v14.17.3-linux-ppc64le.tar.xz
cca4aff08dee444f663608253d6be530de7eddf62609f4d001b8bfe6f0311f74  node-v14.17.3-linux-s390x.tar.gz
4f69c30732f94189b9ab98f3100b17f1e4db2000848d56064e887be1c28e81ae  node-v14.17.3-linux-s390x.tar.xz
7ef1f7dae52a3ec99cda9cf29e655bc6e61c2c48e496532d83d9f17ea108d5d8  node-v14.17.3-linux-x64.tar.gz
d659d78144042a1801f35dd611d0fab137e841cde902b2c6a821163a5e36f105  node-v14.17.3-linux-x64.tar.xz
e78487a3f52d279cd62a353dc40adcb1a802782941c4f5ac8985446177c6d97a  node-v14.17.3.pkg
dcbd156506ee79ee48439257626ca0a6db3d7eab8cb0208db6979125ae7d3a95  node-v14.17.3.tar.gz
4b8b4b5e1b360f9e51dd72130eec21b79f5832ca55200393c657e9ad76697f48  node-v14.17.3.tar.xz
7d9b143760100ae12eb8e000f0bce7a23fe65b63e428802935fe5ddf7887141d  node-v14.17.3-win-x64.7z
170fb4f95539d1d7e1295fb2556cb72bee352cdf81a02ffb16cf6d50ad2fefbf  node-v14.17.3-win-x64.zip
3fe56227a2f3ed935e62a9236eb7f1cc21abc7d1b26488c697bd6ab1381b9022  node-v14.17.3-win-x86.7z
d3e78dd602e5ba30c5754d79ef75a8620de51a38b29ad071390f082fa38d7f32  node-v14.17.3-win-x86.zip
964e36aa518b17ab04c3a49a0f5641a6bd8a9dc2b57c18272b6f90edf026f5dc  node-v14.17.3-x64.msi
b5bea503f45058a6acd0900bfe7e52deba12dcc1769808eece93b42bce40c7d8  node-v14.17.3-x86.msi
87c50410cd196b8f1409fe34bd5710047dd01580d692c764301a2be44b5c9531  win-x64/node.exe
2166a3ae8728f872727ced97eaccdc8e463ae3c00b7dcb94c3b9da80feedb735  win-x64/node.lib
c3a738d1f691b7b210eb58d2e4b0aad8564dde817573d74f54827ef9a8fbf8dc  win-x64/node_pdb.7z
fbd5e3eb5f8e30f343eda7247a5b99b31d23618d9ead7ceff0fb59ee0a794647  win-x64/node_pdb.zip
12e009502543b5cc8bf93b45d3749ebb41ba245125f95c7b9fbf8ce61f24bfaa  win-x86/node.exe
bab3fdbacbd6621e27762c559041723dc35d3122ddfd153f81315aaab78646ae  win-x86/node.lib
8a0c927d23c104dba0d1e49eddc3663e5940fe5c7a6f7668423fb7b88a172349  win-x86/node_pdb.7z
ddac85191d937d8c5f389aeab44fa51aa0746670a070f7d02224eb5bbaafc718  win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----
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=FSBY
-----END PGP SIGNATURE-----

2021-07-05

articles

Node v16.4.2(현재 버전)

작성자: Bethany Nicolle Griggs
원문: Node v16.4.2 (Current)
번역: outsideris

주요 변경사항

Node.js 16.4.1에서 발생한, 영어가 아닌 로케일에서 Windows 설치 프로그램에 생긴 회귀 문제를 이번 릴리스에서 수정했습니다.
Windows 설치 프로그램을 사용하지 않으면 이번 릴리스를 다운로드받을 필요가 없습니다.

Commits

[76e709ec63] - win,msi: use localized “Authenticated Users” name (Richard Lau) #39241

SHASUMS

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

face4ef55857571cefeac04be0b9381cb4ec97512fd5f843a7c44d5cea467b95  node-v16.4.2-aix-ppc64.tar.gz
94f2890a3f68044bb89891d25063cc07bcd1e3754d27cfbcdeffeb0dc8cff592  node-v16.4.2-darwin-arm64.tar.gz
e162508475e73715bc02097d439e03e5673e36cd38ec11310182f00e06fb4089  node-v16.4.2-darwin-arm64.tar.xz
51baebe96a70287fcbabafaca4c1704c610514e629e7c895b1d145ea0adc9ce6  node-v16.4.2-darwin-x64.tar.gz
af73f320c17cab30130c35946d080349dc3faa4ad46c1292055813c4f9b96080  node-v16.4.2-darwin-x64.tar.xz
150ebef4a382795289a9780808804f97d104f19086e7d575ddc483c1c7ce3e8f  node-v16.4.2-headers.tar.gz
7232a37bde0536c476ca6cbe3a9315a1ad7e87d51e314d65f6ce177d6c9c70b6  node-v16.4.2-headers.tar.xz
5860164738d8d5403effe46b296260a599af1d4de9743555880985b1aeb2b57f  node-v16.4.2-linux-arm64.tar.gz
7859f9228c267656a0aa0b24d59ff22bd10385e291c6a916f7a1aaa4503444d6  node-v16.4.2-linux-arm64.tar.xz
5d056d44eb7fa7e62ffaac1d270c09fe8f77bf926de5519dbda6257cb86f5234  node-v16.4.2-linux-armv7l.tar.gz
1290b61057cd68802fb78a8217276d66299de4131c7a5d44664d58fca8809a77  node-v16.4.2-linux-armv7l.tar.xz
c51f6ff2bc86c5ae689a6b9091e575c79695e0992b0c83d5a997899ac6b23edd  node-v16.4.2-linux-ppc64le.tar.gz
4a498e2c183cadd02fdacc12b75a35d8980ace4c0a356b93bd406e97b647c118  node-v16.4.2-linux-ppc64le.tar.xz
a42a67e81e378d3f208cb41571adee53bad7ab10d65c3f047633a8f8ca5a2b60  node-v16.4.2-linux-s390x.tar.gz
a06dd8a5d4180f98a358dff837567641c01f0cbb8f82c2f3e1c624eb900ae6f1  node-v16.4.2-linux-s390x.tar.xz
710a6955f5f500030f97d0deef6c15ef25533b9a7de66796248229b37ce07704  node-v16.4.2-linux-x64.tar.gz
fcb022602ca97fadbf6fb27621dab7198238c29376304cc5ab5f0f8d155557f9  node-v16.4.2-linux-x64.tar.xz
d5a7b4d2b9955279e4643be55e9352810f625d42e0bb193e0cc57c39b3f0cfbc  node-v16.4.2.pkg
46d907a06fe020ee8d7e6753357b82edd16f3871f8caaa188841d29d265de7bd  node-v16.4.2.tar.gz
b2898db82adbebf83358f2f02a74aaddcd20a607efc6ec4c54cdc46bff261d11  node-v16.4.2.tar.xz
aceb76cae3df1a28ad427040c965db97fd0b0e09a4d30a02f51b9b73bab80d6d  node-v16.4.2-win-x64.7z
e167519b48fd1198f3e27621489ccc2dfa4b18d2af8753c668d9094d918d1256  node-v16.4.2-win-x64.zip
583dc4186ff3ae8ba032e92404a03196a1f1b0758924109786b3ed241eb7bfd7  node-v16.4.2-win-x86.7z
55525c92e4e4c8df9162dce4184a6f49feb8fcabb963578fe989f241850c5435  node-v16.4.2-win-x86.zip
6412f2cb303f1bc1167953e4252a22c142cd5c013301c7222b0e95f077bd3f04  node-v16.4.2-x64.msi
673d795619d512091ee6daf6cec871b668b001f0d3bf26897cd1b412aa505534  node-v16.4.2-x86.msi
14b486992afe1ecb35bd4fde7b35bbdd254bc5ddf9a1c620d637558593fdad83  win-x64/node.exe
4b5caea50ee2170fd752225477d77a8818965e3e8cbb9871ecbddf32bd6ed94d  win-x64/node.lib
2fb494c4cbe59b68f89a8654e40473f2c4a9dcfac1c468a37aa38fcd707ae4bc  win-x64/node_pdb.7z
688f3cb5fc6c6aebaf61fc087cc707bf2ec95fbc683fb422424800e6aec642c6  win-x64/node_pdb.zip
f11c4b02aa0394b6287cb6089d90697ba90a1cfaa4dbb253c8076f049545bd8b  win-x86/node.exe
e899517caf4e57f674ff37ca8c9db892d676d86960698b2663bbe16e82fa2542  win-x86/node.lib
8759bf4e24259228b44ce296c620ace8fd36f5bfde1ba6cbdb5e3452239dd9b2  win-x86/node_pdb.7z
a6cc0cfcd09e636ff169c91b5b0e63f836ba2c3008784f7c730ad4b5360deed7  win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEETtd49TnjY0x3nIfG1wYoSKGrAFwFAmDjQYEACgkQ1wYoSKGr
AFx6Awf/ePYpxe/E43me7QBdzajugHYnU1ScplTylv2YM1GFyDXQ8ExxRJbCOEex
hYNvbZ/k3fKYKm5A+808T2CcrKh5af/pIoPsDBGOAG1DiCQyu2IxGAPFuhsFh/h1
EdipuRXVg5tqhOKwN1O4JS8CP6QnCRAUSHBdEoayZ9EXqKMXD0+KwqdWLTSp9mec
ZRubN57/C6OENFAXvKCTE44LKzBZqpFnwx3P430xYr7NBkIDWbqxvL7mEXGth7HF
lUnXhg6/UYr3nku2OPuoMWI1o4LC7871iIzUKcjryx4Uofb9oEfeaFPJZxSXXExB
288BgVTPPFf4+pXEOoBSwhpjp/7bgw==
=jJDH
-----END PGP SIGNATURE-----

2021-07-01

articles

Node v12.22.2(LTS)

작성자: Richard Lau
원문: Node v12.22.2 (LTS)
번역: outsideris

주요 변경사항

다음 취약점을 수정했습니다.

CVE-2021-22918: libuv 업그레이드 - 범위를 벗어난 읽기(중간)
- Node.js는 문자열을 ASCII로 변환하는데 사용하는 libuv의 uv__idna_toascii() 함수에서
  범위를 벗어난 읽기에 취약합니다. 이 함수는 Node dns 모듈의 lookup() 함수에서 호출하고 정보를
  노출하거나 크래시가 발생할 수 있습니다. 자세한 내용은
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22918에서 볼 수 있습니다.
CVE-2021-22921: Node 설치 프로그램의 로컬 권한 확대(중간)
- Node.js는 Windows 플랫폼에서 특정 상황에 로컬 권한 확대 공격에 취약합니다. 더 자세히는
  설치 디렉터리의 부적절한 권한 설정으로 공격자가 확대 공격인 PATH와 DLL 하이재킹 공격을 할 수
  있습니다. 자세한 내용은
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22921에서 볼 수 있습니다.
CVE-2021-27290: npm upgrade - ssri 정규표현식 서비스 거부(ReDoS)(높음)
- 서비스 거부 공격에 취약할 수 있는 ssri npm 모듈의 취약성입니다. 자세한 내용은
  https://github.com/advisories/GHSA-vx3p-948g-6vhq에서 볼 수 있습니다.
CVE-2021-23362: npm upgrade - hosted-git-info 정규표현식 서비스 거부(ReDoS)(중간)
- 서비스 거부 공격에 취약할 수 있는 hosted-git-info npm 모듈의 취약성입니다. 자세한 내용은
  https://nvd.nist.gov/vuln/detail/CVE-2021-23362에서 볼 수 있습니다.

Commits

[623fd1fcb5] - deps: uv: cherry-pick 99c29c9c2c9b (Ben Noordhuis) nodejs-private/node-private#267
[923b3760f8] - deps: upgrade npm to 6.14.13 (Ruy Adorno) #38214
[a52790cba0] - win,msi: set install directory permission (AkshayK) nodejs-private/node-private#269

SHASUMS

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

6e55248464241a1a2e025872c02becf49ab4a989576a5a40fdabc7c11c2cb449  node-v12.22.2-aix-ppc64.tar.gz
293156b4ab199ed2775e4b4c69dbd6d3730fe0a099be8c354d5628652ff0ec3a  node-v12.22.2-darwin-x64.tar.gz
99fc13a8e1592be75183abeea8479c49c20a28e34003d3b47ddbbb3bf0825d74  node-v12.22.2-darwin-x64.tar.xz
737fef9dd325c7154670e1846a09c16377fc2a6245031465d1e388cf23c481bc  node-v12.22.2-headers.tar.gz
af16ebb7e35ab2274bd2a6685c20ccb7a331046e9eed4b432e9e287be6fc0fe1  node-v12.22.2-headers.tar.xz
40f4a6a887e3ab8675e71bdc544353e078775074ec9f7911cfe3827ad68007fb  node-v12.22.2-linux-arm64.tar.gz
ab9b950b80bad8e9070129438cabd548a31dc9c292d41341453d22920f49cdbb  node-v12.22.2-linux-arm64.tar.xz
b96aa9b7cefda490c0cc5f91ef9dcd1a1d59cd7e9891bebc1827a99bdc3dea76  node-v12.22.2-linux-armv7l.tar.gz
dee507935ecfd2b3e01a27a0d2307d8b20e7e105bd82560859919c09e717eef9  node-v12.22.2-linux-armv7l.tar.xz
a3012c6eda500322f300cfc22afbe7b3b4bfb7c9165b735670221d7f6beceef2  node-v12.22.2-linux-ppc64le.tar.gz
ee9a11f1fbbd29879c5ea90ac8e93420f2d05042802a89f70470e60cda7d382c  node-v12.22.2-linux-ppc64le.tar.xz
ed4594abf3a572ef4f247310a6534f874d2f3de5ac49012dc0314136eb190c2c  node-v12.22.2-linux-s390x.tar.gz
38ef8f8db5c4eaba9cc919811a65933dfe0844564569e1cf8acb4a96b27d77ec  node-v12.22.2-linux-s390x.tar.xz
2898ac962602443fedeaaccf61b33f127c97f7c9d7b23fbe0d78a4d20b69db0b  node-v12.22.2-linux-x64.tar.gz
c17f838cec2eb111048342543d23a74bcab7459a4374615ff4124940a717377a  node-v12.22.2-linux-x64.tar.xz
461b3637a576a4030a369fa116d8376d72b7b84c9d40e21650b2f6423c965269  node-v12.22.2.pkg
735e1d050790470683125e02d4f085313fc11e8aaa696ca09f4dc3b1bf7b6f2f  node-v12.22.2-sunos-x64.tar.gz
752507716a94731b59a581a69e746bc04ec3f006b2f29277ff85a77b1224c675  node-v12.22.2-sunos-x64.tar.xz
210a550c47056f29537e1b5b73cb78a88c44609c3b92aa003cf7862d3904ef99  node-v12.22.2.tar.gz
7fd805571df106f086f4c45e131efed98bfd62628d9dec96bd62f8c11b0c48dc  node-v12.22.2.tar.xz
d5d04f560ce321b5fd803f9676b7d430d7218d270a5ce561a11f1e3c1b6ebdd7  node-v12.22.2-win-x64.7z
c42cd8c8d8c10faeff8ed02d2d3c5214feb519873ced78c47d0374847843110b  node-v12.22.2-win-x64.zip
730dc503eb1b6704dc7d97001c33d5f12a374a5e52ba8ad53bb3bc53b23739b8  node-v12.22.2-win-x86.7z
179a7837e2bf1478ea36515942efbcbfec5e45fea5eb526074016cee310cfa8a  node-v12.22.2-win-x86.zip
5f5416f96c015278ab9a3c5d1e53c82293e0b1fa91f440d4159a4d4ba54a7805  node-v12.22.2-x64.msi
de6fad6d89dc0ed1749dc2d15ba26267961732c569cd79904d903868c2680973  node-v12.22.2-x86.msi
baa4a8ee5fdd7c98ff2cccc59523f10e5ca21df518e2fc4d8ff628cc974c9982  win-x64/node.exe
28e5c24831deedbf4fb8a9560f2c4f95205479c589f54a9a53ec346f6a5cf8bf  win-x64/node.lib
d27fa6c9f89ff31193ed99664f34250305e137900e3d2bc07e3ff7d0393ea644  win-x64/node_pdb.7z
5403fdbd09880f02754f749fe59a0ce225a3ef4f2fe0372c23ac0b9c233717f4  win-x64/node_pdb.zip
31857477fb99710529b0c89f2635629ecffca166ddea633f6926a8ee419eb4d1  win-x86/node.exe
8bbcf3b9305b83f54bd80f8ec19d4e237841bde5bfaeb2aec708c36daa6435f6  win-x86/node.lib
efe340a69f091eaa9c2def41152259559171f603ba7d3ef5e3b7dffc589efff5  win-x86/node_pdb.7z
e2bbb4249e5a18e6b7efac1f0faa2625888e66f6517e419ea18fa9c9e04acc22  win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEyC+jrhy+3Gvka5NgxDzsRcF6uTwFAmDd4SAACgkQxDzsRcF6
uTzSPg/7BaFYxhFQs73xJ9y3CucOK9dVPVXtr/8/tXil1pXPtVxEMxghtT1Rbr0W
E4m9F8qiu8mFaNXqu99wywnH8RzAK8yce7uxlvcvcTizLA0tPmgyQUTRRjIrjl7t
e6lbBi0swhdNaVBLMdVs9Ln40op+sBwN27bn43DtrYIlih8hA2P2UoSTf/+tWKG/
/10/LZ+UFB2ddwV6NJdJJY36dSHppNK/2gJZ9w963vEb5DqN987ydJuLnwOBmdkc
sKfvj1WsR7ycUH+P6/1dnRzLBXhhZo+nlMtdVpVhiUh9kwNbl1UwALTG/Qmp76Z9
1AiTodFftb471cpv7I7HnBKqEoVK/qsHJ82+uDuIaf/qnBvKHTpMOe4dwMajnQzf
YAhHaS/Os/52lQEY3LoYIMTPzvby15U7LaEp3phupUKOjtpSBnYiSNOoCMy5foZS
3uvOvbXMAlkpYq7fRHn8WUSC6CBM/Et6GZD0h4YnlvJiRbB2wXOKHR2lNIr9wf/w
4fTZZZjbs8JpTYKWifypstPqwfm9wrAtXre7dkH146hKl7qFIro3P0nC6U4vsQiZ
O2xLI5ekVkWwe2zeqAxcoHN+ZcsBxn5z/sDQTP5Een2yOaz0BMXy2+m5mcC5YTJo
DiPrmaWX+Juo8KynBxbjZF5EC9is78QVgOYUtYcqgSBm3lDUYy8=
=j1ft
-----END PGP SIGNATURE-----

2021-07-01

articles

Node v14.17.2(LTS)

작성자: Richard Lau
원문: Node v14.17.2 (LTS)
번역: outsideris

주요 변경사항

다음 취약점을 수정했습니다.

CVE-2021-22918: libuv 업그레이드 - 범위를 벗어난 읽기(중간)
- Node.js는 문자열을 ASCII로 변환하는데 사용하는 libuv의 uv__idna_toascii() 함수에서
  범위를 벗어난 읽기에 취약합니다. 이 함수는 Node dns 모듈의 lookup() 함수에서 호출하고 정보를
  노출하거나 크래시가 발생할 수 있습니다. 자세한 내용은
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22918에서 볼 수 있습니다.
CVE-2021-22921: Node 설치 프로그램의 로컬 권한 확대(중간)
- Node.js는 Windows 플랫폼에서 특정 상황에 로컬 권한 확대 공격에 취약합니다. 더 자세히는
  설치 디렉터리의 부적절한 권한 설정으로 공격자가 확대 공격인 PATH와 DLL 하이재킹 공격을 할 수
  있습니다. 자세한 내용은
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22921에서 볼 수 있습니다.

Commits

[a7496aba0a] - deps: uv: cherry-pick 99c29c9c2c9b (Ben Noordhuis) nodejs-private/node-private#267
[d0b449da1d] - win,msi: set install directory permission (AkshayK) nodejs-private/node-private#269

SHASUMS

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

fb4348515d67085153c58d7b5114ca71690e3938d6c6000a02a7977cf154290a  node-v14.17.2-aix-ppc64.tar.gz
e45db91fc2136202868a5eb7c6d08b0a2b75394fafdf8538f650fa945b7dee16  node-v14.17.2-darwin-x64.tar.gz
1b5227ec537a456ce4f3af9631db652e7fd3ab8ac7b9a38be117e0bc2f54d1d5  node-v14.17.2-darwin-x64.tar.xz
ccda5c3ce6dd51e6901cd227c1e6b39b17efa1dfe17fcc5ae1cde15d88cbb05c  node-v14.17.2-headers.tar.gz
935e8661db59ab51e4079fbcafd70185ad65ac0924cc48209d976faf69a3b286  node-v14.17.2-headers.tar.xz
05117e74f424fd4ab744c3013c77906c5fe4a19fa22ce624a21986ce152fd258  node-v14.17.2-linux-arm64.tar.gz
3aff08c49b8c0c3443e7a9ea9bfe607867d79e6e5ccf204a5c8f13fb92a48abd  node-v14.17.2-linux-arm64.tar.xz
c5b3447eda84a402e604a3ca317747f8f3661b1c9cb68f73a2e2f5a39ed95533  node-v14.17.2-linux-armv7l.tar.gz
0ef956711d6f984b2f7a2e8a3c5d1f274668fd50ba73a4f4580dc72e4d7dff87  node-v14.17.2-linux-armv7l.tar.xz
d94681c9953a68cfbc3903edbe680d9068581c140a5d24c265e557c2e0a57a51  node-v14.17.2-linux-ppc64le.tar.gz
64364f96ff04083bf91ee82a2e27ae6d45a4b8512d38e70da976909db5400d2a  node-v14.17.2-linux-ppc64le.tar.xz
9b60ec8bb3675f3648b1474a4d911838ca11630e07ec99230a078937e73be158  node-v14.17.2-linux-s390x.tar.gz
76f955856626a3e596b438855fdfe438937623dc71af9a25a8466409be470877  node-v14.17.2-linux-s390x.tar.xz
48cc87b7adb13f479643166a16514861556d0936761b317a3b65f4fbbb265b4d  node-v14.17.2-linux-x64.tar.gz
6cf9db7349407c177b36205feec949729d0ee9db485e19b10b0b1ffca65a3a46  node-v14.17.2-linux-x64.tar.xz
16286b9d41238dc85af791aafc71523cdc8456cd7eccebdf92f8368ce879e363  node-v14.17.2.pkg
03bea54a68c6fa8b520c273a1dc80f2fdbf80ddc9c303200d2eeaf25bd7e62fa  node-v14.17.2.tar.gz
4f5fb2b87e2255da3b200ed73ab076002e4b088df0027ec85e25541a6830583e  node-v14.17.2.tar.xz
6f59257b20861efb506f9b7f5b8587a310c6df6de4d719324ae8f3dcda68bcbc  node-v14.17.2-win-x64.7z
0e27897578752865fa61546d75b20f7cd62957726caab3c03f82c57a4aef5636  node-v14.17.2-win-x64.zip
b5b2f6d2523b0c60399111b4c60ee3066d6e7e51fe22ce045c5181d52dd2dd20  node-v14.17.2-win-x86.7z
308e3e2228cd6b0e991fd9d23dcd0c57f913926355adcb702f9660a1574a79fa  node-v14.17.2-win-x86.zip
452a94f6db29ea6ef298cb731765c615624eed2c8bd8746c827d5abbed89a5de  node-v14.17.2-x64.msi
92443d36339a76f39102e785ecf663a072d26c9c45a2b4b68ddb82ae54345682  node-v14.17.2-x86.msi
140fd660d63eab02812ec583a4c958c9252f041a92d76047c63ac34d773aab66  win-x64/node.exe
2166a3ae8728f872727ced97eaccdc8e463ae3c00b7dcb94c3b9da80feedb735  win-x64/node.lib
a79264dcce6c4f6aba147aee4bfd9e6b69b4134f07e487d381efecf771f7e275  win-x64/node_pdb.7z
2a57321f0767c3a89a8dfd5355ac2c0ccdec728da97a8f5bd3bd53ea4252eb0e  win-x64/node_pdb.zip
2695c86b7000623119abfd7b9aed48c04d5ae4247ea7398ff2c77f61907d531f  win-x86/node.exe
bab3fdbacbd6621e27762c559041723dc35d3122ddfd153f81315aaab78646ae  win-x86/node.lib
dc5a8c41b0ceaea49dadd0ff53b25837809a90e75222b3f34c5c01325a52bd26  win-x86/node_pdb.7z
f5e6ae2fcc35f94749e8404f909734649e5617ac3e41ce326fb2601cbf72c862  win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEyC+jrhy+3Gvka5NgxDzsRcF6uTwFAmDd4UIACgkQxDzsRcF6
uTwCdQ//ar0hKWBOIKQUFpAuAFGvrlZRz6jPdRVb+4VK6NahRDNf0fbyQjepOcI0
sDTRptjlgPOYpvNTKUHr7BaMCPsPnpw6rVbdVpcXhYf3ZqCd2xyVBte8zqTPbHkp
RHoEwG+Qw/qVt6BKEFfONfw437eTySMBPFzMjKbyTBrU/LgY4esMTSlsnwPy1R6M
CblH3M6kIvMadA1DN4yKH751IXX3/nvW+rwo/eNIiAfEzwFkXMcL73u5+rhq9SZG
SLT7jyM+6qRAGPGF1uxG/nnj4tjCSkAWF9v5WKyElrJfJxga1rJECMr8KaBXcQW0
KPoeKIqEhtDgxWwTRCkghXYSAl1uLqnx7AU3XPrT557kGCPr2FcV0V3+McQ6T0Cc
8AXA9gNjlEgU2BGe8p3VUyCwjfFXfnNdPcD3OaZvoiMGWIB9Ty1sJeGmvse783ID
KIoc+qnmB966Qh1WvTdl3S5V9sVVXgk9xUOToXpbfFoUDXMmsQe5lwr4VB6YHVGt
8f0iM8dVfkjA2qc1tgfmTyPMMlPIGB1iNVwMuSm4WCpe924py0boI+j+dp6NGhrn
YymRG1cER45uNmFLN8Q30mDAFG5pWAsC2UMgZYzqFXBL0PdTrtYSL56vQkD6RLgT
aD3s8r/vtxQ0gZZQW8s7Zg9OXHSbPZRXjg31OpTQPrk2BsTAkfM=
=08xu
-----END PGP SIGNATURE-----

2021-07-01

articles

Node v16.4.1(현재 버전)

작성자: Bethany Nicolle Griggs
원문: Node v16.4.1 (Current)
번역: outsideris

주요 변경사항

다음 취약점을 수정했습니다.

CVE-2021-22918: libuv 업그레이드 - 범위를 벗어난 읽기(중간)
- Node.js는 문자열을 ASCII로 변환하는데 사용하는 libuv의 uv__idna_toascii() 함수에서
  범위를 벗어난 읽기에 취약합니다. 이 함수는 Node dns 모듈의 lookup() 함수에서 호출하고 정보를
  노출하거나 크래시가 발생할 수 있습니다. 자세한 내용은
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22918에서 볼 수 있습니다.
CVE-2021-22921: Node 설치 프로그램의 로컬 권한 확대(중간)
- Node.js는 Windows 플랫폼에서 특정 상황에 로컬 권한 확대 공격에 취약합니다. 더 자세히는
  설치 디렉터리의 부적절한 권한 설정으로 공격자가 확대 공격인 PATH와 DLL 하이재킹 공격을 할 수
  있습니다. 자세한 내용은
  https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22921에서 볼 수 있습니다.

Commits

[d33aead28b] - deps: uv: cherry-pick 99c29c9c2c9b (Ben Noordhuis) nodejs-private/node-private#267
[2690907b81] - win,msi: set install directory permission (AkshayK) nodejs-private/node-private#269

SHASUMS

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

d0f079c4bc78ee9e1eb646434bc52730c59e433f75febee70ee5506a5526eead  node-v16.4.1-aix-ppc64.tar.gz
c6e2a79873c4afbd9fcd7e9d2889e2a7b84860bea472a07ccbe33387397990f5  node-v16.4.1-darwin-arm64.tar.gz
e8d2c3e90e93f3456e8f33e900c4eb404f8456b584e78550a12218aa89689fff  node-v16.4.1-darwin-arm64.tar.xz
c78fecdfb062c51ba0432d1c6bb8f30eb14daf47001a5f68d17b3ae6d4d9eb31  node-v16.4.1-darwin-x64.tar.gz
3840f63f73513bfe60aac2a7180501f2b7e8b04806ed0ff0c100042f01bf5612  node-v16.4.1-darwin-x64.tar.xz
85b46ae7c3f2f6482a9a009cffe36ae4ead98f936d05a4e602eb32de148c4345  node-v16.4.1-headers.tar.gz
95d1cc071266739cbb2421a8419bae13652007701165549f0ae584863d11dd8e  node-v16.4.1-headers.tar.xz
5d50cb3ce5b5ecccead1d0cf4e18e038c580e10733ff510f73d04a711092569c  node-v16.4.1-linux-arm64.tar.gz
7519f43bc704bbb86af6162bad967eb0a277466b6b8c3e0b17dd367d86a97b27  node-v16.4.1-linux-arm64.tar.xz
b8df70739ffb058d4771722384e818fc5f9f0a5e096a45f1bfe7919b3173d32e  node-v16.4.1-linux-armv7l.tar.gz
ab8a575ffd154b1faab4c94be5bcb961f6ed1dcc79afa18489dcdb1eea7e660b  node-v16.4.1-linux-armv7l.tar.xz
49a3f2958e1e822d4053adf7c006ccf230ca7dc4f830bea789163fd093184160  node-v16.4.1-linux-ppc64le.tar.gz
72607271437948a6470063bc8bbb622ae1da60899217526b60ab2594fdff6b10  node-v16.4.1-linux-ppc64le.tar.xz
c3162a66943a0871423f94c8697c0bbfa2dc8a8474e63fa67a0cdd7f3618aca7  node-v16.4.1-linux-s390x.tar.gz
d472d95911c46bcae6e83ce2ea4312d544ee5ead6d8a6639ba40e51ad5678269  node-v16.4.1-linux-s390x.tar.xz
21181395c11ee1d13c05c4e07b1f4e36ba501d92030ac60a901291c50915b320  node-v16.4.1-linux-x64.tar.gz
3c73b58051a4435d605f9842e582a252e100d5ff62e0a30e3961cab71e8477b1  node-v16.4.1-linux-x64.tar.xz
d4eec360becc29d06b4ee7ee41ab3bf07bd8f4d979d911e18b5ed4ba9841a17f  node-v16.4.1.pkg
562df905fdc9c8b3854fea1c755cc969b3c1437774d28b513457cc4034136458  node-v16.4.1.tar.gz
769014432ed8e16267c70b834999e76c48193cd8523ca4f3ee4eadaae7f32aa8  node-v16.4.1.tar.xz
0bec96b5b22ca6d4eead44003011fcdb44af0d331bb1fc8af0647f95cd9feb65  node-v16.4.1-win-x64.7z
f2f0dfc9ee54aff908575734713c482d76bfbed14dcfaea4931fff7450753f25  node-v16.4.1-win-x64.zip
2eec50ab1e34eb99af2819dd92a272e44944dc5b3fbf74c3ab25355feccc97c4  node-v16.4.1-win-x86.7z
a505508994890e418757ea88a55a9685914f57643ec5fb5737c28c5c8b6a1abe  node-v16.4.1-win-x86.zip
a6c50420ab8e65df482e841a41a309582445480f2682e58ba3af30edf558b43b  node-v16.4.1-x64.msi
f05522114177fd5acf49b2c81aca438f3c88284c5d69196efc2df8bb43cb8090  node-v16.4.1-x86.msi
3b69159360b235d20cd8a35a63562ffd8e96f1032dbd3c0980a6ff794968cc07  win-x64/node.exe
4b5caea50ee2170fd752225477d77a8818965e3e8cbb9871ecbddf32bd6ed94d  win-x64/node.lib
ba7c1a22e2a59a73aaeab4c8d56826b705c2da00a57c94d3a3d6b1b460cb8cff  win-x64/node_pdb.7z
36b27e73b3132bc6fae11d75f648fe4c35efef2002dfed03a9784f145445f17e  win-x64/node_pdb.zip
8fd7ef41cf3a394ace65922babe7db8108374cf0c4cfba5613be61fb147cf141  win-x86/node.exe
e899517caf4e57f674ff37ca8c9db892d676d86960698b2663bbe16e82fa2542  win-x86/node.lib
aafaf686584d890a7b580cb16a9f898a299f3a1c91ae720224a858a9bc5c2f89  win-x86/node_pdb.7z
359ef4b5be217ed189910ae806a57fa555874a5ae2b2e1200b2754ff90942a1c  win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----

iQEzBAEBCAAdFiEETtd49TnjY0x3nIfG1wYoSKGrAFwFAmDd4aEACgkQ1wYoSKGr
AFyTuQf+PGAx0iu/qHynzVfoiixzCeugk9HEegU2Sj8oovmnok/bGKFxWTTl+SYj
6h70KpfObXgy5TyczvX1KsuabcFQ+wwSASUtnJcnaG1bKwP1JJOZbvKUwkxEVtDe
/jV1sUr8eAgI0K9SwKn7jRGwaUp88XEKdxlX9Vbio91X0OD9KWkilg6haX+/ccLa
AlaOgmo4lvP8kgycD1AKytZwQOA+BQqhF86C1/+QIQa5EiP/mWztZEzpvUMxFvwU
/CPZPriYuOvXIfzbthGJOEfccU25VJKNaJTIj12UEH54UjWnz0UPCZhQLtBUwLmC
odXiC6kU7Hjq2bFq+Gss4fGmt7LvAA==
=e3hn
-----END PGP SIGNATURE-----

2021-07-01

articles

2021년 7월 보안 릴리스

작성자: Daniel Bevenius
원문: July 2021 Security Releases
번역: outsideris

(2021년 7월 1일 업데이트) 보안 릴리스를 사용할 수 있습니다.

다음 이슈에 대해 v16.x, v14.x, v12.x 버전의 Node.js 릴리스 라인의 업데이트를 이용할 수 있습니다.

libuv 업그레이드 - 범위를 벗어난 읽기(중간) (CVE-2021-22918)

Node.js는 문자열을 ASCII로 변환하는데 사용하는 libuv의 uv__idna_toascii() 함수에서
범위를 벗어난 읽기에 취약합니다. 이 함수는 Node dns 모듈의 lookup() 함수에서 호출하고 정보를
노출하거나 크래시가 발생할 수 있습니다.

자세한 내용은 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22918에서
볼 수 있습니다.

영향받는 버전:

16.x, 14.x, 12.x 릴리스 라인의 모든 버전

Windows 설치 프로그램 - Node 설치 프로그램의 로컬 권한 확대(중간) (CVE-2021-22921)

Node.js는 Windows 플랫폼에서 특정 상황에 로컬 권한 확대 공격에 취약합니다. 더 자세히는
설치 디렉터리의 부적절한 권한 설정으로 공격자가 확대 공격인 PATH와 DLL 하이재킹 공격을 할 수 있습니다.

자세한 내용은 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22921에서
볼 수 있습니다.

영향받는 버전:

16.x, 14.x, 12.x 릴리스 라인의 모든 버전

npm 업그레이드 - ssri 정규표현식 서비스 거부(ReDoS)(높음) (CVE-2021-27290)

서비스 거부 공격에 취약할 수 있는 ssri npm 모듈의 취약성입니다.

자세한 내용은 https://github.com/advisories/GHSA-vx3p-948g-6vhq에서
볼 수 있습니다.

영향받는 버전:

12.x 릴리스 라인의 모든 버전
최신 npm 6 업데이트를 포함한 14.17.0보다 이전에 나온 14.x 릴리스 라인의 모든 버전

npm 업그레이드 - hosted-git-info 정규표현식 서비스 거부(ReDoS)(중간) (CVE-2021-23362)

서비스 거부 공격에 취약할 수 있는 hosted-git-info npm 모듈의 취약성입니다.

자세한 내용은 https://nvd.nist.gov/vuln/detail/CVE-2021-23362에서
볼 수 있습니다.

영향받는 버전:

12.x 릴리스 라인의 모든 버전
최신 npm 6 업데이트를 포함한 14.17.0보다 이전에 나온 14.x 릴리스 라인의 모든 버전

다운로드와 릴리스 상세 내용

요약

Node.js 프로젝트는 2021년 7월 1일 목요일쯤 지원하는 모들 릴리스 라인의 최신 버전을 릴리스할 것입니다.

높은 심각도의 이슈 하나와 중간 심각도의 이슈 3개

영향

Node.js 16.x 릴리스 라인은 중간 심각도의 이슈 두 개에 취약합니다.

Node.js 14.x 릴리스 라인은 중간 심각도의 이슈 두 개에 취약합니다.

Node.js 12.x 릴리스 라인은 높은 심각도 이슈 한 개와 중간 심각도의 이슈 세 개에 취약합니다.

릴리스 시기

릴리스는 2021년 7월 1일 목요일쯤 사용 가능할 예정입니다.

연락처 및 향후 업데이트

현재 Node.js의 보안 정책은 https://nodejs.org/en/security/에서 볼 수 있습니다.
Node.js의 취약점을 보고하고 싶다면
https://github.com/nodejs/node/blob/master/SECURITY.md에 정리된 절차를 따르기 바랍니다.

Node.js의 보안 취약점과 보안과 관련된 릴리스의 최신 정보를 얻으려면
https://groups.google.com/forum/#!forum/nodejs-sec에서 소수의 공지만 하는
nodejs-sec 메일링 리스트를 구독해 주세요. 이 프로젝트는 nodejs GitHub 조직에서 관리하고 있습니다.

2021-06-23

articles

Node v16.4.0(현재 버전)

작성자: Danielle Adams
원문: Node v16.4.0 (Current)
번역: outsideris

주요 변경사항

async_hooks:
- AsyncLocalStorage의 일부를 안정화시켰습니다. (Vladimir de Turckheim) #37675
deps:
- npm의 버전을 7.18.1로 업그레이드했습니다. (npm-robot) #39065
- V8을 9.1.269.36으로 업데이트했습니다. (Michaël Zasso) #38273
dns:
- --dns-result-order로 기본 dns의 verbatim의 값을 변경할 수 있습니다. (Ouyang Yadong) #38099

Commits

[d2b972ee52] - async_hooks: check for empty contexts before removing (Bryan English) #39095
[03e75fda4c] - async_hooks: switch between native and context hooks correctly (Stephen Belanger) #38912
[8115e6ee6d] - (SEMVER-MINOR) async_hooks: stabilize part of AsyncLocalStorage (Vladimir de Turckheim) #37675
[5f51729014] - bootstrap: move event loop handle checking into snapshot builder (Joyee Cheung) #39007
[9d100aa269] - bootstrap: split NodeMainInstance::Run() (Joyee Cheung) #39007
[2aaf2f231f] - build: reconfigure when gyp files change on Windows (Joyee Cheung) #39066
[7f225a05ee] - Revert “build: work around bug in MSBuild v16.10.0” (Michaël Zasso) #38977
[1853127dde] - build: reset embedder string to “-node.0” (Michaël Zasso) #38273
[c0d236f5ea] - build: make build-addons errors fail the build (Richard Lau) #38983
[173292bcf8] - build: fix commit-queue default branch (Mary Marchini) #38998
[e939e243bf] - build: don’t pass python override to V8 build (Richard Lau) #38969
[651c58b412] - build: correct Xcode spelling in .gitignore (bl-ue) #38895
[5203c9ced7] - build: fast-track npm PRs and dont-land them on LTS (Michaël Zasso) #38885
[7de57d4d33] - build: dont-land gyp-next PRs on LTS branches (Michaël Zasso) #38887
[e87cd4542b] - child_process: refactor to use validateBoolean (Qingyu Deng) #38927
[69fa9e16e9] - (SEMVER-MINOR) child_process: allow options.cwd receive a URL (Khaidi Chu) #38862
[cf9d686c35] - crypto: fix aes crash when tag length too small (Khaidi Chu) #38914
[1799ea36f0] - crypto: use compatible version of EVP_CIPHER_name (Shelley Vohr) #38925
[6d5dc63ae4] - crypto: fix label cast in EVP_PKEY_CTX_set0_rsa_oaep_label (Shelley Vohr) #38926
[6e93c17bf5] - crypto: use EVP_get_cipherbynid directly (Shelley Vohr) #38901
[82c293959e] - crypto: add missing rand.h include (Shelley Vohr) #38864
[e4f802de9a] - debugger: rename internal library for clarity (Rich Trott) #39080
[1e8bdab581] - debugger: use ERR_DEBUGGER_STARTUP_ERROR in _inspect.js (Rich Trott) #39024
[b43cb69fbb] - debugger: use error codes in debugger REPL (Rich Trott) #39024
[dc9218136b] - debugger: use ERR_DEBUGGER_ERROR in debugger client (Rich Trott) #39024
[711916a271] - debugger: remove unnecessary boilerplate copyright comment (Rich Trott) #38952
[0f65e41442] - debugger: reduce scope of eslint disable comment (Rich Trott) #38946
[1fa724ec5a] - deps: upgrade npm to 7.18.1 (npm-robot) #39065
[c6aa68598d] - deps: upgrade npm to 7.17.0 (npm-robot) #38999
[864fe9910b] - deps: make V8 9.1 abi-compatible with 9.0 (Michaël Zasso) #38991
[c93f3573eb] - deps: V8: cherry-pick fa4cb172cde2 (Michaël Zasso) #38273
[3c6c28b0a1] - deps: V8: cherry-pick 4c074516397b (Michaël Zasso) #38273
[3c37396d5c] - deps: V8: cherry-pick 5f4413194480 (Michaël Zasso) #38273
[3433559a55] - deps: V8: cherry-pick 272445f10927 (Michaël Zasso) #38273
[f56c78574e] - deps: V8: cherry-pick c0fceaa0669b (Michaël Zasso) #38273
[7197fcec93] - deps: V8: cherry-pick d59db06bf542 (Michaël Zasso) #38273
[bf7aa9fef8] - deps: silence irrelevant V8 warnings (Michaël Zasso) #37587
[eac377bc15] - deps: V8: backport aaacffa1e003 (Michaël Zasso) #38273
[1a7c8a12c1] - deps: fix V8 build issue with inline methods (Jiawen Geng) #35415
[3c9a75522b] - deps: make v8.h compatible with VS2015 (Joao Reis) #32116
[8ed258339a] - deps: V8: forward declaration of Rtl*FunctionTable (Refael Ackermann) #32116
[4ef37c83a9] - deps: V8: patch register-arm64.h (Refael Ackermann) #32116
[7c61c6ee25] - deps: V8: un-cherry-pick bd019bd (Refael Ackermann) #32116
[e82ef4148e] - (SEMVER-MINOR) deps: update V8 to 9.1.269.36 (Michaël Zasso) #38273
[70af146745] - deps: upgrade npm to 7.16.0 (npm-robot) #38920
[a71df7630e] - (SEMVER-MINOR) dns: allow --dns-result-order to change default dns verbatim (Ouyang Yadong) #38099
[dce256b210] - doc: remove references to deleted freenode channels (devsnek) #39047
[1afff98805] - doc: fix typos (bl-ue) #39049
[858f66e691] - doc: add missing parameter types (Voltrex) #39013
[ed91379186] - doc: clearify that http does chunked encoding itself (Mao Wtm) #28379
[51561f390a] - doc: add missing changelog links (Antoine du Hamel) #39016
[a19170eb9d] - doc: clarify that only one Python version is required to build (bl-ue) #38894
[7b219992e0] - doc: fix markup for aesImportParams (Tobias Nießen) #38898
[405b50cdba] - doc: use await in filehandle.truncate() snippet (RA80533) #38939
[5218fe86d1] - doc: fixed typo in process.md (Derevianchenko Maksym) #38941
[f903ad85f2] - doc: add missing semis after classes (Darshan Sen) #38931
[0bdeeda3b5] - doc: update write callback documentation (Simone Busoli) #38959
[7a7c0588ad] - doc: mark util.inherits as legacy (Voltrex) #38896
[f6964dc506] - doc: clarify when readable._read(...) is called (Shaun Keys) #38726
[3481b02e77] - doc: mark Node.js v15.x as EOL (Antoine du Hamel) #38891
[17a9846920] - doc: fix .mjs syntax in crypto.md (himself65) #38882
[8c7b2bab5f] - doc,fs: remove experimental status for WHATWG URL as path (Antoine du Hamel) #38870
[eddde6c31a] - errors: don’t rekey on primitive type (Benjamin Coe) #39025
[3d7892ef39] - errors: add ERR_DEBUGGER_STARTUP_ERROR (Rich Trott) #39024
[631856ea32] - errors: add ERR_DEBUGGER_ERROR (Rich Trott) #39024
[336571fbdd] - Revert “http: make HEAD method to work with keep-alive” (Michaël Zasso) #38949
[c2b4fbba0f] - lib: remove semicolon in preparation for babel/eslint-parser update (Rich Trott) #39094
[f17dde81f3] - lib: make internal/options lazy (Joyee Cheung) #38993
[551430514b] - lib: add JSDoc typings for child_process (Voltrex) #38222
[ded83350a0] - lib: make primordials Promise methods safe (Antoine du Hamel) #38650
[637c1fa83c] - lib: refactor debuglog init (Antoine du Hamel) #38838
[5b5e07a2cc] - meta: update label-pr-config (Michaël Zasso) #38950
[92ed1c6cce] - module: fix legacy node specifier resolution to resolve "main" field (Antoine du Hamel) #38979
[4174f139b6] - net: use missing validator (Voltrex) #38984
[f7724ab342] - node-api: avoid crashing on passed-in null string (Gabriel Schulhof) #38923
[ec3e5b4c15] - node-api: avoid SecondPassCallback crash (Michael Dawson) #38899
[74f5e30d69] - node-api: rtn pending excep on napi_new_instance (legendecas) #38798
[4c6193fea1] - report: generates report on threads with no isolates (legendecas) #38994
[3c7a7d9ee4] - (SEMVER-MINOR) src: allow to negate boolean CLI flags (Michaël Zasso) #39023
[284d9c6228] - src: cleanup uv_fs_t regardless of success or not (legendecas) #38996
[902bb858d7] - src: refactor to use locale functions (Darshan Sen) #39014
[10370c5e8a] - src: fix multiple AddLinkedBinding() calls (Anna Henningsen) #39012
[ff8313c3a5] - src: throw error in LoadBuiltinModuleSource when reading fails (Joyee Cheung) #38904
[9ba5518f08] - src: skip test_fatal/test_threads for Debug builds (Daniel Bevenius) #38805
[06afb8df65] - (SEMVER-MINOR) src: make InitializeOncePerProcess more flexible (Shelley Vohr) #38888
[db4b192113] - src: add not-weak DCHECK to PersistentToLocal::Strong (Anna Henningsen) #38875
[08b2a4a138] - src,test: raise error for --enable-fips when no FIPS (Daniel Bevenius) #38859
[5d92c09bbf] - src,url: separate some tables out of node_url.cc (Khaidi Chu) #38988
[c20e28e1a0] - stream: fix pipeline pump (Robert Nagy) #39006
[7b026d8a72] - test: move inspector-cli tests to sequential (Rich Trott) #39079
[a53911b166] - test: improve buffer coverage (Rongjian Zhang) #38538
[5e9175f148] - test: fix name of variable in inspector-cli test (Tobias Nießen) #38869
[bd924610ec] - test: fix typo (Houssem Chebab) #39045
[d50df5dec1] - test: fix typo in test-http2-invalidheaderfield.js (Ikko Ashimine) #39021
[6111671d45] - test: adapt abort tests for new Windows code (Michaël Zasso) #38273
[1816d46cef] - test: adapt test-linux-perf to V8 changes (Michaël Zasso) #38273
[32961c4781] - test: fix V8 serdes test for V8 9.1 (Michaël Zasso) #38273
[f652284b3b] - test: remove obsolete TLS test (Rich Trott) #39001
[81bbeab3bd] - test: improve coverage of lib/events.js (Rongjian Zhang) #38582
[e82111f890] - test: http outgoing _headers setter null (ycjcl868) #38881
[1f10e84939] - test: suppress warning in test_environment.cc (Daniel Bevenius) #38868
[379b5f79a9] - tls: tweak clientCertEngine argument parsing (Shelley Vohr) #38900
[78d2e0ed8e] - tools: update babel-eslint-parser to 7.14.5 (Rich Trott) #39094
[fed641127a] - tools: update ESLint to 7.29.0 (Rich Trott) #39083
[3ae2a0be48] - tools: fix typo (Houssem Chebab) #39044
[a1d0aef60e] - tools: update doctool dependencies, migrate to ESM (Michaël Zasso) #38966
[2a292cf574] - tools: update V8 gypfiles for 9.1 (Michaël Zasso) #38273
[0c90fd8454] - tools: avoid crashing CQ when git push fails (Antoine du Hamel) #36861
[f817c2d3bb] - tools: fix typo in commit-queue.sh (bl-ue) #39000
[be5101eb32] - tools: update ESLint to 7.28.0 (Luigi Pinca) #38955
[9bf9ddb490] - tools: refactor snapshot builder (Joyee Cheung) #38902
[0706565097] - tools: bump remark-preset-lint-node to 2.3.0 (Rich Trott) #38910
[7d35fa7938] - tools: update gyp-next to v0.9.1 (Jiawen Geng) #38867
[00c20e621f] - tools,doc: forbid CJS globals in ESM code snippets (Antoine du Hamel) #38889
[99161b09f6] - url,src: simplify ipv6 logic by using uv_inet_pton (Khaidi Chu) #38842
[f40725f2a1] - vm: use missing validator (Voltrex) #38935
[f959cb3c68] - worker: do not look up context twice in PostMessage (Anna Henningsen) #38784

SHASUMS

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

7695554a71873ea2393248438508c5d73a4fc195f760a9317e33670826ab691f  node-v16.4.0-aix-ppc64.tar.gz
771469be99d6af048d9b192cd7b338c68a4604e0fcc7f8804278c91b5ad3f74f  node-v16.4.0-darwin-arm64.tar.gz
69847f02e277a5455e8ae06ccaeb6bb51672ff36aeda64c7f8a9c3dba87774e8  node-v16.4.0-darwin-arm64.tar.xz
95c81b54ea3069fcf230664d5d80b10e46f8fff5163644b7076fe48df13fc2fb  node-v16.4.0-darwin-x64.tar.gz
2fe18b643d3846c22921b88041fcac6f6f532b7c1a60fc25e984de98c2466575  node-v16.4.0-darwin-x64.tar.xz
5085d9669b5df764faf234ad6d7ed1ce6c468d9f3c7f680c7b008d5be12dc4b2  node-v16.4.0-headers.tar.gz
92d8d154af3fdc31695e29d19a1541d55205c4e4dcfafdb2e826e79a39be29b3  node-v16.4.0-headers.tar.xz
8500c9b61717eeeb6f62ed88723dc4896b1bd0a38d8a0f8f8bfcd99e4879e921  node-v16.4.0-linux-arm64.tar.gz
dd8895d727f38f5d3bcfc9e6cfeeb5e61a55ef788ca23a789f87c4e36f8a599e  node-v16.4.0-linux-arm64.tar.xz
0a40f6d679f8eccab2b9c43a385172fa0b0584246eef2c41c986fdf572206fa8  node-v16.4.0-linux-armv7l.tar.gz
f455f936e3ba97fc5150cb0e161a90cc1eeaa4d6c6b39b5c679cee792d21a5e5  node-v16.4.0-linux-armv7l.tar.xz
8b68bb6bb00af0db969e4c3c0f47bba408c71dfb3a33dd9a95336bd1f03769e8  node-v16.4.0-linux-ppc64le.tar.gz
a309bb0da47872988dfe4cab3e170856844ef1f61f62cd3c5202a096a5c5a1f5  node-v16.4.0-linux-ppc64le.tar.xz
9008300e37e088bf8abc8848208ac3fec23b4c26165c3b396c6a533e8c6b08da  node-v16.4.0-linux-s390x.tar.gz
8dd5ae54694aaea813b7d3c499b57412f625dbaebdca389a1ed7377125726324  node-v16.4.0-linux-s390x.tar.xz
6fb7bc9aece48f2d94941c586ed5d541ac29c8981bc09585fcabe9e4b87d57fa  node-v16.4.0-linux-x64.tar.gz
cb2076ea116f0132c2233ac00da306b3061cda2eacbd0fab5b1263e0c9ff0686  node-v16.4.0-linux-x64.tar.xz
14741dd37ce35dee9675ea0ed7134884db65e218e4841534229a53698c6a6484  node-v16.4.0.pkg
37e526b494a0ae53d2205421b93cc3d6fa2d9f4d8349891814a23e69d59a6d8d  node-v16.4.0.tar.gz
f91e212e0b64d5fa745b15da4b8ac504acf72fb9216bfa77d3f66ca0e178c81d  node-v16.4.0.tar.xz
19da293c890b41793516a97775e1bcfb94c62dfc0c38df3fdf830bde22c7d63c  node-v16.4.0-win-x64.7z
2232f638c4913059e3de358d54629288092cd068553deaa60b9b46d6d760abcb  node-v16.4.0-win-x64.zip
48e0a70a87c604371e67757d68008b4d5bb32c01862da9a3b3c9bdcb2a850639  node-v16.4.0-win-x86.7z
24fc12e114165d1671dc6cc8ee4e078b0795a49dc6895204510366db2f1252b0  node-v16.4.0-win-x86.zip
286223b111698ab68ea1c2bf7379e542ec47187baa00e905bdb55898eed3599a  node-v16.4.0-x64.msi
56193c89e4091c9485a1e90a39b37b17dc64ffc6983cce978265471c289f5718  node-v16.4.0-x86.msi
afede6dc68ac545d90ee46247438b63661965c7d91aee04dd4efa2cbec7970c0  win-x64/node.exe
fe0a67955d3d9078a1495d936b59c9161ca8f8dbe29e95bfbf90a04b8bf6de23  win-x64/node.lib
7f2c849dfc3c3d0e915ee7ccbccdfd7711ef20288834d26807f743758512bec3  win-x64/node_pdb.7z
9297615005e2177a4576894f9e67902604fad1153d548a7c65e3670633bf18bd  win-x64/node_pdb.zip
0b0d8a752c579838961b6ef8e4d2e7b7a9b839e7b73add30b8aa2889d3f92444  win-x86/node.exe
3a4e948add4fcb30eca711e7a76a3c16fe1f61ae7ab4eec85b80992ca96496fa  win-x86/node.lib
8e41e601620d9d3ad0a68fc29071c7edbfd84b3f13e74e070ea2f791fb9a0a8f  win-x86/node_pdb.7z
b1c72aa329f308c3a0aa5411ab18083aa384c84c33d133712fcb80d6f6b2d5d4  win-x86/node_pdb.zip
-----BEGIN PGP SIGNATURE-----
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=dlmQ
-----END PGP SIGNATURE-----