Notable Changes This is a security release. Vulnerabilities fixed: CVE-2020-8251: Denial of Service by resource exhaustion CWE-400 due to unfinished HTTP/1.1 requests (Critical). CVE-2020-8201: HTTP Request Smuggling due to CR-to-Hyphen conversion (High). Commits [dd828376a0] - deps: update llhttp to 2.1.2 (Fedor Indutny) nodejs-private/node-private#215 [753f3b247a] - http: add requestTimeout (Mat

Notable Changes Deprecations (SEMVER-MAJOR) crypto: move pbkdf2 without digest to EOL (James M Snell) #31166 (SEMVER-MAJOR) fs: deprecate closing FileHandle on garbage collection (James M Snell) #28396 (SEMVER-MAJOR) http: move OutboundMessage.prototype.flush to EOL (James M Snell) #31164 (SEMVER-MAJOR) lib: move GLOBAL and root aliases to EOL (James M Snell) #31167 (SEMVER-MAJOR) os: move tmpDir(

Notable Changes addons: Deprecate one- and two-argument AtExit(). Use the three-argument variant of AtExit() or AddEnvironmentCleanupHook() instead (Anna Henningsen) #30227 child_process,cluster: The serialization option is added that allows child process IPC to use the V8 serialization API (to e.g., pass through data types like sets or maps) (Anna Henningsen) #30162 deps: Update V8 to 7.9 Update

العربية Catalan Deutsch English Español زبان فارسی Français Galego Italiano 日本語 ქართული 한국어 Nederlands Português do Brasil limba română Русский Türkçe Українська 简体中文 繁體中文 This release marks the transition of Node.js 12.x into Long Term Support (LTS) with the codename 'Erbium'. The 12.x release line now moves into "Active LTS" and will remain so until October 2020. After that time, it will move in

Notable changes crypto: Add oaepLabel option #29489 deps: Update V8 to 7.7.299.11 #28918 More efficient memory handling Stack trace serialization got faster The Intl.NumberFormat API gained new functionality For more information: https://v8.dev/blog/v8-release-77 events: Add support for EventTarget in once #29498 fs: Expose memory file mapping flag UV_FS_O_FILEMAP #29260 inspector: New API - Sessi

Notable changes deps: Update npm to 6.10.3 (isaacs) #29023 fs: Add recursive option to rmdir() (cjihrig) #29168 Allow passing true to emitClose option (Giorgos Ntemiris) #29212 Add *timeNs properties to BigInt Stats objects (Joyee Cheung) #21387 net: Allow reading data into a static buffer (Brian White) #25436 Commits [293c9f0d75] - bootstrap: run preload prior to frozen-intrinsics (Bradley Farias

Notable Changes assert: validate required arguments (Ruben Bridgewater) #26641 adjust loose assertions (Ruben Bridgewater) #25008 async_hooks: remove deprecated emitBefore and emitAfter (Matteo Collina) #26530 remove promise object from resource (Andreas Madsen) #23443 bootstrap: make Buffer and process non-enumerable (Ruben Bridgewater) #24874 buffer: use stricter range checks (Ruben Bridgewater)

Node.js 11.0.0 is here! This is the newest Node.js Current Release line with a focus primarily on improving internals, performance, and an update to V8 7.0. Notable Changes Build FreeBSD 10 is no longer supported. #22617 child_process The default value of the windowsHide option has been changed to true. #21316 console console.countReset() will emit a warning if the timer being reset does not exist

A New LTS Release Line Node.js 8.x is now in LTS! Node v8.9.0 marks the transition of Node v8.x into Long Term Support (LTS), with the codename "Carbon". The v8.x line now moves into "Active LTS", and will remain so until April 2019, at which point it will move into "Maintenance LTS" until December 2019. For more info see the Release Schedule. Notable Changes between 6.x (Boron) and 8.x (Carbon) F

Notable changes HTTP2 Experimental support for the built-in http2 has been added via the --expose-http2 flag. #14239 Inspector require() is available in the inspector console now. #8837 Multiple contexts, as created by the vm module, are supported now. #14465 N-API New APIs for creating number values have been introduced. #14573 Stream For Duplex streams, the high water mark option can now be set

Notable changes Thank you to @addaleax for preparing the majority of this release. V8 6.0 The V8 engine has been upgraded to version 6.0, which has a significantly changed performance profile. #14574 More detailed information on performance differences can be found at https://medium.com/the-node-js-collection/get-ready-a-new-v8-is-coming-node-js-performance-is-changing-46a63d6da4de Other notable c

Notable changes deps: update V8 to 5.5 (Michaël Zasso) #11029 upgrade libuv to 1.11.0 (cjihrig) #11094 add node-inspect 1.10.4 (Jan Krems) #10187 upgrade zlib to 1.2.11 (Sam Roberts) #10980 lib: build node inspect into node (Anna Henningsen) #10187 crypto: Remove expired certs from CNNIC whitelist (Shigeki Ohtsu) #9469 inspector: add --inspect-brk (Josh Gavant) #11149 fs: allow WHATWG URL objects

Node.js - Quality with Speed One of the key tenets of the Node.js community is to allow change at a rapid pace in order to foster innovation and to allow Node.js to be used in a growing number of use cases. At the same time the community values quality. Newer versions of the runtime must be as good or better than earlier versions and must not un-intentionally break existing applications. Instead o

Notable changes crypto: ability to select cert store at runtime (Adam Majer) #8334 Use system CAs instead of using bundled ones (Adam Majer) #8334 deps: upgrade npm to 4.1.2 (Kat Marchán) #11020 upgrade openssl sources to 1.0.2k (Shigeki Ohtsu) #11021 doc: add basic documentation for WHATWG URL API (James M Snell) #10620 process: add NODE_NO_WARNINGS environment variable (cjihrig) #10842 url: allo

Notable changes buffer: Improve performance of Buffer allocation by ~11%. (Brian White) #10443 Improve performance of Buffer.from() by ~50%. (Brian White) #10443 events: Improve performance of EventEmitter.once() by ~27%. (Brian White) #10445 fs: Allow passing Uint8Array to fs methods where Buffers are supported. (Anna Henningsen) #10382 http: Improve performance of http server by ~7%. (Brian Whit

Notable changes buffer: Reverted the runtime deprecation of calling Buffer() without new. (Anna Henningsen) #9529 Fixed buffer.transcode() for single-byte character encodings to UCS2. (Anna Henningsen) #9838 promise: --trace-warnings now produces useful stacktraces for Promise warnings. (Anna Henningsen) #9525 repl: Fixed a bug preventing correct parsing of generator functions. (Teddy Katz) #9852