Skip to content

deps: upgrade npm to 8.3.0 #41127

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

deps: upgrade npm to 8.3.0 #41127

wants to merge 1 commit into from

Conversation

npm-robot
Copy link
Contributor

v8.3.0 (2021-12-09)

Features

Bug Fixes

Documentation

Dependencies

@nodejs-github-bot nodejs-github-bot added dont-land-on-v12.x fast-track PRs that do not need to wait for 48 hours to land. needs-ci PRs that need a full CI run. npm Issues and PRs related to the npm client dependency or the npm registry. labels Dec 9, 2021
@github-actions
Copy link
Contributor

github-actions bot commented Dec 9, 2021

Fast-track has been requested by @nodejs-github-bot. Please 👍 to approve.

Trott
Trott approved these changes Dec 10, 2021
View reviewed changes
Copy link
Member

@Trott Trott left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Rubber-stamp LGTM

@nodejs-github-bot
Copy link
Collaborator

CI: https://ci.nodejs.org/job/node-test-pull-request/41437/

@nodejs-github-bot
Copy link
Collaborator

CI: https://ci.nodejs.org/job/node-test-pull-request/41448/

This was referenced Dec 11, 2021
Open
Open
@lpinca lpinca added the commit-queue Add this label to land a pull request using GitHub Actions. label Dec 12, 2021
@nodejs-github-bot nodejs-github-bot removed the commit-queue Add this label to land a pull request using GitHub Actions. label Dec 12, 2021
@nodejs-github-bot
Copy link
Collaborator

Commit Queue failed
- Loading data for nodejs/node/pull/41127
✔  Done loading data for nodejs/node/pull/41127
----------------------------------- PR info ------------------------------------
Title      deps: upgrade npm to 8.3.0 (#41127)
   ⚠  Could not retrieve the email or name of the PR author's from user's GitHub profile!
Branch     npm-robot:npm-8.3.0 -> nodejs:master
Labels     npm, fast-track, needs-ci, dont-land-on-v12.x, dont-land-on-v14.x, lts-watch-v16.x
Commits    1
 - deps: upgrade npm to 8.3.0
Committers 1
 - npm team 
PR-URL: https://github.com/nodejs/node/pull/41127
Fixes: https://github.com/dont
Fixes: https://github.com/redact
Reviewed-By: Rich Trott 
Reviewed-By: Luigi Pinca 
Reviewed-By: Colin Ihrig 
------------------------------ Generated metadata ------------------------------
PR-URL: https://github.com/nodejs/node/pull/41127
Fixes: https://github.com/dont
Fixes: https://github.com/redact
Reviewed-By: Rich Trott 
Reviewed-By: Luigi Pinca 
Reviewed-By: Colin Ihrig 
--------------------------------------------------------------------------------
   ℹ  This PR was created on Thu, 09 Dec 2021 21:20:23 GMT
   ✔  Approvals: 3
   ✔  - Rich Trott (@Trott) (TSC): https://github.com/nodejs/node/pull/41127#pullrequestreview-828411592
   ✔  - Luigi Pinca (@lpinca): https://github.com/nodejs/node/pull/41127#pullrequestreview-828546185
   ✔  - Colin Ihrig (@cjihrig) (TSC): https://github.com/nodejs/node/pull/41127#pullrequestreview-828931674
   ℹ  This PR is being fast-tracked
   ✔  Last GitHub Actions successful
   ℹ  Last Full PR CI on 2021-12-10T14:52:57Z: https://ci.nodejs.org/job/node-test-pull-request/41448/
- Querying data for job/node-test-pull-request/41448/
   ✔  Last Jenkins CI successful
--------------------------------------------------------------------------------
   ✔  No git cherry-pick in progress
   ✔  No git am in progress
   ✔  No git rebase in progress
--------------------------------------------------------------------------------
- Bringing origin/master up to date...
From https://github.com/nodejs/node
 * branch                  master     -> FETCH_HEAD
✔  origin/master is now up-to-date
- Downloading patch for 41127
From https://github.com/nodejs/node
 * branch                  refs/pull/41127/merge -> FETCH_HEAD
✔  Fetched commits as 12e3c74e2edf..62e842784398
--------------------------------------------------------------------------------
[master d2e7d10030] deps: upgrade npm to 8.3.0
 Author: npm team 
 Date: Thu Dec 9 21:20:18 2021 +0000
 39 files changed, 1077 insertions(+), 109 deletions(-)
 create mode 100644 deps/npm/node_modules/@npmcli/arborist/lib/override-set.js
 create mode 100644 deps/npm/node_modules/just-diff-apply/index.mjs
 create mode 100644 deps/npm/node_modules/just-diff-apply/rollup.config.js
 create mode 100644 deps/npm/node_modules/just-diff/index.mjs
 create mode 100644 deps/npm/node_modules/just-diff/rollup.config.js
 delete mode 100644 deps/npm/node_modules/parse-conflict-json/LICENSE
 create mode 100644 deps/npm/node_modules/parse-conflict-json/LICENSE.md
 rename deps/npm/node_modules/parse-conflict-json/{ => lib}/index.js (74%)
   ✔  Patches applied
--------------------------------------------------------------------------------
--------------------------------- New Message ----------------------------------
deps: upgrade npm to 8.3.0

PR-URL: #41127

Fixes: https://github.com/dont

Fixes: https://github.com/redact

Reviewed-By: Rich Trott [email protected]

Reviewed-By: Luigi Pinca [email protected]

Reviewed-By: Colin Ihrig [email protected]


[master ceec196fe2] deps: upgrade npm to 8.3.0

Author: npm team [email protected]

Date: Thu Dec 9 21:20:18 2021 +0000

39 files changed, 1077 insertions(+), 109 deletions(-)

create mode 100644 deps/npm/node_modules/@npmcli/arborist/lib/override-set.js

create mode 100644 deps/npm/node_modules/just-diff-apply/index.mjs

create mode 100644 deps/npm/node_modules/just-diff-apply/rollup.config.js

create mode 100644 deps/npm/node_modules/just-diff/index.mjs

create mode 100644 deps/npm/node_modules/just-diff/rollup.config.js

delete mode 100644 deps/npm/node_modules/parse-conflict-json/LICENSE

create mode 100644 deps/npm/node_modules/parse-conflict-json/LICENSE.md

rename deps/npm/node_modules/parse-conflict-json/{ => lib}/index.js (74%)

✖  ceec196fe284e11b5f6870f56099d94d9f0bd1b3

✖  2:7      Fixes must be a GitHub URL.               fixes-url

✖  3:7      Fixes must be a GitHub URL.               fixes-url

✔  0:0      blank line after title                    line-after-title

✔  0:0      line-lengths are valid                    line-length

✔  0:0      metadata is at end of message             metadata-end

✔  1:8      PR-URL is valid.                          pr-url

✔  0:0      reviewers are valid                       reviewers

✔  0:0      valid subsystems                          subsystem

✔  0:0      Title is formatted correctly.             title-format

✔  0:0      Title is <= 50 columns.                   title-length

ℹ  Please fix the commit message and try again.
https://github.com/nodejs/node/actions/runs/1570236431

@nodejs-github-bot nodejs-github-bot added the commit-queue-failed An error occurred while landing this pull request using GitHub Actions. label Dec 12, 2021
lpinca pushed a commit that referenced this pull request Dec 12, 2021
@npm-robot @lpinca
deps: upgrade npm to 8.3.0
0f5aedb 
PR-URL: #41127
Reviewed-By: Rich Trott <[email protected]>
Reviewed-By: Luigi Pinca <[email protected]>
Reviewed-By: Colin Ihrig <[email protected]>
@lpinca
Copy link
Member

lpinca commented Dec 12, 2021

Landed in 0f5aedb.

@lpinca lpinca closed this Dec 12, 2021
@github-actions github-actions bot mentioned this pull request Dec 13, 2021
Open
46 tasks
danielleadams pushed a commit that referenced this pull request Dec 13, 2021
@npm-robot @danielleadams
deps: upgrade npm to 8.3.0
2f52286 
PR-URL: #41127
Reviewed-By: Rich Trott <[email protected]>
Reviewed-By: Luigi Pinca <[email protected]>
Reviewed-By: Colin Ihrig <[email protected]>
@github-actions github-actions bot mentioned this pull request Dec 14, 2021
Open
46 tasks
danielleadams pushed a commit that referenced this pull request Dec 14, 2021
@npm-robot @danielleadams
deps: upgrade npm to 8.3.0
fae4945 
PR-URL: #41127
Reviewed-By: Rich Trott <[email protected]>
Reviewed-By: Luigi Pinca <[email protected]>
Reviewed-By: Colin Ihrig <[email protected]>
danielleadams added a commit that referenced this pull request Dec 14, 2021
@danielleadams
2021-12-14, Version 17.3.0 (Current)
d57689f 
Notable changes:

* lib:
  * make AbortSignal cloneable/transferable (James M Snell) #41050
* deps:
  * upgrade npm to 8.3.0 (npm team) #41127
* doc:
  * add @bnb as a collaborator (Tierney Cyren) #41100
* timers:
  * add experimental scheduler api (James M Snell) #40909
@danielleadams danielleadams mentioned this pull request Dec 14, 2021
Merged
danielleadams added a commit that referenced this pull request Dec 14, 2021
@danielleadams
2021-12-14, Version 17.3.0 (Current)
d2ad941 
Notable changes:

* lib:
  * make AbortSignal cloneable/transferable (James M Snell) #41050
* deps:
  * upgrade npm to 8.3.0 (npm team) #41127
* doc:
  * add @bnb as a collaborator (Tierney Cyren) #41100
* timers:
  * add experimental scheduler api (James M Snell) #40909

PR-URL: #41167
danielleadams added a commit that referenced this pull request Dec 14, 2021
@danielleadams
2021-12-14, Version 17.3.0 (Current)
99c57db 
Notable changes:

* lib:
  * make AbortSignal cloneable/transferable (James M Snell) #41050
* deps:
  * upgrade npm to 8.3.0 (npm team) #41127
* doc:
  * add @bnb as a collaborator (Tierney Cyren) #41100
* timers:
  * add experimental scheduler api (James M Snell) #40909

PR-URL: #41167
This was referenced Dec 15, 2021
Open
Open
danielleadams added a commit that referenced this pull request Dec 16, 2021
@danielleadams
2021-12-16, Version 17.3.0 (Current)
384b0ce 
OpenSSL-3.0.1:

OpenSSL-3.0.1 contains a fix for CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors in libssl (Moderate). This is a vulnerability in OpenSSL that may be exploited through Node.js. More information can be read here: https://www.openssl.org/news/secadv/20211214.txt.

Contributed by Richarad Lau #41177

Other Notable Changes:

* lib:
  * make AbortSignal cloneable/transferable (James M Snell) #41050
* deps:
  * upgrade npm to 8.3.0 (npm team) #41127
* doc:
  * add @bnb as a collaborator (Tierney Cyren) #41100
* process:
  * add `getActiveResourcesInfo()` (Darshan Sen) #40813
* timers:
  * add experimental scheduler api (James M Snell) #40909

PR-URL: #41167
danielleadams added a commit that referenced this pull request Dec 16, 2021
@danielleadams
2021-12-16, Version 17.3.0 (Current)
dd651c0 
OpenSSL-3.0.1:

OpenSSL-3.0.1 contains a fix for CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors in libssl (Moderate). This is a vulnerability in OpenSSL that may be exploited through Node.js. More information can be read here: https://www.openssl.org/news/secadv/20211214.txt.

Contributed by Richard Lau #41177

Other Notable Changes:

* lib:
  * make AbortSignal cloneable/transferable (James M Snell) #41050
* deps:
  * upgrade npm to 8.3.0 (npm team) #41127
* doc:
  * add @bnb as a collaborator (Tierney Cyren) #41100
* process:
  * add `getActiveResourcesInfo()` (Darshan Sen) #40813
* timers:
  * add experimental scheduler api (James M Snell) #40909

PR-URL: #41167
danielleadams added a commit that referenced this pull request Dec 16, 2021
@danielleadams
2021-12-16, Version 17.3.0 (Current)
6daa15f 
OpenSSL-3.0.1:

OpenSSL-3.0.1 contains a fix for CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors in libssl (Moderate). This is a vulnerability in OpenSSL that may be exploited through Node.js. More information can be read here: https://www.openssl.org/news/secadv/20211214.txt.

Contributed by Richard Lau #41177

Other Notable Changes:

* lib:
  * make AbortSignal cloneable/transferable (James M Snell) #41050
* deps:
  * upgrade npm to 8.3.0 (npm team) #41127
* doc:
  * add @bnb as a collaborator (Tierney Cyren) #41100
* process:
  * add `getActiveResourcesInfo()` (Darshan Sen) #40813
* timers:
  * add experimental scheduler api (James M Snell) #40909

PR-URL: #41167
@github-actions github-actions bot mentioned this pull request Dec 17, 2021
Open
22 tasks
danielleadams added a commit that referenced this pull request Dec 17, 2021
@danielleadams
2021-12-17, Version 17.3.0 (Current)
e5873d7 
OpenSSL-3.0.1:

OpenSSL-3.0.1 contains a fix for CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors
in libssl (Moderate). This is a vulnerability in OpenSSL that may be exploited through Node.js.
More information can be read here: https://www.openssl.org/news/secadv/20211214.txt.

Contributed by Richard Lau #41177

Other Notable Changes:

* lib:
    * make AbortSignal cloneable/transferable (James M Snell) #41050
* deps:
    * upgrade npm to 8.3.0 (npm team) #41127
* doc:
    * add @bnb as a collaborator (Tierney Cyren) #41100
* process:
    * add `getActiveResourcesInfo()` (Darshan Sen) #40813
* timers:
    * add experimental scheduler api (James M Snell) #40909

PR-URL: #41167
danielleadams added a commit that referenced this pull request Dec 17, 2021
@danielleadams
2021-12-17, Version 17.3.0 (Current)
aeb9c0e 
OpenSSL-3.0.1:

OpenSSL-3.0.1 contains a fix for CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors
in libssl (Moderate). This is a vulnerability in OpenSSL that may be exploited through Node.js.
More information can be read here: https://www.openssl.org/news/secadv/20211214.txt.

Contributed by Richard Lau #41177

Other Notable Changes:

* lib:
    * make AbortSignal cloneable/transferable (James M Snell) #41050
* deps:
    * upgrade npm to 8.3.0 (npm team) #41127
* doc:
    * add @bnb as a collaborator (Tierney Cyren) #41100
* process:
    * add `getActiveResourcesInfo()` (Darshan Sen) #40813
* timers:
    * add experimental scheduler api (James M Snell) #40909

PR-URL: #41167
@github-actions github-actions bot mentioned this pull request Dec 18, 2021
Open
24 tasks
cornbread78
cornbread78 approved these changes Dec 25, 2021
View reviewed changes
Copy link

@cornbread78 cornbread78 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Cornbread78 or Christopher Allen Corbett

danielleadams pushed a commit that referenced this pull request Jan 31, 2022
@npm-robot @danielleadams
deps: upgrade npm to 8.3.0
49ccbf3 
PR-URL: #41127
Reviewed-By: Rich Trott <[email protected]>
Reviewed-By: Luigi Pinca <[email protected]>
Reviewed-By: Colin Ihrig <[email protected]>
danielleadams pushed a commit that referenced this pull request Jan 31, 2022
@npm-robot @danielleadams
deps: upgrade npm to 8.3.0
30162ea 
PR-URL: #41127
Reviewed-By: Rich Trott <[email protected]>
Reviewed-By: Luigi Pinca <[email protected]>
Reviewed-By: Colin Ihrig <[email protected]>
Linkgoron pushed a commit to Linkgoron/node that referenced this pull request Jan 31, 2022
@npm-robot @Linkgoron
deps: upgrade npm to 8.3.0
1535161 
PR-URL: nodejs#41127
Reviewed-By: Rich Trott <[email protected]>
Reviewed-By: Luigi Pinca <[email protected]>
Reviewed-By: Colin Ihrig <[email protected]>
Linkgoron pushed a commit to Linkgoron/node that referenced this pull request Jan 31, 2022
@danielleadams @Linkgoron
2021-12-17, Version 17.3.0 (Current)
b7bb184 
OpenSSL-3.0.1:

OpenSSL-3.0.1 contains a fix for CVE-2021-4044: Invalid handling of X509_verify_cert() internal errors
in libssl (Moderate). This is a vulnerability in OpenSSL that may be exploited through Node.js.
More information can be read here: https://www.openssl.org/news/secadv/20211214.txt.

Contributed by Richard Lau nodejs#41177

Other Notable Changes:

* lib:
    * make AbortSignal cloneable/transferable (James M Snell) nodejs#41050
* deps:
    * upgrade npm to 8.3.0 (npm team) nodejs#41127
* doc:
    * add @bnb as a collaborator (Tierney Cyren) nodejs#41100
* process:
    * add `getActiveResourcesInfo()` (Darshan Sen) nodejs#40813
* timers:
    * add experimental scheduler api (James M Snell) nodejs#40909

PR-URL: nodejs#41167
danielleadams pushed a commit that referenced this pull request Feb 1, 2022
@npm-robot @danielleadams
deps: upgrade npm to 8.3.0
875fa40 
PR-URL: #41127
Reviewed-By: Rich Trott <[email protected]>
Reviewed-By: Luigi Pinca <[email protected]>
Reviewed-By: Colin Ihrig <[email protected]>
@danielleadams danielleadams mentioned this pull request Feb 1, 2022
Merged
@wraithgar wraithgar deleted the npm-8.3.0 branch June 26, 2025 15:43
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@Trott Trott Trott approved these changes

@lpinca lpinca lpinca approved these changes

@cjihrig cjihrig cjihrig approved these changes

+1 more reviewer

@cornbread78 cornbread78 cornbread78 approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

commit-queue-failed An error occurred while landing this pull request using GitHub Actions. fast-track PRs that do not need to wait for 48 hours to land. needs-ci PRs that need a full CI run. npm Issues and PRs related to the npm client dependency or the npm registry.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

7 participants

@npm-robot @nodejs-github-bot @lpinca @Trott @cjihrig @cornbread78 @targos