Skip to content

Update Node.js to v22.23.1#166

Open
renovate[bot] wants to merge 1 commit into
developfrom
renovate/node-22.x
Open

Update Node.js to v22.23.1#166
renovate[bot] wants to merge 1 commit into
developfrom
renovate/node-22.x

Conversation

@renovate

@renovate renovate Bot commented Mar 28, 2026

Copy link
Copy Markdown
Contributor

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package Update Change
node (source) minor 22.21.122.23.1

Release Notes

nodejs/node (node)

v22.23.1: 2026-06-23, Version 22.23.1 'Jod' (LTS), @​RafaelGSS

Compare Source

This release includes a fix for an unexpected behavior introduced
by the recent security release (22.23.0).

Commits

v22.23.0: 2026-06-18, Version 22.23.0 'Jod' (LTS), @​aduh95

Compare Source

This is a security release.

Notable Changes
  • (CVE-2026-48618) tls: normalize hostname for server identity checks (Matteo Collina) – High
  • (CVE-2026-48933) crypto: guard WebCrypto cipher output length (Filip Skokan) – High
  • (CVE-2026-48937) deps: fix integration issues with the latest nghttp2 – Medium
  • (CVE-2026-48930) dns,net: reject hostnames with embedded NUL bytes (Matteo Collina) – Medium
  • (CVE-2026-48619) http2: cap originSet size to prevent unbounded memory growth (Matteo Collina) – Medium
  • (CVE-2026-48615) lib,test: redact proxy credentials in tunnel errors (Matteo Collina) – Medium
  • (CVE-2026-48934) tls: bind reusable sessions to authenticated host (Matteo Collina) – Medium
  • (CVE-2026-48928) tls: fix case-sensitive SNI context matching (Matteo Collina) – Medium
  • (CVE-2026-48617) permission: handle process.chdir on writereport (RafaelGSS) – Low
  • (CVE-2026-48931) http: fix response queue poisoning in http.Agent (Matteo Collina) – Low
  • (CVE-2026-48935) permission: disable FileHandle utimes with permission model (RafaelGSS) – Low
Commits

v22.22.3: 2026-05-13, Version 22.22.3 'Jod' (LTS), @​marco-ippolito

Compare Source

Commits

v22.22.2

Compare Source

v22.22.1: 2026-03-05, Version 22.22.1 'Jod' (LTS)

Compare Source

Notable Changes
Commits

Note

PR body was truncated to here.


Configuration

📅 Schedule: (UTC)

  • Branch creation
    • At 12:00 AM through 04:59 AM and 10:00 PM through 11:59 PM, Monday through Friday (* 0-4,22-23 * * 1-5)
    • Only on Sunday and Saturday (* * * * 0,6)
  • Automerge
    • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate Bot added the dependencies Pull requests that update a dependency file label Mar 28, 2026
@renovate renovate Bot requested a review from jamesrwelch March 28, 2026 00:27
@renovate renovate Bot force-pushed the renovate/node-22.x branch from 18876e8 to fe16c4a Compare May 13, 2026 20:57
@renovate renovate Bot changed the title Update Node.js to v22.22.2 Update Node.js May 13, 2026
@renovate renovate Bot force-pushed the renovate/node-22.x branch from fe16c4a to 294939c Compare May 14, 2026 05:24
@renovate renovate Bot changed the title Update Node.js Update Node.js to v22.22.3 May 14, 2026
@renovate renovate Bot force-pushed the renovate/node-22.x branch 2 times, most recently from 57707f9 to 411c86c Compare June 11, 2026 19:54
@renovate renovate Bot force-pushed the renovate/node-22.x branch 2 times, most recently from a89ba3f to 2193929 Compare June 18, 2026 08:02
@renovate renovate Bot changed the title Update Node.js to v22.22.3 Update Node.js to v22.23.0 Jun 18, 2026
@renovate renovate Bot force-pushed the renovate/node-22.x branch from 2193929 to 111ffb0 Compare June 23, 2026 17:54
@renovate renovate Bot changed the title Update Node.js to v22.23.0 Update Node.js to v22.23.1 Jun 23, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Development

Successfully merging this pull request may close these issues.

0 participants