From c6b81e340c6a18dc22eb6d9529163aaa7968033b Mon Sep 17 00:00:00 2001 From: fengmk2 Date: Tue, 3 Dec 2024 15:26:56 +0800 Subject: [PATCH] feat: node.js monday, july 8, 2024 security releases (#260) see https://nodejs.org/en/blog/vulnerability/july-2024-security-releases closes https://github.com/cnpm/bug-versions/issues/252 ## Summary by CodeRabbit - **New Features** - Updated Node.js version configurations to enhance security compliance. - Added support for Node.js version `22.x`. - **Bug Fixes** - Adjusted version ranges for Node.js versions `18.x` and `20.x` to address recent security advisories. --- package.json | 16 ++++++++++------ 1 file changed, 10 insertions(+), 6 deletions(-) diff --git a/package.json b/package.json index 9796172..41be080 100644 --- a/package.json +++ b/package.json @@ -74,17 +74,21 @@ "version": "16.20.2", "reason": "https://nodejs.org/en/blog/vulnerability/august-2023-security-releases" }, - ">= 18.0.0 < 18.20.1": { - "version": "18.20.1", - "reason": "https://nodejs.org/en/blog/vulnerability/april-2024-security-releases/" + ">= 18.0.0 < 18.20.4": { + "version": "18.20.4", + "reason": "https://nodejs.org/en/blog/vulnerability/july-2024-security-releases" }, - ">= 20.0.0 < 20.12.1": { - "version": "20.12.1", - "reason": "https://nodejs.org/en/blog/vulnerability/april-2024-security-releases/" + ">= 20.0.0 < 20.15.1": { + "version": "20.15.1", + "reason": "https://nodejs.org/en/blog/vulnerability/july-2024-security-releases" }, ">= 21.0.0 < 21.7.2": { "version": "21.7.2", "reason": "https://nodejs.org/en/blog/vulnerability/april-2024-security-releases/" + }, + ">= 22.0.0 < 22.4.1": { + "version": "22.4.1", + "reason": "https://nodejs.org/en/blog/vulnerability/july-2024-security-releases" } }, "unsafe-alinode-versions": {