Skip to content

Update Node version to 20.19.2 for agent - AB#2291189 #5256

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 2, 2025
Merged

Update Node version to 20.19.2 for agent - AB#2291189 #5256

merged 1 commit into from
Jul 2, 2025

Conversation

dassayantan24
Copy link
Contributor

@dassayantan24 dassayantan24 commented Jun 26, 2025
edited
Loading

Context

Update the Node version to resolve vulnerability in Node.js process
Work Item - https://dev.azure.com/mseng/AzureDevOps/_workitems/edit/2291189/

Description

Updated the Node version from 20.18.2 to 20.19.2 for the agent to resolve vulnerability CVE-2025-23166

The latest Node v20.19.2 version has changes as follows - https://nodejs.org/en/blog/release/v20.19.2/

Risk Assessment (Medium)

Updates the main Node20 dependency

Unit Tests Added or Updated (No)

Additional Testing Performed

  • Manually verified the binary upgrade by checking externals/node20_1/bin.
  • Ran all L0 tests locally.
  • Built a self-hosted Windows agent and tested with over 15 tasks, including Bash@3, PublishBuildArtifacts@1, DownloadPipelineArtifact@2, UseDotNet@2, and DotNetCoreCLI@2 etc

@dassayantan24 dassayantan24 self-assigned this Jun 26, 2025
@dassayantan24 dassayantan24 requested review from a team as code owners June 26, 2025 07:51
@dassayantan24
Copy link
Contributor Author

/azp run

@azure-pipelines Azure Pipelines
Copy link

Azure Pipelines successfully started running 1 pipeline(s).

@dassayantan24
Copy link
Contributor Author

/azp run

@azure-pipelines Azure Pipelines
Copy link

Azure Pipelines successfully started running 1 pipeline(s).

@dassayantan24
Copy link
Contributor Author

/azp run

@azure-pipelines Azure Pipelines
Copy link

Azure Pipelines successfully started running 1 pipeline(s).

@dassayantan24 dassayantan24 merged commit ebb2558 into master Jul 2, 2025
22 of 23 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@tarunramsinghani tarunramsinghani tarunramsinghani approved these changes

@sanjuyadav24 sanjuyadav24 sanjuyadav24 approved these changes

Assignees

@dassayantan24 dassayantan24

Labels
enhancement
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@dassayantan24 @tarunramsinghani @sanjuyadav24