2018-03-29, Version 9.10.1 (Current), @MylesBorins

Notable Changes

No additional commits.

Due to incorrect staging of the upgrade to the GCC 4.9.X compiler, the latest releases for PPC little
endian were built using GCC 4.9.X instead of GCC 4.8.X. This caused an ABI breakage on PPCLE based
environments. This has been fixed in our infrastructure and we are doing this release to ensure that
the hosted binaries are adhering to our platform support contract.

Note that Node.js versions 10.X and later will be built with version 4.9.X or later of the GCC compiler,
and it is possible that Node.js version 9.X may be built on the 4.9.X compiler at a later
time as the stated minimum compiler requirement
for Node.js version 9.X is 4.9.4.

2018-03-29, Version 8.11.1 'Carbon' (LTS), @MylesBorins

Notable Changes

No additional commits.

Due to incorrect staging of the upgrade to the GCC 4.9.X compiler, the latest releases for PPC little
endian were built using GCC 4.9.X instead of GCC 4.8.X. This caused an ABI breakage on PPCLE based
environments. This has been fixed in our infrastructure and we are doing this release to ensure that
the hosted binaries are adhering to our platform support contract.

Note that Node.js versions 10.X and later will be built with version 4.9.X or later of the GCC compiler,
and it is possible that Node.js version 8.X may be built on the 4.9.X compiler at a later
time as the stated minimum compiler requirement
for Node.js version 8.X is 4.9.4.

2018-03-29, Version 6.14.1 'Boron' (LTS), @MylesBorins

Notable Changes

No additional commits.

Due to incorrect staging of the upgrade to the GCC 4.9.X compiler, the latest releases for PPC little
endian were built using GCC 4.9.X instead of GCC 4.8.X. This caused an ABI breakage on PPCLE based
environments. This has been fixed in our infrastructure and we are doing this release to ensure that
the hosted binaries are adhering to our platform support contract.

2018-03-29, Version 4.9.1 'Argon' (Maintenance), @MylesBorins

Notable Changes

No additional commits.

Due to incorrect staging of the upgrade to the GCC 4.9.X compiler, the latest releases for PPC little
endian were built using GCC 4.9.X instead of GCC 4.8.X. This caused an ABI breakage on PPCLE based
environments. This has been fixed in our infrastructure and we are doing this release to ensure that
the hosted binaries are adhering to our platform support contract.

2018-03-28, Version 9.10.0 (Current), @MylesBorins prepared by @targos

This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/march-2018-security-releases/ for details on patched vulnerabilities.

Fixes for the following CVEs are included in this release:

• CVE-2018-7158
• CVE-2018-7159
• CVE-2018-7160

Notable Changes

• Upgrade to OpenSSL 1.0.2o: Does not contain any security fixes that are known to impact Node.js.

• Fix for inspector DNS rebinding vulnerability (CVE-2018-7160): A malicious website could use a DNS rebinding attack to trick a web browser to bypass same-origin-policy checks and allow HTTP connections to localhost or to hosts on the local network, potentially to an open inspector port as a debugger, therefore gaining full code execution access. The inspector now only allows connections that have a browser Host value of localhost or localhost6.

• Fix for 'path' module regular expression denial of service (CVE-2018-7158): A regular expression used for parsing POSIX paths could be used to cause a denial of service if an attacker were able to have a specially crafted path string passed through one of the impacted 'path' module functions.

• Reject spaces in HTTP Content-Length header values (CVE-2018-7159): The Node.js HTTP parser allowed for spaces inside Content-Length header values. Such values now lead to rejected connections in the same way as non-numeric values.

• Update root certificates: 5 additional root certificates have been added to the Node.js binary and 30 have been removed.

• cluster:

  • Add support for NODE_OPTIONS="--inspect" (Sameer Srivastava) #19165

• crypto:

  • Expose the public key of a certificate (Hannes Magnusson) #17690

• n-api:

  • Add napi_fatal_exception to trigger an uncaughtException in JavaScript (Mathias Buus) #19337

• path:

  • Fix regression in posix.normalize (Michaël Zasso) #19520

• stream:

  • Improve stream creation performance (Brian White) #19401

• Added new collaborators

  • BethGriggs Beth Griggs

Commits

• [926214aefe] - cluster: add support for NODE_OPTIONS="--inspect" (Sameer Srivastava) #19165
• [6ead99aa73] - console: don't swallow call stack exceeded errors (Dan Kaplun) #19423
• [02671dc12b] - crypto: update root certificates (Ben Noordhuis) #19322
• [fd8c79ddfc] - (SEMVER-MINOR) crypto: add docs & tests for cert.pubkey & cert.fingerprint256 (Hannes Magnusson) #17690
• [23312675cb] - (SEMVER-MINOR) crypto: provide full cert details to checkServerIdentity (Hannes Magnusson) #17690
• [26e2938a50] - (SEMVER-MINOR) crypto: add cert.pubkey containing the raw pubkey of certificate (Hannes Magnusson) #17690
• [f5d9324315] - deps: add -no_rand_screen to openssl s_client (Shigeki Ohtsu) nodejs/io.js#1836
• [f5eb182b50] - deps: fix asm build error of openssl in x86_win32 (Shigeki Ohtsu) iojs/io.js#1389
• [ddcb3fc886] - deps: fix openssl assembly error on ia32 win32 (Fedor Indutny) iojs/io.js#1389
• [d908169bad] - deps: copy all openssl header files to include dir (Shigeki Ohtsu) #19638
• [0cd883fe09] - deps: upgrade openssl sources to 1.0.2o (Shigeki Ohtsu) #19638
• [c39167dc26] - deps: reject interior blanks in Content-Length (Ben Noordhuis) nodejs-private/http-parser-private#1
• [3bc15a69ae] - deps: upgrade http-parser to v2.8.0 (Ben Noordhuis) nodejs-private/http-parser-private#1
• [6591d9f761] - deps: cherry-pick 0c35b72 from upstream V8 (Gus Caplan) #18038
• [e533911696] - doc: remove use of "random port" re dgram send (Thomas Hunter II) #19620
• [3894981af2] - doc: improve assert legacy text (Rich Trott) #19622
• [8191ada9ae] - doc: improve Buffer() text (Rich Trott) #19567
• [2fadc9ef68] - doc: fix run-on sentence in buffer.md (Rich Trott) #19567
• [962c5816a2] - doc: change v-notation for version in buffer.md (Rich Trott) #19567
• [5a2f336994] - doc: add missing fs.Stats.size section (Vse Mozhet Byt) #19583
• [8653c42a41] - doc: rename HTTP2 to HTTP/2 (Timothy Gu) #19603
• [b70ac0ab2e] - doc: remove confusing note about child process stdio (Anna Henningsen) #19552
• [5e3d971f79] - doc: add BethGriggs to collaborators (Beth Griggs) #19610
• [5e9f9297b3] - doc: document make docopen (Ayush Gupta) #19321
• [4db7848e09] - doc: remove example labels from buffer.md (Rich Trott) #19582
• [f07e820e6d] - doc: add 'v' prefix to all versions in metadata (Tobias Nießen) #19590
• [7e9b7a5683] - doc: add missing metadata for fs.open (Tobias Nießen) #19585
• [d47e5d022f] - doc: add link & simplify data event (net.Socket) (Christopher Hiller) #19487
• [43f24c0406] - doc: add directory structure in writing-tests.md (juggernaut451) #18802
• [157fc28710] - doc: add added in versions to fs.Stats properties (jvelezpo) #19266
• [fa17002215] - doc: add missing metadata for settings.windowsHide (Tobias Nießen) #19578
• [4532a8913d] - doc: add require.main to require properties (Vse Mozhet Byt) #19573
• [1e8ece149a] - doc: add missing metadata for cluster.settings.cwd (Tobias Nießen) #19569
• [933c58cd76] - doc: add types for some process properties (Vse Mozhet Byt) #19571
• [ae0e243028] - doc: fix n-api example string (Steven R. Loomis) #19205
• [7c9ba3db40] - doc: correct introduced_in metadata for buffer doc (Rich Trott) #19545
• [1073f09cad] - doc: minor improvements to buffer.md (Rich Trott) #19547
• [9845fc3e4a] - doc: Add a missing comma (jiangq) #19555
• [d1c45e258c] - doc: update child_process.md (Ari Leo Frankel) #19075
• [8e3f59fbb5] - doc: clarify child_process promise rejections (TomCoded) [#19541]...

2018-03-28, Version 8.11.0 'Carbon' (LTS), @MylesBorins

This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/march-2018-security-releases/ for details on patched vulnerabilities.

Fixes for the following CVEs are included in this release:

• CVE-2018-7158
• CVE-2018-7159
• CVE-2018-7160

Notable Changes

• Upgrade to OpenSSL 1.0.2o: Does not contain any security fixes that are known to impact Node.js.
• Fix for inspector DNS rebinding vulnerability (CVE-2018-7160): A malicious website could use a DNS rebinding attack to trick a web browser to bypass same-origin-policy checks and allow HTTP connections to localhost or to hosts on the local network, potentially to an open inspector port as a debugger, therefore gaining full code execution access. The inspector now only allows connections that have a browser Host value of localhost or localhost6.
• Fix for 'path' module regular expression denial of service (CVE-2018-7158): A regular expression used for parsing POSIX paths could be used to cause a denial of service if an attacker were able to have a specially crafted path string passed through one of the impacted 'path' module functions.
• Reject spaces in HTTP Content-Length header values (CVE-2018-7159): The Node.js HTTP parser allowed for spaces inside Content-Length header values. Such values now lead to rejected connections in the same way as non-numeric values.
• Update root certificates: 5 additional root certificates have been added to the Node.js binary and 30 have been removed.

Commits

• [dc290562e9] - crypto: update root certificates (Ben Noordhuis) #19322
• [df92da3f3c] - deps: add -no_rand_screen to openssl s_client (Shigeki Ohtsu) nodejs/io.js#1836
• [259156ea40] - deps: fix asm build error of openssl in x86_win32 (Shigeki Ohtsu) iojs/io.js#1389
• [d559d0eb25] - deps: fix openssl assembly error on ia32 win32 (Fedor Indutny) iojs/io.js#1389
• [cf8e8bcad2] - deps: copy all openssl header files to include dir (Shigeki Ohtsu) #19638
• [987138e488] - deps: upgrade openssl sources to 1.0.2o (Shigeki Ohtsu) #19638
• [1b7f6d9072] - deps: reject interior blanks in Content-Length (Ben Noordhuis) nodejs-private/http-parser-private#1
• [86c9ec6c5c] - deps: upgrade http-parser to v2.8.0 (Ben Noordhuis) nodejs-private/http-parser-private#1
• [de0c84889b] - inspector: minor adjustments (Eugene Ostroukhov)
• [b7690655ef] - inspector: check Host header (Ali Ijaz Sheikh)
• [0641f2dbf9] - openssl: fix keypress requirement in apps on win32 (Shigeki Ohtsu) iojs/io.js#1389
• [6ee4228c1d] - src: drop CNNIC+StartCom certificate whitelisting (Ben Noordhuis) #19322
• [633e23a618] - tools: update certdata.txt (Ben Noordhuis) #19322

2018-03-28, Version 6.14.0 'Boron' (LTS), @MylesBorins

This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/march-2018-security-releases/ for details on patched vulnerabilities.

Fixes for the following CVEs are included in this release:

• CVE-2018-7158
• CVE-2018-7159
• CVE-2018-7160

Notable Changes

• Upgrade to OpenSSL 1.0.2o: Does not contain any security fixes that are known to impact Node.js.
• Fix for inspector DNS rebinding vulnerability (CVE-2018-7160): A malicious website could use a DNS rebinding attack to trick a web browser to bypass same-origin-policy checks and allow HTTP connections to localhost or to hosts on the local network, potentially to an open inspector port as a debugger, therefore gaining full code execution access. The inspector now only allows connections that have a browser Host value of localhost or localhost6.
• Fix for 'path' module regular expression denial of service (CVE-2018-7158): A regular expression used for parsing POSIX paths could be used to cause a denial of service if an attacker were able to have a specially crafted path string passed through one of the impacted 'path' module functions.
• Reject spaces in HTTP Content-Length header values (CVE-2018-7159): The Node.js HTTP parser allowed for spaces inside Content-Length header values. Such values now lead to rejected connections in the same way as non-numeric values.
• Update root certificates: 5 additional root certificates have been added to the Node.js binary and 30 have been removed.

Commits

• [ac21bdc149] - crypto: update root certificates (Ben Noordhuis) #19322
• [3c99e41427] - deps: add -no_rand_screen to openssl s_client (Shigeki Ohtsu) nodejs/io.js#1836
• [d775057090] - deps: fix asm build error of openssl in x86_win32 (Shigeki Ohtsu) iojs/io.js#1389
• [982012b96d] - deps: fix openssl assembly error on ia32 win32 (Fedor Indutny) iojs/io.js#1389
• [1aa83f7707] - deps: copy all openssl header files to include dir (Shigeki Ohtsu) #19638
• [05de6f4af7] - deps: upgrade openssl sources to 1.0.2o (Shigeki Ohtsu) #19638
• [ed64cc2be7] - deps: reject interior blanks in Content-Length (Ben Noordhuis) nodejs-private/http-parser-private#1
• [d786d21f92] - deps: upgrade http-parser to v2.8.0 (Ben Noordhuis) nodejs-private/http-parser-private#1
• [4947b0e26e] - inspector: minor adjustments (Eugene Ostroukhov)
• [e3950d1a40] - inspector: check Host header (Ali Ijaz Sheikh)
• [ef32e06a6e] - openssl: fix keypress requirement in apps on win32 (Shigeki Ohtsu) iojs/io.js#1389
• [1dba2f4950] - src: drop CNNIC+StartCom certificate whitelisting (Ben Noordhuis) #19322
• [bdfeb1c739] - tools: update certdata.txt (Ben Noordhuis) #19322

2018-03-28, Version 4.9.0 'Argon' (Maintenance), @MylesBorins

This is a security release. All Node.js users should consult the security release summary at https://nodejs.org/en/blog/vulnerability/march-2018-security-releases/ for details on patched vulnerabilities.

Fixes for the following CVEs are included in this release:

• CVE-2018-7158
• CVE-2018-7159

Notable Changes

• Upgrade to OpenSSL 1.0.2o: Does not contain any security fixes that are known to impact Node.js.
• Fix for 'path' module regular expression denial of service (CVE-2018-7158): A regular expression used for parsing POSIX an Windows paths could be used to cause a denial of service if an attacker were able to have a specially crafted path string passed through one of the impacted 'path' module functions.
• Reject spaces in HTTP Content-Length header values (CVE-2018-7159): The Node.js HTTP parser allowed for spaces inside Content-Length header values. Such values now lead to rejected connections in the same way as non-numeric values.
• Update root certificates: 5 additional root certificates have been added to the Node.js binary and 30 have been removed.

Commits

• [497ff3cd4f] - crypto: update root certificates (Ben Noordhuis) #19322
• [514709e41f] - deps: add -no_rand_screen to openssl s_client (Shigeki Ohtsu) nodejs/io.js#1836
• [5108108606] - deps: fix asm build error of openssl in x86_win32 (Shigeki Ohtsu) iojs/io.js#1389
• [d67d0a63d9] - deps: fix openssl assembly error on ia32 win32 (Fedor Indutny) iojs/io.js#1389
• [6af057ecc8] - deps: copy all openssl header files to include dir (Shigeki Ohtsu) #19638
• [b50cd3359d] - deps: upgrade openssl sources to 1.0.2o (Shigeki Ohtsu) #19638
• [da6e24c8d6] - deps: reject interior blanks in Content-Length (Ben Noordhuis) nodejs-private/http-parser-private#1
• [7ebc9981e0] - deps: upgrade http-parser to v2.8.0 (Ben Noordhuis) nodejs-private/http-parser-private#1
• [6fd2cc93a6] - openssl: fix keypress requirement in apps on win32 (Shigeki Ohtsu) iojs/io.js#1389
• [bf00665af6] - path: unwind regular expressions in Windows (Myles Borins)
• [4196fcf23e] - path: unwind regular expressions in POSIX (Myles Borins)
• [625986b699] - src: drop CNNIC+StartCom certificate whitelisting (Ben Noordhuis) #19322
• [ebc46448a4] - tools: update certdata.txt (Ben Noordhuis) #19322

2018-03-21, Version 9.9.0 (Current), @MylesBorins prepared by @targos

Notable Changes

• assert:
  • From now on all error messages produced by assert in strict mode will produce a error diff. (Ruben Bridgewater) #17615
  • From now on it is possible to use a validation object in throws instead of the other possibilities. (Ruben Bridgewater) #17584
• crypto:
  • allow passing null as IV unless required (Tobias Nießen) #18644
• fs:
  • support as and as+ flags in stringToFlags() (Sarat Addepalli) #18801
• tls:
  • expose Finished messages in TLSSocket (Anton Salikhmetov) #19102
• tty:
  • Add getColorDepth function to determine if terminal supports colors. (Ruben Bridgewater) #17615
• util:
  • add util.inspect compact option (Ruben Bridgewater) #17576
• Added new collaborators
  • watson Thomas Watson

Commits

• [acc86ed246] - 2018-03-XX, Version 9.9.0 (Current) (Michaël Zasso)
• [8d33e5c214] - assert: improve error check (Ruben Bridgewater) #17574
• [5e6b42ec9c] - assert: show proper differences (Ruben Bridgewater) #18611
• [9abbb6b857] - assert: fix infinite loop (Ruben Bridgewater) #18611
• [e9ac468146] - assert: fix throws trace (Ruben Bridgewater) #18595
• [d3c2534bbe] - assert: use destructuring for errors (Ruben Bridgewater) #18247
• [5aa3a2d172] - (SEMVER-MINOR) assert: improve error messages (Ruben Bridgewater) #17615
• [f96ea47cf5] - assert: fix strict regression (Ruben Bridgewater) #17903
• [ebd60fa505] - (SEMVER-MINOR) assert: .throws accept objects (Ruben Bridgewater) #17584
• [612ba1a3f0] - (SEMVER-MINOR) assert: improve assert.throws (Ruben Bridgewater) #17585
• [24aeca7dd5] - assert: fix throws and doesNotThrow stack frames (Ruben Bridgewater) #17703
• [db73d1c13b] - assert: use object argument in innerFail (Ruben Bridgewater) #17582
• [bae5de1949] - (SEMVER-MINOR) assert: add strict functionality export (Ruben Bridgewater) #17002
• [f0f31d080a] - async_hooks: add copyHooks function (Daniel Bevenius) #19391
• [71b1c7f79f] - async_hooks: don't set hook_fields[kTotals] to 0 (Daniel Bevenius) #19219
• [530b8a4077] - benchmark: fix benchmark for url (Sergey Golovin) #19084
• [563bed00f5] - benchmark,lib,test,tools: use consistent quotes (Rich Trott) #19156
• [3f7c4eea04] - build: do not cd on vcbuild help (Vse Mozhet Byt) #19291
• [5a1437cdbd] - build: update arm64 minimum supported platform (Gibson Fahnestock) #19164
• [07845fc19e] - console: port errors to new system (Ruben Bridgewater) #18857
• [03c321a713] - (SEMVER-MINOR) crypto: allow passing null as IV unless required (Tobias Nießen) #18644
• [044995e546] - crypto: use bool over int consistently (Tobias Nießen) #19238
• [36f664ef9a] - deps: V8: backport 596d55a from upstream (Myles Borins) #19477
• [5966b8cc06] - deps: v8: cherry-pick fixes for v8:7535 (Flarna) #19333
• [cb732aeda4] - doc: enable eslint prefer-template rule (Ruben Bridgewater) #18831
• [ff82acb95a] - doc: update buffer examples (Ruben Bridgewater) #18758
• [a4c28d77f7] - doc: fix deprecation removed by mistake (Michaël Zasso) #19482
• [b229912f6f] - doc: do not announce obvious examples (Rich Trott) #19270
• [c1fa0926e3] - doc: fix typos on n-api (Kyle Robinson Young) #19385
• [99e6734f19] - doc: improve best practices in onboarding-extras (Rich Trott) #19315
• [5a56327e79] - doc: fix minor issues in async_hooks.md (Rich Trott) #19313
• [5da3ee7719] - doc: clarify default TLS handshake timeout (Rich Trott) #19290
• [7f652c2bcc] - doc: update username and email (Yuta Hiroto) #19338
• [e247f19ac3] - doc: improve style guide text (Rich Trott) #19269
• [c9b12f302a] - doc: remove superfluous text in onboarding-extras (Rich Trott) #19247
• [6c5afebf55] - doc: make caveat in stream.md more concise (Rich Trott) #19251
• [8e88a180b9] - doc: add warning to assert.doesNotThrow() (Ruben Bridgewater) #18699
• [a04e4ae5e4] - doc: remove confusing "cats" from style guide (Rich Trott) #19246
• [7c3617558e] - doc: remove superfluous adverb from style guide (Rich Trott) #19246
• [d117f5ff22] - doc: remove warning against readable/readable.read (Rich Trott) #19193
• [5c21d16c31] - doc: add watson to collaborators (Thomas Watson) #19234
• [9557e66ae1] - doc: update labels info in onboarding-extras.md (Rich Trott) #19160
• [84acb9fae5] - doc: add inspector usage example (Ali Ijaz Sheikh) #19172
• [27088cfaa7] - doc: improve onboarding instructions (Joyee Cheung) #19108
• [9ec0eab019] - doc: make suggestion more direct in stream.md (Rich Trott) #19124
• [968b867bf2] - doc: document asserts Weak(Map|Set) behavior (Ruben Bridgewater) #18248
• [745709396c] - (SEMVER-MINOR) doc: improve .throws RegExp info (Ruben Bridgewater) #17585
• [5a78c6c0a6] - (SEMVER-MINOR) doc: improve assert documentation (Ruben Bridgewater) [#17002](https://gi...

2018-03-07, Version 9.8.0 (Current), @MylesBorins

Notable Changes

• crypto:
  • add cert.fingerprint256 as SHA256 fingerprint (Hannes Magnusson) #17690
• http2:
  • Fixed issues with aborted connections in the HTTP/2 implementation (Anna Henningsen) #18987 #19002
• loader:
  • --inspect-brk now works properly for esmodules (Gus Caplan) #18949
• src:
  • make process.dlopen() load well-known symbol (Ben Noordhuis) #18934
• trace_events:
  • add file pattern cli option (Andreas Madsen) #18480
• Added new collaborators
  • MoonBall Chen Gang

Commits

• [6ae2cafde3] - buffer: coerce offset to integer (Ruben Bridgewater) #18215
• [6d17383041] - buffer: fix typo in lib/buffer.js (Ujjwal Sharma) #19126
• [4b34b2e185] - build: fix gocvr version used for coverage (Michael Dawson) #19094
• [a938e52ffe] - build: disable openssl build warnings on macos (Ben Noordhuis) #19046
• [44d80c5620] - build: fix coverage after gcovr update (killagu) #18958
• [28a5362e83] - build: fix lint-md-build dependency (Joyee Cheung) #18981
• [e74e422a53] - (SEMVER-MINOR) crypto: add cert.fingerprint256 as SHA256 fingerprint (Hannes Magnusson) #17690
• [056001dc8f] - (SEMVER-MINOR) deps: cherry-pick 0bcb1d6f from upstream V8 (Jakob Kummerow) #18212
• [1fadb2edb4] - doc: fix/add link to Android info (Vse Mozhet Byt) #19004
• [68524610f2] - doc: remove subsystem from pull request template (Rich Trott) #19125
• [d3a70e9cd4] - doc: remove tentativeness in pull-requests.md (Rich Trott) #19123
• [f03079fce6] - doc: update cc list (Ruben Bridgewater) #19099
• [9d2de16b13] - doc: add introduced_in metadata to _toc.md (Rich Trott) #19113
• [ae2dabb8fc] - doc: new team for bundlers or delivery of Node.js (Michael Dawson) #19098
• [0e4f4266a1] - doc: add simple example to rename function (punteek) #18812
• [e42600fc4b] - doc: add missing Returns in fs & util (Sho Miyamoto) #18775
• [4ecf5bbe74] - doc: fix a typo in util.isDeepStrictEqual (Sho Miyamoto) #18775
• [cab6c8e95c] - doc: add URL.format() example (Zeke Sikelianos) #18888
• [a4462b7944] - doc: fix n-api asynchronous threading docs (Eric Bickle) #19073
• [bfa894cf37] - doc: add MoonBall to collaborators (Chen Gang) #19109
• [77154cd65d] - doc: update list of re-exported symbols (Richard Lau) #19013
• [459f2095a1] - doc: Readable unpipe on Writable error event (George Sapkin) #18080
• [68c1337819] - doc: add RegExp Unicode Property Escapes to intl (Vse Mozhet Byt) #19052
• [71d09ecbf1] - doc: make the background section concise and improve its formality (Wilson) #18928
• [951054004d] - doc: lowercase primitives in test/common/README.md (Vse Mozhet Byt) #18875
• [5b8c97f6bc] - events: show throw stack trace for uncaught exception (Anna Henningsen) #19003
• [0789eeceb6] - http: prevent aborted event when already completed (Andrew Johnston) #18999
• [ae4d83facf] - http: prevent aborted event when already completed (Andrew Johnston) #18999
• [50d1233935] - http2: no stream destroy while its data is on the wire (Anna Henningsen) #19002
• [551d9752c8] - http2: fix flaky test-http2-https-fallback (Matteo Collina) #19093
• [8bc930c269] - http2: fix endless loop when writing empty string (Anna Henningsen) #18924
• [aa0fca9426] - http2: use original error for cancelling pending streams (Anna Henningsen) #18988
• [447136999d] - http2: send error text in case of ALPN mismatch (Anna Henningsen) #18986
• [ef8f90f34e] - http2: fix condition where data is lost (Matteo Collina) #18895
• [e584113b66] - lib: re-fix v8_prof_processor (Anna Henningsen) #19059
• [12856b0dd2] - lib: change hook -> hooks in code comment (Daniel Bevenius) #19053
• [db8d197e79] - lib,test: remove yoda statements (Ruben Bridgewater) #18746
• [59547cc438] - loader: fix --inspect-brk (Gus Caplan) #18949
• [39e032fe86] - module: fix main lookup regression from #18728 (Guy Bedford) #18788
• [f3e3429296] - module: support main w/o extension, pjson cache (Guy Bedford) #18728
• [95f6467ffd] - module: fix cyclical dynamic import (Bradley Farias) #18965
• [5c4f703607] - n-api: update reference test (Gabriel Schulhof) #19086
• [1b32fc3276] - n-api: fix object test (Gabriel Schulhof) #19039
• [ef4714c2b6] - net: inline and simplify onSocketEnd (Anna Henningsen) #18607
• [28880cf89d] - perf_hooks: fix timing (Timothy Gu) #18993
• [96f0bec48b] - repl: make last error available as \_error (Anna Henningsen) #18919
• [420d56c2ea] - src: don't touch js object in Http2Session dtor (Ben Noordhuis) #18656
• [f89f659dcf] - src: remove unnecessary Reset() calls (Ben Noordhuis) #18656
• [67a9742aed] - src: prevent persistent handle resource leaks (Ben Noordhuis) [#18656](https://github.com/nodej...