Update all

[renovate]

This PR contains the following updates:

Package	Type	Update	Change
cordova-plugin-inappbrowser	dependencies	minor	3.0.0 -> 3.2.0
cordova-plugin-ionic-keyboard	dependencies	minor	2.1.3 -> 2.2.0
cordova-plugin-ionic-webview	dependencies	patch	2.5.1 -> 2.5.3
cordova-plugin-splashscreen	dependencies	patch	5.0.3 -> 5.0.4
github.com/go-chi/chi	require	minor	v4.0.2+incompatible -> v4.1.2
gopkg.in/urfave/cli.v2	require	minor	v2.0.0-20180128182452-d3ae77c26ac8 -> v2.2.0
ionic-angular	dependencies	patch	3.9.2 -> 3.9.10
moment (source)	dependencies	minor	2.24.0 -> 2.27.0
node		minor	10.13.0 -> 10.21.0
rxjs	dependencies	minor	6.2.1 -> 6.6.0
rxjs-compat	dependencies	minor	6.2.1 -> 6.6.0
typescript (source)	devDependencies	minor	2.6.2 -> 2.9.2

---

Release Notes

apache/cordova-plugin-inappbrowser

v3.2.0

Compare Source

• GH-503 Defensive code to prevent NULL reference exceptions for async
• GH-584 Add compile-time decision for disabling UIWebView
• GH-524 Replace "beforeload" with BEFORELOAD
• GH-568 Update missing closed brace to the insert.CSS
• GH-401 Move createIframeBridge to injectDeferredObject
• GH-534 Fix InAppBrowser not opening on iOS 13
• ci(travis) Upgrade to node8

v3.1.0

Compare Source

• chore: fix repo and issue urls and license in package.json and plugin.xml (8edfb9e)
• chore: unknown changes because of linebreak change in binary files (e44ad91)
• build: add .npmignore to remove unneeded files from npm package (0ec4a11)
• build: add .gitattributes to force LF (instead of possible CRLF on Windows) (2751255)
• ci(travis): Update Travis CI configuration for new paramedic (#​478) (c2bb6c1)
• docs: remove outdated translations (cc5ee00)
• fix(android): Fix beforeload for Android <= 7 (#​427) (94fec84)
• ci(travis) Fix failing CI tests (#​460) (a162bd9)
• test: Fix test spec.5 to close inappbrowser after loadstop event (#​440) (5f1afbd, af44235)
• fix(android): Prevent malformed callbackId from reaching app cordova view (#​436) (6861084, c95dbcb)
• feat: CB-13969: Allow close button and navigation buttons positions to be swapped (#​262) (d01bd25, f861655, 9c7c2f3, 3c0a42e, 5359f6c, df84dda, 2bcec40, fc0c560, 5ead1e6, c7931fa, e2adf1b, 4adf4c7, cbe3a42, 74ccef1, ec6af56, b06ad8e, 313e0ae, 05e37a1, 0c6189e, d940b59, f3d7f72)
• docs: Add headline to window.open documentation (#​406) (92243cd)
• fix(ios): Fix iframes in iOS/WKWebView which were broken by #​418 (#​425) (388e3f6)
• chore(github): Add or update GitHub pull request and issue template (ae329bc)
• fix(ios): Handle non-default target attribute values (e.g. target=on links in WKWebView implementation on iOS (#​418) (9f4b729)
• fix(types): remove unused replace parameter (#​410) (6db2f2d)
• documentation: Example documentation - Fix callBack function name (#​383) (a890e60, 2500b08)
• fix: Fix beforeload to work with POST requests (#​367) (632a395)
• feat: (iOS & Android) Add postMessage API support (#​362) (c54d100)
• fix(ios): Fixes loadAfterBeforeload on iOS. (#​350) (0fd43ae)
• fix(ios): Fix crashes when using WKWebView implementation on iOS 9. (#​337) (3b82c16)
• fix(ios): Fix iOS CDVWKInAppBrowser evaluateJavascript method randomly gets blocked on ios 12 (#​341) (978b147)
• docs: remove unwanted information in README table (#​308) (3eadde6)
• fix(ios): This lets the default window layering do it's thing. (#​336) (c24bb46, 27fe8ec)
• feat(ios): CB-7179 (iOS): Add optional WKWebView support for iOS (#​271) (10a0669, 3927b8f, 8248215, 61014dd, c41f5b5, 19c6dfe, 7f5fa2a, 5d2df21, 86cc778, cbfa195, 52e3534, 8165232, e2210bd, dc7fa34, b48e02f, 27e6c67)
• docs: remove JIRA link (d9cafcd)
• chore(types): CB-12941: update typings (#​267) (a0c267f)
• feat: CB-14188: add beforeload event, catching navigation before it happens (#​276) (228703a, eafaeda)
• ci(travis): reenable testing on all platforms (0ed0bf5)
• ci(travis): also accept terms for android sdk android-27 (f8ad528)
• fix(android): CB-10795: Exclude current app from external intent list (#​154) (a078337)
• fix(ios): CB-14234: Don't call handleOpenURL for system URLs (#​278) (cf58b04)
• fix(ios): CB-12875: (iOS) Pushes the inappbrowser window to a higher ui level than the existing apps window. (#​284) (dc5329d)
• ci: Quick CI fixes (#​277) (de86501, 07d9a99, 81f1437, a464ea6, e75fe14, eb245ec)
• fix(ios): CB-12922 (ios): fix In-app browser does not cede control (#​272) (dac06aa, 9cc7f69)
• fix(android): CB-14061: (android) comply with RFC 3986 for custom URL scheme handling (#​269) (f57ede9, 26cf6e4)
• fix(android): CB-14048: (android) allowedSchemes check empty string fix (#​268) (57eda78, 33aff11)

ionic-team/cordova-plugin-ionic-keyboard

v2.2.0

Compare Source

Features

• android: add resizeOnFullScreen preference for Android (#​106) (169c73c)
• ios: Added Keyboard.setKeyboardStyle method (#​79) (4c03a7e)
• ios: reimplement disableScroll method (#​102) (b33e7a2)

Bug Fixes

• android: Avoid conflicts when ionic-plugin-keyboard is installed (#​104) (893dc8e)
• ios: respect KeyboardAppearanceDark preference from webview plugin (#​101) (b00e3a9)
• ios: Delay resize until keyboard animation finish (#​81) (d729cbf)
• ios: Avoid duplicate hide event when user changes field (#​68) (4a0e018)

ionic-team/cordova-plugin-ionic-webview

v2.5.3

Compare Source

v2.5.2

Compare Source

apache/cordova-plugin-splashscreen

v5.0.4

Compare Source

• GH-261 chore: add cordova-ios requirement <6.0.0
• chore(asf): update git notification settings
• update CONTRIBUTING.md
• GH-251 chore(npm): adds ignore list
• GH-252 ci: updates Node.js versions
• GH-236 update homepage to github README page
• GH-239 update README.md by adding missing info
• ci(travis): Upgrade node from 6 to 8
• ci(travis): Remove Android 4.4, Add Android 9.0
• GH-212 ci(travis): Add ADDITIONAL_TESTS_DIR=./tests/ios

go-chi/chi

v4.1.2

Compare Source

• fix that handles MethodNotAllowed with path variables, thank you @​caseyhadden for your contribution
• fix to replace nested wildcards correctly in RoutePattern, thank you @​@​unmultimedio for your contribution
• History of changes: see go-chi/chi@v4.1.1...v4.1.2

v4.1.1

Compare Source

• fix for issue #​411 which allows for overlapping regexp
  route to the correct handler through a recursive tree search, thanks to @​Jahaja for the PR/fix!
• new middleware.RouteHeaders as a simple router for request headers with wildcard support
• History of changes: see go-chi/chi@v4.1.0...v4.1.1

v4.1.0

Compare Source

• middleware.LogEntry: Write method on interface now passes the response header
  and an extra interface type useful for custom logger implementations.
• middleware.WrapResponseWriter: minor fix
• middleware.Recoverer: a bit prettier
• History of changes: see go-chi/chi@v4.0.4...v4.1.0

v4.0.4

Compare Source

• middleware.Recoverer: new pretty stack trace printing (#​496)
• a few minor improvements and fixes
• History of changes: see go-chi/chi@v4.0.3...v4.0.4

v4.0.3

Compare Source

• core: fix regexp routing to include default value when param is not matched
• middleware: rewrite of middleware.Compress
• middleware: suppress http.ErrAbortHandler in middleware.Recoverer
• History of changes: see go-chi/chi@v4.0.2...v4.0.3

urfave/cli

v2.2.0

Compare Source

These release notes were written for the git hash d648edd

Fixed

• Fixed zsh completion scripts in #​1062 via @​zhsj
• Fixed description of subcommand to be more consistent in #​1054 via @​itchyny
• Fixed possible runtime panic in slice parsing in #​1049 via @​saschagrunert
• Fixed invalid man page header generation in #​1041 via @​saschagrunert

Changed

• Improved auto-completion instructions and added example gifs in #​1059 via @​masonj188
• Removed the author from generated man pages in #​1041 via @​saschagrunert

Added

• Added destination field to StringSliceFlag in #​1078 via @​davidsbond
• Added HideHelpCommand. While HideHelp hides both help command and --help flag, HideHelpCommand only hides help command and leave --help flag as-is in #​1083 via @​AkihiroSuda
• Added timestampFlag docs in #​997 via @​drov0
• Added required flags documentation in #​1008 via @​lynncyrin, @​anberns

v2.1.1

Compare Source

Fixed a Context regression introduced in v2.1.0 in #​1014 via @​lynncyrin

v2.1.0

Compare Source

These release notes were written for the git hash ae84df4cef4a2a6f1a0cb1d41ea0f3af8755e5a8

Fixed

• Fixed some golint errors in #​988 via @​liamchampton
• Fixed a panic with flag completion #​946 via @​unRob

Changed

• Changed docs generation to use visible flags in #​999 via @​subpop
• Changed App.Run to use an optional context for timeouts and cancellation in #​975 via @​marwan-at-work
• Changed version info to be hidden if the user has not defined a version in #​955 via @​asahasrabuddhe
• Changed docs generation to take into account multiple authors in #​900 via @​saschagrunert
• Changed context to expose a Value accessor in #​741 via @​corruptmemory

Added

• Added timestamp flag in #​987 via @​drov0

v2.0.0

Compare Source

V2 was merged in #​892, which included the work of all of these contributors: @​asahasrabuddhe, @​meatballhat, @​jszwedko, @​lynncyrin, @​AudriusButkevicius, @​saschagrunert, @​rliebz, @​johnweldon, @​nlewo, @​grubernaut, @​OneOfOne, @​VMitov, @​cbranch, @​marwan-at-work, @​uudashr, @​bfreis

Discuss the state of V2 here => #​826

---

Added

• Added NewStringSlice and NewIntSlice for creating their related types
• Added Float64SliceFlag for unmarshaling a list of floats from the user
• Added Context.Lineage to get all contexts from current up to global
• Added Context.LocalFlagNames to get the flag names from only the current context
• Added BoolFlag.Value to handle both default-false and default-true
• Added IsSet method to the Flag interface which allows us to detect whether or not a flag has been set

Changed

• Occurrences of []Command have been changed to []*Command
• Occurrences of []cli.Flag have been changed to []*cli.Flag
• Context.FlagNames now returns all flags in the context lineage
• Context.IsSet now considers the full context lineage

Removed

• Removed Global* flags since all flags are now global
  • when updating, replace GlobalBool with Bool
  • and GlobalInt with Int
  • and GlobalString with String
  • and so on for any other global flags
• Removed Context.Parent method, as this is now available via Context.Lineage
  • when updating, replace Context.Parent() with Context.Lineage()[1]
• Removed the App.Author and App.Email
  • these have been replaced with the Authors []*Author field
• Removed the ability to specify multiple entries in the Command.Name field
  • when updating, replace Name: "a, b, c" with Name: "a", Aliases: []string{"b", "c"}
• Removed the Command.ShortName field
  • when updating, replace ShortName: "i" with Aliases: []string{"i"}
• Removed all Context.Global* methods, as the non-global versions now traverse up
  the context lineage automatically.
• Removed the ability to specify &StringSlice{...string} or &IntSlice{...int}.
• Removed adapter code for deprecated Action func signature
• Removed BoolTFlag and related code, as this is now available via BoolFlag.Value

v2.0.0-alpha.2

Compare Source

This is a pre-release meant for internal testing purposes. Please do not use this until you really know what you are doing.

v2.0.0-alpha.1

Compare Source

ionic-team/ionic

v3.9.3

Compare Source

moment/moment

v2.27.0

Compare Source

• Release June 18, 2020

Added Turkmen locale, other locale improvements, slight TypeScript fixes

v2.26.0

Compare Source

• Release May 19, 2020

TypeScript fixes and many locale improvements

v2.25.3

Compare Source

• Release May 4, 2020

Remove package.json module property. It looks like webpack behaves differently
for modules loaded via module vs jsnext:main.

v2.25.2

Compare Source

• Release May 4, 2020

This release includes ES Module bundled moment, separate from it's source code
under dist/ folder. This might alleviate issues with finding the `./locale
subfolder for loading locales. This might also mean now webpack will bundle all
locales automatically, unless told otherwise.

v2.25.1

Compare Source

• Release May 1, 2020

This is a quick patch release to address some of the issues raised after
releasing 2.25.0.

• 2e268635 [misc] Revert #​5269 due to webpack warning
• 226799e1 [locale] fil: Fix metadata comment
• a83a521 [bugfix] Fix typeoff usages
• e324334 [pkg] Add ts3.1-typings in npm package
• 28cc23e [misc] Remove deleted generated locale en-SG

v2.25.0

Compare Source

• Release May 1, 2020

• #​4611 022dc038 [feature] Support for strict string parsing, fixes #​2469

• #​4599 4b615b9d [feature] Add support for eras in en and jp

• #​4296 757d4ff8 [feature] Accept custom relative thresholds in duration.humanize

• 18 bigfixes

• 36 locale fixes

• 5 new locales (oc-lnc, zh-mo, en-in, gom-deva, fil)

nodejs/node

v10.21.0

Compare Source

Notable changes

This is a security release.

Vulnerabilities fixed:

• CVE-2020-8174: napi_get_value_string_*() allows various kinds of memory corruption (High).
• CVE-2020-10531: ICU-20958 Prevent SEGV_MAPERR in append (High).
• CVE-2020-11080: HTTP/2 Large Settings Frame DoS (Low).

Commits

• [0ad7970256] - deps: fix OPENSSLDIR on Windows (Shigeki Ohtsu) #​29456
• [bd78c6ea46] - deps: backport ICU-20958 to fix CVE-2020-10531 (Richard Lau) #​33572
• [33e9a12241] - (SEMVER-MINOR) deps: update nghttp2 to 1.41.0 (James M Snell) nodejs-private/node-private#​204
• [881c244a4e] - (SEMVER-MINOR) http2: implement support for max settings entries (James M Snell) nodejs-private/node-private#​204
• [cd9827f105] - napi: fix memory corruption vulnerability (Tobias Nießen) nodejs-private/node-private#​203

v10.20.1

Compare Source

Notable changes

Due to release process failures, Node.js v10.20.0 shipped with source
and header tarballs that did not properly match the final release
commit that was used to build the binaries. We recommend that Node.js
v10.20.0 not be used, particularly in any applications using native
add-ons or where compiling Node.js from source is involved.

Node.js v10.20.1 is a clean release with the correct sources and is
strongly recommended in place of v10.20.0.

v10.20.0

Compare Source

macOS package notarization and a change in builder configuration

The macOS binaries for this release, and future 10.x releases, are now
being compiled on macOS 10.15 (Catalina) with Xcode 11 to support
package notarization, a requirement for installing .pkg files on macOS
10.15 and later. Previous builds of Node.js 10.x were compiled on macOS
10.10 (Yosemite) with a minimum deployment target of macOS 10.7 (Lion).
As binaries are still being compiled to support a minimum of macOS 10.7
(Lion) we do not anticipate this having a negative impact on Node.js
10.x users with older versions of macOS.

Notable changes

• buffer: add {read|write}Big[U]Int64{BE|LE} methods (garygsc) #​19691
• build: macOS package notarization (Rod Vagg) #​31459
• deps:
  • update npm to 6.14.3 (Myles Borins) #​32368
  • upgrade openssl sources to 1.1.1e (Hassaan Pasha) #​32328
  • upgrade to libuv 1.34.2 (cjihrig) #​31477
• n-api:
  • add napi_get_all_property_names (himself65) #​30006
  • add APIs for per-instance state management (Gabriel Schulhof) #​28682
  • define release 6 #​32058
  • turn NAPI_CALL_INTO_MODULE into a function (Anna Henningsen) #​26128
• tls:
  • expose keylog event on TLSSocket (Alba Mendez) #​27654
  • support TLS min/max protocol defaults in CLI (Sam Roberts) #​27946
• url: handle quasi-WHATWG URLs in urlToOptions() (cjihrig) #​26226

Commits

• [64744a282e] - (SEMVER-MINOR) buffer: add {read|write}Big[U]Int64{BE|LE} methods (garygsc) #​19691
• [8a0ed8f1ff] - build: macOS package notarization (Rod Vagg) #​31459
• [42af3b861a] - build,win: fix goto exit in vcbuild (João Reis) #​30931
• [b164a2e3bf] - console: add trace-events for time and count (James M Snell) #​23703
• [04cd67f85e] - deps: upgrade npm to 6.14.4 (Ruy Adorno) #​32495
• [8d85a43d99] - deps: update term-size with signed version (Rod Vagg) #​31459
• [76033c5495] - deps: update archs files for OpenSSL-1.1.1e (Hassaan Pasha) #​32328
• [64c184836b] - deps: adjust openssl configuration for 1.1.1e (Hassaan Pasha) #​32328
• [c8f5ab2089] - deps: upgrade openssl sources to 1.1.1e (Hassaan Pasha) #​32328
• [bf26c44c92] - deps: remove *.pyc files from deps/npm (Ben Noordhuis) #​32387
• [c2b3cf61ce] - deps: update npm to 6.14.3 (Myles Borins) #​32368
• [8cae4dde91] - deps: upgrade npm to 6.14.1 (Isaac Z. Schlueter) #​31977
• [47046aa5a9] - deps: openssl: cherry-pick 4dcb150 (Adam Majer) #​32002
• [098704c85d] - deps: upgrade to libuv 1.34.2 (Colin Ihrig) #​31477
• [4b1cccc4ce] - deps: upgrade to libuv 1.34.1 (Colin Ihrig) #​31332
• [fff6162693] - (SEMVER-MINOR) deps: upgrade to libuv 1.34.0 (Colin Ihrig) #​30783
• [6826ef0568] - deps: upgrade to libuv 1.33.1 (Colin Ihrig) #​29996
• [aed7ca4fb0] - deps: upgrade to libuv 1.32.0 (Colin Ihrig) #​29508
• [794abbc758] - deps: upgrade to libuv 1.31.0 (Colin Ihrig) #​29070
• [ed71f55a54] - deps: upgrade to libuv 1.30.1 (Colin Ihrig) #​28511
• [7cde563235] - deps: upgrade to libuv 1.30.0 (Colin Ihrig) #​28449
• [b53ce6e6c5] - deps: upgrade to libuv 1.29.1 (Colin Ihrig) #​27718
• [9b2b66b7d8] - deps: V8: cherry-pick d89f4ef (Milad Farazmand) #​31753
• [7eac95981e] - deps: upgrade npm to 6.13.7 (Michael Perrotte) #​31558
• [db24641fbe] - deps: upgrade npm to 6.13.6 (Ruy Adorno) #​31304
• [2e3d511cff] - doc: correct version metadata for Readable.from (Dave Vandyke) #​32639
• [34c1c2a82b] - doc: add missing version metadata for Readable.from (Anna Henningsen) #​28695
• [aa7d369c72] - doc: update releaser list in README.md (Myles Borins) #​32577
• [05f5b3ecc4] - doc: remove em dashes (Rich Trott) #​32080
• [ffa9f9bd1b] - doc: fix changelog for v10.18.1 (Andrew Hughes) #​31358
• [0177464b0e] - doc,tools: get altDocs versions from CHANGELOG.md (Richard Lau) #​27661
• [e9c590ea00] - (SEMVER-MINOR) n-api: define release 6 (Gabriel Schulhof) #​32058
• [239377b654] - (SEMVER-MINOR) n-api: correct instance data tests (Gabriel Schulhof) #​32488
• [ecbb331be0] - (SEMVER-MINOR) n-api: add napi_get_all_property_names (himself65) #​30006
• [f29fb14cf6] - (SEMVER-MINOR) n-api: add APIs for per-instance state management (Gabriel Schulhof) #​28682
• [20177b9946] - n-api: turn NAPI_CALL_INTO_MODULE into a function (Anna Henningsen) #​26128
• [017909b847] - test: fix tool path in test-doctool-versions.js (Richard Lau) #​32645
• [1ea70d641d] - test: fix flaky doctool and test (Rich Trott) #​29979
• [89692ff19b] - test: end tls connection with some data (Sam Roberts) #​32328
• [9bd1317764] - test: mark empty udp tests flaky on OS X (Sam Roberts) #​31936
• [5484e061b5] - test: scale keepalive timeouts for slow machines (Ben Noordhuis) #​30834
• [3f9cec3f51] - test: add debugging output to test-net-listen-after-destroy-stdin (Rich Trott) #​31698
• [f1a8791316] - test: allow EAI_FAIL in test-http-dns-error.js (Colin Ihrig) #​27500
• [4b9a77909b] - test: mark tests as flaky (João Reis) #​30848
• [a8fd8a1a61] - test: mark http2 tests as flaky on 10.x (AshCripps) #​31887
• [2315270cb6] - test: try to stabalize test-child-process-fork-exec-path.js (Refael Ackermann) #​27277
• [a2b0e9ef6a] - (SEMVER-MINOR) tls: expose keylog event on TLSSocket (Alba Mendez) #​27654
• [1cfb45732a] - (SEMVER-MINOR) tls: support TLS min/max protocol defaults in CLI (Sam Roberts) #​27946
• [a175b8d3a7] - tools: only fetch previous versions when necessary (Richard Lau) #​32518
• [3756be8511] - tools: add NODE_TEST_NO_INTERNET to the doc builder (Joyee Cheung) #​31849
• [ac1ea7312a] - tools: make doctool work if no internet available (Richard Lau) #​30214
• [f235eea8b3] - tools: unify make-v8.sh for ppc64le and s390x (Richard Lau) #​31628
• [61e2d4856d] - tools: use CC instead of CXX when pointing to gcc (Milad Farazmand) #​30817
• [4390674624] - url: handle quasi-WHATWG URLs in urlToOptions() (Colin Ihrig) #​26226
• [dc61e09feb] - v8: fix load elimination liveness checks (Ben Noordhuis) #​31613

v10.19.0

Compare Source

Notable changes

This is a security release.

Vulnerabilities fixed:

• CVE-2019-15606: HTTP header values do not have trailing OWS trimmed.
• CVE-2019-15605: HTTP request smuggling using malformed Transfer-Encoding header.
• CVE-2019-15604: Remotely trigger an assertion on a TLS server with a malformed certificate string.

Also, HTTP parsing is more strict to be more secure. Since this may
cause problems in interoperability with some non-conformant HTTP
implementations, it is possible to disable the strict checks with the
--insecure-http-parser command line flag, or the insecureHTTPParser
http option. Using the insecure HTTP parser should be avoided.

Commits

• [f940bee3b7] - crypto: fix assertion caused by unsupported ext (Fedor Indutny) nodejs-private/node-private#​175
• [49f4220ce5] - deps: upgrade http-parser to v2.9.3 (Sam Roberts) nodejs-private/http-parser-private#​4
• [a28e5cc1ed] - (SEMVER-MINOR) deps: upgrade http-parser to v2.9.1 (Sam Roberts) #​30471
• [0082f62d9c] - (SEMVER-MINOR) http: make --insecure-http-parser configurable per-stream or per-server (Anna Henningsen) #​31448
• [a9849c0ff6] - (SEMVER-MINOR) http: opt-in insecure HTTP header parsing (Sam Roberts) #​30567
• [2eee90e959] - http: strip trailing OWS from header values (Sam Roberts) nodejs-private/node-private#​191
• [e2c8f89b75] - test: using TE to smuggle reqs is not possible (Sam Roberts) nodejs-private/node-private#​192
• [d616722f65] - test: check that --insecure-http-parser works (Sam Roberts) #​31253

v10.18.1

Compare Source

Notable changes

• http2: fix session memory accounting after pausing (Michael Lehenbauer) #​30684
• n-api: correct bug in napi_get_last_error (Octavian Soldea) #​28702
• tools: update tzdata to 2019c (Myles Borins) #​30479

Commits

• [a80c59130e] - build: fix configure script to work with Apple Clang 11 (Saagar Jha) #​28071
• [68b2b5cc51] - build,win: propagate error codes in vcbuild (João Reis) #​30724
• [3e0709cf5e] - deps: V8: backport fb63e5c (Michaël Zasso)
• [25b8fbda35] - doc: allow \<code> in header elements (Rich Trott) #​31086
• [a1b095dd46] - doc,dns: use code markup/markdown in headers (Rich Trott) #​31086
• [8f3b8ca515] - http2: fix session memory accounting after pausing (Michael Lehenbauer) #​30684
• [20f64a96de] - http2: use the latest settings (ZYSzys) #​29780
• [81c31005fd] - lib: fix comment nits in bootstrap\loaders.js (Vse Mozhet Byt) #​24641
• [88e8b7cf83] - n-api: correct bug in napi_get_last_error (Octavian Soldea) #​28702
• [77e0318849] - stream: increase MAX_HWM (Robert Nagy) #​29938
• [894aaa2040] - stream: extract Readable.from in its own file (Matteo Collina) #​30140
• [7e941eb17d] - test: do not fail SLOW tests if they are not slow (Yang Guo) #​25868
• [0f3ae77aaf] - tools: update tzdata to 2019c (Myles Borins) #​30479
• [4ae8d204cb] - tools: move python code out of jenkins shell (Sam Roberts) #​28458
• [4879b80d87] - tools: fix v8 testing with devtoolset on ppcle (Sam Roberts) #​28458

v10.18.0

Compare Source

This is a security release.

For more details about the vulnerability please consult the npm blog:

https://blog.npmjs.org/post/189618601100/binary-planting-with-the-npm-cli

Notable changes

• deps: update npm to 6.13.4 #​30904

Commits

• [54a466a865] - build,win: add test-ci-native and test-ci-js (João Reis) #​30724
• [f9b31edb25] - deps: update npm to 6.13.4 (Isaac Z. Schlueter) #​30904

v10.17.0

Compare Source

Notable changes

• crypto:
  • add support for chacha20-poly1305 for AEAD (chux0519) #​24081
  • increase maxmem range from 32 to 53 bits (Tobias Nießen) #​28799
• deps:
  • update npm to 6.11.3 (claudiahdz) #​29430
  • upgrade openssl sources to 1.1.1d (Sam Roberts) #​29921
• dns: remove dns.promises experimental warning (cjihrig) #​26592
• fs: remove experimental warning for fs.promises (Anna Henningsen) #​26581
• http: makes response.writeHead return the response (Mark S. Everitt) #​25974
• http2: makes response.writeHead return the response (Mark S. Everitt) #​25974
• n-api:
  • make func argument of napi_create_threadsafe_function optional (legendecas) #​27791
  • mark version 5 N-APIs as stable (Gabriel Schulhof) #​29401
  • implement date object (Jarrod Connolly) #​25917
• process: add --unhandled-rejections flag (Ruben Bridgewater) #​26599
• stream:
  • implement Readable.from async iterator utility (Guy Bedford) #​27660
  • make Symbol.asyncIterator support stable (Matteo Collina) #​26989

Commits

• [f1a5a36961] - build: update Windows icon to Feb 2016 rebrand (Mike MacCana) #​28524
• [63de2ade85] - (SEMVER-MINOR) crypto: add support

---

Renovate configuration

📅 Schedule: At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻️ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by WhiteSource Renovate. View repository job log here.

[renovate]

⚠️ Artifact update problem

Renovate failed to update an artifact related to this branch. You probably do not want to merge this PR as-is.

♻️ Renovate will retry this branch, including artifacts, only when one of the following happens:

• any of the package files in this branch needs updating, or
• the branch becomes conflicted, or
• you check the rebase/retry checkbox if found above, or
• you rename this PR's title to start with "rebase!" to trigger it manually

The artifact failure details are included below:

File name: controller/go.sum

Command failed: docker run --rm --name=renovate_go --label=renovate_child -v "/mnt/renovate/gh/osmose-collective/radio-imaginee":"/mnt/renovate/gh/osmose-collective/radio-imaginee" -v "/tmp/renovate-cache":"/tmp/renovate-cache" -v "/tmp/renovate-cache/others/go":"/tmp/renovate-cache/others/go" -e GOPATH -e CGO_ENABLED -w "/mnt/renovate/gh/osmose-collective/radio-imaginee/controller" renovate/go bash -l -c "git config --global url.\"https://x-access-token:**redacted**@github.com/\".insteadOf \"https://github.com/\" && go get -d ./..."
go: gopkg.in/urfave/cli.v2@v2.2.0: parsing go.mod:
	module declares its path as: github.com/urfave/cli/v2
	        but was required as: gopkg.in/urfave/cli.v2