v20.0.0

36c1ec3 (Disable publishing of systemd variant, 2025-09-04)
af242da (Remove systemd variant build files, 2025-09-04)
8f937b6 (Upgrade to debian trixie, 2025-09-02)
f988174 (Rename no-systemd variant to no-init for clarity, 2025-09-04)

v19.2.1

Update dependency npm to v11.6.0

Notable changes

• bdcc10d #​8359 add support for optional env var replacements in .npmrc (#​8359) (@​aczekajski, @​owlstronaut)
• dd4cee9 #​8539 powershell: improve argument parsing (#​8539) (@​alexsch01)
• 5f18557 #​8532 powershell: fix issue with modified InvocationName (#​8532) (@​alexsch01)
• 9e5abf1 #​8529 add redaction to log format egress (#​8529) (@​wraithgar)
• 75ce64a #​8524 revert handle signal exits gracefully (#​8524) (@​owlstronaut)
• 5d82d0b #​8469 ps1 scripts in powershell 5.1 (#​8469) (@​splatteredbits)
• workspace: @npmcli/[email protected]
• workspace: @npmcli/[email protected]
• workspace: [email protected]
• workspace: [email protected]
• workspace: [email protected]
• workspace: [email protected]

npm/cli (npm)

v11.6.0

Compare Source

Features

• bdcc10d #​8359 add support for optional env var replacements in .npmrc (#​8359) (@​aczekajski, @​owlstronaut)

Bug Fixes

• dd4cee9 #​8539 powershell: improve argument parsing (#​8539) (@​alexsch01)
• 5f18557 #​8532 powershell: fix issue with modified InvocationName (#​8532) (@​alexsch01)
• 9e5abf1 #​8529 add redaction to log format egress (#​8529) (@​wraithgar)
• 75ce64a #​8524 revert handle signal exits gracefully (#​8524) (@​owlstronaut)
• 5d82d0b #​8469 ps1 scripts in powershell 5.1 (#​8469) (@​splatteredbits)

Dependencies

• workspace: @npmcli/[email protected]
• workspace: @npmcli/[email protected]
• workspace: [email protected]
• workspace: [email protected]
• workspace: [email protected]
• workspace: [email protected]

List of commits

6331d13 (Update dependency npm to v11.6.0, 2025-09-03)

v19.2.0

bda3c47 (Install eget in the runtime image for convenience, 2025-09-03)
4964438 (Add eget to no-systemd base, 2025-09-03)

v19.1.5

7c0a518 (Add load_env_var shared function, 2025-08-29)

v19.1.4

9ca5f21 (Set up logging prefixes for longrun services, 2025-08-27)

v19.1.3

Update Node.js to v24.7.0

Notable changes

• ML-KEM (FIPS 203, Module-Lattice-Based Key-Encapsulation Mechanism Standard) through new crypto.encapsulate() and crypto.decapsulate() methods.
• ML-DSA (FIPS 204, Module-Lattice-Based Digital Signature Standard) in the existing crypto.sign() and crypto.verify() methods.
• AES-OCB
• ChaCha20-Poly1305
• ML-DSA
• ML-KEM
• SHA-3
• SHAKE
• subtle.getPublicKey()
• SubtleCrypto.supports()
• ... with more coming in future releases.
• execArgv takes an array of strings for the execution arguments to be used.
• execArgvExtension takes one of the following values:
• TrustAsia TLS ECC Root CA
• TrustAsia TLS RSA Root CA
• SwissSign RSA TLS Root CA 2022 - 1
• GlobalSign Root CA
• Entrust.net Premium 2048 Secure Server CA
• Baltimore CyberTrust Root
• Comodo AAA Services root
• XRamp Global CA Root
• Go Daddy Class 2 CA
• Starfield Class 2 CA
• [d3afc63c44] - (SEMVER-MINOR) crypto: add argon2() and argon2Sync() methods (Ranieri Althoff) #​50353
• [6ae202fcdf] - (SEMVER-MINOR) http: add Agent.agentKeepAliveTimeoutBuffer option (Haram Jeong) #​59315
• [dafee05358] - (SEMVER-MINOR) http2: add support for raw header arrays in h2Stream.respond() (Tim Perry) #​59455
• [8dc6f5b696] - (SEMVER-MINOR) stream: add brotli support to CompressionStream and DecompressionStream (Matthew Aitken) #​59464
• [0fa22cbf7c] - benchmark: calibrate config v8/serialize.js (Rafael Gonzaga) #​59586
• [f5ece45b45] - benchmark: reduce readfile-permission-enabled config (Rafael Gonzaga) #​59589
• [8ebd4f4434] - benchmark: calibrate length of util.diff (Rafael Gonzaga) #​59588
• [7dee3ffd14] - benchmark: reflect current OpenSSL in crypto key benchmarks (Filip Skokan) #​59459
• [027b861ca1] - benchmark, test: replace CRLF variable with string literal (Lee Jiho) #​59466
• [89dd770889] - build: do not set -mminimal-toc with clang (Richard Lau) #​59484
• [e13de4542f] - child_process: remove unsafe array iteration (hotpineapple) #​59347
• [89fe63551e] - crypto: load system CA certificates off thread (Joyee Cheung) #​59550
• [152c5ef518] - (SEMVER-MINOR) crypto: add AES-OCB Web Cryptography algorithm (Filip Skokan) #​59539
• [c6c418343d] - crypto: update root certificates to NSS 3.114 (Node.js GitHub Bot) #​59571
• [18a2ee5b6c] - (SEMVER-MINOR) crypto: support ML-KEM in Web Cryptography (Filip Skokan) #​59569
• [72937e5144] - crypto: require HMAC key length with SHA-3 hashes in Web Cryptography (Filip Skokan) #​59567
• [b7383186c7] - crypto: fix subtle.getPublicKey error for secret type key inputs (Filip Skokan) #​59558
• [2d05c046db] - crypto: return cached copies from CryptoKey algorithm and usages getters (Filip Skokan) #​59538
• [207ffbeb07] - crypto: use CryptoKey internal slots in Web Cryptography (Filip Skokan) #​59538
• [4276516781] - crypto: normalize RsaHashedKeyParams publicExponent (Filip Skokan) #​59538
• [14741539a7] - (SEMVER-MINOR) crypto: support ML-KEM, DHKEM, and RSASVE key encapsulation mechanisms (Filip Skokan) #​59491
• [4fe383e45a] - (SEMVER-MINOR) crypto: support ML-DSA spki/pkcs8 key formats in Web Cryptography (Filip Skokan) #​59365
• [a95386fbf9] - (SEMVER-MINOR) crypto: subject some algorithms in Web Cryptography on BoringSSL absence (Filip Skokan) #​59365
• [3f47a2fb63] - (SEMVER-MINOR) crypto: add ChaCha20-Poly1305 Web Cryptography algorithm (Filip Skokan) #​59365
• [6fcce9058a] - (SEMVER-MINOR) crypto: add subtle.getPublicKey() utility function in Web Cryptography (Filip Skokan) #​59365
• [76cde76429] - (SEMVER-MINOR) crypto: add SHA-3 Web Cryptography digest algorithms (Filip Skokan) #​59365
• [247d017501] - (SEMVER-MINOR) crypto: add SHAKE Web Cryptography digest algorithms (Filip Skokan) #​59365
• [f4fbcca5ce] - (SEMVER-MINOR) crypto: add SubtleCrypto.supports feature detection in Web Cryptography (Filip Skokan) #​59365
• [a55382214f] - (SEMVER-MINOR) crypto: support ML-DSA in Web Cryptography (Filip Skokan) #​59365
• [c38988c860] - crypto: fix EVPKeyCtxPointer::publicCheck() (Tobias Nießen) #​59471
• [61c3bcdc56] - (SEMVER-MINOR) crypto: support ML-KEM KeyObject (Filip Skokan) #​59461
• [0821b446fb] - deps: update undici to 7.14.0 (Node.js GitHub Bot) #​59507
• [b3af17c065] - deps: V8: cherry-pick 7b91e3e (Milad Fa) #​59485
• [9b69baf146] - deps: V8: cherry-pick 59d52e3 (Milad Fa) #​59485
• [b4f202c2f1] - doc: improve sqlite.backup() progress/fulfillment documentation (René) #​59598
• [40b217a2f9] - doc: clarify experimental platform vulnerability policy (Matteo Collina) #​59591
• [cf84fffea5] - doc: link to TypedArray.from() in signature (Aviv Keller) #​59226
• [4bf6ed0bf5] - doc: fix typos in environment_variables.md (PhistucK) #​59536
• [1784c35a49] - doc: add security incident reponse plan (Rafael Gonzaga) #​59470
• [[b962560240](https://redirect.githu...

v19.1.2

a414bc7 (Add /etc/machine-id symlink for node exporters, 2025-08-22)

v19.1.1

50a4108 (Add dbus and avahi supervised services to s6-overlay, 2025-08-21)

v19.1.0

ba3c19d (Add s6-overlay variant to replace systemd, 2025-08-12)

v19.0.2

Update Node.js to v24.6.0

Notable changes

• [471fe712b3] - (SEMVER-MINOR) cli: add NODE_USE_SYSTEM_CA=1 (Joyee Cheung) #​59276
• [38aedfbf73] - (SEMVER-MINOR) crypto: support ML-DSA KeyObject, sign, and verify (Filip Skokan) #​59259
• [201304537e] - (SEMVER-MINOR) zlib: add dictionary support to zstdCompress and zstdDecompress (lluisemper) #​59240
• [e79c93a5d0] - (SEMVER-MINOR) http: add server.keepAliveTimeoutBuffer option (Haram Jeong) #​59243
• [c144d69efc] - lib: docs deprecate _http_* (Sebastian Beltran) #​59293
• [aeb4de55a7] - (SEMVER-MINOR) fs: port SonicBoom module to fs module as Utf8Stream (James M Snell) #​58897
• [f7484575ff] - assert: change utils to use index instead of for...of (방진혁) #​59278
• [269cd16185] - benchmark: remove deprecated _extend from benchmark (Rafael Gonzaga) #​59228
• [848e49c20b] - benchmark: add fs warmup to writefile-promises (Bruno Rodrigues) #​59215
• [8c609be1b1] - benchmark: add calibrate-n script (Rafael Gonzaga) #​59186
• [6a3bf772d8] - build: fix node_use_sqlite for GN builds (Shelley Vohr) #​59017
• [a312e706cf] - crypto: prepare webcrypto key import/export for modern algorithms (Filip Skokan) #​59284
• [3a7c2c3a47] - deps: update ada to 3.2.7 (Node.js GitHub Bot) #​59336
• [8d9ceeaf6a] - deps: update archs files for openssl-3.5.2 (Node.js GitHub Bot) #​59371
• [33b06df354] - deps: upgrade openssl sources to openssl-3.5.2 (Node.js GitHub Bot) #​59371
• [fa70f1af77] - deps: support madvise(3C) across ALL illumos revisions (Dan McDonald) #​58237
• [f834a6be59] - deps: update undici to 7.13.0 (Node.js GitHub Bot) #​59338
• [db2417487e] - deps: update sqlite to 3.50.4 (Node.js GitHub Bot) #​59337
• [41978adb08] - deps: V8: backport 493cb53 (Chengzhong Wu) #​59238
• [05667991ca] - deps: V8: backport 1c3e018 (Renegade334) #​58818
• [fd61588bb4] - doc: rename x509.extKeyUsage to x509.keyUsage (Filip Skokan) #​59332
• [a271ae4360] - doc: fix Pbkdf2Params hash attribute heading (Filip Skokan) #​59395
• [72cfff165b] - doc: fix missing reference links for server.keepAliveTimeoutBuffer (Lee Jiho) #​59356
• [8341916772] - doc: fix grammar in global dispatcher usage (Eng Zer Jun) #​59344
• [e3e489706b] - doc: run license-builder (github-actions[bot]) #​59343
• [46527e8cea] - doc: correct orthography eg. → e.g. (Jacob Smith) #​59329
• [d140c3713e] - doc: clarify the need of compiler compatible with c++20 (Rafael Gonzaga) #​59297
• [95e9cabf9d] - doc: clarify release candidate stability index (Filip Skokan) #​59295
• [a056dd36d2] - doc: add WDYT to glossary (btea) #​59280
• [1e2c52f5c4] - doc: add manpage entry for --use-system-ca (Joyee Cheung) #​59273
• [31a46fdeb4] - doc: add path.join and path.normalize clarification (Rafael Gonzaga) #​59262
• [cff3725ff9] - doc: fix typo in test/common/README.md (Yoo) #​59180
• [31a9283591] - doc: add note on process memoryUsage (fengmk2) #​59026
• [5a98bff6b8] - doc: format safely for doc-kit (Aviv Keller) #​59229
• [95b8b7ea5c] - domain: remove deprecated API call (Alex Yang) #​59339
• [2990f178bd] - fs: fix glob TypeError on restricted dirs (Sylphy-0xd3ac) #​58674
• [e2fb4caf9c] - fs: correct error message when FileHandle is transferred (Alex Yang) #​59156
• [0fb005a53f] - http2: set Http2Stream#sentHeaders for raw headers (Darshan Sen) #​59244
• [e055539604] - lib: add trace-sigint APIs (theanarkh) #​59040
• [d2183d860a] - lib: optimize writable stream buffer clearing (Yoo) #​59406
• [47543a7e17] - lib: handle windows reserved device names on UNC (Rafael Gonzaga) #​59286
• [c6911f0717] - lib: do not modify prototype deprecated asyncResource (RafaelGSS) #​59195
• [3c88b769bb] - lib: restructure assert to become a class (Miguel Marcondes Filho) #​58253
• [e91b54df59] - lib: handle superscript variants on windows device (Rafael Gonzaga) #​59261
• [4ee467905d] - lib: use validateString (hotpineapple) #​59296
• [c89b67e681] - lib: add type names in source mapped stack traces (Chengzhong Wu) [#​58976](https://redirect.github.com/nodejs/node/pull/5...