Skip to content

[pull] main from nodejs:main #56

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
pull wants to merge 2,758 commits into
base: main
Choose a base branch
from
Open

[pull] main from nodejs:main #56

pull wants to merge 2,758 commits into from

Conversation

@pull
Copy link

@pull pull bot commented May 26, 2022
edited
Loading

See Commits and Changes for more details.

Created by pull[bot] (v2.0.0-alpha.4)

Can you help keep this open source service alive? 💖 Please sponsor : )

@pull pull bot added ⤵️ pull merge-conflict Resolve conflicts manually labels May 26, 2022
@pull pull bot removed the Extra Large label Jan 17, 2023
@pull pull bot removed the Extra Large label Jan 25, 2023
@pull pull bot removed the Extra Large label Feb 2, 2023
@pull pull bot removed the Extra Large label Feb 3, 2023
@pull pull bot removed the Extra Large label Feb 8, 2023
@pull pull bot removed the Extra Large label Feb 12, 2023
@pull pull bot removed the Extra Large label Feb 14, 2023
@pull pull bot removed the Extra Large label Feb 17, 2023
@pull pull bot removed the Extra Large label Feb 22, 2023
@pull pull bot removed the Extra Large label Feb 22, 2023
@pull pull bot removed the Extra Large label Feb 27, 2023
@pull pull bot removed the Extra Large label Mar 8, 2023
@pull pull bot removed the Extra Large label Mar 11, 2023
malav2110 and others added 30 commits January 5, 2026 17:19
@malav2110
feat(ui): Added Skip To Content (#8514)
db3bed3 
* feat(ui): Added Skip To Content

* feat(ui): moved Skip to Content as a component, added test and storybook file

* feat(tests): remove SkipToContentButton test file

* feat(ui): refactor SkipToContentButton to use children prop instead of label

* feat(ui): update WithNavBar component structure for improved accessibility
@72umesh
fix(a11y): wrap SidebarItem with <li> in SidebarGroup (#8515)
8c5a7dd 
* fix(a11y): wrap SidebarItem with <li> in SidebarGroup

* refactor(a11y): move <li> wrapper from SidebarGroup to SidebarItem
@ovflowd
meta: bump ui-components to 1.5.2
7adb256 
Signed-off-by: Claudio Wunder <cwunder@gnome.org>
@avivkeller
chore(ci): bump scorecard (#8500)
914daa3 
* chore(ci): bump scorecard

Signed-off-by: Aviv Keller <me@aviv.sh>

* Update scorecard.yml

Signed-off-by: Aviv Keller <me@aviv.sh>

* Update permissions and workflow reference in scorecard

Signed-off-by: Aviv Keller <me@aviv.sh>

---------

Signed-off-by: Aviv Keller <me@aviv.sh>
@canerakdas
fix: search modal overflow (#8523)
40f4182 
* fix: search modal overflow

* chore: bump version
@RafaelGSS
Blog: update to new target date for security release (#8524)
59468e4 
* Blog: update to new target date for security release

* Update apps/site/site.json

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Rafael Gonzaga <rafael.nunu@hotmail.com>

---------

Signed-off-by: Rafael Gonzaga <rafael.nunu@hotmail.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@RafaelGSS
Blog: postpone security release to Tuesday 13 (#8526)
274f68a
@aduh95
fix: semantic version in release blog posts (#8520)
0555e2f
@avivkeller
chore(downloads): remove devbox (#8527)
d394514
@malav2110
feat(ui): implement sidebar scroll position preservation (#8517)
0743e54 
* feat(ui): implement sidebar scroll position preservation

* fix: correct import statements for hooks in withSidebar component

* fix: correct comment grammar, improve sidebar component display name and fixed potential memory leak issue in useNavigationState

* fix: streamline imports in withSidebar component and update pathname handling in Sidebar

* fix: remove unused imports and ensure 'use client' directive is present in Sidebar component

* fix: replace useNavigationState with useScrollToElement in WithSidebar component and add scroll handling functionality

* fix: clarify comment in handleScroll function to improve code readability

* fix:  addressed nitpicks and ran pnpm version path in ui-components directory

* fix: remove unnecessary 'use client' directive from Sidebar component

* fix: improve sidebar pathname handling

* fix: remove unused locale handling from WithSidebar component

---------

Signed-off-by: Malav Shah <shahmalav1995@gmail.com>
@avivkeller
feat(ci): pnpm updater (#8532)
6aa22fc 
* feat(ci): pnpm updater

* Update .github/workflows/pnpm-updater.yml

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Aviv Keller <me@aviv.sh>

* feat(ci): pnpm updater

* feat(ci): pnpm updater

---------

Signed-off-by: Aviv Keller <me@aviv.sh>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@nodejs-crowdin @crowdin-bot @github-merge-queue
[automated]: crowdin sync (#8530)
3dff177 
* chore: synced translations from crowdin

* chore: automated format of translated files

Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>

---------

Signed-off-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: Crowdin Bot <support+bot@crowdin.com>
Co-authored-by: github-merge-queue <118344674+github-merge-queue@users.noreply.github.com>
@github-actions @create-or-update-pull-request
feat(blog): create post for v25.3.0 (#8537)
d8fa2cf 
Co-authored-by: Create or Update Pull Request Action <create-or-update-pull-request@users.noreply.github.com>
@github-actions @create-or-update-pull-request
feat(blog): create post for v24.13.0 (#8536)
335bfa6 
Co-authored-by: Create or Update Pull Request Action <create-or-update-pull-request@users.noreply.github.com>
@github-actions @create-or-update-pull-request
feat(blog): create post for v20.20.0 (#8535)
8f22da6 
Co-authored-by: Create or Update Pull Request Action <create-or-update-pull-request@users.noreply.github.com>
@RafaelGSS
Blog: add January 13 security release (#8538)
632645e 
* Blog: add January 13 security release

* Update apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Rafael Gonzaga <rafael.nunu@hotmail.com>

* Update apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Rafael Gonzaga <rafael.nunu@hotmail.com>

---------

Signed-off-by: Rafael Gonzaga <rafael.nunu@hotmail.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@github-actions @create-or-update-pull-request
meta: update pnpm from 10.24.0 to 10.28.0 (#8534)
5785880 
Co-authored-by: Create or Update Pull Request Action <create-or-update-pull-request@users.noreply.github.com>
@github-actions @create-or-update-pull-request
feat(blog): create post for 22.22.0 (#8539)
9ef4468 
Co-authored-by: Create or Update Pull Request Action <create-or-update-pull-request@users.noreply.github.com>
@RafaelGSS @avivkeller @marco-ippolito
Blog: fix formatting on sec release changelog (#8540)
cc979e1 
* Blog: fix formatting on sec release changelog

* fix version name

Signed-off-by: Aviv Keller <me@aviv.sh>

* Apply suggestion from @marco-ippolito

Co-authored-by: Marco Ippolito <marcoippolito54@gmail.com>
Signed-off-by: Aviv Keller <me@aviv.sh>

* Update apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md

Co-authored-by: Marco Ippolito <marcoippolito54@gmail.com>
Signed-off-by: Aviv Keller <me@aviv.sh>

* Update apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md

Co-authored-by: Marco Ippolito <marcoippolito54@gmail.com>
Signed-off-by: Aviv Keller <me@aviv.sh>

---------

Signed-off-by: Aviv Keller <me@aviv.sh>
Co-authored-by: Aviv Keller <me@aviv.sh>
Co-authored-by: Marco Ippolito <marcoippolito54@gmail.com>
@mcollina @joyeecheung
blog: add DoS mitigation post for async_hooks stack exhaustion (#8542)
f0cb063 
* blog: add DoS mitigation post for async_hooks stack exhaustion

Add blog post explaining the vulnerability where stack overflow errors
became uncatchable when async_hooks was enabled, affecting React Server
Components, Next.js, and APM tools.

Co-Authored-By: Joyee Cheung <joyeec9h3@gmail.com>

* blog: reorganize sections per review feedback

---------

Co-authored-by: Joyee Cheung <joyeec9h3@gmail.com>
@malav2110
fix(blog): remove duplicate blog title for jan 2026 (#8545)
33d0e41
@joyeecheung
blog: link to post about stack limits in security release post (#8546)
a371141
@RafaelGSS @joyeecheung
Blog: change impact for CVE-2025-59464 (#8550)
7a949e8 
* Blog: change impact for CVE-2025-59464

* Update apps/site/pages/en/blog/vulnerability/december-2025-security-releases.md

Co-authored-by: Joyee Cheung <joyeec9h3@gmail.com>
Signed-off-by: Rafael Gonzaga <rafael.nunu@hotmail.com>

---------

Signed-off-by: Rafael Gonzaga <rafael.nunu@hotmail.com>
Co-authored-by: Joyee Cheung <joyeec9h3@gmail.com>
@joyeecheung
blog: clarify in async hook DoS post and add CWE pointers (#8556)
ec36423 
* blog: clarify in async hook DoS post and add CWE pointers

It seems there are still some confusions from how this weakness works,
especially since APM tools are only part of the reproduction but are
not vulnerable per-se. This patch tries to clarify a bit and add
some pointers to the CWEs that apply.

* Update apps/site/pages/en/blog/vulnerability/january-2026-dos-mitigation-async-hooks.md

Signed-off-by: Joyee Cheung <joyeec9h3@gmail.com>

* Update apps/site/pages/en/blog/vulnerability/january-2026-dos-mitigation-async-hooks.md

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
Signed-off-by: Joyee Cheung <joyeec9h3@gmail.com>

* fixup! blog: clarify in async hook DoS post and add CWE pointers

---------

Signed-off-by: Joyee Cheung <joyeec9h3@gmail.com>
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
@aduh95
fix: make version refs consistent in the blog post (#8554)
46e0f2b 
Signed-off-by: Antoine du Hamel <duhamelantoine1995@gmail.com>
@github-actions @create-or-update-pull-request
feat(blog): create post for v25.4.0 (#8558)
8f8f8c5 
Co-authored-by: Create or Update Pull Request Action <create-or-update-pull-request@users.noreply.github.com>
@malav2110
fix(ui): Learn Page Landmark Accessibility issues (#8551)
79d8c91 
* fix(ui): Learn Page Landmark Accessibility issues

* fix(ui): remove role attribute from Banner component for accessibility compliance

* fix(ui): enhance aria label for Banner and Metabar as a prop

* fix(i18n): update banner aria labels for improved accessibility
@RafaelGSS @aduh95
Blog: Add hackerone new policy (#8559)
dbf3711 
* Blog: add HackerOne signal 1 post

* Apply suggestions from code review

Co-authored-by: Antoine du Hamel <duhamelantoine1995@gmail.com>

* fixup! Blog: add HackerOne signal 1 post

* fixup! fixup! Blog: add HackerOne signal 1 post

---------

Co-authored-by: Antoine du Hamel <duhamelantoine1995@gmail.com>
@ovflowd
hotfix: remove outdated domain
cf62bb9 
Removed duplicate donation call and updated crowdfunding campaign link.

Closes #8553

Signed-off-by: Claudio Wunder <cwunder@gnome.org>
@araujogui
feat: create toc component (#8560)
17546fc 
* feat: create toc component

* refactor(ui-components): review

* fix: custom anchor component

* refactor: review

* feat: i18n prop

* choire: patch version

* review(ui-components): some nits
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

⤵️ pull merge-conflict Resolve conflicts manually

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.