(address . guix-patches@gnu.org)(name . Jelle Licht)(address . jlicht@fsfe.org)
From: Jelle Licht <jlicht@fsfe.org>
Hey folks,
As our current node-lts package has quite some security issues, here a bump to a recent release of something that is maintained. After this has been merged, a version bump to the Active LTS version of node (22) is in the works as well.
I also opted to finally move everything and everyone away from the (very insecure) node@10/node-bootstrap package in this series. In case it makes sense to add a deprecated package alias for the now-removed `node` variable, please let me know; I sincerely hope nobody was still using node@10 anywhere.
guix refresh tells me the following:
Building the following 126 packages would ensure 223 dependent packages are rebuilt.
I'd appreciate a reminder as to whether this means this can go straight to master, or rather should be relegated to a specialised branch for the merge train(s).
Jelle Licht (20):
gnu: node: Replace customized nghttp2-for-node by nghttp2.
gnu: Remove nghttp2-for-node.
gnu: node-lts: Replace customized c-ares-for-node by c-ares.
gnu: Remove c-ares-for-node.
gnu: Add libuv-for-node-lts.
gnu: llhttp-bootstrap: Update to 8.1.2.
gnu: node-lts: Update to 20.18.0 [security fixes].
gnu: r-v8: Fix build with node-lts@20.
gnu: cwltool: Use node-lts instead of node.
gnu: python-cwl-utils: Use node-lts instead of node.
gnu: ocaml-ezjsonm: Use node-lts instead of node.
gnu: js-of-ocaml: Use node-lts instead of node.
gnu: fmp: Use node-lts instead of node.
gnu: python-cloudscraper: Use node-lts instead of node.
gnu: qtwebengine-5: Use node-lts instead of node.
gnu: ruby-autoprefixer-rails: Use node-lts instead of node.
gnu: ruby-execjs: Use node-lts instead of node.
gnu: vlang: Use node-lts instead of node.
gnu: esbuild-node: Use node-lts instead of node.
gnu: node: Rename variable node-bootstrap and hide package.
gnu/packages/adns.scm | 22 ----------
gnu/packages/bioinformatics.scm | 4 +-
gnu/packages/cran.scm | 2 +-
gnu/packages/libevent.scm | 24 +++++++++++
gnu/packages/node.scm | 67 +++++++++++++++++++----------
gnu/packages/ocaml.scm | 4 +-
gnu/packages/package-management.scm | 2 +-
gnu/packages/python-web.scm | 2 +-
gnu/packages/qt.scm | 2 +-
gnu/packages/rails.scm | 2 +-
gnu/packages/ruby.scm | 2 +-
gnu/packages/vlang.scm | 2 +-
gnu/packages/web.scm | 39 +----------------
13 files changed, 82 insertions(+), 92 deletions(-)
base-commit: a26ba23cdd476cb5eb8378c4785ccf1bc4145f17
--
2.46.0