👷 Update Node.js to v26

[renovate]

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Type	Update	Change	Pending
node	stage	major	25.9.0-bookworm-slim → 26.2.0-bookworm-slim	26.3.0-bookworm-slim

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

nodejs/node (node)

v26.2.0: 2026-05-20, Version 26.2.0 (Current), @​aduh95

Compare Source

Notable Changes

• [189d43a193] - doc: mark stream.compose stable (Matteo Collina) #​62562
• [f858c6140e] - (SEMVER-MINOR) fs: add Temporal.Instant support to Stats and BigIntStats (Livia Medeiros) #​60789
• [0cbb3895df] - (SEMVER-MINOR) http: add writeInformation to send arbitrary 1xx status codes (Tim Perry) #​63155

Commits

• [9a394bab84] - benchmark: respect stream/iter broadcast backpressure (Trivikram Kamat) #​63314
• [ad98b4620b] - crypto: align verifyOneShot accepted types (Anshika Jain) #​63280
• [ba0736a847] - crypto: wire ML-DSA and ML-KEM for use when using BoringSSL (Filip Skokan) #​63255
• [5573a6a4a8] - crypto: wire ChaCha20-Poly1305 in Web Cryptography when using BoringSSL (Filip Skokan) #​63255
• [7dc563b8d6] - crypto: wire AES-KW in Web Cryptography when using BoringSSL (Filip Skokan) #​63255
• [b55e2b1f4d] - crypto: improve system certificate enumeration logic on macOS (Robo) #​62576
• [fd509a755a] - crypto: harden CryptoKey algorithm slots (Filip Skokan) #​63111
• [8657df39e7] - crypto: harden KeyObject internal slots (Filip Skokan) #​63111
• [729274e046] - crypto: reject invalid raw key imports (Filip Skokan) #​63134
• [8fc9cb9c01] - crypto: improve accuracy of SubtleCrypto.supports (Filip Skokan) #​63104
• [288065cb3f] - crypto: optimize normalizeAlgorithm dispatch hot path (Filip Skokan) #​62756
• [ecf3797d09] - debugger: disambiguate probe location binding (Joyee Cheung) #​63286
• [bdc57135fd] - debugger: add --help to node inspect and improve docs (Joyee Cheung) #​63201
• [2a6e6058e9] - deps: update undici to 8.3.0 (Node.js GitHub Bot) #​63377
• [327b927271] - deps: update corepack to 0.35.0 (Node.js GitHub Bot) #​63375
• [5828fadf52] - deps: update sqlite to 3.53.1 (Node.js GitHub Bot) #​63217
• [fe127a999b] - deps: update simdjson to 4.6.4 (Node.js GitHub Bot) #​62811
• [a34c4ea159] - deps: V8: cherry-pick 435a2cd (Matthias Liedtke) #​63136
• [ad91efcc43] - deps: cherry-pick libuv/libuv@a43e543 (Ali Hassan) #​63222
• [5ea6c3ee7e] - deps: add missing static linking targets for libffi (Paolo Insogna) #​63168
• [c1f6ba22b4] - deps: update ngtcp2 to 1.22.1 (Node.js GitHub Bot) #​62812
• [7b8767ef76] - doc: remove unsupported template type from v8.md (René) #​63410
• [b2ec1880b1] - doc: fix promise nomenclature in stream_iter.md (Antoine du Hamel) #​63406
• [cf6cbbd39d] - doc: fix article usage before vowel-sound acronyms (joao-oliveira-softtor) #​62696
• [da05065d98] - doc: remove the bi-monthly contributor spotlight section (Claudio Wunder) #​62734
• [c31f320fba] - doc: update http2's push and trailers events with rawHeaders param (YuSheng Chen) #​63259
• [f0d008439b] - doc: add Rust toolchain manual installation instructions Windows (Mike McCready) #​63367
• [68b1220fbd] - doc: remove inactive members from Triagers list (Antoine du Hamel) #​63329
• [189d43a193] - doc: mark stream.compose stable (Matteo Collina) #​62562
• [c4fb894039] - doc: fix CHANGELOG (Richard Lau) #​63292
• [9f319a77e4] - doc: reference correct function in Module docs (Robin Malfait) #​63247
• [2c13acc88e] - doc: replace Visual Studio 2022 Evergreen version reference with 17.14 (Mike McCready) #​63211
• [7e42c336c9] - doc: recommend explicitly Tier 1 or 2 for production applications (Mike McCready) #​63187
• [d99e0bb6d5] - doc: document Temporal configure flags in BUILDING.md (ChrisJr404) #​63248
• [c0ea77b305] - doc: run license-builder (github-actions[bot]) #​63232
• [8265aba0f4] - doc: add large pull requests contributing guide (Matteo Collina) #​62829
• [be241bacc8] - doc: remove unnecessary <!-- eslint- magic comments (Antoine du Hamel) #​63200
• [e0b1f092c3] - doc: fix inconsistencies in CJS code snippets (Antoine du Hamel) #​63199
• [a3feb15871] - doc: clarify SEA platform support excludes darwin-x64 (MJSHANG) #​63181
• [cafd7667fc] - doc: improve quic documentation (James M Snell) #​63157
• [3c784edb6f] - doc: update release steps when post-release fails (Rafael Gonzaga) #​63131
• [9de954e9be] - doc: fix deprecation list in 26.0.0 changelog (Antoine du Hamel) #​63147
• [20c553e456] - doc: add Hmac.digest() documentation-only deprecation (DEP0206) (Anshika Jain) #​63121
• [3494eae2c8] - doc: document the latest-vX.x schema (Marco Ippolito) #​63033
• [c02413d29d] - doc: remove list of versions in BUILDING.md (Antoine du Hamel) #​63113
• [53f9a902a1] - doc,sqlite: document entryPoint argument for loadExtension (Edy Silva) #​63152
• [f858c6140e] - (SEMVER-MINOR) fs: add Temporal.Instant support to Stats and BigIntStats (Livia Medeiros) #​60789
• [b2ba62ca0e] - fs: make Date properties on Stats enumerable (LiviaMedeiros) #​63328
• [0cbb3895df] - (SEMVER-MINOR) http: add writeInformation to send arbitrary 1xx status codes (Tim Perry) #​63155
• [f712e6856e] - http2: validate non-link headers in writeEarlyHints (Matteo Collina) #​62017
• [3acadae676] - lib: fix typo idenity => identity (Daijiro Wachi) #​63112
• [460329e886] - lib: fixes validator message (Daijiro Wachi) #​62823
• [9438c832b2] - lib: narrow ReadableStreamBYOBRequest.view return type to Uint8Array (RoomWithOutRoof) #​63017
• [c7d27c82c4] - lib: handle --permission-audit when propagating flags (Rafael Gonzaga) #​63047
• [9f19915276] - lib: optimize webidl conversion options (Filip Skokan) #​62756
• [771afd626a] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) #​63402
• [67d094a554] - meta: move one or more collaborators to emeritus (Node.js GitHub Bot) #​63235
• [9091398f3d] - meta: ignore AI assistants files (Matteo Collina) #​62612
• [96f19a16d0] - module: fix sync hook short-circuit in require() in imported CJS (Joyee Cheung) #​62920
• [45f3e3ef11] - node-api: support SharedArrayBuffer in napi_create_typedarray (Yilong Li) #​62710
• [d7afa617bb] - quic: send correct OpenSSL alert for ALPN mismatches (Tim Perry) #​63193
• [526313beb8] - quic: fixup quic stream variable chunk len (James M Snell) #​63230
• [1613c7fe70] - quic: support --allow-net permissions (James M Snell) #​63184
• [72ab7444a8] - quic: remove unused env_ variable in session_manager.h/cc (James M Snell) #​63177
• [2b55656778] - quic: remove unused binding variable in session.cc (James M Snell) #​63177
• [83f0d37400] - quic: ignore coverage for quic files (James M Snell) #​63149
• [7e6b77b14d] - quic: complete the internal implementation of QUIC (James M Snell) #​62876
• [71372418f1] - repl: fix dedup comparing normalized line against raw history (Daijiro Wachi) #​62886
• [20f40c2c25] - sqlite: keep source database alive during backup (Matteo Collina) #​62673
• [592f741bd0] - src: simplify OpenSSL feature gates (Filip Skokan) #​63255
• [520ab7ad40] - src: add BoringSSL EVP enumeration fallback (Filip Skokan) #​63206
• [12be49acbc] - src: support multiple versions in node.config.json (Marco Ippolito) #​63033
• [296f907585] - src: remove unused using declarations in node_task_queue (Mert Can Altin) #​63144
• [7703f11b3c] - src: skip JS callback for settled Promise.race losers (Felipe Coelho) #​62336
• [74ab710c3a] - src,sqlite: remove dead code (Edy Silva) #​63204
• [e49154f4c8] - stream: add sync iterable fast path to pipeTo (Trivikram Kamat) #​63318
• [537455e98d] - stream: fix merge handling for object-like sources (Trivikram Kamat) #​63356
• [e21b8a47f0] - stream: limit iter from sync iterable batches (Trivikram Kamat) #​63324
• [3bdb64dc67] - stream: cache minimum cursor count in broadcast (Trivikram Kamat) #​63322
• [81819add6b] - stream: remove unnecessary check (Antoine du Hamel) #​63030
• [22e3579d74] - stream: avoid retrying accepted pipeTo writes (Trivikram Kamat) #​63297
• [691915ea94] - stream: validate broadcast writer writev chunks (Trivikram Kamat) #​63300
• [253f5f4ca2] - stream: uncork fromWritable writev on chunk error (Trivikram Kamat) #​63295
• [aa6913cc4a] - stream: validate fromWritable() options before cache (Trivikram Kamat) #​63278
• [6c53ddb988] - stream: optimize single-slot push queue drain (Trivikram Kamat) #​63274
• [b568649f6f] - stream: preserve toReadableSync batch after backpressure (Trivikram Kamat) #​63276
• [cdcefd7e2f] - stream: cache minimum cursor count in share (Trivikram Kamat) #​63262
• [ba7000e4f7] - stream: minor stream/iter implementation edits (René) #​63132
• [c694999ab8] - test: disable Maglev in near-heap-limit worker test (Trivikram Kamat) #​63398
• [a6d6d51c1b] - test: deflake connection refused proxy tests (Trivikram Kamat) #​63395
• [31d89c4f59] - test: avoid repeated writes in watch helper (Trivikram Kamat) #​63386
• [6f3587c773] - test: deflake watch mode worker test (Trivikram Kamat) #​63384
• [a57aebaa73] - test: update tls/crypto behaviour expectations when using BoringSSL (Filip Skokan) #​63161
• [b871cff2db] - test: relax test-memory-usage arrayBuffers check (inoway46) #​63244
• [25189bcb95] - test: reduce flakiness of different-registry-per-thread (Antoine du Hamel) #​63244
• [5bdb1f8426] - test: fix flaky test-watch-mode-inspect timeout (Matteo Collina) #​63361
• [d57bd2bf59] - test: relax min assertion in test-performance-eventloopdelay (Marco) #​63100
• [014e1f00c1] - test: avoid flaky restart sync in debugger exceptions test (Yuya Inoue) #​62055
• [dd28ff8a80] - test: avoid initial-break wait in restart-message (inoway46) #​62060
• [e89a49a13a] - test: move FFI tests to NATIVE_SUITES (Antoine du Hamel) #​63165
• [51ef0258ba] - test: update WPT for wasm/jsapi to 288c467 (Node.js GitHub Bot) #​63136
• [c0175a9ba1] - test: use ERM to destroy sqlite database handles after tests (René) #​63076
• [83054e8aba] - test_runner: avoid hanging on incomplete v8 frames (Ali Hassan) #​62704
• [4f1426d361] - test_runner: fix hooks test context (Moshe Atlow) #​63285
• [6a4c4b7193] - test_runner: fix diagnostics channel context tracking (Moshe Atlow) #​63283
• [eba9c3481b] - test_runner: add tags option and tag-name filter (Chemi Atlow) #​63221
• [2ba124f23b] - tls: add unsupported renegotiation error (Filip Skokan) #​63161
• [7c5048495a] - tools: bump the eslint group in /tools/eslint with 4 updates (dependabot[bot]) #​63075
• [6c574110a7] - tools: update gyp-next to 0.22.2 (Node.js GitHub Bot) #​63374
• [f14ed762b3] - tools: add boringssl to tools/nix/openssl-matrix.nix (Filip Skokan) #​63206
• [14d3924c48] - tools: fix test426 updater (Antoine du Hamel) #​63271
• [0d017ece8d] - tools: filter V8 scripts for build toolchain (Richard Lau) #​63069
• [3859a8700e] - tools: use different branch for tool updates on staging branches (Antoine du Hamel) #​63110
• [4a32ed82bd] - tools: prevent lib code from reading KeyObject and CryptoKey accessors (Filip Skokan) #​63111

v26.1.0: 2026-05-07, Version 26.1.0 (Current), @​aduh95

Compare Source

Notable Changes

Experimental node:ffi module

Node.js now includes an experimental node:ffi module for loading dynamic
libraries and calling native symbols from JavaScript.

The API is gated behind the --experimental-ffi flag and, when the Permission
Model is enabled, requires --allow-ffi.

This API is inherently unsafe. Invalid pointers, incorrect signatures, or accessing memory
after it has been freed can crash the process or corrupt memory.

Contributed by Paolo Insogna in #​62072.

Other Notable Changes

• [34a6454fe3] - (SEMVER-MINOR) buffer: add end parameter (Robert Nagy) #​62390
• [073e84d7fe] - (SEMVER-MINOR) crypto: accept key data in crypto.diffieHellman() and cleanup DH jobs (Filip Skokan) #​62527
• [5b9cb10a5f] - (SEMVER-MINOR) crypto: implement randomUUIDv7() (nabeel378) #​62553
• [98f9becd16] - (SEMVER-MINOR) debugger: add edit-free runtime expression probes to node inspect (Joyee Cheung) #​62713
• [06defaa2ea] - (SEMVER-MINOR) fs: add signal option to fs.stat() (Mert Can Altin) #​57775
• [db66a963bf] - (SEMVER-MINOR) fs: expose frsize field in statfs (Jinho Jang) #​62277
• [87adb3472b] - (SEMVER-MINOR) http: harden ClientRequest options merge (Matteo Collina) #​63082
• [9047ec12ce] - (SEMVER-MINOR) http: add req.signal to IncomingMessage (Akshat) #​62541
• [ab66de8eaa] - (SEMVER-MINOR) process: throw on execve(2) failure instead of aborting (Bryan English) #​62878
• [8273682c87] - (SEMVER-MINOR) src: allow empty --experimental-config-file (Marco Ippolito) #​61610
• [fbff28f7e6] - (SEMVER-MINOR) stream: propagate destruction in duplexPair (Ahmed Elhor) #​61098
• [a8c773a0c7] - (SEMVER-MINOR) test_runner: align mock timeout api (sangwook) #​62820
• [b883a5eaea] - (SEMVER-MINOR) test_runner: add mock-timers support for AbortSignal.timeout (DeveloperViraj) #​60751
• [a21ae1771e] - (SEMVER-MINOR) test_runner: support test order randomization (Pietro Marchini) #​61747
• [b85c73ff10] - (SEMVER-MINOR) util: colorize text with hex colors (Guilherme Araújo) #​61556

Commits

• [1b959d02c2] - assert,util: fix stale nested cycle memo entries (Ruben Bridgewater) #​62509
• [bbeb38d210] - buffer: fix end parameter bugs in indexOf/lastIndexOf (Robert Nagy) #​62711
• [34a6454fe3] - (SEMVER-MINOR) buffer: add end parameter (Robert Nagy) #​62390
• [8b91526cd5] - build: track PDL files as inputs in inspector GN build (Robo) #​62888
• [da40ed7842] - build: remove armv6 from experimental platforms (René) #​63063
• [b36e55a23e] - build: make test-addons dependency-free (Joyee Cheung) #​62388
• [c27f3cf8f2] - build: add --enable-all-experimentals build flag (Paolo Insogna) #​62755
• [0d73b63a76] - build: fix cargo check when Temporal is disabled (Antoine du Hamel) #​62730
• [d8f97e6f7b] - build: fix ffi dependency compilation (Paolo Insogna) #​62731
• [d1eb7b340f] - build: fix stray debug string in LIEF defines (Om Ghante) #​62683
• [845283009d] - build: remove redundant -fuse-linker-plugin from GCC LTO flags (Daniel Lando) #​62667
• [a6e99879f4] - build,win: enable x64 PGO (Stefan Stojanovic) #​62761
• [38befee0fb] - crypto: add JWK support for ML-KEM and SLH-DSA key types (Filip Skokan) #​62706
• [b10653ad87] - crypto: add guards and adjust tests for BoringSSL (Filip Skokan) #​62883
• [2a7a69c6b0] - crypto: reject unintended raw key format string input (Filip Skokan) #​62974
• [bad1e2fe6a] - crypto: fix unsigned conversion of 4-byte RSA publicExponent (DeepView Autofix) #​62839
• [c9d5bae598] - crypto: remove Argon2 KDF derivation from its job setup (Filip Skokan) #​62863
• [6eea52426f] - crypto: reject duplicate ML-KEM JWK key_ops (Filip Skokan) #​62905
• [80d4836616] - crypto: deduplicate and canonicalize CryptoKey usages (Filip Skokan) #​62902
• [8950247027] - crypto: reject inherited key type names (Jonathan Lopes) #​62875
• [3f42f9615a] - crypto: strengthen argument CHECKs in TurboSHAKE (Tobias Nießen) #​62763
• [28346d999b] - crypto: guard against size_t overflow on experimental 32-bit arch (Filip Skokan) #​62626
• [d4cec263c4] - (SEMVER-MINOR) crypto: align key argument names in docs and error messages (Filip Skokan) #​62527
• [073e84d7fe] - (SEMVER-MINOR) crypto: accept key data in crypto.diffieHellman() and cleanup DH jobs (Filip Skokan) #​62527
• [518b578fe7] - crypto: add memory tracking for secureContext openssl objects (Mert Can Altin) #​59051
• [5b9cb10a5f] - (SEMVER-MINOR) crypto: implement randomUUIDv7() (nabeel378) #​62553
• [7133826053] - debugger: move ProbeInspectorSession and helpers to separate files (Joyee Cheung) #​63013
• [98f9becd16] - (SEMVER-MINOR) debugger: add edit-free runtime expression probes to node inspect (Joyee Cheung) #​62713
• [94ac62a2d1] - deps: update undici to 8.2.0 (Node.js GitHub Bot) #​63092
• [ef71de87e6] - deps: update amaro to 1.1.9 (Node.js GitHub Bot) #​63090
• [c4f0ef881a] - deps: update llhttp to 9.4.1 (Node.js GitHub Bot) #​63045
• [d29fbc0029] - deps: fix integration issues with the latest nghttp2 (Tim Perry) #​62891
• [537825acee] - deps: update nghttp2 to 1.69.0 (Node.js GitHub Bot) #​62891
• [4446bf694d] - deps: update corepack to 0.34.7 (Node.js GitHub Bot) #​62810
• [8f55327f1c] - deps: fix libffi macos build (Paolo Insogna) #​63006
• [3dee18f72f] - deps: patch V8 to 14.6.202.34 (Node.js GitHub Bot) #​62964
• [e281b247e6] - deps: update timezone to 2026b (Node.js GitHub Bot) #​62962
• [4dd982df13] - deps: upgrade npm to 11.13.0 (npm team) #​62898
• [61c0ff4a13] - deps: cherry-pick libuv/libuv@439a54b (skooch) #​62881
• [d26ca462ae] - deps: update undici to 8.1.0 (Node.js GitHub Bot) #​62728
• [6f08489ac9] - deps: update sqlite to 3.53.0 (Node.js GitHub Bot) #​62699
• [713601e8bd] - deps: update nbytes to 0.1.4 (Node.js GitHub Bot) #​62698
• [578cf1c0c1] - deps: update archs files for openssl-3.5.6 (Node.js GitHub Bot) #​62629
• [4a4ef13c67] - deps: upgrade openssl sources to openssl-3.5.6 (Node.js GitHub Bot) #​62629
• [2f3eca8c1e] - deps: update perfetto to 54.0 (Chengzhong Wu) #​62397
• [944ed9b739] - deps: add perfetto build files (Chengzhong Wu) #​62397
• [15530a7484] - deps: update ngtcp2 to 1.22.0 (Node.js GitHub Bot) #​62595
• [b813b4c4b5] - deps: update minimatch to 10.2.5 (Node.js GitHub Bot) #​62594
• [38e7ce58c5] - deps: update googletest to d72f9c8 (Node.js GitHub Bot) #​62593
• [b5c573ed14] - deps: update simdjson to 4.6.1 (Node.js GitHub Bot) #​62592
• [318e2c7cd3] - deps: libuv: cherry-pick aabb765 (Santiago Gimeno) #​62561
• [c6ccbd742a] - deps: libuv: reapply 3a9a6e3 (Andy Pan) #​62561
• [4ad07de7ae] - diagnostics_channel: add BoundedChannel and scopes (Stephen Belanger) #​61680
• [44416ea3fd] - doc: fix documentation history missing 25.9.0 (Antoine du Hamel) #​63151
• [5f6dfbf68e] - doc: fix changelog for chromium numbering (Rafael Gonzaga) #​63133
• [30c4b3658c] - doc: fix the TypeScript Execute (tsx) project link (David Thornton) #​63093
• [ca3c3097f1] - doc: minor structural stream/iter edits (René) #​63089
• [92324aab6f] - doc: remove typo comma from man page (Vas Sudanagunta) #​63080
• [712a15da73] - doc: correct diagnostics_channel built-in channel names (Bryan English) #​62995
• [c92cb6fe0d] - doc: use mjs/cjs blocks for callbackify null reason example (Daijiro Wachi) #​62884
• [020776d4d6] - doc: fix typo in test.md (Rich Trott) #​62960
• [7d52f2061e] - doc: correct typo in PR contribution instructions (Mike McCready) #​62738
• [70e8944676] - doc: fix duplicate word "of of" in postMessageToThread (Daijiro Wachi) #​62917
• [11c6c29284] - doc: fix duplicate word "to to" in util.styleText (Daijiro Wachi) #​62917
• [242adab671] - doc: fix duplicate word "for for" in compile cache (Daijiro Wachi) #​62917
• [b9f3abd63e] - doc: fix doubled word typo in stream_iter.md (Daijiro Wachi) #​62916
• [7a52fd0448] - doc: fix typo in dns.lookup options description (Daijiro Wachi) #​62882
• [acd7e18a8c] - doc: fix Argon2 parameter bounds (Tobias Nießen) #​62868
• [b43ecf40bb] - doc: trust FFI in the threat model (Paolo Insogna) #​62852
• [981ce96b03] - doc: fix typos and inconsistencies in crypto.md and webcrypto.md (Filip Skokan) #​62828
• [acc52ef257] - doc: clarify diffieHellman.generateKeys recomputes same key (Kit Dallege) #​62205
• [ae87597c07] - doc: remove Ayase-252 and meixg from triagger team (Antoine du Hamel) #​62841
• [1cd3694a5f] - doc: clarify dns.lookup() callback signature when all is true (eungi) #​62800
• [40a4337d65] - doc: add experimental modules lifetime policy (Paolo Insogna) #​62753
• [46f48222f8] - doc: clarify process._debugProcess() in Permission Model (Fahad Khan) #​62537
• [6eb9917497] - doc: fix typo in devcontainer guide (Rohan Santhosh Kumar) #​62687
• [3826c5ed7e] - doc: clarify Backport-PR-URL metadata added automatically (Mike McCready) #​62668
• [5d7e0dbbd8] - doc: update WPT test runner README.md (Filip Skokan) #​62680
• [e9d76b2a75] - doc: fix spelling in release announcement guidance (Rohan Santhosh Kumar) #​62663
• [1ae41cebb0] - doc: note GCC >= 14 requirement for native riscv64 builds (Jamie Magee) #​62607
• [9b29be6a28] - doc: note non-monotonic clock in crypto.randomUUIDv7 (nabeel378) #​62600
• [5ae59553f6] - doc: update bug bounty program (Rafael Gonzaga) #​62590
• [ce3f4c85dd] - doc: document TransformStream transformer.cancel option (Tom Pereira) #​62566
• [08a9ba73e4] - doc: mention test runner retry attemp is zero based (Moshe Atlow) #​62504
• [32f2169ede] - doc,src,test: fix dead inspector help URL (semimikoh) #​62745
• [870c1cd3f4] - doc,test: mem protection must be observed in ffi (Bryan English) #​62818
• [3d5cf171dc] - esm: add ERR_REQUIRE_ESM_RACE_CONDITION (Antoine du Hamel) #​62462
• [2004d8d6db] - ffi: make FFIFunctionInfo a BaseObject subclass (Anna Henningsen) #​63071
• [53eb7abeba] - ffi: prevent premature GC of DynamicLibrary (semimikoh) #​63024
• [58dc92f502] - ffi: support Symbol.dispose on DynamicLibrary (Matteo Collina) #​62925
• [528f8b2bae] - ffi: add shared-buffer fast path for numeric and pointer signatures (Bryan English) #​62918
• [42ac8b9ae7] - fs: add followSymlinks option to glob (Matteo Collina) #​62695
• [873c2bca70] - fs: restore fs patchability in ESM loader (Joyee Cheung) #​62835
• [349c7502c3] - fs: validate position argument before length === 0 early return (Edy Silva) #​62674
• [06defaa2ea] - (SEMVER-MINOR) fs: add signal option to fs.stat() (Mert Can Altin) #​57775
• [db66a963bf] - (SEMVER-MINOR) fs: expose frsize field in statfs (Jinho Jang) #​62277
• [3191d2936a] - http: emit 'drain' on OutgoingMessage only after buffers drain (Robert Nagy) #​62936
• [87adb3472b] - (SEMVER-MINOR) http: harden ClientRequest options merge (Matteo Collina) #​63082
• [e0b79633f6] - http: fix leaked error listener on sync HTTP req create + destroy (Tim Perry) #​62872
• [70c5491f53] - http: fix no_proxy leading-dot suffix matching (Daijiro Wachi) #​62333
• [60a585e68a] - http: cleanup pipeline queue (Robert Nagy) #​62534
• [9047ec12ce] - (SEMVER-MINOR) http: add req.signal to IncomingMessage (Akshat) #​62541
• [01eed5901b] - http2: expose writable stream state on compat response (T) #​63003
• [19b7adf3ba] - inspector: fix absolute URLs in network http (bugyaluwang) #​62955
• [4d10823fbb] - inspector: coerce key and value to string in webstorage events (Ali Hassan) #​62616
• [9a3ac66cc5] - inspector: return errors when CDP protocol event emission fails (Ryuhei Shima) #​62162
• [c89501c6e5] - inspector: auto collect webstorage data (Ryuhei Shima) #​62145
• [ef08c5016a] - lib: refactor internal webidl converters (Filip Skokan) #​62979
• [d0744c6a99] - lib: add Temporal to frozen intrinsics (René) #​63029
• [6d81cb17b3] - lib: avoid quadratic shift() in startup snapshot callback (Daijiro Wachi) #​62914
• [3491f73051] - lib: fix FLOAT_32 and FLOAT_64 type constants in ffi (Daijiro Wachi) #​62892
• [c4ca303b36] - lib: harden kKeyOps lookup with null prototype (Filip Skokan) #​62877
• [2e612fe070] - lib: short-circuit WebIDL BufferSource SAB check (Filip Skokan) #​62833
• [e850ee9c69] - lib: add new methods and error codes (Paolo Insogna) #​62762
• [e21b873589] - lib: use js-only implementation of isDataView() (René) #​62780
• [f454d1719d] - lib: fix lint in internal/webstreams/util.js (Filip Skokan) #​62806
• [fbd8ededba] - lib: fix sequence argument handling in Blob constructor (Ms2ger) #​62179
• [16860e6abd] - lib: improve Web Cryptography key validation ordering (Filip Skokan) #​62749
• [ba3f3e1753] - lib: reject SharedArrayBuffer in web APIs per spec (Ali Hassan) #​62632
• [d065e996bb] - lib: defer AbortSignal.any() following (sangwook) #​62367
• [[2a711f4b0c](https://redirect.github.com/nodejs/nod

✂ Note

PR body was truncated to here.

---

Configuration

📅 Schedule: (UTC)

• Branch creation
  • "every weekend"
• Automerge
  • At any time (no schedule defined)

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR was generated by Mend Renovate. View the repository job log.

[datadog-datadog-prod-us1-2]

 

✨ Fix all issues with BitsAI

⚠️ Warnings

🚦 1 Pipeline job failed

DataDog/browser-sdk | check-node-version     

See error

Command 'yarn' not found during script execution.

ℹ️ Info

No other issues found (see more)

🧪 All tests passed
❄️ No new flaky tests detected

🎯 Code Coverage (details)
• Patch Coverage: 100.00%
• Overall Coverage: 76.70% (+0.00%)

Useful? React with 👍 / 👎

_{This comment will be updated automatically if new data arrives.
🔗 Commit SHA: aaa23c0 | Docs | Datadog PR Page | Give us feedback!}

[cit-pr-commenter-54b7da]

Bundles Sizes Evolution

📦 Bundle Name	Base Size	Local Size	𝚫	𝚫%	Status
Rum	171.78 KiB	171.78 KiB	0 B	0.00%	✅
Rum Profiler	7.88 KiB	7.88 KiB	0 B	0.00%	✅
Rum Recorder	21.21 KiB	21.21 KiB	0 B	0.00%	✅
Logs	54.30 KiB	54.30 KiB	0 B	0.00%	✅
Rum Slim	129.68 KiB	129.68 KiB	0 B	0.00%	✅
Worker	22.96 KiB	22.96 KiB	0 B	0.00%	✅

[bdibon]

The ci-image job fails, it seems like the installation of playwright hangs forever after downloading Chrome. Will try again with a higher version of playwright.

[thomas-lebeau]

⛔ Blocked: ci-image rebuild hangs on Node 26 due to a Playwright bug

The CI image rebuild for this PR hangs indefinitely. The ci-image job reaches the Playwright browser install step (npx playwright@1.59.1 install --with-deps chromium firefox webkit), downloads Chromium to 100%, then deadlocks during extraction and never finishes.

Root cause: microsoft/playwright#40724 — a yauzl stream regression that deadlocks browser extraction on Node ≥ 24.16.0 / Node 26.x in Playwright < 1.60.0. Fixed in Playwright 1.60.0.

This PR can't go green on a CI-image rebuild alone — the rebuild itself is what's broken. It needs @playwright/test bumped to ≥ 1.60.0 first. Holding this PR until Renovate bumps Playwright on the branch (or a separate Playwright bump lands on main), then re-running the ci-image rebuild.

[thomas-lebeau]

/trigger-ci

[gh-worker-devflow-routing-ef8351]

View all feedbacks in Devflow UI.

2026-06-04 05:37:22 UTC ℹ️ Start processing command /trigger-ci

---

2026-06-04 05:37:27 UTC ℹ️ Gitlab pipeline started

Started pipeline #116961149

[renovate]

Edited/Blocked Notification

Renovate will not automatically rebase this PR, because it does not recognize the last commit author and assumes somebody else may have edited the PR.

You can manually request rebase by checking the rebase/retry box above.

⚠️ Warning: custom changes will be lost.