Node.js — August 31 2021 Security Releases
(Update 6-Dec-2021) Security releases available Updates are now available for v14.x, and v12.x Node.js release lines for the following issues. npm 6 update - node-tar There are vulnerabilities in the node-tar which are related to the initial reports and subsequent remediation of node-tar vulnerabilities CVE-2021-32803 and CVE-2021-32804. Subsequent internal security review of node-tar and addition
Blog|npmã«ã‚‚影響ãŒã‚ã‚‹node-tarã®ãƒ‘ストラãƒãƒ¼ã‚µãƒ«ã®è„†å¼±æ€§ CVE-2021-32804
node-tar ã§ç™ºè¦‹ã•ã‚ŒãŸä»»æ„ã®ãƒ•ã‚¡ã‚¤ãƒ«ã®æ›¸ãè¾¼ã¿ãƒ»ä¸Šæ›¸ãã®è„†å¼±æ€§(CVE-2021-32804)ã«ã¤ã„ã¦èª¿æŸ»ã‚’è¡Œã„ã¾ã—ãŸã€‚ node-tar 3.2.2, 4.4.14, 5.0.6, 6.1.1以å‰ã®ãƒãƒ¼ã‚¸ãƒ§ãƒ³ã‚’利用ã—ã¦ã„ã‚‹å ´åˆã€ã“ã®è„†å¼±æ€§ã®å½±éŸ¿ã‚’å—ã‘ã‚‹ã“ã¨ãŒã‚ã‚Šã¾ã™ã€‚ åŠ ãˆã¦ã€node-tarを間接的ã«åˆ©ç”¨ã—ã¦ã„ã‚‹å ´åˆã«ã‚‚影響をå—ã‘ã‚‹ã“ã¨ãŒã‚ã‚Šã¾ã™ã€‚具体的ã«ã¯ã€npmã‚‚tarファイルを扱ã†å‡¦ç†ã«node-tarを使ã£ã¦ã„ã‚‹ãŸã‚ã€è„†å¼±ãªãƒãƒ¼ã‚¸ãƒ§ãƒ³ã®npmを使ã£ã¦ã€ä¿¡é ¼ã§ããªã„tarファイルを処ç†ã™ã‚‹ã“ã¨ã§å½±éŸ¿ã‚’å—ã‘ã‚‹å ´åˆãŒã‚ã‚Šã¾ã™ã€‚ 今回ã¯ã€CVE-2021-32804ã®ä¿®æ£ã‚³ãƒŸãƒƒãƒˆã‚’確èªã—ã¦ã©ã®ã‚ˆã†ãªè„†å¼±æ€§ã ã£ãŸã®ã‹ç¢ºèªã—ã€å®Ÿéš›ã«è„†å¼±æ€§ãŒå†ç¾ã§ãã‚‹ã®ã‹Dockerã§ç’°å¢ƒã‚’用æ„ã—ã¦æ¤œè¨¼ã‚’è¡Œã„ã¾ã—ãŸã€‚ ã¾ãŸã€npmã«ã‚‚影響ãŒã‚ã‚‹ã‹ã®æ¤œè¨¼ã‚‚è¡Œã„ã€ã“ã¡ã‚‰ã‚‚Dockerã®ç’°å¢ƒã«ã¦ç¢ºèªã‚’è¡Œã„
Electron Fuses | Electron
Package time feature toggles What are fuses?​ For a subset of Electron functionality it makes sense to disable certain features for an entire application. For example, 99% of apps don't make use of ELECTRON_RUN_AS_NODE, these applications want to be able to ship a binary that is incapable of using that feature. We also don't want Electron consumers building Electron from source as that is both a m
Electron 14.0.0 | Electron
Electron 14.0.0 has been released! It includes upgrades to Chromium 93 and V8 9.3. We've added several API updates, bug fixes, and general improvements. Read below for more details! The Electron team is excited to announce the release of Electron 14.0.0! You can install it with npm via npm install electron@latest or download it from our releases website. Continue reading for details about this rel
ES2022 feature: class static initialization blocks
The ECMAScript proposal “Class static initialization blocks†by Ron Buckton is at stage 4 and scheduled to be included in ECMAScript 2022. For setting up an instance of a class, we have two constructs in JavaScript: Field: Create (and optionally initialize) instance properties. Constructor: A block of code that is executed before setup is finished. For setting up the static part of a class, we onl
GitHub - tc39/proposal-structs: JavaScript Structs: Fixed Layout Objects
Structs are declarative sealed objects. There are two kinds of structs: unshared structs and shared structs. Unshared structs behave as if they were sealed objects. Shared structs have additional restrictions and can be concurrently accessed from different agents. Both unshared and shared structs have the following properties: Opaque storage like plain objects. Not aliasable via ArrayBuffer or Sha
OpenMoji
proof of concept / Beta versions, not intended for production use!
OpenShot 動画エディター | Linuxã€Macã€Windowså‘ã‘ã®ã€ãƒ•ãƒªãƒ¼ã§ã€ã‚ªãƒ¼ãƒ—ンã§ã€å—賞æ´ã®ã‚る動画エディターã§ã™!
ã§æ‰‹ä½œã‚Šã•ã‚Œã€100%フリーã‹ã¤ã‚ªãƒ¼ãƒ—ンソース! 永久ã«ãƒ•ãƒªãƒ¼ã§ã‚ªãƒ¼ãƒ—ンソースã§ã™(GPL version 3.0) OpenShot㯠信ã˜ã‚‰ã‚Œãªã„ã»ã© é©šãã»ã© ã™ã°ã‚‰ã—ã 途方もãªã シンプルã§ãƒ‘ワフルã§ã™ï¼ OpenShot動画エディターã¯ã€ä½¿ã„ã‚„ã™ãã¦è¦šãˆã‚„ã™ãã€é©šãã»ã©ãƒ‘ワフルãªå‹•ç”»ã‚¨ãƒ‡ã‚£ã‚¿ãƒ¼ã«ãªã‚‹ã‚ˆã†è¨è¨ˆã•ã‚Œã¦ã„ã¾ã™ã€‚最も人気ã®ã‚る機能や能力をã€ã¡ã‚‡ã£ã¨è¦‹ã¦ã¿ã¦ãã ã•ã„。
CSS Nesting Module
CSS Nesting Module W3C Working Draft, 14 February 2023 More details about this document This version: https://www.w3.org/TR/2023/WD-css-nesting-1-20230214/ Latest published version: https://www.w3.org/TR/css-nesting-1/ Editor's Draft: https://drafts.csswg.org/css-nesting/ History: https://www.w3.org/standards/history/css-nesting-1 Feedback: CSSWG Issues Repository Inline In Spec Editors: Tab Atkin
リリースã€éšœå®³æƒ…å ±ãªã©ã®ã‚µãƒ¼ãƒ“スã®ãŠçŸ¥ã‚‰ã›
最新ã®äººæ°—エントリーã®é…ä¿¡
j次ã®ãƒ–ックマーク
kå‰ã®ãƒ–ックマーク
lã‚ã¨ã§èªã‚€
eコメント一覧を開ã
oページを開ã
Editorial: Remove 'designed to be subclassable' by ptomato · Pull Request #2360 · tc39/ecma262
feat: add experimental cookie encryption support by MarshallOfSound · Pull Request #29492 · electron/electron
GitHub - rinnakk/japanese-pretrained-models: Code for producing Japanese pretrained models provided by rinna Co., Ltd.
https://www.pref.kyoto.jp/sanroso/news/documents/employee.pdf
GitHub - tc39/proposal-array-from-async: Draft specification for a proposed Array.fromAsync method in JavaScript.
schema-dts – opensource.google
{{#tags}}- {{label}}
{{/tags}}