Version Packages#3290
Open
kriskowal wants to merge 1 commit into
Open
Conversation
kriskowal
force-pushed
the
changeset-release/master
branch
6 times, most recently
from
9469978 to
085f361
Compare
kriskowal
force-pushed
the
changeset-release/master
branch
from
085f361 to
539636a
Compare
kriskowal
force-pushed
the
changeset-release/master
branch
from
539636a to
a54fd58
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR was opened by the Changesets release GitHub action. When you're ready to do a release, you can merge this and the packages will be published to npm automatically. If you're not ready to do a release yet, that's fine, whenever you add more changesets to master, this PR will be updated.
Releases
@endo/compartment-mapper@2.3.0
Minor Changes
#2422
fe6be07Thanks @kriskowal! - Add support for host module exits in bundled compartments.sesexports a newStrictModuleDescriptortype that consists only of theNamespaceModuleDescriptorandSourceModuleDescriptorshapes mutuallysupported by SES and XS.
compartment-mapperlets arbitrary module descriptors pass throughimportHookwhen no policy is in effect for that edge (thepolicy-enforcement runtime was previously limited to virtual module sources).
It also implicitly treats any module specifier with a URL-scheme prefix
(like
node:fs) as an exit module when bundling, removing the need for anadditional bundler flag in the common case.
import-bundlethreads theimportHookoption through to the underlyingcompartment so that bundled applications can route exits to host-provided
implementations at import time.
Host-provided modules must be hardened and pure to avoid being a
side-channel or man-in-the-middle attack surface between guests.
Patch Changes
#3186
d5e2498Thanks @boneskull! - Fixes poorly-defined support for asynchronous parsers.Updated dependencies [
889be5e,fe6be07]:@endo/eslint-plugin@2.6.0
Minor Changes
#3263
c423ed3Thanks @kriskowal! - Theinternalpreset now enforcesunicorn/numeric-separators-stylewithdefault groupings: decimal numbers of five or more digits must use underscore
separators every three digits, and hexadecimal, binary, and octal literals must
use the rule's conventional group lengths.
Consumers of
plugin:@endo/internalwill see lint errors on numeric literalsthat violate the rule;
eslint --fixrewrites them automatically.Sites extending the preset must add
eslint-plugin-unicornto their devDeps.#3277
da632a2Thanks @kriskowal! - The@endo/harden-exportsrule now skips named exports whose initializer isa Pattern maker call of the form
M.something(...).Pattern makers return values that are already hardened, so a follow-up
harden(name)after their export is redundant noise.A new companion rule,
@endo/no-harden-pattern-maker, surfaces existingsites where code over-hardens a Pattern maker result.
The rule fires on both
harden(M.string())and the indirect formconst x = M.string(); harden(x);, and is included in the recommendedconfiguration as a warning so existing code doesn't break loudly while
the redundant calls are cleaned up.
Patch Changes
62d1b0aThanks @turadg! - Declare@typescript-eslint/*andtypescript-eslintas caret ranges(
^8.39.1) rather than exact pins, so consumers can dedupe them againsttheir own typescript-eslint versions instead of being forced onto a
single release. Also drop the redundant
parserOptions.projectfrom theinternal config: typescript-eslint 8.60 errors when
projectis setalongside
projectService, which now supplies the type-aware program.@endo/import-bundle@1.7.0
Minor Changes
#2422
fe6be07Thanks @kriskowal! - Add support for host module exits in bundled compartments.sesexports a newStrictModuleDescriptortype that consists only of theNamespaceModuleDescriptorandSourceModuleDescriptorshapes mutuallysupported by SES and XS.
compartment-mapperlets arbitrary module descriptors pass throughimportHookwhen no policy is in effect for that edge (thepolicy-enforcement runtime was previously limited to virtual module sources).
It also implicitly treats any module specifier with a URL-scheme prefix
(like
node:fs) as an exit module when bundling, removing the need for anadditional bundler flag in the common case.
import-bundlethreads theimportHookoption through to the underlyingcompartment so that bundled applications can route exits to host-provided
implementations at import time.
Host-provided modules must be hardened and pure to avoid being a
side-channel or man-in-the-middle attack surface between guests.
Patch Changes
d5e2498,889be5e,fe6be07]:ses@2.2.0
Minor Changes
#3285
889be5eThanks @erights! - Permit both initial powerful Temporal and safe shared Temporal#2422
fe6be07Thanks @kriskowal! - Add support for host module exits in bundled compartments.sesexports a newStrictModuleDescriptortype that consists only of theNamespaceModuleDescriptorandSourceModuleDescriptorshapes mutuallysupported by SES and XS.
compartment-mapperlets arbitrary module descriptors pass throughimportHookwhen no policy is in effect for that edge (thepolicy-enforcement runtime was previously limited to virtual module sources).
It also implicitly treats any module specifier with a URL-scheme prefix
(like
node:fs) as an exit module when bundling, removing the need for anadditional bundler flag in the common case.
import-bundlethreads theimportHookoption through to the underlyingcompartment so that bundled applications can route exits to host-provided
implementations at import time.
Host-provided modules must be hardened and pure to avoid being a
side-channel or man-in-the-middle attack surface between guests.
@endo/bundle-source@4.3.2
Patch Changes
#3186
d5e2498Thanks @boneskull! - Fixes poorly-defined support for asynchronous parsers.Updated dependencies [
d5e2498,fe6be07]:@endo/pass-style@1.8.1
Patch Changes
#3292
dd0faceThanks @turadg! - Update thetools/arb-passablearbitrary for the fast-check 4 API:fullUnicodeString()was removed, so it now uses the documentedequivalent
string({ unit: 'binary' }). Consumers using this arbitraryshould depend on fast-check 4.
Also pass
noNullPrototype: trueto the record/dictionary arbitraries:fast-check 4 generates
{__proto__:null}objects by default, which arenot valid copyRecords (they must inherit from
Object.prototype), sowithout this the arbitrary produced invalid passables.
@endo/ses-ava@1.4.2
Patch Changes
1c34f07Thanks @turadg! - Widen the declaredavadependency range to^6 || ^7 || ^8soconsumers can stay on ava 6 or 7 rather than being forced onto ava 8.
It remains a direct dependency (not a peer) so the
ses-avabinmaterializes correctly under the pnpm linker.
889be5e,fe6be07]: