Stay Informed

This week, read about:

• Meta To Boost Training Infra for Llama 4 Tenfold, Maybe Deliver it Next Year.
• Stolen Credentials Have Turned SaaS Apps Into Attackers’ Playgrounds.
• Immutability in Cybersecurity: A Layer of Security Amidst Complexity and Misconceptions.
• CentOS Stream 8 End of Builds Was May 31, 2024 and CentOS Linux 7 End of Life Was June 30, 2024. Get the Definitive Guide For CentOS EOL.
• OpenJDK Spring 2024 Release Downloads Are Now Available on OpenLogic.
• We Have the Latest Versions of OpenJDK Versions 8, 11, and 17 Now Available.

Security Based Updates

Updates to the OpenLogic CentOS Repository
*) OpenLogic’s Enterprise Linux Team has recently published the following updates:

• CVE-2023-4911
  • CentOS 8 
    • glibc-2.28-164_ol002.el8
• CVE-2018-25032 
  • CentOS 8 
    • zlib-1.2.11-17_ol002.el8
• CVE-2022-2526
  • CentOS 8
    •  systemd-239-51_ol001.el8_5.2 
• CVE-2021-4157 
  • CentOS 8
    • kernel-4.18.0-348.7.1_ol001.el8_5
• CentOS 6 
  •  tzdata-2023c-1_ol001.el6

We recommend that you update your CentOS 6 systems to ensure proper timekeeping. As usual, please ensure that you test these updates before deploying to production. If you don't currently have CentOS repo access, please reach out to your Perforce/OpenLogic salesperson … you may already be entitled to access with your existing support contract!

OpenLogic AngularJS
Small miscellaneous update of angular-translate@2.19.3:

• Removed bower-npm-resolver from dependencies
• This resolves unwanted downloads of minimist and tough-cookie with many others

Non-Security Based Updates

Angular 18.1.4
COMPILER:

• (fix - 6a99f83659) | reduce chance of conflicts between generated factory and local variables (#57181)

COMPILER-CLI:

• (fix - afb05ff1cb) | support JIT transforms before other transforms modifying classes (#57262)
• (perf - bae54a1621) | improve performance ofinterpolatedSignalNotInvokedextended diagnostic (#57291)

LANGUAGE-SERVICE:

• (fix - 6ac209c24f) | avoid generating TS suggestion diagnostics for templates (#56241)

Apache Spark 3.5.2
NOTABLE CHANGES:

• [SPARK-45988]: Fix pyspark.pandas.tests.computation.test_apply_func in Python 3.11
• [SPARK-45989]: Fix pyspark.pandas.tests.connect.computation.test_parity_apply_func in Python 3.11
• SPARK-46411]: Change to use bcprov/bcpkix-jdk18on for test
• [SPARK-47368]: Remove inferTimestampNTZ config check in ParquetRowConverter
• [SPARK-47370]: Add migration doc: TimestampNTZ type inference on Parquet files
• [SPARK-47435]: SPARK-45561 causes mysql unsigned tinyint overflow
• [SPARK-47440]: SQLServer does not support LIKE operator in binary comparison
• [SPARK-47473]: Correctness issue of converting postgres INFINITIES timestamps
• [SPARK-47494]: Add migration doc for the behavior change of Parquet timestamp inference since Spark 3.3
• [SPARK-47537]: Use MySQL Connector/J for MySQL DB instead of MariaDB Connector/J
• [SPARK-47666]: Fix NPE when reading mysql bit array as LongType
• [SPARK-47770]: Fix GenerateMIMAIgnore.isPackagePrivateModule to return false instead of failing
• [SPARK-47774]: Remove redundant rules from MimaExcludes
• [SPARK-47847]: Deprecate spark.network.remoteReadNioBufferConversion
• [SPARK-48016]: Fix a bug in try_divide function when with decimals
• [SPARK-48068]: mypy should have --python-executable parameter
• [SPARK-48083]: session.copyFromLocalToFs failure with 3.5 client <> 4.0 server
• [SPARK-48084]: pyspark.ml.connect.evaluation not working in 3.5 client <> 4.0 server
• [SPARK-48086]: Different Arrow versions in client and server
• [SPARK-48087]: Python UDTF incompatibility in 3.5 client <> 4.0 server
• [SPARK-48088]: Skip tests being failed in client 3.5 <> server 4.0
• [SPARK-48089]: Streaming query listener not working in 3.5 client <> 4.0 server
• [SPARK-48090]: Streaming exception catch failure in 3.5 client <> 4.0 server
• [SPARK-48109]: Enable k8s-integration-tests only for kubernetes module change
• [SPARK-48116]: Run pyspark-pandas* only in PR builder and Daily Python CIs
• [SPARK-48132]: Run k8s-integration-tests only in PR builder and Daily CIs
• [SPARK-48133]: Run sparkr only in PR builders and Daily CIs
• [SPARK-48138]: Disable a flaky SparkSessionE2ESuite.interrupt tag test
• [SPARK-48167]: Skip known behaviour change by SPARK-46122
• [SPARK-48178]: Run build/scala-213/java-11-17 jobs of branch-3.5 only if needed
• [SPARK-48192]: Enable TPC-DS and docker tests in forked repository
• [SPARK-48930]: Redact awsAccessKeyId by including accesskey pattern
• [SPARK-49054]: Column default value should support current_* functions
• [SPARK-47305]: PruneFilters incorrectly tags isStreaming flag when replacing child of Filter with LocalRelation
• [SPARK-47307]: Spark 3.3 produces invalid base64
• [SPARK-47318]: AuthEngine key exchange needs additional KDF round
• [SPARK-47385]: Tuple encoder produces wrong results with Option inputs
• [SPARK-47398]: AQE doesn’t allow for extension of InMemoryTableScanExec
• [SPARK-47434]: Streaming Statistics link redirect causing 302 error
• [SPARK-47455]: Fix Resource Handling of scalaStyleOnCompileConfig in SparkBuild.scala
• [SPARK-47463]: An error occurred while pushing down the filter of if expression for iceberg datasource.
• [SPARK-47503]: Spark history sever fails to display query for cached JDBC relation named in quotes
• [SPARK-47507]: Upgrade ORC to 1.9.3
• [SPARK-47521]: Use Utils.tryWithResource during reading shuffle data from external storage
• [SPARK-47561]: Fix analyzer rule order issues about Alias
• [SPARK-47633]: Cache miss for queries using JOIN LATERAL with join condition
• [SPARK-47636]: Use Java 17 instead of 17-jre image in K8s Dockerfile
• [SPARK-47646]: try_to_number fails with NPE for malformed input
• [SPARK-47676]: Clean up the removed VersionsSuite references
• [SPARK-47762]: Add pyspark.sql.connect.protobuf into setup.py
• [SPARK-47824]: Nondeterminism in pyspark.pandas.series.asof
• [SPARK-47828]: DataFrameWriterV2.overwrite fails with invalid plan
• [SPARK-47840]: Remove foldable propagation across Streaming Aggregate/Join nodes
• [SPARK-47895]: group by all should be idempotent
• [SPARK-47904]: Preserve case in Avro schema when using enableStableIdentifiersForUnionType
• [SPARK-47910]: Memory leak when interrupting shuffle write using zstd compression
• [SPARK-47921]: Fix ExecuteJobTag creation in ExecuteHolder
• [SPARK-47927]: Nullability after join not respected in UDF
• [SPARK-48019]: ColumnVectors with dictionaries and nulls are not read/copied correctly
• [SPARK-48037]: SortShuffleWriter lacks shuffle write related metrics resulting in potentially inaccurate data
• [SPARK-48105]: Fix the data corruption issue when state store unload and snapshotting happens concurrently for HDFS state store
• [SPARK-48128]: BitwiseCount / bit_count generated code for boolean inputs fails to compile
• [SPARK-48172]: Fix escaping issues in JDBCDialects
• [SPARK-48173]: CheckAnalsis should see the entire query plan
• [SPARK-48179]: Pin nbsphinx to 0.9.3
• [SPARK-48184]: Always set the seed of dataframe.sample in Client side
• [SPARK-48197]: avoid assert error for invalid lambda function
• [SPARK-48237]: After executing test-dependencies.sh, the dir dev/pr-deps should be deleted
• [SPARK-48241]: CSV parsing failure with char/varchar type columns
• [SPARK-48248]: Fix nested array to respect legacy conf of inferArrayTypeFromFirstElement
• [SPARK-48265]: Infer window group limit batch should do constant folding
• [SPARK-48273]: Late rewrite of PlanWithUnresolvedIdentifier
• [SPARK-48286]: Analyze 'exists' default expression instead of 'current' default expression in structField to v2 column conversion
• [SPARK-48294]: Make nestedTypeMissingElementTypeError case insensitive
• [SPARK-48297]: Char/Varchar breaks in TRANSFORM clause
• [SPARK-48237]: After executing test-dependencies.sh, the dir dev/pr-deps should be deleted
• [SPARK-48241]: CSV parsing failure with char/varchar type columns
• [SPARK-48248]: Fix nested array to respect legacy conf of inferArrayTypeFromFirstElement
• [SPARK-48265]: Infer window group limit batch should do constant folding
• [SPARK-48273]: Late rewrite of PlanWithUnresolvedIdentifier
• [SPARK-48286]: Analyze 'exists' default expression instead of 'current' default expression in structField to v2 column conversion
• [SPARK-48294]: Make nestedTypeMissingElementTypeError case insensitive
• [SPARK-48297]: Char/Varchar breaks in TRANSFORM clause
• [SPARK-48308]: Unify getting data schema without partition columns in FileSourceStrategy
• [SPARK-48428]: IllegalStateException due to nested column aliasing
• [SPARK-48481]: OptimizeOneRowPlan should not be effective for streaming DataFrame
• [SPARK-48484]: V2Write use the same TaskAttemptId for different task attempts
• [SPARK-48498]: Always do char padding in predicates
• [SPARK-48608]: Spark 3.5: fails to build with value defaultValueNotConstantError is not a member of object org.apache.spark.sql.errors.QueryCompilationErrors
• [SPARK-48642]: False reported SparkOutOfMemoryError caused by killing task on spilling
• [SPARK-48666]: A filter should not be pushed down if it contains Unevaluable expression
• [SPARK-48709]: Varchar resolution mismatch for DataSourceV2 CTAS
• [SPARK-48719]: Wrong result in regr_slope & regr_intercept aggregate with tuples has NULL
• [SPARK-48791]: Perf regression due to accumulator registration overhead using CopyOnWriteArrayList
• [SPARK-48843]: Infinite loop with GlobalLimit/BindParameters
• [SPARK-48845]: GenericUDF Can not CatchException From Child UDFs
• [SPARK-48863]: ClassCastException: class org.apache.spark.unsafe.types.UTF8String cannot be cast to class org.apache.spark.sql.catalyst.util.ArrayData when parsing JSON with “spark.sql.json.enablePartialResults” enabled
• [SPARK-48871]: Fix INVALID_NON_DETERMINISTIC_EXPRESSIONS validation in CheckAnalysis
• [SPARK-48921]: ScalaUDF in subquery should run through analyzer
• [SPARK-48991]: FileStreamSink.hasMetadata handles invalid path
• [SPARK-49000]: Aggregation with DISTINCT gives wrong results when dealing with literals
• [SPARK-49005]: Use 17-jammy instead of 17 to prevent Python 3.12
• [SPARK-49065]: Rebasing in legacy formatters/parsers must support non JVM default time zones
• [SPARK-49094]: ignoreCorruptFiles file source option is partially supported for orc format
• [SPARK-49099]: Refactor CatalogManager.setCurrentNamespace
• [SPARK-45587]: Skip UNIDOC and MIMA in build GitHub Action job
• [SPARK-45593]: Building a runnable distribution from master code running spark-sql raise error “java.lang.ClassNotFoundException: org.sparkproject.guava.util.concurrent.internal.InternalFutureFailureAccess”
• [SPARK-47172]: Upgrade Transport block cipher mode to GCM
• [SPARK-47299]: Use the same versions.json in the dropdown of different versions of PySpark documents
• [SPARK-47734]: Fix flaky pyspark.sql.dataframe.DataFrame.writeStream doctest by stopping streaming query
• [SPARK-47825]: Make KinesisTestUtils & WriteInputFormatTestDataGenerator deprecated
• [SPARK-47897]: ExpressionSet performance regression in scala 2.12
• [SPARK-48081]: Fix ClassCastException in NTile.checkInputDataTypes() when argument is non-foldable or of wrong type
• [SPARK-48292]: Revert [SPARK-39195][SQL] Spark OutputCommitCoordinator should abort stage when committed file not consistent with task status
• [SPARK-48391]: Use addAll instead of add function in TaskMetrics to accelerate
• [SPARK-48424]: Make dev/is-changed.py to return true if it fails
• [SPARK-48586]: Remove lock acquisition in doMaintenance() by making a deep copy of file mappings in RocksDBFileManager in load()
• [SPARK-48610]: Remove ExplainUtils.processPlan synchronize
• [SPARK-48806]: Pass actual exception when url_decode fails
• [SPARK-47481]: Fix Python linter
• [SPARK-48535]: Update doc to log warning for join null related config usage
• [SPARK-48934]: Python datetime types converted incorrectly for setting timeout in applyInPandasWithState

Gitlab OSS v17.0.6
Changed (1 change):
Security (13 changes):

• [Show correct file content](https://gitlab.com/gitlab-org/security/gitlab/-/commit/a1fa5a60d3f8b4d420e65baaf9eb631e2fa9bdf0) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4336))
• [Fix Possible asciidoctor include:: directive DOS](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8d03c5769e39605f00c930d0fb7b9baab2b6ae5c) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4331))
• [Filter parameters in Rack::Attack logs](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9ee1310ad76bceb5f45cb04ea4534c71efa90255) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4274))
• [Update audit payload](https://gitlab.com/gitlab-org/security/gitlab/-/commit/6e11e37c02cf10887a49e2ee494fec7efe37d944) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4327))
• [Limit access to project accessed by Security Policy Bot](https://gitlab.com/gitlab-org/security/gitlab/-/commit/3c4c9a4adf772993f42b4788303180d36fb8642d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4345))
• [Show alert about not rendering files due to path encoding](https://gitlab.com/gitlab-org/security/gitlab/-/commit/d939235f3042ff0924e4a794cf0481bc28e08ae3) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4339))
• [Fix the catastrophic backtracking](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7397896f34a4d0319a7750ae7f0a32aa2dad72c6) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4291))
• [Security fixes for banzai pipeline part 2](https://gitlab.com/gitlab-org/security/gitlab/-/commit/40cf9d179ad038363b59eb0accfd1fa2e6bef34b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4281))
• [Remove xhtml extensions from snippets blobs](https://gitlab.com/gitlab-org/security/gitlab/-/commit/4952960acf3b3b133c29454375fcbb1e3850ee44) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4332))
• [Add a project scope to LfsTokens](https://gitlab.com/gitlab-org/security/gitlab/-/commit/cbe4a50b5844d452f12e58dab80143c7e548d273) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4321))
• [Fix ReDoS when parsing git push options](https://gitlab.com/gitlab-org/security/gitlab/-/commit/14b95bf425bf27746f73ec813753355919346b82) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4314))
• [Fix ReDoS in RefMatcher](https://gitlab.com/gitlab-org/security/gitlab/-/commit/fdab3bdb907212a736b961ed58f5ad4d52135108) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4317))
• [Enforce `require_password_to_approve` MR approval policy property](https://gitlab.com/gitlab-org/security/gitlab/-/commit/2d7c6114a6915143751f40e44ef2630647cf615a) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4261))

Gitlab OSS 17.1.4
Changed (2 changes):

• [Reverify externally verified gpg keys](https://gitlab.com/gitlab-org/security/gitlab/-/commit/e11bfa6bdfcf0b40f440bf50e104d5d4e4496d74)
• [Put groups_direct field in CI JWT tokens behind feature flag](https://gitlab.com/gitlab-org/security/gitlab/-/commit/024945347ea0b433de65c0ecb80c50cc031cbc52)

Security (13 changes):

• [Show correct file content](https://gitlab.com/gitlab-org/security/gitlab/-/commit/59df2cc3758c03aff024151f5dfd59fa3263ac7b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4335))
• [Fix Possible asciidoctor include:: directive DOS](https://gitlab.com/gitlab-org/security/gitlab/-/commit/6fcbfba6119fcadff61dc4550d244b56f5fe6c70) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4330))
• [Filter parameters in Rack::Attack logs](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9b807312a2029e6a341962591dcdcfd21ea8ef0c) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4273))
• [Update audit payload](https://gitlab.com/gitlab-org/security/gitlab/-/commit/7beb230f12ec6270523a269dad39dba42fdc108e) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4326))
• [Limit access to project accessed by Security Policy Bot](https://gitlab.com/gitlab-org/security/gitlab/-/commit/b58cad5e32c2b9f399742719006a4e527f773e2d) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4344))
• [Show alert about not rendering files due to path encoding](https://gitlab.com/gitlab-org/security/gitlab/-/commit/274a7177f5eea11e258534e5155f878334bf48ca) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4338))
• [Fix the catastrophic backtracking](https://gitlab.com/gitlab-org/security/gitlab/-/commit/88e2d71de74d04e29a8a62527bb147208c86fc29) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4290))
• [Security fixes for banzai pipeline part 2](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8167c0e9225c5893043ea34bfc1353035f173924) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4282))
• [Remove xhtml extensions from snippets blobs](https://gitlab.com/gitlab-org/security/gitlab/-/commit/8ba1a3f5a36820995e512b4ec846d57df54ed9c4) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4301))
• [Add a project scope to LfsTokens](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9e684758e31af25bdb69a8d4f95e8e0821bfc40b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4320))
• [Fix ReDoS when parsing git push options](https://gitlab.com/gitlab-org/security/gitlab/-/commit/f49a979105bdfd365738d42406e94f7cabba4601) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4313))
• [Fix ReDoS in RefMatcher](https://gitlab.com/gitlab-org/security/gitlab/-/commit/ec18bbdcb19f831d3732e2ffebe87740982baf24) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4316))
• [Enforce `require_password_to_approve` MR approval policy property](https://gitlab.com/gitlab-org/security/gitlab/-/commit/d9769f6d7a11c2ae23f8816483358f7da3e729be) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4260))

Gitlab v17.2.2
Fixed (2 changes)
Changed (2 changes)
Security (13 changes):

• [Show correct file content](https://gitlab.com/gitlab-org/security/gitlab/-/commit/1357224fea289ba708f30f528c04e213b29e0b23) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4334))
• [Fix Possible asciidoctor include:: directive DOS](https://gitlab.com/gitlab-org/security/gitlab/-/commit/9762e4636b3dd69edac8b235b4706db515e65e79) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4329))
• [Filter parameters in Rack::Attack logs](https://gitlab.com/gitlab-org/security/gitlab/-/commit/401bdc5202d7b083f750361a2f1ef57466bc919f) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4272))
• [Update audit payload](https://gitlab.com/gitlab-org/security/gitlab/-/commit/864194bebe8a5b2e2187d04a65e0e2b530c7b779) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4325))
• [Limit access to project accessed by Security Policy Bot](https://gitlab.com/gitlab-org/security/gitlab/-/commit/100a915754d858cd18cfb7851c80944c8fda640b) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4343))
• [Show alert about not rendering files due to path encoding](https://gitlab.com/gitlab-org/security/gitlab/-/commit/d8533d727a1c036560df59282bf62ab561258a13) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4337))
• [Fix the catastrophic backtracking](https://gitlab.com/gitlab-org/security/gitlab/-/commit/001aab470cfc14b4c1655de2382d0aa4c39a4fac) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4289))
• [Security fixes for banzai pipeline part 2](https://gitlab.com/gitlab-org/security/gitlab/-/commit/266c315f6e825881c36aa78f0203bf6a2c36a132) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4283))
• [Remove xhtml extensions from snippets blobs](https://gitlab.com/gitlab-org/security/gitlab/-/commit/73b5fc95468dcc35d796737ebb1a6c11d88ebf64) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4300))
• [Add a project scope to LfsTokens](https://gitlab.com/gitlab-org/security/gitlab/-/commit/943c7867ce0d9dc98929af322ecd422438c9f9c6) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4319))
• [Fix ReDoS when parsing git push options](https://gitlab.com/gitlab-org/security/gitlab/-/commit/798466f7574554358d770d28df036f60eff31e41) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4312))
• [Fix ReDoS in RefMatcher](https://gitlab.com/gitlab-org/security/gitlab/-/commit/87d308caed2a1ec7f5ae7ddc1131f5c7abbffdbd) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4315))
• [Enforce `require_password_to_approve` MR approval policy property](https://gitlab.com/gitlab-org/security/gitlab/-/commit/129139c6eebd257bc5eae142c52267bb83a71307) ([merge request](https://gitlab.com/gitlab-org/security/gitlab/-/merge_requests/4277))

Jenkins 2.471
1. Important security fixes. (security advisory))

Jenkins 2.462.1
1. Refine button appearances in sidebars, menus, pages and breadcrumbs. (pull 9367))
2. Adjust heading weights and sizes. (pull 9366))
3. Show help text in the correct locale even if user has an alternate language option defined in their browser (issue 73246))
4. Quote replacement string in symbol tooltips. (issue 73243))
5. Honor readonly mode when displaying enumerations on pages. (issue 72854))

Note.js 22.6.0
Experimental TypeScript support via strip types Node.js introduces the `--experimental-strip-types` flag for initial TypeScript support. This feature strips type annotations from .ts files, allowing them to run without transforming TypeScript-specific syntax. Current limitations include:

• Supports only inline type annotations, not features like `enums` or `namespaces`.
• Requires explicit file extensions in import and require statements.
• Enforces the use of the type keyword for type imports to avoid runtime errors.
• Disabled for TypeScript in _node_modules_ by default.

Experimental Network Inspection Support in Node.js This update introduces the initial support for network inspection in Node.js. Currently, this is an experimental feature, so you need to enable it using the `--experimental-network-inspection` flag. With this feature enabled, you can inspect network activities occurring within a JavaScript application. To use network inspection, start your Node.js application with the following command:

```console
$ node --inspect-wait --experimental-network-inspection index.js
```

Please note that the network inspection capabilities are in active development. We are actively working on enhancing this feature and will continue to expand its functionality in future updates.

• Network inspection is limited to the `http` and `https` modules only.
• The Network tab in Chrome DevTools will not be available until the [feature request on the Chrome DevTools side (https://issues.chromium.org/issues/353924015) is addressed.

Prometheus v2.54.0
[CHANGE] Remote-Write:highest_timestamp_in_secondsandqueue_highest_sent_timestamp_secondsmetrics now initialized to 0.#14437
[CHANGE] API: Split warnings from info annotations in API response.#14327
[FEATURE] Remote-Write: Version 2.0 experimental, plus metadata in WAL via feature flagmetadata-wal-records(defaults on).#14395,#14427,#14444
[FEATURE] PromQL: add limitk() and limit_ratio() aggregation operators.#12503
[ENHANCEMENT] PromQL: Accept underscores in literal numbers, e.g. 1_000_000 for 1 million.#12821
[ENHANCEMENT] PromQL: float literal numbers and durations are now interchangeable (experimental). Example:time() - my_timestamp > 10m.#9138
[ENHANCEMENT] PromQL: use Kahan summation for sum().#14074,#14362
[ENHANCEMENT] PromQL (experimental native histograms): Optimizehistogram_countandhistogram_sumfunctions.#14097
[ENHANCEMENT] TSDB: Better support for out-of-order experimental native histogram samples.#14438
[ENHANCEMENT] TSDB: Optimise seek within index.#14393
[ENHANCEMENT] TSDB: Optimise deletion of stale series.#14307
[ENHANCEMENT] TSDB: Reduce locking to optimise adding and removing series.#13286,#14286
[ENHANCEMENT] TSDB: Small optimisation: streamline special handling for out-of-order data.#14396,#14584
[ENHANCEMENT] Regexps: Optimize patterns with multiple prefixes.#13843,#14368
[ENHANCEMENT] Regexps: Optimize patterns containing multiple literal strings.#14173
[ENHANCEMENT] AWS SD: expose Primary IPv6 addresses as __meta_ec2_primary_ipv6_addresses.#14156
[ENHANCEMENT] Docker SD: add MatchFirstNetwork for containers with multiple networks.#10490
[ENHANCEMENT] OpenStack SD: Useflavor.original_nameif available.#14312
[ENHANCEMENT] UI (experimental native histograms): more accurate representation.#13680,#14430
[ENHANCEMENT] Agent:out_of_order_time_windowconfig option now applies to agent.#14094
[ENHANCEMENT] Notifier: Send any outstanding Alertmanager notifications when shutting down.#14290
[ENHANCEMENT] Rules: Add label-matcher support to Rules API.#10194
[ENHANCEMENT] HTTP API: Add url to message logged on error while sending response.#14209
[BUGFIX] CLI: escape|characters when generating docs.#14420
[BUGFIX] PromQL (experimental native histograms): Fix some binary operators between native histogram values.#14454
[BUGFIX] TSDB: LabelNames API could fail during compaction.#14279
[BUGFIX] TSDB: Fix rare issue where pending OOO read can be left dangling if creating querier fails.#14341
[BUGFIX] TSDB: fix check for context cancellation in LabelNamesFor.#14302
[BUGFIX] Rules: Fix rare panic on reload.#14366
[BUGFIX] Config: In YAML marshalling, do not output a regexp field if it was never set.#14004
[BUGFIX] Remote-Write: reject samples with future timestamps.#14304
[BUGFIX] Remote-Write: Fix data corruption in remote write if max_sample_age is applied.#14078
[BUGFIX] Notifier: Fix Alertmanager discovery not updating under heavy load.#14174
[BUGFIX] Regexes: some Unicode characters were not matched by case-insensitive comparison.#14170,#14299
[BUGFIX] Remote-Read: Resolve occasional segmentation fault on query.#14515