corepack16-16.20.2-150400.3.27.2<>,^e0ڦp9|zfRN Mv38 ]jvr:1)lb) _zd`z{Yej:JLa'uysr >4Ġ"Bn-;Z(Z`+?AAuٌT<\4=ҥNl fͥ. :|ss%Ǵ[%(-H)Kh#MInq t1p3#3Qz[p)jF: 氹s% N$n>>U?Ud  # ` ,I\bl:T: : <: $: :  :::8`:Hh (,84.9.:v.FIGI:HJ:IK:XKYK\K:]L:^NbOcPFdPePfPlPuP:vQ wS,:xT:yTzUPU`UdUjUCcorepack1616.20.2150400.3.27.2Helper bridge between NodeJS projects and their dependenciesZero-runtime-dependency package acting as bridge between Node projects and their package managers.e0ڦh01-armsrv3!8SUSE Linux Enterprise 15SUSE LLC MIThttps://www.suse.com/Development/Languages/NodeJShttps://nodejs.orglinuxaarch641%'#![VVWWWZ Ba8M8M:Q:Q:Q@]A큤A큤AA큤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../lib64/node_modules/corepack16/dist/corepack.jsrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootrootnodejs16-16.20.2-150400.3.27.2.src.rpmcorepack16corepack16(aarch-64)@@     /bin/sh/usr/bin/envnodejs-commonrpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)5.03.0.4-14.6.0-14.0-15.2-14.14.3e.w@d@d@d6@cc$@c@c@c~ @ch@cGc1@c%cd@bbbUbV@b1@b0b8aaaq@aՈ@a6aLazaban@a(@aim@a @a@`]` @``ݮ@`"@`@```O@``7@`Q@adam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deguillaume.gardet@opensuse.orgadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.debrunopitrus@hotmail.comadam.majer@suse.deadam.majer@suse.deadam.majer@suse.derpm@fthiessen.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deguillaume.gardet@opensuse.orgadam.majer@suse.deadam.majer@suse.dedimstar@opensuse.orgmail@bernhard-voelker.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deasn@cryptomilk.orgdmueller@suse.comadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.deadam.majer@suse.de- CVE-2023-38552.patch: Integrity checks according to policies can be circumvented (CVE-2023-38552, bsc#1216272) - CVE-2023-39333.patch, wasm-fixture.tar.gz: Code injection via WebAssembly export names (CVE-2023-39333, bsc#1216273) - CVE-2023-44487.patch: nghttp2 Security Release (CVE-2023-44487, bsc#1216190) - CVE-2023-45143.patch: undici Security Release (CVE-2023-45143, bsc#1216205) - nodejs.keyring: include new releaser keys- Update to LTS version 16.20.2 (security fixes). The following CVE were fixed: * (CVE-2023-32002, bsc#1214150): Policies can be bypassed via Module._load (High) * (CVE-2023-32006, bsc#1214156): Policies can be bypassed by module.constructor.createRequire (Medium) * (CVE-2023-32559, bsc#1214154): Policies can be bypassed via process.binding (Medium)- Update to version 16.20.1 (security fixes only). The following CVEs are fixed in this release: * (CVE-2023-30581, bsc#1212574): mainModule.__proto__ Bypass Experimental Policy Mechanism (High) * (CVE-2023-30585, bsc#1212579): Privilege escalation via Malicious Registry Key manipulation during Node.js installer repair process (Medium) * (CVE-2023-30588, bsc#1212581): Process interuption due to invalid Public Key information in x509 certificates (Medium) * (CVE-2023-30589, bsc#1212582): HTTP Request Smuggling via Empty headers separated by CR (Medium) * (CVE-2023-30590, bsc#1212583): DiffieHellman does not generate keys after setting a private key (Medium) * deps: update c-ares to 1.19.1: c-ares security issues fixed: + CVE-2023-32067. High. 0-byte UDP payload causes Denial of Service (bsc#1211604) + CVE-2023-31147 Moderate. Insufficient randomness in generation of DNS query IDs (bsc#1211605) + CVE-2023-31130. Moderate. Buffer Underwrite in ares_inet_net_pton() (bsc#1211606) + CVE-2023-31124. Low. AutoTools does not set CARES_RANDOM_FILE during cross compilation (bsc#1211607) - fix_ci_tests.patch: increase default timeout on unit tests to 20min from 2min. This seems to have lead to build failures on some platforms, like s390x in Factory. (bsc#1211407)- Update to LTS version 16.20.0 * deps: + update undici to 5.20.0 + update c-ares to 1.19.0 + upgrade npm to 8.19.4 (bsc#1208744, CVE-2022-25881) - legacy_python.patch, versioned.patch: refreshed- Update to LTS version 16.19.1: * fixes permissions policies can be bypassed via process.mainModule (bsc#1208481, CVE-2023-23918) * fixes insecure loading of ICU data through ICU_DATA environment variable (bsc#1208487, CVE-2023-23920) * fixes OpenSSL error handling issues in nodejs crypto library (bsc#1208483, CVE-2023-23919) * updates undici to v5.19.1 + Fetch API in Node.js did not protect against CRLF injection in host headers + Regular Expression Denial of Service in Headers in Node.js fetch API (bsc#1208413, bsc#1208485, CVE-2023-24807, CVE-2023-23936)- Update to LTS version 16.19.0: * dgram: add dgram send queue info * cli: add --watch - systemtap.patch: upstreamed, removed - versioned.patch: refreshed- Update _constraints: * Less RAM for aarch64 and 32-bit arm * Use 'asimdrdm' cpu flag to use aarch64 workers where tests are more stable- sle12_python3_compat.patch: only apply for older SLE12 codestreams where Python 3.6 is not available. Still worlaround for bsc#1205568- Workaround bug on SLE12SP5 during source unpack (bsc#1205568)- Update to LTS versino 16.18.1: * inspector: DNS rebinding in --inspect via invalid octal IP (bsc#1205119, CVE-2022-43548) - Replace node-gyp for SLE12 with python 3.4 compatible gyp- Update to LTS version 16.18.0: * http: throw error on content-length mismatch * stream: add ReadableByteStream.tee() * deps: npm updated to 8.19.2 - nodejs-libpath.patch, fix_ci_tests.patch, versioned.patch: refreshed - undici_5.8.1.patch, undici_5.8.2.patch: upstreamed and removed - systemtap.patch: upstream regression- Update to Nodejs 16.17.1: * deps: llhttp updated to 6.0.9 + CVE-2022-32213 bypass via obs-fold mechanic (bsc#1201325) + Incorrect Parsing of Multi-line Transfer-Encoding (CVE-2022-32215, bsc#1201327) + Incorrect Parsing of Header Fields (CVE-2022-35256, bsc#1203832) * crypto: fix weak randomness in WebCrypto keygen (CVE-2022-35255, bsc#1203831)- Skip test-fs-utimes-y2K38.js on armv6hl as well as armv7hl.- undici_5.8.1.patch, undici_5.8.2.patch: update undici to 5.8.2 (bsc#1202382, CVE-2022-35949, bsc#1202383, CVE-2022-35948)- enable crypto-policies for SLE15 SP4+ and TW (bsc#1200303) - Update to LTS version 16.17.0: * deps: upgrade npm to 8.15.0 * Improved interoperability of the Web Crypto API * Updated Undici to 5.8.0 (bsc#1201710, CVE-2022-31150) For full list of changes, see https://github.com/nodejs/node/blob/main/doc/changelogs/CHANGELOG_V16.md#16.17.0 - nodejs-libpath.patch, versioned.patch: refreshed patches- Update to LTS version 16.16.0: * http: stricter Transfer-Encoding and header separator parsing (bsc#1201325, bsc#1201326, bsc#1201327, CVE-2022-32213, CVE-2022-32214, CVE-2022-32215) * src: fix IPv4 validation in inspector_socket (bsc#1201328, CVE-2022-32212)- Update to LTS version 16.15.1 * upgrade npm to 8.11.0 (bsc#1200517, CVE-2022-29244) - Update to LTS version 16.15.0 * Add experimental support to the fetch API. This adds the `--experimental-fetch` flag that installs the fetch, Request, Response, Headers, and FormData globals. * Broken x32 support is removed * crypto: Add KeyObject.prototype.equals method * esm: support https remotely and http locally under flag * module: unflag esm jso - rebased: nodejs-libpath.patch, npm_search_paths.patch, versioned.patch- update to LTS release 16.14.2: * deps: upgrade openssl sources to OpenSSL_1_1_1n - fix_ci_tests.patch: refreshed- update to LTS release 16.14.1: * deps: upgrade npm to 8.5.0 * http2: fix memory leak on nghttp2 hd threshold - 42342.patch: upstreamed, dropped - versioned.patch: refreshed- 42342.patch: fix expired certificates in unit tests- update to LTS release 16.14.0: * deps: upgrade npm to 8.1.4 * child_process: add support for URL to cp.fork * fs: accept URL as argument for fs.rm and fs.rmSync * lib: + make AbortSignal cloneable/transferable + add AbortSignal.timeout + add reason to AbortSignal + add unsubscribe method to non-active DC channels * process: add getActiveResourcesInfo() * src: + add x509.fingerprint512 to crypto module + add flags for controlling process behavior * stream: + add map and filter methods to readable + deprecate thenable support * timers: add experimental scheduler api * util: + add numericSeparator to util.inspect + always visualize cause property in errors during inspection + pass through the inspect function to custom inspect functions npm_search_paths.patch, versioned.patch: refreshed- Add buildtime version check to determine if we need patched openssl Requires: or already in upstream. (bsc#1192489)- rsa-pss-revert.patch: dropped, since openssl updated with needed functionality- update to 16.13.2: Security update fixing the following issues: * Improper handling of URI Subject Alternative Names (Medium) (CVE-2021-44531, bsc#1194511) * Certificate Verification Bypass via String Injection (Medium) (CVE-2021-44532, bsc#1194512) * Incorrect handling of certificate subject and issuer fields (Medium) (CVE-2021-44533, bsc#1194513) * Prototype pollution via console.table properties (Low) (CVE-2022-21824, bsc#1194514)- fix_ci_tests.patch: fix tests on s390x- rsa-pss-revert.patch: temporarily revert functionality requiring newer openssl- Update to 16.13.1: * deps: upgrade npm to 8.1.2 * lib: fix regular expression to detect `/` and `\` - 40670.patch: upstreamed - fix_ci_tests.patch: refreshed- Fix CXXFLAGS in Tumbleweed - boo#1192824- BR python 3.6+- Update to 16.13.0: * Experimental ESM Loader Hooks API https://github.com/nodejs/node/pull/37468 * deps: upgrade npm to 8.1.0 (npm team) * vm: add support for import assertions in dynamic imports - Changes in 16.11.1: * deps: update llhttp to 6.0.4 - HTTP Request Smuggling due to spaced in headers (bsc#1191601, CVE-2021-22959) - HTTP Request Smuggling when parsing the body (bsc#1191602, CVE-2021-22960) - Changes in 16.11.0: * deps: update nghttp2 to v1.45.1 - Changes in 16.10.0: * crypto: add rsa-pss keygen parameters * fs: make open and close stream override optional when unused * http: limit requests per connection The maximum number of requests a socket can handle before closing keep alive connection can be set with server.maxRequestsPerSocket. * src: add --no-global-search-paths cli option * stream: add signal support to pipeline generators - Changes in 16.9.0: * Added support for corepack * crypto: add RSA-PSS params to asymmetricKeyDetails * module: support pattern trailers * stream: add stream.compose - Changes in 16.8.0: * doc: deprecate type coercion for dns.lookup options * stream: add stream.Duplex.from utility and isDisturbed helper * util: expose toUSVString - Changes in 16.7.0: * fs: experimental: add recursive cp method - refreshed: fix_ci_tests.patch, flaky_test_rerun.patch, nodejs-libpath.patch, sle12_python3_compat.patch, versioned.patch, node_modules.tar.xz- Add 40670.patch: test: fix test-datetime-change-notify after daylight change.- test-skip-y2038-on-32bit-time_t.patch: Add patch to skip the test 'test/parallel/test-fs-utimes-y2K38.js' which fails with a FP on platforms with 32-bit time_t. - nodejs16.spec: Reference it.- Update to 16.6.2: * CVE-2021-3672/CVE-2021-22931: Improper handling of untypical characters in domain names (bsc#1189370, bsc#1188881) * CVE-2021-22940: Use after free on close http2 on stream canceling (bsc#1189368) * CVE-2021-22939: Incomplete validation of rejectUnauthorized parameter (bsc#1189369) * deps: upgrade npm to 7.20.3 * deps: revert ABI-breaking change from V8 9.2 * module: fix ERR_REQUIRE_ESM error for null frames - cares_public_headers.patch: don't use private headers- Update to 16.6.0: http2: fixes use after free on close http2 on stream canceling (bsc#1188917, CVE-2021-22930)- legacy_python.patch: fix building with python 3.4 in SLE-12- Update to 16.5.0: * deps: upgrade npm to 7.19.1 * fs: allow empty string for temp directory prefix * Node.js now exposes an experimental implementation of the Web Streams API- Update to 16.4.1: deps: libuv upgrade - Out of bounds read (Medium) (bsc#1187973, CVE-2021-22918)- node-gyp_7.1.2.tar.xz: for SLE-12, use latest node-gyp that is compatible with python 3.4- Update to 16.4.0: * async_hooks: stabilize part of AsyncLocalStorage * deps: + upgrade npm to 7.18.1 + update V8 to 9.1.269.36 * dns: allow --dns-result-order to change default dns verbatim- Allow building for Fedora in the OBS- update to 16.3.0: * add -C alias for --conditions flag * add workspaces support to npm install commands- Use libalternatives instead of update-alternatives- New upstream version 16.2.0: * async_hooks: use new v8::Context PromiseHook API * deps: npm updated to 7.13.0 * lib: support setting process.env.TZ on windows * module: add support for URL to import.meta.resolve * process: add 'worker' event * util: add util.types.isKeyObject and util.types.isCryptoKey- New upstream version 16.1.0 fs: allow no-params fsPromises fileHandle read- New upstrean version 16.0.0: For complete list of changes since 15.x, please see https://github.com/nodejs/node/blob/master/doc/changelogs/CHANGELOG_V16.md#16.0.0- Import staging 16.xh01-armsrv3 1697700518  !"#$%&'()*+,-./0123456789:16.20.2-150400.3.27.216.20.2-150400.3.27.2corepack16corepack16CHANGELOG.mdLICENSE.mdREADME.mddistcorepack.jsnpm.jsnpx.jspnpm.jspnpx.jsyarn.jsyarnpkg.jspackage.jsonshimscorepackcorepack.cmdcorepack.ps1nodewincorepackcorepack.cmdcorepack.ps1npmnpm.cmdnpm.ps1npxnpx.cmdnpx.ps1pnpmpnpm.cmdpnpm.ps1pnpxpnpx.cmdpnpx.ps1yarnyarn.cmdyarn.ps1yarnpkgyarnpkg.cmdyarnpkg.ps1npmnpm.cmdnpm.ps1npxnpx.cmdnpx.ps1pnpmpnpm.cmdpnpm.ps1pnpxpnpx.cmdpnpx.ps1yarnyarn.cmdyarn.ps1yarnpkgyarnpkg.cmdyarnpkg.ps1/usr/bin//usr/lib64/node_modules//usr/lib64/node_modules/corepack16//usr/lib64/node_modules/corepack16/dist//usr/lib64/node_modules/corepack16/shims//usr/lib64/node_modules/corepack16/shims/nodewin/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:31118/SUSE_SLE-15-SP4_Update/bba5c3915c1a9a763e251e2ea9bd1aad-nodejs16.SUSE_SLE-15-SP4_Updatedrpmxz5aarch64-suse-linux              directoryUTF-8 Unicode textUTF-8 Unicode text, with very long linesASCII text, with very long linesa /usr/bin/env node script executable (binary data)a /usr/bin/env node script, ASCII text executableASCII textPOSIX shell script, ASCII text executableASCII text, with CRLF line terminatorsa /usr/bin/env pwsh script, ASCII text executable RRRRRRRRRRRRRRRRRRRRRb̞ŵ`5 Dˊutf-864292c1192336a7b99ed43bac91562051dced11be76c86304169d50c0474a570? 7zXZ !t/]"k%hs/`ǹ_0dkDc۸ƕ* Hk5ӿ>憎]lQb¡$~m:Ӈj`giY}{tZ&,iQªB+tZiW> jIwz-q%3p^SL=AڷJ x~M)dQRа6~eb4K$ };ƋWJ/#H%#_%1Iݻcw`@<)wD fRE(lUls]mv(JẌ́p[yZcT`+Bv.`R{]^4Bl1\8$kRҀPq̎U*B91{A٭6I08,\FI\Fzc )+VkÈj +/ֶ YZ