March 20
Node browser runtime v2.2.45
Features
- Adds form-data module
- Adds async module
Fixes
- Step monitor Assert element step no longer preemptively throws error when element not found
- Masks sensitive header values in HAR log
Security patches
- CVE-2023-4228
February 26
Node browser runtime v2.2.33
Fixes
- Adds additional fonts for displaying Chinese and Korean characters in screenshots
Security patches
- CWE-1333
February 13
Node browser runtime v2.2.28
Fixes
- Reduces Polling frequency for successful requests while in Kubernetes clusters.
February 7
Node browser runtime v2.2.22
New Features
- Step monitor support
Fixes
- Added missing argument to step monitor script
- Fixed step monitor secure credential evaluation
Security patches
- CVE-2023-26159
- CWE-1321
January 25
Node browser runtime v2.2.10
Improvements
- Increase browser extension proxy timeout to better accommodate resource-constrained environments
- Additional error logging
Fixes
- Unblock ensighten.com as a legitimate endpoint
January 8
Node browser runtime v2.2.2
Security patches
- Update Axios
January 4
Node browser runtime v2.2.1
Improvements
- Upgrade Chrome version from 112 to 117
December 28, 2023
Node browser runtime v2.1.12
Fixes
- Prevents Module Deny-list bypass via node qualified require statements
- Deny-list "module" module
December 14, 2023
Node browser runtime v2.1.10
Fixes
- Adds filter to scrub NR Access Keys and bearer tokens
Security patches
- Pins glob version to remediate CWE-772
- Removes access to VM module
December 6, 2023
Node browser runtime v2.1.5
Fixes
- When running in K8 mode, unhealthy Runtimes now exit if they cannot reach SJM's 'Job' endpoint.
- Pinning Yarn to version 2.4.3.
- Truncates script logs to expected size.
- Upgrade base Ubuntu image.
- Set minimum TLS version to accommodate upgraded Ubuntu base image OpenSSL.
Security patches
- CVE-2023-43646
- CVE-2023-46233
- CVE-2023-28155
- CVE-2023-45857