Skip to content

chore(deps): update dependency bun to v1 [security] - autoclosed#210

Closed
renovate[bot] wants to merge 1 commit intomainfrom
renovate/npm-bun-vulnerability
Closed

chore(deps): update dependency bun to v1 [security] - autoclosed#210
renovate[bot] wants to merge 1 commit intomainfrom
renovate/npm-bun-vulnerability

Conversation

@renovate
Copy link
Copy Markdown
Contributor

@renovate renovate bot commented Dec 18, 2024
edited
Loading

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package Change Age Confidence
bun (source) ^0.8.1^1.0.0 age confidence

GitHub Vulnerability Alerts

CVE-2024-21548

Versions of the package bun before 1.1.30 are vulnerable to Prototype Pollution due to improper input sanitization. An attacker can exploit this vulnerability through Bun's APIs that accept objects.

Release Notes

oven-sh/bun (bun)

v1.1.30: Bun v1.1.30

Compare Source

To install:

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.30:

bun upgrade
Read Bun v1.1.30's release notes on Bun's blog
Thanks to 17 contributors!

v1.1.29: Bun v1.1.29

Compare Source

To install:

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.29:

bun upgrade
Read Bun v1.1.29's release notes on Bun's blog
Thanks to 3 contributors!

v1.1.28: Bun v1.1.28

Compare Source

To install:

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.28:

bun upgrade
Read Bun v1.1.28's release notes on Bun's blog
Thanks to 12 contributors!

v1.1.27: Bun v1.1.27

Compare Source

To install:

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.27:

bun upgrade
Read Bun v1.1.27's release notes on Bun's blog
Thanks to 17 contributors!

v1.1.26: Bun v1.1.26

Compare Source

To install:

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.26:

bun upgrade
Read Bun v1.1.26's release notes on Bun's blog
Thanks to 3 contributors!

v1.1.25: Bun v1.1.25

Compare Source

To install:

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.25:

bun upgrade
Read Bun v1.1.25's release notes on Bun's blog
Thanks to 11 contributors!

v1.1.24: Bun v1.1.24

Compare Source

To install Bun v1.1.24:

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.24:

bun upgrade

Bun v1.1.24 fixes a regression introduced in v1.1.23 that caused the net module to throw an error after upgrading from TCP -> TLS.

The tests that would've prevented this regression were being skipped due to a credentials issue after migrating to a new CI provider.

To prevent this regression from recurring, we have ensured tests missing credentials in our CI will always fail.

There are no release notes for this version, please see the release notes for v1.1.23.

Read Bun v1.1.23's release notes on Bun's blog

v1.1.22: Bun v1.1.22

Compare Source

To install Bun v1.1.22:

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.22:

bun upgrade
Read Bun v1.1.22's release notes on Bun's blog
Thanks to 11 contributors!
  • @​billywhizz
  • @​cirospaciari
  • @​dariushalipour
  • @​dylan-conway
  • @​Electroid
  • @​guest271314
  • @​huseeiin
  • @​Jarred-Sumner
  • @​m1212e
  • @​nektro
  • @​paperdave
  • @​pythonmcpi

v1.1.21: Bun v1.1.21

Compare Source

To install Bun v1.1.21:

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.21:

bun upgrade
Read Bun v1.1.21's release notes on Bun's blog

v1.1.20: Bun v.1.1.20

Compare Source

This release fixes a build issue on macOS in Bun v1.1.19 that caused Node-API symbols to be stripped from the binary There are no release notes; please refer to the Bun v1.1.19 release notes instead.

To install Bun v1.1.20:

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.20:

bun upgrade
Read Bun v1.1.19's release notes on Bun's blog

v1.1.19: Bun v1.1.19

Compare Source

To install Bun v1.1.19:

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.19:

bun upgrade
Read Bun v1.1.19's release notes on Bun's blog
Thanks to 25 contributors!

v1.1.18: Bun v1.1.18

Compare Source

To install Bun v1.1.18:

curl -fsSL https://bun.sh/install | bash

# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.18:

bun upgrade
Read Bun v1.1.18's release notes on Bun's blog
Thanks to 12 contributors!

v1.1.17: Bun v1.1.17

Compare Source

To install Bun v1.1.17:

curl -fsSL https://bun.sh/install | bash

# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.17:

bun upgrade
Read Bun v1.1.17's release notes on Bun's blog

v1.1.16: Bun v1.1.16

Compare Source

To install Bun v1.1.16:

curl -fsSL https://bun.sh/install | bash

# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.16:

bun upgrade
Read Bun v1.1.16's release notes on Bun's blog
Thanks to 9 contributors!

v1.1.15: Bun v1.1.15

Compare Source

This release enables the bun patch command and fixes an optional dependency regression. Please refer to the Bun v1.1.14 release notes for more information.

To install Bun v1.1.15:

curl -fsSL https://bun.sh/install | bash

# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.15:

bun upgrade
Read Bun v1.1.14's release notes on Bun's blog
Thanks to 2 contributors!

v1.1.14: Bun v1.1.14

Compare Source

To install Bun v1.1.14:

curl -fsSL https://bun.sh/install | bash

# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.14:

bun upgrade
Read Bun v1.1.14's release notes on Bun's blog
Thanks to 10 contributors!

v1.1.13: Bun v1.1.13

Compare Source

To install Bun v1.1.13:

curl -fsSL https://bun.sh/install | bash

# or you can use npm
# npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.13:

bun upgrade
Read Bun v1.1.13's release notes on Bun's blog
Thanks to 11 contributors!

v1.1.12: Bun v1.1.12

Compare Source

This release fixes a regression briefly introduced in bun upgrade on Windows that occurred in Bun v1.1.11. There are no release notes, please take a look at the Bun v1.1.11 release notes instead.

To install Bun v1.1.12:

curl -fsSL https://bun.sh/install | bash

### or you can use npm
### npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.12:

bun upgrade
Read Bun v1.1.11's release notes on Bun's blog

v1.1.11: Bun v1.1.11

Compare Source

To install Bun v1.1.11:

curl -fsSL https://bun.sh/install | bash

### or you can use npm
### npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.11:

bun upgrade
Read Bun v1.1.11's release notes on Bun's blog
Thanks to 16 contributors!

v1.1.10: Bun v1.1.10

Compare Source

To install Bun v1.1.10:

curl -fsSL https://bun.sh/install | bash

### or you can use npm
### npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.10:

bun upgrade
Read Bun v1.1.10's release notes on Bun's blog
Thanks to 9 contributors!

v1.1.9: Bun v1.1.9

Compare Source

To install Bun v1.1.9:

curl -fsSL https://bun.sh/install | bash

### or you can use npm
### npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.9:

bun upgrade
Read Bun v1.1.9's release notes on Bun's blog
Thanks to 16 contributors!

v1.1.8: Bun v1.1.8

Compare Source

To install Bun v1.1.8:

curl -fsSL https://bun.sh/install | bash

### or you can use npm
### npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.8:

bun upgrade
Read Bun v1.1.8's release notes on Bun's blog
Thanks to 12 contributors!

v1.1.7: Bun v1.1.7

Compare Source

To install Bun v1.1.7:

curl -fsSL https://bun.sh/install | bash

### or you can use npm
### npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.7:

bun upgrade
Read Bun v1.1.7's release notes on Bun's blog
Thank you to 17 contributors!

v1.1.6: Bun v1.1.6

Compare Source

To install Bun v1.1.6:

curl -fsSL https://bun.sh/install | bash

### or you can use npm
### npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.6:

bun upgrade
Read Bun v1.1.6's release notes on Bun's blog
Thanks to 9 contributors!

Full Changelog: oven-sh/bun@bun-v1.1.5...bun-v1.1.6

v1.1.5: Bun v1.1.5

Compare Source

To install Bun v1.1.5:

curl -fsSL https://bun.sh/install | bash

### or you can use npm
### npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.5:

bun upgrade
Read Bun v1.1.5's release notes on Bun's blog

Thank you to 16 contributors!

Full Changelog: oven-sh/bun@bun-v1.1.4...bun-v1.1.5

v1.1.4: Bun v1.1.4

Compare Source

To install Bun v1.1.4:

curl https://bun.sh/install | bash

### or you can use npm
### npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.4:

bun upgrade
Read Bun v1.1.4's release notes on Bun's blog
Thanks to 11 contributors!

Full Changelog: oven-sh/bun@bun-v1.1.3...bun-v1.1.4

v1.1.3: Bun v1.1.3

Compare Source

To install Bun v1.1.3:

curl https://bun.sh/install | bash

##### or you can use npm
##### npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.3:

bun upgrade
Read Bun v1.1.3's release notes on Bun's blog
Thanks to 5 contributors!

Full Changelog: oven-sh/bun@bun-v1.1.2...bun-v1.1.3

v1.1.2: Bun v1.1.2

Compare Source

To install Bun v1.1.2:

curl https://bun.sh/install | bash

##### or you can use npm
##### npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.2:

bun upgrade
Read Bun v1.1.2's release notes on Bun's blog
Thanks to 7 contributors!

Full Changelog: oven-sh/bun@bun-v1.1.1...bun-v1.1.2

v1.1.1: Bun v1.1.1

Compare Source

To install Bun v1.1.1:

curl https://bun.sh/install | bash

##### or you can use npm
##### npm install -g bun

Windows:

powershell -c "irm bun.sh/install.ps1|iex"

To upgrade to Bun v1.1.1:

bun upgrade
Read Bun v1.1.1's release notes on Bun's blog
Thank you to 8 contributors!

Full Changelog: oven-sh/bun@bun-v1.1.0...bun-v1.1.1

v1.1.0: Bun v1.1.0

Compare Source

To install Bun v1.1:

curl https://bun.sh/install | bash

##### or you can use npm
##### npm install -g bun

To upgrade to Bun v1.1:

bun upgrade
Read Bun v1.1's release notes on Bun's blog
Thank you to 364 contributors since Bun 1.0!

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

@renovate renovate bot force-pushed the renovate/npm-bun-vulnerability branch from ba5f44f to a4327eb Compare February 27, 2025 15:26
@renovate renovate bot force-pushed the renovate/npm-bun-vulnerability branch from a4327eb to 792165f Compare December 15, 2025 20:00
@renovate renovate bot force-pushed the renovate/npm-bun-vulnerability branch from 792165f to f4b4e01 Compare December 31, 2025 15:41
@renovate renovate bot force-pushed the renovate/npm-bun-vulnerability branch from f4b4e01 to 63b2c3c Compare January 19, 2026 16:13
@renovate renovate bot force-pushed the renovate/npm-bun-vulnerability branch from 63b2c3c to dc06d83 Compare February 2, 2026 21:52
@renovate renovate bot force-pushed the renovate/npm-bun-vulnerability branch from dc06d83 to de5f911 Compare February 12, 2026 14:44
@renovate renovate bot force-pushed the renovate/npm-bun-vulnerability branch from de5f911 to caa130b Compare March 5, 2026 14:00
@renovate renovate bot changed the title chore(deps): update dependency bun to v1 [security] chore(deps): update dependency bun to v1 [security] - autoclosed Mar 11, 2026
@renovate renovate bot closed this Mar 11, 2026
@renovate renovate bot deleted the renovate/npm-bun-vulnerability branch March 11, 2026 00:48
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants