- Fixed CVE‑2024‑27980 command injection in child_process.spawn on Windows
- Disallowed direct spawning of .bat and .cmd files when shell option is disabled
- Security‑only LTS release addressing the vulnerability
Community impact
Community ratings: 0 Useful, 0 Noise, 0 Risky, 0 Broke, 0 Try.