- Fix CVE‑2024‑27980: command injection via child_process.spawn args on Windows
- Disallow direct .bat and .cmd file spawning in child_process
- Security‑only release for LTS version
Community impact
Community ratings: 0 Useful, 0 Noise, 0 Risky, 0 Broke, 0 Try.