mirror of https://github.com/denoland/deno.git synced 2024-11-28 16:20:57 -05:00

A modern runtime for JavaScript and TypeScript. https://deno.com/

Find a file

dependabot[bot] e8506f67da build(deps): bump rustls-webpki from 0.100.1 to 0.100.2 (#20241 ) Bumps [rustls-webpki](https://github.com/rustls/webpki) from 0.100.1 to 0.100.2. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/rustls/webpki/releases">rustls-webpki's releases</a>.</em></p> <blockquote> <h2>v/0.100.2</h2> <h2>Release notes</h2> <ul> <li>certificate path building and verification is now capped at 100 signature validation operations to avoid the risk of CPU usage denial-of-service attack when validating crafted certificate chains producing quadratic runtime. This risk affected both clients, as well as servers that verified client certificates.</li> </ul> <h2>What's Changed</h2> <ul> <li>v0.100.2 prep by <a href="https://github.com/cpu"><code>@cpu</code></a> in <a href="https://redirect.github.com/rustls/webpki/pull/154">rustls/webpki#154</a></li> </ul> <p><strong>Full Changelog</strong>: <a href="https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2">https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2</a></p> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="`c8b821450b`"><code>c8b8214</code></a> Bump MSRV to 1.60</li> <li><a href="`855752292e`"><code>8557522</code></a> Avoid testing MSRV of dev-dependencies</li> <li><a href="`73a7f0c7d7`"><code>73a7f0c</code></a> Cargo: version 0.100.1 -> 0.100.2</li> <li><a href="`4ea052366f`"><code>4ea0523</code></a> verify_cert: enforce maximum number of signatures.</li> <li>See full diff in <a href="https://github.com/rustls/webpki/compare/v/0.100.1...v/0.100.2">compare view</a></li> </ul> </details> <br /> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=rustls-webpki&package-manager=cargo&previous-version=0.100.1&new-version=0.100.2)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> <br /> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/denoland/deno/network/alerts). </details> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>		2023-08-24 09:09:41 -06:00
.cargo	chore: Add a local-build.toml to make downstream packaging from sourc… (#20236 )	2023-08-24 09:02:00 -06:00
.devcontainer	chore: update devcontainer configuration (#15751 )	2022-09-03 02:21:41 +02:00
.github	1.36.2 (#20222 )	2023-08-21 19:09:22 +05:30
bench_util	1.36.2 (#20222 )	2023-08-21 19:09:22 +05:30
cli	refactor: use "deno_config" crate (#20260 )	2023-08-24 09:01:53 -06:00
ext	fix(ext/web): add stream tests to detect v8slice split bug (#20253 )	2023-08-24 09:01:07 -06:00
runtime	fix(ext/web): add stream tests to detect v8slice split bug (#20253 )	2023-08-24 09:01:07 -06:00
test_ffi	feat(unstable): Improve FFI types (#20215 )	2023-08-21 18:23:28 +05:30
test_napi	fix(node): don't print warning on process.dlopen.flags (#20124 )	2023-08-21 18:23:27 +05:30
test_util	fix(unstable): disable importing from the vendor directory (#20067 )	2023-08-21 18:23:27 +05:30
tools	fix(ext/web): add stream tests to detect v8slice split bug (#20253 )	2023-08-24 09:01:07 -06:00
.dlint.json	chore: update dlint to v0.37.0 for GitHub Actions (#17295 )	2023-01-16 17:17:18 +01:00
.dprint.json	fix(fmt): do not insert expr stmt leading semi-colon in do while stmt body (#20093 )	2023-08-08 09:15:19 -04:00
.editorconfig	editorconfig: Don't insert final newline in .out files (#1686 )	2019-02-07 11:31:49 -05:00
.gitattributes	fix(test): support typechecking docs with CRLF line endings (#12748 )	2021-11-15 09:58:04 -05:00
.gitignore	chore: remove third_party submodule (#20201 )	2023-08-21 18:23:28 +05:30
.gitmodules	chore: remove third_party submodule (#20201 )	2023-08-21 18:23:28 +05:30
.rustfmt.toml	chore: update copyright year to 2023 (#17247 )	2023-01-02 21:00:42 +00:00
Cargo.lock	build(deps): bump rustls-webpki from 0.100.1 to 0.100.2 (#20241 )	2023-08-24 09:09:41 -06:00
Cargo.toml	refactor: use "deno_config" crate (#20260 )	2023-08-24 09:01:53 -06:00
LICENSE.md	chore: update copyright year to 2023 (#17247 )	2023-01-02 21:00:42 +00:00
README.md	docs: nitpick README (#19912 )	2023-07-25 14:44:50 +09:00
Releases.md	1.36.2 (#20222 )	2023-08-21 19:09:22 +05:30
rust-toolchain.toml	chore: update to Rust 1.71 (#19822 )	2023-07-13 15:16:24 -06:00

README.md

Deno

Deno is a simple, modern and secure runtime for JavaScript and TypeScript that uses V8 and is built in Rust.

Features

Secure by default. No file, network, or environment access, unless explicitly enabled.
Provides web platform functionality and APIs, e.g. using ES modules, web workers, and fetch().
Supports TypeScript out of the box.
Ships only a single executable file.
Built-in tooling including deno test, deno fmt, deno bench, and more.
Includes a set of reviewed standard modules guaranteed to work with Deno.
Supports npm.

Install

Shell (Mac, Linux):

curl -fsSL https://deno.land/install.sh | sh

PowerShell (Windows):

irm https://deno.land/install.ps1 | iex

Homebrew (Mac):

brew install deno

Chocolatey (Windows):

choco install deno

Scoop (Windows):

scoop install deno

Build and install from source using Cargo:

cargo install deno --locked

See deno_install and releases for other options.

Getting Started

Try running a simple program:

deno run https://deno.land/std/examples/welcome.ts

Or setup a simple HTTP server:

Deno.serve((_req) => new Response("Hello, World!"));

More Examples

Additional Resources

The Deno Manual is a great starting point for additional examples, setting up your environment, using npm, and more.
Runtime API reference documents all APIs built into Deno CLI.
Deno Standard Modules do not have external dependencies and are reviewed by the Deno core team.
deno.land/x is the registry for third party modules.
Blog is where the Deno team shares important product updates and “how to”s about solving technical problems.

Contributing

We appreciate your help!

To contribute, please read our contributing instructions.