Node.js Buildpack Updates

Share this post:

What has changed in the Node.js buildpack:

Updated the default Node.js runtime to v0.12.1

If your application doesn’t specify a runtime in its package.json file, your app will now start using v0.12.1, instead of v0.10.x. There’s some services and features on Bluemix that are currently incompatible with v0.12.x.

If you need to use the previous version, specify v0.10.x in your package.json as shown below:

  "engines": {

        "node": "0.10.x"

    },

The known issues with v0.12.1:

• When using the Debug Tools feature provided by Bluemix Live Sync, the “Suspend” feature is broken.
• The mqlight module used for the MQ Light service is not supported on v0.12.x
• If you find more bugs, let us know on StackOverflow, or dW Answers!

Updated the Node.js runtime to resolve various security vulnerabilities

• Fixed vulnerabilities in OpenSSL affecting IBM SDK for Node.js. More details are available in the security bulletin.
• Fixed vulnerability in RC4 Stream Cipher affecting IBM SDK for Node.js. More details are available in the security bulletin.

The latest Buildpack Version is v1.17-20150429-1033.