TokenTalks
← Back to feed

Security patch:

denoland/deno v2.7.8: v2.7.8

GitHub·Backend·SecurityFix·3/25/2026

### 2.7.8 / 2026.03.25 - feat(core): implement NodeRuntime CDP domain and fix --inspect-brk blocking (#32714) - feat(ext/crypto): implement P-521 sign, verify, and ECDH derive (#32602) - feat(ext/napi): add node_api_create_object_with_named_properties (#32906) - feat(ext/telemetry): add con

Why it mattersA security vulnerability was patched. Upgrade affected versions to mitigate risk.

Who should careAnyone running affected versions in production.

denonode.js
View original source ↗

Source payload preview

{
  "id": 301271978,
  "url": "https://api.github.com/repos/denoland/deno/releases/301271978",
  "body": "### 2.7.8 / 2026.03.25\r\n\r\n- feat(core): implement NodeRuntime CDP domain and fix --inspect-brk blocking\r\n  (#32714)\r\n- feat(ext/crypto): implement P-521 sign, verify, and ECDH derive (#32602)\r\n- feat(ext/napi): add node_api_create_object_with_named_properties (#32906)\r\n- feat(ext/telemetry): add console exporter for OpenTelemetry (#32717)\r\n- feat(ext/telemetry): copy relevant span attributes to HTTP metrics (#32720)\r\n- feat: use lockfile from jsr package for global install (#32490)\r\n- fix(audit): respect package.json overrides in vulnerability checks (#32878)\r\n- fix(cli): fix arrow keys in interactive picker on Windows (#32978)\r\n- fix(cli): parse --frozen flag for