Bump nodejs to 16.20.1 (#5758)

Co-authored-by: Olivia Crain <olivia@olivia.dev>

SPECS/nodejs/nodejs.signatures.json

@@ -1,5 +1,5 @@
 {
   "Signatures": {
-    "node-v16.19.1.tar.xz": "6cea9e7c99e79864fb7c5140c2830225e15b62e836c8d57e217992431b63d2cc"
+    "node-v16.20.1.tar.xz": "3b7d5a3b11e122da9f084448ce7723d3f8c92cd0e36100b6a22c66111d643d19"
   }
-}
+}

SPECS/nodejs/nodejs.spec

@@ -1,24 +1,23 @@
 # Retrieved from 'deps/npm/package.json' inside the sources tarball.
-%define npm_version 8.19.3
-
+%define npm_version 8.19.4
 Summary:        A JavaScript runtime built on Chrome's V8 JavaScript engine.
 Name:           nodejs
 # WARNINGS: MUST check and update the 'npm_version' macro for every version update of this package.
 #           The version of NPM can be found inside the sources under 'deps/npm/package.json'.
-Version:        16.19.1
-Release:        2%{?dist}
-License:        BSD and MIT and Public Domain and NAIST-2003 and Artistic-2.0
-Group:          Applications/System
+Version:        16.20.1
+Release:        1%{?dist}
+License:        BSD AND MIT AND Public Domain AND NAIST-2003 AND Artistic-2.0
 Vendor:         Microsoft Corporation
 Distribution:   Mariner
+Group:          Applications/System
 URL:            https://github.com/nodejs/node
-# !!!! Nodejs code has a vendored version of OpenSSL code that must be removed from source tarball 
+# !!!! Nodejs code has a vendored version of OpenSSL code that must be removed from source tarball
 # !!!! because it contains patented algorithms.
 # !!!  => use clean-source-tarball.sh script to create a clean and reproducible source tarball.
 Source0:        https://nodejs.org/download/release/v%{version}/node-v%{version}.tar.xz
 Patch0:         disable-tlsv1-tlsv1-1.patch
-
 BuildRequires:  brotli-devel
+BuildRequires:  c-ares-devel
 BuildRequires:  coreutils >= 8.22
 BuildRequires:  gcc
 BuildRequires:  make
@@ -27,12 +26,9 @@ BuildRequires:  openssl-devel >= 1.1.1
 BuildRequires:  python3
 BuildRequires:  which
 BuildRequires:  zlib-devel
-BuildRequires:  c-ares-devel
-
 Requires:       brotli
 Requires:       coreutils >= 8.22
 Requires:       openssl >= 1.1.1
-
 Provides:       npm = %{npm_version}.%{version}-%{release}
 
 %description
@@ -86,7 +82,7 @@ JOBS=4 make %{?_smp_mflags} V=0
 
 %install
 
-make %{?_smp_mflags} install DESTDIR=$RPM_BUILD_ROOT
+make %{?_smp_mflags} install DESTDIR=%{buildroot}
 install -m 755 -d %{buildroot}%{_libdir}/node_modules/
 install -m 755 -d %{buildroot}%{_datadir}/%{name}
 
@@ -104,10 +100,11 @@ make cctest
 %files
 %defattr(-,root,root)
 %license LICENSE
+%doc CHANGELOG.md README.md
 %{_bindir}/*
 %{_libdir}/node_modules/*
 %{_mandir}/man*/*
-%doc CHANGELOG.md LICENSE README.md
+
 
 %files devel
 %defattr(-,root,root)
@@ -116,6 +113,9 @@ make cctest
 %{_datadir}/systemtap/tapset/node.stp
 
 %changelog
+* Wed Jun 28 2023 David Steele <davidsteele@microsoft.com> - 16.20.1-1
+- Upgrade to nodejs to 16.20.1 and npm to 8.19.4
+
 * Tue May 30 2023 Dallas Delaney <dadelan@microsoft.com> - 16.19.1-2
 - Fix CVE-2023-32067, CVE-2023-31130, CVE-2023-31147 by using system c-ares
 

cgmanifest.json

@@ -14203,8 +14203,8 @@
         "type": "other",
         "other": {
           "name": "nodejs",
-          "version": "16.19.1",
-          "downloadUrl": "https://nodejs.org/download/release/v16.19.1/node-v16.19.1.tar.xz"
+          "version": "16.20.1",
+          "downloadUrl": "https://nodejs.org/download/release/v16.20.1/node-v16.20.1.tar.xz"
         }
       }
     },