Log message:
lang/nodejs{6,8}: Decouple respective options.mk from main package.

Log message:
lang/nodejs*: Remove the npm package manager from nodejs packages. Introduce \ 
nodeversion.mk framework to pick and depend on one of the supported nodejs \ 
version packages. Bump respective PKGREVISIONs.

Log message:
revbump after icu update

Log message:
lang/nodejs8: Update to 8.11.1.

Fixes for the following CVEs are included in this release:

- CVE-2018-7158
- CVE-2018-7159
- CVE-2018-7160

Notable Changes

- Fix for inspector DNS rebinding vulnerability (CVE-2018-7160): A
  malicious website could use a DNS rebinding attack to trick a web
  browser to bypass same-origin-policy checks and allow HTTP connections
  to localhost or to hosts on the local network, potentially to an open
  inspector port as a debugger, therefore gaining full code execution
  access. The inspector now only allows connections that have a browser
  Host value of localhost or localhost6.
- Fix for 'path' module regular expression denial of service
  (CVE-2018-7158): A regular expression used for parsing POSIX paths
  could be used to cause a denial of service if an attacker were able to
  have a specially crafted path string passed through one of the
  impacted 'path' module functions.
- Reject spaces in HTTP Content-Length header values (CVE-2018-7159):
  The Node.js HTTP parser allowed for spaces inside Content-Length
  header values. Such values now lead to rejected connections in the
  same way as non-numeric values.
- Update root certificates: 5 additional root certificates have been
  added to the Node.js binary and 30 have been removed.

Log message:
lang/nodejs8: Update to 8.10.0

deps:
- update V8 to 6.2.414.46
- revert ABI breaking changes in V8 6.2
- upgrade libuv to 1.19.1
- re land npm 5.6.0
- ICU 60 bump
crypto:
- Support both OpenSSL 1.1.0 and 1.0.2
- warn on invalid authentication tag length
async_hooks:
- update defaultTriggerAsyncIdScope for perf
- use typed array stack as fast path
- use scope for defaultTriggerAsyncId
- separate missing from default context
- rename initTriggerId
- deprecate undocumented API
- add destroy event for gced AsyncResources
- add trace events to async_hooks
- set HTTPParser trigger to socket
- add provider types for net server
n-api:
- add helper for addons to get the event loop
cli:
- add --stack-trace-limit to NODE_OPTIONS
console:
- add support for console.debug
module:
- add builtinModules
- replace default paths in require.resolve()
src:
- add helper for addons to get the event loop
- add process.ppid
http:
- support generic `Duplex` streams
- add rawPacket in err of `clientError` event
- better support for IPv6 addresses
net:
- remove ADDRCONFIG DNS hint on Windows
process:
- fix reading zero-length env vars on win32
tls:
- unconsume stream on destroy
process:
- improve unhandled rejection message
stream:
- remove usage of *State.highWaterMark
trace_events:
- add executionAsyncId to init events

Log message:
Update lang/nodejs8 to 8.9.4.

- deps: upgrade npm to 5.6.0
- build: configure can now be run from any directory

Log message:
Update lang/nodejs8 to 8.9.3.

- buffer: buffer allocated with an invalid content will now be zero
  filled (CVE-2017-15897)
- deps: openssl updated to 1.0.2n

Log message:
Update lang/nodejs8 to 8.9.2.

- console: avoid adding infinite error listeners
- http2: improve errors thrown in header validation

Log message:
Revbump after textproc/icu update

Log message:
Update lang/nodejs8 to 8.9.1.

- openssl: upgrade openssl sources to 1.0.2m
- Revert "https: refactor to use http internals"