Ever since upgrading to Node.js 18, we have needed to use the --openssl-legacy-provider flag in several locations. This is because some of our code (mostly tests and build steps) rely on legacy OpenSSL providers. It would be good security hygiene to upgrade all/as many of these providers to more modern ones.
Ever since upgrading to Node.js 18, we have needed to use the
--openssl-legacy-provider
flag in several locations. This is because some of our code (mostly tests and build steps) rely on legacy OpenSSL providers. It would be good security hygiene to upgrade all/as many of these providers to more modern ones.