From 268eb1f7badf875663df363daa8e8fc3c00cc9ed Mon Sep 17 00:00:00 2001
From: "renovate[bot]" <29139614+renovate[bot]@users.noreply.github.com>
Date: Mon, 26 Jan 2026 13:33:25 +0800
Subject: [PATCH] chore: bump up Node.js to v22.22.0 (#14299)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

This PR contains the following updates:

| Package | Update | Change |
|---|---|---|
| [node](https://nodejs.org)
([source](https://redirect.github.com/nodejs/node)) | minor | `22.21.1`
→ `22.22.0` |

---

### Release Notes

<details>
<summary>nodejs/node (node)</summary>

###
[`v22.22.0`](https://redirect.github.com/nodejs/node/releases/tag/v22.22.0):
2026-01-13, Version 22.22.0 &#x27;Jod&#x27; (LTS),
@&#8203;marco-ippolito

[Compare
Source](https://redirect.github.com/nodejs/node/compare/v22.21.1...v22.22.0)

This is a security release.

##### Notable Changes

lib:

- (CVE-2025-59465) add TLSSocket default error handler
- (CVE-2025-55132) disable futimes when permission model is enabled
  lib,permission:
- (CVE-2025-55130) require full read and write to symlink APIs
  src:
- (CVE-2025-59466) rethrow stack overflow exceptions in async\_hooks
  src,lib:
- (CVE-2025-55131) refactor unsafe buffer creation to remove zero-fill
toggle
  tls:
- (CVE-2026-21637) route callback exceptions through error handlers

##### Commits

-
\[[`6badf4e6f4`](https://redirect.github.com/nodejs/node/commit/6badf4e6f4)]
- **deps**: update c-ares to v1.34.6 (Node.js GitHub Bot)
[#&#8203;60997](https://redirect.github.com/nodejs/node/pull/60997)
-
\[[`37509c3ff0`](https://redirect.github.com/nodejs/node/commit/37509c3ff0)]
- **deps**: update undici to 6.23.0 (Matteo Collina)
[nodejs-private/node-private#791](https://redirect.github.com/nodejs-private/node-private/pull/791)
-
\[[`eb8e41f8db`](https://redirect.github.com/nodejs/node/commit/eb8e41f8db)]
- **(CVE-2025-59465)** **lib**: add TLSSocket default error handler
(RafaelGSS)
[nodejs-private/node-private#797](https://redirect.github.com/nodejs-private/node-private/pull/797)
-
\[[`ebbf942a83`](https://redirect.github.com/nodejs/node/commit/ebbf942a83)]
- **(CVE-2025-55132)** **lib**: disable futimes when permission model is
enabled (RafaelGSS)
[nodejs-private/node-private#748](https://redirect.github.com/nodejs-private/node-private/pull/748)
-
\[[`6b4849583a`](https://redirect.github.com/nodejs/node/commit/6b4849583a)]
- **(CVE-2025-55130)** **lib,permission**: require full read and write
to symlink APIs (RafaelGSS)
[nodejs-private/node-private#760](https://redirect.github.com/nodejs-private/node-private/pull/760)
-
\[[`ddadc31f09`](https://redirect.github.com/nodejs/node/commit/ddadc31f09)]
- **(CVE-2025-59466)** **src**: rethrow stack overflow exceptions in
async\_hooks (Matteo Collina)
[nodejs-private/node-private#773](https://redirect.github.com/nodejs-private/node-private/pull/773)
-
\[[`d4d9f3915f`](https://redirect.github.com/nodejs/node/commit/d4d9f3915f)]
- **(CVE-2025-55131)** **src,lib**: refactor unsafe buffer creation to
remove zero-fill toggle (Сковорода Никита Андреевич)
[nodejs-private/node-private#759](https://redirect.github.com/nodejs-private/node-private/pull/759)
-
\[[`25d6799df6`](https://redirect.github.com/nodejs/node/commit/25d6799df6)]
- **(CVE-2026-21637)** **tls**: route callback exceptions through error
handlers (Matteo Collina)
[nodejs-private/node-private#796](https://redirect.github.com/nodejs-private/node-private/pull/796)

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined),
Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you
are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the
rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update
again.

---

- [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check
this box

---

This PR was generated by [Mend Renovate](https://mend.io/renovate/).
View the [repository job
log](https://developer.mend.io/github/toeverything/AFFiNE).

<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi45Mi4xIiwidXBkYXRlZEluVmVyIjoiNDIuOTIuMSIsInRhcmdldEJyYW5jaCI6ImNhbmFyeSIsImxhYmVscyI6WyJkZXBlbmRlbmNpZXMiXX0=-->

Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
---
 .nvmrc | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.nvmrc b/.nvmrc
index 5767036af0..85e502778f 100644
--- a/.nvmrc
+++ b/.nvmrc
@@ -1 +1 @@
-22.21.1
+22.22.0