OpenSSL upgraded to 3.5.7 with security fixes (
0a58d44)
Node bumps vendored OpenSSL to 3.5.7, pulling in a broad set of upstream fixes including multiple security advisories. The release notes in-tree call out a high-severity PKCS7 use-after-free plus several moderate and low-severity issues, so this is a meaningful security maintenance update.
vm proxy sandboxes now query own properties correctly (
0b07f2c)
Property queries for Proxy-backed vm sandboxes now use own-property checks and fetch attributes through the corresponding property API, instead of treating inherited properties as a match. This aligns descriptor/membership behavior and fixes the inconsistency covered by the new regression test.
