Changelog

oven-sh/bun · · 5 commits

Proxy tunnels get keep-alive pooling

Bun reuses HTTPS proxy CONNECT tunnels, updates root CAs, and fixes a WebView test-load crash on non-macOS CI.

cirospaciari Jarred-Sumner

Reuse HTTPS proxy CONNECT tunnels (cirospaciari687700d)

Bun now pools and reuses tunneled HTTPS connections through proxies instead of doing a fresh CONNECT + TLS handshake for every request. That should cut latency and connection churn for sequential proxied requests, and the redirect handling was tightened so tunnels are shut down instead of being reused across redirect targets.

Update the bundled root certificate set (cirospaciari06a11c0)

The bundled NSS trust store was refreshed to 3.121, adding the e-Szigno TLS Root CA 2023 and fixing the leading-space label on OISTE Server Root RSA G1. This keeps Bun aligned with current browser CA trust and reduces the chance of TLS validation mismatches.

Other misc changes

  • Fixed a WebView test chain so .todoIf() doesn’t get called on test.skip during file load on Linux/Windows CI (cirospaciari3ed4186)
  • Removed an oxlint rule that was breaking CI config parsing on PRs (cirospaciari590708e)
  • Added @anthropic-ai/claude-code to the default trusted dependency list (Jarred-Sumner5c59842)