From cec8d1d2e22c634f5a8fbabd1dfedc81e2118e95 Mon Sep 17 00:00:00 2001
From: Manasvini B Suryanarayana <manasvis@amazon.com>
Date: Fri, 6 Jan 2023 15:18:57 -0800
Subject: [PATCH] Bump node version from 14.20.0 to 14.20.1 to resolve
 CVE-2022-35256 (#3166) (#3188)

* Bump node version from 14.20.0 to 14.20.1 to resolve CVE-2022-35256

Signed-off-by: Zilong Xia <zilongx@amazon.com>

* Update the PR number in CHANGELOG

Signed-off-by: Zilong Xia <zilongx@amazon.com>

Signed-off-by: Zilong Xia <zilongx@amazon.com>
(cherry picked from commit 90b34f321aa283390da0007a782df629bc57c17d)
Signed-off-by: Manasvini B Suryanarayana <manasvis@amazon.com>

Signed-off-by: Zilong Xia <zilongx@amazon.com>
Signed-off-by: Manasvini B Suryanarayana <manasvis@amazon.com>
Co-authored-by: ZilongX <99905560+ZilongX@users.noreply.github.com>
---
 .node-version | 2 +-
 .nvmrc        | 2 +-
 CHANGELOG.md  | 2 ++
 Dockerfile    | 2 +-
 TESTING.md    | 2 +-
 package.json  | 2 +-
 6 files changed, 7 insertions(+), 5 deletions(-)

diff --git a/.node-version b/.node-version
index a3eb5a03fa6..28515227601 100644
--- a/.node-version
+++ b/.node-version
@@ -1 +1 @@
-14.20.0
+14.20.1
diff --git a/.nvmrc b/.nvmrc
index a3eb5a03fa6..28515227601 100644
--- a/.nvmrc
+++ b/.nvmrc
@@ -1 +1 @@
-14.20.0
+14.20.1
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 76074e07382..fc4bdb24e0d 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -8,6 +8,8 @@ Inspired from [Keep a Changelog](https://keepachangelog.com/en/1.0.0/)
 
 ### 🛡 Security
 
+- [CVE-2022-35256] Bumps node version from 14.20.0 to 14.20.1 [#3166](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/3166))
+
 ### 📈 Features/Enhancements
 
 - [MD] Support legacy client for data source ([#2204](https://github.com/opensearch-project/OpenSearch-Dashboards/pull/2204))
diff --git a/Dockerfile b/Dockerfile
index d5fddcd2c6c..c36f2e3316a 100755
--- a/Dockerfile
+++ b/Dockerfile
@@ -1,4 +1,4 @@
-ARG NODE_VERSION=14.20.0
+ARG NODE_VERSION=14.20.1
 FROM node:${NODE_VERSION} AS base
 
 ENV HOME '.'
diff --git a/TESTING.md b/TESTING.md
index 68077547ef8..9cca21b7eee 100644
--- a/TESTING.md
+++ b/TESTING.md
@@ -24,7 +24,7 @@ In general, we recommend four tiers of tests:
 
 # Requirements
 * Install the latest NodeJS, [NPM](https://www.npmjs.com/get-npm) and [Yarn](https://classic.yarnpkg.com/en/docs/install/#mac-stable)
-    * `nvm install v14.20.0`
+    * `nvm install v14.20.1`
     * `npm install -g yarn`
 
 # Running tests
diff --git a/package.json b/package.json
index e4c6d9bb454..6c61978fa9e 100644
--- a/package.json
+++ b/package.json
@@ -464,7 +464,7 @@
     "zlib": "^1.0.5"
   },
   "engines": {
-    "node": "14.20.0",
+    "node": "14.20.1",
     "yarn": "^1.21.1"
   }
 }