chore(deps): update dependency erlang to v28 by renovate[bot] · Pull Request #201 · satoren/y_ex

renovate · 2025-11-22T00:53:40Z

ℹ️ Note

This PR body was truncated due to platform limits.

This PR contains the following updates:

Package	Update	Change
erlang	major	`26.2.5` → `28.3.3`

Release Notes

erlang/otp (erlang)

`v28.3.3`: OTP 28.3.3

Compare Source

Patch Package:           OTP 28.3.3
Git Tag:                 OTP-28.3.3
Date:                    2026-02-27
Trouble Report Id:       OTP-19902, OTP-20008
Seq num:                 PR-10518
System:                  OTP
Release:                 28
Application:             erl_interface-5.6.3, erts-16.2.2
Predecessor:             OTP 28.3.2

Check out the git tag OTP-28.3.3, and build a full OTP system including documentation. Apply one or more applications from this build as patches to your installation using the 'otp_patch_apply' tool. For information on install requirements, see descriptions for each application version below.

erl_interface-5.6.3

The erl_interface-5.6.3 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Add missing copyrights.

Own Id: OTP-20008

erts-16.2.2

The erts-16.2.2 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fixed bug in erlang:monitor_node for rare reconnect race with multiple node monitoring from the same process.

Own Id: OTP-19902
Related Id(s): PR-10518
Add missing copyrights.

Own Id: OTP-20008

Full runtime dependencies of erts-16.2.2

kernel-9.0, sasl-3.3, stdlib-4.1

`v28.3.2`: OTP 28.3.2

Compare Source

Patch Package:           OTP 28.3.2
Git Tag:                 OTP-28.3.2
Date:                    2026-02-20
Trouble Report Id:       OTP-19864, OTP-19915, OTP-19926, OTP-19958,
                         OTP-19962, OTP-19978, OTP-19981, OTP-19983,
                         OTP-19993
Seq num:                 CVE-2026-21620, GH-10651, GH-8676, PR-10539,
                         PR-10547, PR-10575, PR-10616, PR-10664,
                         PR-10696, PR-10706, PR-10732
System:                  OTP
Release:                 28
Application:             crypto-5.8.1, erts-16.2.1, ssh-5.4.1,
                         stdlib-7.2.1, tftp-1.2.4
Predecessor:             OTP 28.3.1

Check out the git tag OTP-28.3.2, and build a full OTP system including documentation. Apply one or more applications from this build as patches to your installation using the 'otp_patch_apply' tool. For information on install requirements, see descriptions for each application version below.

crypto-5.8.1

The crypto-5.8.1 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fixed static linking of OpenSSL 3.5+ on Windows.

Own Id: OTP-19993
Related Id(s): PR-10732

Full runtime dependencies of crypto-5.8.1

erts-9.0, kernel-6.0, stdlib-3.9

erts-16.2.1

The erts-16.2.1 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fail the windows build properly when nsis is not recognised.

Own Id: OTP-19926
Related Id(s): PR-10547
Socket accept cancel could cause fatal crash (core dump) on Windows.

Own Id: OTP-19958
Fixed bug in ets:update_counter/4 and ets:update_element/4 accepting and inserting a default tuple smaller than the keypos of the table. Such a tuple without a key element would make the table internally inconsistent and might lead to bad behavior at table access, like ERTS runtime crash.

Now a call to ets:update_counter/4 or ets:update_element/4 will fail with badarg if the key does not exist in the table and the default tuple is too small.

Own Id: OTP-19962
Related Id(s): PR-10616
A missing memory barrier when unlocking process locks could cause unexpected behavior on architectures with weak memory ordering such as for example ARM.

Own Id: OTP-19978
Related Id(s): PR-10664
A process could fail to wake from hibernation when a non‑message signal followed by a message signal arrived concurrently as the receiving process hibernated. If the process had a large heap, triggering a dirty GC, the wakeup could be lost.

This bug existed since OTP 27.0.

Own Id: OTP-19983
Related Id(s): GH-10651, PR-10696

Full runtime dependencies of erts-16.2.1

kernel-9.0, sasl-3.3, stdlib-4.1

ssh-5.4.1

The ssh-5.4.1 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fix handling of the SSH "each side may guess" key-exchange mechanism as defined in RFC 4253, Section 7.

Own Id: OTP-19864
Related Id(s): GH-8676, PR-10575
Fix ssh_file:encode handling of OpenSSH V1 private keys generated by public_key module. Also correct type specifications for OpenSSH V1 keys in ssh_file encode and decode operations.

Own Id: OTP-19915
Related Id(s): PR-10539

Full runtime dependencies of ssh-5.4.1

crypto-5.0, erts-14.0, kernel-10.3, public_key-1.6.1, runtime_tools-1.15.1, stdlib-5.0, stdlib-6.0

stdlib-7.2.1

Note! The stdlib-7.2.1 application cannot be applied independently of other applications on an arbitrary OTP 28 installation.

   On a full OTP 28 installation, also the following runtime
   dependency has to be satisfied:
   -- erts-16.0.3 (first satisfied in OTP 28.0.3)

Fixed Bugs and Malfunctions

Fixed bug in ets:update_counter/4 and ets:update_element/4 accepting and inserting a default tuple smaller than the keypos of the table. Such a tuple without a key element would make the table internally inconsistent and might lead to bad behavior at table access, like ERTS runtime crash.

Now a call to ets:update_counter/4 or ets:update_element/4 will fail with badarg if the key does not exist in the table and the default tuple is too small.

Own Id: OTP-19962
Related Id(s): PR-10616

Full runtime dependencies of stdlib-7.2.1

compiler-5.0, crypto-4.5, erts-16.0.3, kernel-10.0, sasl-3.0, syntax_tools-3.2.1

tftp-1.2.4

The tftp-1.2.4 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

An issue in the undocumented initial state option [{root_dir,Dir}] to the tftp_file module has been fixed. The request file name was just concatenated to Dir so it was possible to traverse above Dir by using "../" file path components. Now the option actually restricts local file operations to the Dir directory and subdirectories.

The initial state option and how to use it was previously undocumented, so it is unlikely that anyone would have used it without understanding its peculiarities.

The documentation of the TFTP application has also been clarified to make it obvious that the default server configuration allows read and write access to all files that are readable or writable by the user running the Erlang VM, and that the default configuration therefore should be avoided.

Thanks to Luigino Camastra at Aisle Research, for finding and reporting this issue.

Own Id: OTP-19981
Related Id(s): PR-10706, CVE-2026-21620

Full runtime dependencies of tftp-1.2.4

erts-6.0, kernel-6.0, stdlib-5.0

Thanks to

Daniel Hryzbil, Jan Uhlig

`v28.3.1`: OTP 28.3.1

Compare Source

Patch Package:           OTP 28.3.1
Git Tag:                 OTP-28.3.1
Date:                    2026-01-14
Trouble Report Id:       OTP-19762, OTP-19795, OTP-19890, OTP-19891,
                         OTP-19893, OTP-19896, OTP-19897
Seq num:                 ERIERL-1260, ERIERL-1268, PR-10437, PR-10458,
                         PR-10465, PR-10480, PR-10481, PR-10482
System:                  OTP
Release:                 28
Application:             megaco-4.8.2, mnesia-4.25.1,
                         public_key-1.20.1, ssl-11.5.1, xmerl-2.1.8
Predecessor:             OTP 28.3

Check out the git tag OTP-28.3.1, and build a full OTP system including documentation. Apply one or more applications from this build as patches to your installation using the 'otp_patch_apply' tool. For information on install requirements, see descriptions for each application version below.

megaco-4.8.2

The megaco-4.8.2 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

The megaco_tcp module had debug unintentionally enabled.

Own Id: OTP-19896

Full runtime dependencies of megaco-4.8.2

asn1-3.0, debugger-4.0, erts-12.0, et-1.5, kernel-8.0, runtime_tools-1.8.14, stdlib-2.5

mnesia-4.25.1

The mnesia-4.25.1 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fixed bug where mnesia:del_table_copy/3 could fail when deleting a node that had tables which was not active anywhere.

Own Id: OTP-19890
Related Id(s): ERIERL-1268, PR-10482

Full runtime dependencies of mnesia-4.25.1

erts-9.0, kernel-5.3, stdlib-5.0

public_key-1.20.1

Note! The public_key-1.20.1 application cannot be applied independently of other applications on an arbitrary OTP 28 installation.

   On a full OTP 28 installation, also the following runtime
   dependency has to be satisfied:
   -- crypto-5.8 (first satisfied in OTP 28.3)

Fixed Bugs and Malfunctions

Add missing git ignore for SLH-DSA generates.

Own Id: OTP-19897
Related Id(s): PR-10458

Full runtime dependencies of public_key-1.20.1

asn1-5.0, crypto-5.8, erts-13.0, kernel-8.0, stdlib-4.0

ssl-11.5.1

Note! The ssl-11.5.1 application cannot be applied independently of other applications on an arbitrary OTP 28 installation.

   On a full OTP 28 installation, also the following runtime
   dependencies have to be satisfied:
   -- crypto-5.8 (first satisfied in OTP 28.3)
   -- public_key-1.18.3 (first satisfied in OTP 28.1)

Fixed Bugs and Malfunctions

Correct TLS-1.3 alert handling so server will always send the alert with the encryption keys that the client is expecting, that is if for instance if client certification fails the alert will be sent using application traffic encryption keys.

Own Id: OTP-19795
Related Id(s): PR-10465
Correct TLS-1.3 session tickets documentation.

Own Id: OTP-19891
Related Id(s): PR-10481
Corrected app environment handling for session callback that was broken In OTP-23.

Own Id: OTP-19893
Related Id(s): PR-10480

Full runtime dependencies of ssl-11.5.1

crypto-5.8, erts-16.0, inets-5.10.7, kernel-10.3, public_key-1.18.3, runtime_tools-1.15.1, stdlib-7.0

xmerl-2.1.8

The xmerl-2.1.8 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

XML regular expressions in XSD validation now handle \s and \S correctly.

Own Id: OTP-19762
Related Id(s): ERIERL-1260, PR-10437

Full runtime dependencies of xmerl-2.1.8

erts-6.0, kernel-8.4, stdlib-2.5

Thanks to

Maria Scott

`v28.3`: OTP 28.3

Compare Source

Patch Package:           OTP 28.3
Git Tag:                 OTP-28.3
Date:                    2025-12-10
Trouble Report Id:       OTP-16607, OTP-19066, OTP-19626, OTP-19717,
                         OTP-19738, OTP-19743, OTP-19767, OTP-19769,
                         OTP-19777, OTP-19787, OTP-19789, OTP-19794,
                         OTP-19797, OTP-19798, OTP-19802, OTP-19803,
                         OTP-19805, OTP-19808, OTP-19812, OTP-19814,
                         OTP-19819, OTP-19821, OTP-19823, OTP-19828,
                         OTP-19829, OTP-19833, OTP-19835, OTP-19836,
                         OTP-19837, OTP-19840, OTP-19841, OTP-19843,
                         OTP-19847, OTP-19848, OTP-19850, OTP-19852,
                         OTP-19854, OTP-19855, OTP-19856, OTP-19857,
                         OTP-19859, OTP-19862, OTP-19863, OTP-19867,
                         OTP-19869, OTP-19870, OTP-19872, OTP-19873,
                         OTP-19875, OTP-19876, OTP-19877, OTP-19878,
                         OTP-19879, OTP-19880, OTP-19883, OTP-19884,
                         OTP-19885, OTP-19888
Seq num:                 ERIERL-1251, GH-10254, GH-10255, GH-10280,
                         GH-10282, GH-10294, GH-10299, GH-10322,
                         GH-10330, GH-10347, GH-10367, GH-10368,
                         GH-10404, GH-10432, GH-8235, GH-8329,
                         GH-9997, OTP-16608, OTP-19814, PR-10064,
                         PR-10128, PR-10149, PR-10177, PR-10186,
                         PR-10216, PR-10231, PR-10232, PR-10236,
                         PR-10237, PR-10242, PR-10252, PR-10256,
                         PR-10257, PR-10262, PR-10268, PR-10275,
                         PR-10283, PR-10288, PR-10307, PR-10308,
                         PR-10309, PR-10314, PR-10315, PR-10317,
                         PR-10321, PR-10323, PR-10326, PR-10333,
                         PR-10335, PR-10344, PR-10349, PR-10353,
                         PR-10362, PR-10364, PR-10369, PR-10374,
                         PR-10379, PR-10383, PR-10388, PR-10390,
                         PR-10391, PR-10394, PR-10398, PR-10405,
                         PR-10406, PR-10410, PR-10428, PR-10435,
                         PR-10439, PR-10452, PR-8309, PR-9983
System:                  OTP
Release:                 28
Application:             common_test-1.29.1, compiler-9.0.4,
                         crypto-5.8, diameter-2.6,
                         erl_interface-5.6.2, erts-16.2, eunit-2.10.1,
                         inets-9.5, kernel-10.5, mnesia-4.25,
                         os_mon-2.11.2, public_key-1.20, snmp-5.20,
                         ssh-5.4, ssl-11.5, stdlib-7.2, wx-2.5.3
Predecessor:             OTP 28.2

Check out the git tag OTP-28.3, and build a full OTP system including documentation. Apply one or more applications from this build as patches to your installation using the 'otp_patch_apply' tool. For information on install requirements, see descriptions for each application version below.

HIGHLIGHTS

Add support for MLKEM hybrid algorithms x25519mlkem768, secp384r1mlkem1024, secp256r1mlkem768 in TLS-1.3

Own Id: OTP-19767
Application(s): ssl
Related Id(s): PR-10262
Support for the socket options TCP_KEEPCNT, TCP_KEEPIDLE, and TCP_KEEPINTVL have been implemented for gen_tcp, as well as TCP_USER_TIMEOUT for both gen_tcp and socket.

Own Id: OTP-19857
Application(s): erts, kernel
Related Id(s): PR-10390, OTP-19814
Add support in public_key and ssl for post quantum algorithm SLH-DSA.

Own Id: OTP-19867
Application(s): public_key, ssl
Related Id(s): PR-10398
Publish OpenVEX statements in https://erlang.org/download/vex/

OpenVEX statements contain the same information as the OTP advisories, with the addition of vendor CVEs for which Erlang/OTP is not affected. This is important to silence vulnerability scanners that may claim Erlang/OTP to be vulnerable to vendor dependency projects, e.g., openssl.

OpenVEX statements will be published in https://erlang.org/download/vex/ where there will be an OTP file per release, e.g., https://erlang.org/download/vex/otp-28.openvex.json.

Erlang/OTP publishes OpenVEX statements for all supported releases, that is, as of today, OTP-26, OTP-27, and OTP-28.

The source SBOM tooling (oss-review-toolkit) has been updated to produce source SBOM in SPDX v2.3 format, and the source SBOM now links OpenVEX statements to a security external reference. This means that by simply analyzing the source SBOM, everyone can further read the location of the OpenVEX statements and further process them.

Own Id: OTP-19878
Application(s): otp
Related Id(s): PR-10428, PR-10452

POTENTIAL INCOMPATIBILITIES

Adjustment in ssh_file module allowing inclusion of Erlang/OTP license in test files containing keys.

Own Id: OTP-19743
Application(s): ssh
Related Id(s): PR-10177

OTP-28.3

Fixed Bugs and Malfunctions

Broken sidebar application index, for all OTP applications, are restored.

Own Id: OTP-19877
Related Id(s): ERIERL-1251, PR-10410

Improvements and New Features

Updated the vendor dependencies SHA to improve the accuracy of the source SBOM with purl pointing to the exact vendor commit that Erlang/OTP builds upon.

Own Id: OTP-19777
Related Id(s): PR-10216
OpenVEX statements has been added to rule out false positives on vendor dependencies: CVE-2025-9230, CVE-2025-9231, CVE-2025-9232

Own Id: OTP-19802
Related Id(s): GH-10254, GH-10255, PR-10256
The mnesia_registry module will be removed in Erlang/OTP 29.

Own Id: OTP-19808
Related Id(s): PR-10275
Publish OpenVEX statements in https://erlang.org/download/vex/

OpenVEX statements contain the same information as the OTP advisories, with the addition of vendor CVEs for which Erlang/OTP is not affected. This is important to silence vulnerability scanners that may claim Erlang/OTP to be vulnerable to vendor dependency projects, e.g., openssl.

OpenVEX statements will be published in https://erlang.org/download/vex/ where there will be an OTP file per release, e.g., https://erlang.org/download/vex/otp-28.openvex.json.

Erlang/OTP publishes OpenVEX statements for all supported releases, that is, as of today, OTP-26, OTP-27, and OTP-28.

The source SBOM tooling (oss-review-toolkit) has been updated to produce source SBOM in SPDX v2.3 format, and the source SBOM now links OpenVEX statements to a security external reference. This means that by simply analyzing the source SBOM, everyone can further read the location of the OpenVEX statements and further process them.

Own Id: OTP-19878
Related Id(s): PR-10428, PR-10452

*** HIGHLIGHT ***

common_test-1.29.1

The common_test-1.29.1 application can be applied independently of other applications on a full OTP 28 installation.

Improvements and New Features

Updated the vendor dependencies SHA to improve the accuracy of the source SBOM with purl pointing to the exact vendor commit that Erlang/OTP builds upon.

Own Id: OTP-19777
Related Id(s): PR-10216

Full runtime dependencies of common_test-1.29.1

compiler-6.0, crypto-4.5, debugger-4.1, erts-7.0, ftp-1.0, inets-6.0, kernel-8.4, observer-2.1, runtime_tools-1.8.16, sasl-2.5, snmp-5.1.2, ssh-4.0, stdlib-4.0, syntax_tools-1.7, tools-3.2, xmerl-1.3.8

compiler-9.0.4

The compiler-9.0.4 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

For some function heads or case expressions with a huge number of clauses, the compiler could spend an inordinate amount of time compiling the code.

Own Id: OTP-19797
Related Id(s): PR-10252
Passing a type for a fun as a macro argument would result in a "badly formed argument" error message from the compiler. Example:
```
-module(test).
-define(FOO(X), X).
-type foo() :: ?FOO(fun(() -> ok)).
```
Compiling this module would result in the following error message:
```
test.erl:3:17: badly formed argument for macro 'FOO'
%    5| -type foo() :: ?FOO(fun(() -> ok)).
%
```
Own Id: OTP-19821
Related Id(s): GH-10280, PR-10309
In certain edge cases, the compiler could emit code that would do an unsafe destructive update of a tuple. This has been corrected.

Own Id: OTP-19879
Related Id(s): GH-10367, PR-10435

Improvements and New Features

The compiler option beam_debug_stack combined with beam_debug_info will attempt to make as many variables as possible visible in the debugger. The option has no effect if given without beam_debug_info.

Own Id: OTP-19854
Related Id(s): PR-10374

Full runtime dependencies of compiler-9.0.4

crypto-5.1, erts-13.0, kernel-8.4, stdlib-6.0

crypto-5.8

The crypto-5.8 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

The deprecated function crypto:rand_uniform/2 has gotten a new replacement function crypto:strong_rand_range/1. When implementing this the documentation of crypto and rand has been rewritten a bit and improved.

Own Id: OTP-19841
Related Id(s): PR-10344

Improvements and New Features

You can now build OTP with OpenSSL 3.5 or later on windows.

Own Id: OTP-19848
Added SLH-DSA algorithms for sign/verify. Twelve variants supported in total; all combinations of SHAKE or SHA2 hashing, with 128, 192 or 256 bits, and fast(f) or small(s).

Own Id: OTP-19856
Related Id(s): PR-10268
Made crypto:generate_key(dh, [P, G, MaxPrivateKeyBitLength]) accept values of MaxPrivateKeyBitLength to be equal or larger than the bit length of P. If so, the maximum bit length is adjusted down to P's bit length minus one.

Own Id: OTP-19872
Related Id(s): PR-10394

Full runtime dependencies of crypto-5.8

erts-9.0, kernel-6.0, stdlib-3.9

diameter-2.6

The diameter-2.6 application can be applied independently of other applications on a full OTP 28 installation.

Improvements and New Features

Add new option 'indirect_inherits' to diameter_make:codec/2

Own Id: OTP-19626
Related Id(s): GH-8235, PR-10149

Full runtime dependencies of diameter-2.6

erts-10.0, kernel-3.2, ssl-9.0, stdlib-5.0

erl_interface-5.6.2

The erl_interface-5.6.2 application can be applied independently of other applications on a full OTP 28 installation.

Improvements and New Features

Updated the vendor dependencies SHA to improve the accuracy of the source SBOM with purl pointing to the exact vendor commit that Erlang/OTP builds upon.

Own Id: OTP-19777
Related Id(s): PR-10216
Updated MD5 implementation from OpenSSL 3.5.0 to 3.6.0

Own Id: OTP-19870
Related Id(s): PR-10405

Known Bugs and Problems

The ei API for decoding/encoding terms is not fully 64-bit compatible since terms that have a representation on the external term format larger than 2 GB cannot be handled.

Own Id: OTP-16607
Related Id(s): OTP-16608

erts-16.2

The erts-16.2 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fixed a build issue on modern compilers.

Own Id: OTP-19789
Related Id(s): PR-9983
When multiple processes called the same fun whose defining module was not loaded, a badfun exception could sometimes occur in one of the calling processes. This would only happen with the JIT runtime system.

Own Id: OTP-19803
Related Id(s): PR-10257
Fix a bug where Erlang/OTP tools could load a different boot script from CWD.

Own Id: OTP-19819
Related Id(s): PR-10317
Fixed a bug when more than one session traced the same BIF. Disabling tracing for a BIF in one session could incorrectly disable tracing of the BIF in other trace sessions as well.

Own Id: OTP-19840
Related Id(s): PR-10349
Fixed a slight performance regression in erlang:binary_to_term/1,2.

Own Id: OTP-19859
Related Id(s): GH-8329, PR-10383
Two socket related code warts found by PVS Studio has been fixed. One caused gen_tcp to no convert the send error econnaborted to econnreset on Windows. The other caused socket:sendfile/* to indicate the wrong error for a bad Offset.

Own Id: OTP-19862
Related Id(s): PR-10362, PR-10388
Fixed bug causing VM crash if an Erlang process gets killed while executing re:run with a (presumably) large subject string.

Own Id: OTP-19888
Related Id(s): GH-10432, PR-10439

Improvements and New Features

Updated the vendor dependencies SHA to improve the accuracy of the source SBOM with purl pointing to the exact vendor commit that Erlang/OTP builds upon.

Own Id: OTP-19777
Related Id(s): PR-10216
Receive buffer allocation has been optimized for socket socket in that an underutilized buffers' content is copied to a freshly allocated binary of the right size instead of being reallocated.

This optimization was already implemented for the socket:recv/1 functions, but now the same buffer stragegy is shared between all socket receive operations.

Own Id: OTP-19794
Related Id(s): PR-10231
Option(s) to create gen_tcp and socket sockets with protocol IPPROTO_MPTCP has been implemented.

See functions gen_tcp:listen/2, gen_tcp:connect/4 and the type socket:protocol/0.

Own Id: OTP-19814
erlc will now limit the number of ports and processes when starting erl in order to use less memory.

Own Id: OTP-19852
Related Id(s): PR-10364
Support for the socket options TCP_KEEPCNT, TCP_KEEPIDLE, and TCP_KEEPINTVL have been implemented for gen_tcp, as well as TCP_USER_TIMEOUT for both gen_tcp and socket.

Own Id: OTP-19857
Related Id(s): PR-10390, OTP-19814

*** HIGHLIGHT ***
Limit size of sctp_event_subscribe on Linux

Own Id: OTP-19863
Related Id(s): PR-10321
Updated MD5 implementation from OpenSSL 3.5.0 to 3.6.0

Own Id: OTP-19870
Related Id(s): PR-10405
Improved performance when doing socket:accept on the same socket from many processes on large multi core systems under high rate of connections. Mitigating performance regression seen since OTP 28.0.

Own Id: OTP-19873
Related Id(s): GH-10322, PR-10323
Updated STL version used.

Own Id: OTP-19876
Updated PCRE2 to 10.47. Also picked newer fix, from upstream PCRE2, to bug that could cause benign random uninitialized data in exported regular expressions.

Own Id: OTP-19880
Related Id(s): PR-10391

Full runtime dependencies of erts-16.2

kernel-9.0, sasl-3.3, stdlib-4.1

eunit-2.10.1

The eunit-2.10.1 application can be applied independently of other applications on a full OTP 28 installation.

Improvements and New Features

The usages of deprecated slave module have been removed from the application. The fixture clause for spawning a test node now accepts Args either as a string or a list of strings (previously only a string was accepted).

Own Id: OTP-19738
Related Id(s): PR-10128

Full runtime dependencies of eunit-2.10.1

erts-9.0, kernel-5.3, stdlib-6.0

inets-9.5

The inets-9.5 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fixed uri_string:uri_string() to string() type specs inside httpc.erl module.

Own Id: OTP-19835
Related Id(s): PR-10242
Fixed a bug where request options were not applied to a https proxy connection.

Own Id: OTP-19875
Related Id(s): GH-10368, PR-10369

Improvements and New Features

The usages of slave module in inets were removed. The httpd_bench_suite has been updated for SSL testing and is not skipped anymore. The httpd_load_test example has been removed completely as outdated.

Own Id: OTP-19717
Related Id(s): PR-10064
Replace a call to application:which_applications() in httpc:set_options/2 with try...catch to reduce bottleneck.

Own Id: OTP-19884
Related Id(s): GH-10282, PR-10307

Full runtime dependencies of inets-9.5

erts-14.0, kernel-9.0, mnesia-4.12, public_key-1.13, runtime_tools-1.8.14, ssl-9.0, stdlib-5.0, stdlib-6.0

kernel-10.5

The kernel-10.5 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fixed a shell crash when calling io:getopts() when user_drv process is not responding/terminating

Own Id: OTP-19812
Related Id(s): PR-10283
logger:get_handler_config/0 will no longer crash if a logger handler is removed concurrently with that call.

Own Id: OTP-19837
Related Id(s): GH-9997, PR-10308
Fixed a bug in the shell that made it incorrectly output a newline after the output already containing a newline but followed by an asci escape sequence.

Own Id: OTP-19847
Related Id(s): GH-10299

Improvements and New Features

Receive buffer allocation has been optimized for socket socket in that an underutilized buffers' content is copied to a freshly allocated binary of the right size instead of being reallocated.

This optimization was already implemented for the socket:recv/1 functions, but now the same buffer stragegy is shared between all socket receive operations.

Own Id: OTP-19794
Related Id(s): PR-10231
Option(s) to create gen_tcp and socket sockets with protocol IPPROTO_MPTCP has been implemented.

See functions gen_tcp:listen/2, gen_tcp:connect/4 and the type socket:protocol/0.

Own Id: OTP-19814
Support for the socket options TCP_KEEPCNT, TCP_KEEPIDLE, and TCP_KEEPINTVL have been implemented for gen_tcp, as well as TCP_USER_TIMEOUT for both gen_tcp and socket.

Own Id: OTP-19857
Related Id(s): PR-10390, OTP-19814

*** HIGHLIGHT ***
Limit size of sctp_event_subscribe on Linux

Own Id: OTP-19863
Related Id(s): PR-10321

Full runtime dependencies of kernel-10.5

crypto-5.0, erts-15.2.5, sasl-3.0, stdlib-6.0

mnesia-4.25

The mnesia-4.25 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Add missing documentation about mnesia:activity/4

Own Id: OTP-19769
Related Id(s): PR-10186
With this change mnesia will try to not leak internal messages to user processes.

Own Id: OTP-19855
Related Id(s): GH-10347, PR-10379

Improvements and New Features

The mnesia_registry module will be removed in Erlang/OTP 29.

Own Id: OTP-19808
Related Id(s): PR-10275

Full runtime dependencies of mnesia-4.25

erts-9.0, kernel-5.3, stdlib-5.0

os_mon-2.11.2

The os_mon-2.11.2 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fixed a small documentation mistake in memsup

Own Id: OTP-19836
Related Id(s): GH-10330, PR-10308

Full runtime dependencies of os_mon-2.11.2

erts-14.0, kernel-9.0, sasl-4.2.1, stdlib-5.0

public_key-1.20

Note! The public_key-1.20 application cannot be applied independently of other applications on an arbitrary OTP 28 installation.

   On a full OTP 28 installation, also the following runtime
   dependency has to be satisfied:
   -- crypto-5.8 (first satisfied in OTP 28.3)

Fixed Bugs and Malfunctions

ASN.1 Encoding and decoding of some extensions did not work, e.g. CRLEntryExtension.

Own Id: OTP-19869
Related Id(s): GH-10404, PR-10406

Improvements and New Features

Add support in public_key and ssl for post quantum algorithm SLH-DSA.

Own Id: OTP-19867
Related Id(s): PR-10398

*** HIGHLIGHT ***

Full runtime dependencies of public_key-1.20

asn1-5.0, crypto-5.8, erts-13.0, kernel-8.0, stdlib-4.0

snmp-5.20

The snmp-5.20 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fixed a bug where running snmp:config() from Elixir would crash due to io:get_line/1 returning unexpected datatype.

Own Id: OTP-19883
Related Id(s): PR-10326

Improvements and New Features

Inherit ERL_DETERMINISTIC variable for compiling snmp_pdus_basic.beam.

Own Id: OTP-19885
Related Id(s): PR-10288

Full runtime dependencies of snmp-5.20

asn1-5.4, crypto-4.6, erts-12.0, kernel-8.0, mnesia-4.12, runtime_tools-1.8.14, stdlib-5.0

ssh-5.4

The ssh-5.4 application can be applied independently of other applications on a full OTP 28 installation.

Improvements and New Features

Adjustment in ssh_file module allowing inclusion of Erlang/OTP license in test files containing keys.

Own Id: OTP-19743
Related Id(s): PR-10177

*** POTENTIAL INCOMPATIBILITY ***

Full runtime dependencies of ssh-5.4

crypto-5.0, erts-14.0, kernel-10.3, public_key-1.6.1, runtime_tools-1.15.1, stdlib-5.0, stdlib-6.0

ssl-11.5

Note! The ssl-11.5 application cannot be applied independently of other applications on an arbitrary OTP 28 installation.

   On a full OTP 28 installation, also the following runtime
   dependencies have to be satisfied:
   -- crypto-5.8 (first satisfied in OTP 28.3)
   -- public_key-1.18.3 (first satisfied in OTP 28.1)

Fixed Bugs and Malfunctions

Setting the internal process links between TLS distribution processes has been reviewed. In the TLS distribution test framework there were issues fixed, but probably not in the TLS distribution module.

Own Id: OTP-19805
Related Id(s): PR-10232
Correct documentation for fail_if_no_peer_cert option.

Own Id: OTP-19828
Related Id(s): PR-10333

Improvements and New Features

Add support for MLKEM hybrid algorithms x25519mlkem768, secp384r1mlkem1024, secp256r1mlkem768 in TLS-1.3

Own Id: OTP-19767
Related Id(s): PR-10262

*** HIGHLIGHT ***
Property based test needed to compare raw handshakes, that is some utility decoding needs to be converted back.

Own Id: OTP-19829
Related Id(s): PR-10335
Add support in public_key and ssl for post quantum algorithm SLH-DSA.

Own Id: OTP-19867
Related Id(s): PR-10398

*** HIGHLIGHT ***

Full runtime dependencies of ssl-11.5

crypto-5.8, erts-16.0, inets-5.10.7, kernel-10.3, public_key-1.18.3, runtime_tools-1.15.1, stdlib-7.0

stdlib-7.2

Note! The stdlib-7.2 application cannot be applied independently of other applications on an arbitrary OTP 28 installation.

   On a full OTP 28 installation, also the following runtime
   dependency has to be satisfied:
   -- erts-16.0.3 (first satisfied in OTP 28.0.3)

Fixed Bugs and Malfunctions

When creating a tar archive using erl_tar, leading slashes would be kept for filenames with up to 100 characters. The slash would be dropped for longer filenames. This has been corrected to always keep the leading slash.

Own Id: OTP-19066
Related Id(s): PR-8309
For some function heads or case expressions with a huge number of clauses, the compiler could spend an inordinate amount of time compiling the code.

Own Id: OTP-19797
Related Id(s): PR-10252
Passing a type for a fun as a macro argument would result in a "badly formed argument" error message from the compiler. Example:
```
-module(test).
-define(FOO(X), X).
-type foo() :: ?FOO(fun(() -> ok)).
```
Compiling this module would result in the following error message:
```
test.erl:3:17: badly formed argument for macro 'FOO'
%    5| -type foo() :: ?FOO(fun(() -> ok)).
%
```
Own Id: OTP-19821
Related Id(s): GH-10280, PR-10309
Fixed an issue that prohibited the use of user defined functions within a restricted shell.

Own Id: OTP-19833
Related Id(s): PR-10315
The deprecated function crypto:rand_uniform/2 has gotten a new replacement function crypto:strong_rand_range/1. When implementing this the documentation of crypto and rand has been rewritten a bit and improved.

Own Id: OTP-19841
Related Id(s): PR-10344
Fixed a bug in the shell where a reference to a locally defined function would cause a crash.

Own Id: OTP-19850
Related Id(s): GH-10294

Improvements and New Features

You are now able to read the reference manual with man.

Own Id: OTP-19787
Related Id(s): PR-10237
Improved spec for ets:lookup_element/4.

Own Id: OTP-19798
Related Id(s): PR-10236
The mnesia_registry module will be removed in Erlang/OTP 29.

Own Id: OTP-19808
Related Id(s): PR-10275

Full runtime dependencies of stdlib-7.2

compiler-5.0, crypto-4.5, erts-16.0.3, kernel-10.0, sasl-3.0, syntax_tools-3.2.1

wx-2.5.3

The wx-2.5.3 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fix getting wxImage pixel values. For example, wxImage:getRed(Image) returned the wrong value.

Creating OpenGL windows should now work again.

Own Id: OTP-19823
Related Id(s): PR-10314
Fixed reading out of array bounds and potential memory leaks.

Own Id: OTP-19843
Related Id(s): PR-10353

Improvements and New Features

Updated the vendor dependencies SHA to improve the accuracy of the source SBOM with purl pointing to the exact vendor commit that Erlang/OTP builds upon.

Own Id: OTP-19777
Related Id(s): PR-10216

Full runtime dependencies of wx-2.5.3

erts-12.0, kernel-8.0, stdlib-5.0

Thanks to

Alexandre Rodrigues, Andrew Bennett, Anton Thomasson, Dmytro Lytovchenko, jakob svenningsson, João Henrique Ferreira de Freitas, Marcelino Alberdi Pereira, Maria Scott, Marko Mindek, Michael Neumann, Stavros Aronis, Sundeep Katepalli, Svilen Ivanov, Tom, Vladislav Grishenko, wallacegibbon

`v28.2`: OTP 28.2

Compare Source

Patch Package:           OTP 28.2
Git Tag:                 OTP-28.2
Date:                    2025-11-24
Trouble Report Id:       OTP-19813, OTP-19817, OTP-19818, OTP-19825,
                         OTP-19830, OTP-19832, OTP-19839, OTP-19845,
                         OTP-19846, OTP-19861, OTP-19865
Seq num:                 ERIERL-1251, ERIERL-1273, GH-10119, GH-10354,
                         PR-10284, PR-10290, PR-10296, PR-10339,
                         PR-10350, PR-10358, PR-10359, PR-10386,
                         PR-10396
System:                  OTP
Release:                 28
Application:             compiler-9.0.3, erts-16.1.2, kernel-10.4.2,
                         public_key-1.19, ssh-5.3.4, ssl-11.4.2,
                         syntax_tools-4.0.2
Predecessor:             OTP 28.1.1

Check out the git tag OTP-28.2, and build a full OTP system including documentation. Apply one or more applications from this build as patches to your installation using the 'otp_patch_apply' tool. For information on install requirements, see descriptions for each application version below.

compiler-9.0.3

The compiler-9.0.3 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fixed broken type inference for lists:mapfoldl/r.

Own Id: OTP-19845
Related Id(s): GH-10354, PR-10358

Full runtime dependencies of compiler-9.0.3

crypto-5.1, erts-13.0, kernel-8.4, stdlib-6.0

erts-16.1.2

The erts-16.1.2 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fixed a JIT bug that could miscompile equality tests on empty bitstrings.

Own Id: OTP-19846
Related Id(s): PR-10359
The documentation building code produced warnings during the build, if none of the applications were skipped. The warnings were resolved.

Own Id: OTP-19865
Related Id(s): ERIERL-1251, PR-10396

Full runtime dependencies of erts-16.1.2

kernel-9.0, sasl-3.3, stdlib-4.1

kernel-10.4.2

The kernel-10.4.2 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fixed a race condition when registering the standard error process.

Own Id: OTP-19832
Related Id(s): PR-10290

Full runtime dependencies of kernel-10.4.2

crypto-5.0, erts-15.2.5, sasl-3.0, stdlib-6.0

public_key-1.19

Note! The public_key-1.19 application cannot be applied independently of other applications on an arbitrary OTP 28 installation.

   On a full OTP 28 installation, also the following runtime
   dependency has to be satisfied:
   -- crypto-5.7 (first satisfied in OTP 28.1)

Improvements and New Features

Added support for the Public-Key Infrastructure Certificate Management Protocol (PKICMP) ASN.1 specification.

Own Id: OTP-19861
Related Id(s): PR-10386

Full runtime dependencies of public_key-1.19

asn1-5.0, crypto-5.7, erts-13.0, kernel-8.0, stdlib-4.0

ssh-5.3.4

The ssh-5.3.4 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

With this change user space buffers are used to limit ssh hello message size instead of kernel buffers

Own Id: OTP-19839
Related Id(s): ERIERL-1273, PR-10350

Full runtime dependencies of ssh-5.3.4

crypto-5.0, erts-14.0, kernel-10.3, public_key-1.6.1, runtime_tools-1.15.1, stdlib-5.0, stdlib-6.0

ssl-11.4.2

Note! The ssl-11.4.2 application cannot be applied independently of other applications on an arbitrary OTP 28 installation.

   On a full OTP 28 installation, also the following runtime
   dependencies have to be satisfied:
   -- crypto-5.7 (first satisfied in OTP 28.1)
   -- public_key-1.18.3 (first satisfied in OTP 28.1)

Fixed Bugs and Malfunctions

Graceful error handling added in negative test scenario.

Own Id: OTP-19813
Related Id(s): PR-10284
Handle duplicate change_cipher_spec message with an unexpected message alert instead of failing later in corrupted state.

Own Id: OTP-19818
Related Id(s): PR-10296
Make sure TLS-1.3 protocol spec is followed, that is psk-hello extension is guaranteed to be included as the last extension in the list of client hello extensions and internal hello message truncation in handshake history is handled correctly, the previous handling could cause interoperability issues.

Own Id: OTP-19825
Related Id(s): PR-10296
If two certificate massages are sent to the server generate an unexpected message alert for the second one.

Own Id: OTP-19830
Related Id(s): PR-10339

Full runtime dependencies of ssl-11.4.2

crypto-5.7, erts-16.0, inets-5.10.7, kernel-10.3, public_key-1.18.3, runtime_tools-1.15.1, stdlib-7.0

syntax_tools-4.0.2

The syntax_tools-4.0.2 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Annotate map comprehensions and generators

Own Id: OTP-19817
Related Id(s): GH-10119

Full runtime dependencies of syntax_tools-4.0.2

compiler-9.0, erts-16.0, kernel-10.3, stdlib-7.0

Thanks to

Dmytro Lytovchenko, Nelson Vides

`v28.1.1`: OTP 28.1.1

Compare Source

Patch Package:           OTP 28.1.1
Git Tag:                 OTP-28.1.1
Date:                    2025-10-20
Trouble Report Id:       OTP-19768, OTP-19771, OTP-19774, OTP-19780,
                         OTP-19790, OTP-19791, OTP-19792, OTP-19796,
                         OTP-19799, OTP-19806
Seq num:                 ERERL-1261, ERIERL-1251, ERIERL-1264,
                         GH-10150, GH-10191, GH-10212, GH-10217,
                         PR-10182, PR-10194, PR-10201, PR-10221,
                         PR-10241, PR-10245, PR-10248, PR-10249,
                         PR-10274, PR-9970
System:                  OTP
Release:                 28
Application:             diameter-2.5.2, erts-16.1.1, kernel-10.4.1,
                         ssl-11.4.1, xmerl-2.1.7
Predecessor:             OTP 28.1

Check out the git tag OTP-28.1.1, and build a full OTP system including documentation. Apply one or more applications from this build as patches to your installation using the 'otp_patch_apply' tool. For information on install requirements, see descriptions for each application version below.

OTP-28.1.1

Improvements and New Features

When building OTP, some applications may be skipped due to lacking dependencies, or due to user choice. Such skipped applications are excluded from the docs build step and a placeholder page is displayed in their stead.

Own Id: OTP-19771
Related Id(s): ERIERL-1251, PR-10194

diameter-2.5.2

The diameter-2.5.2 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Added documentation about 'proxy' and 'resend' options in diameter:handle_request/3

Own Id: OTP-19768
Related Id(s): GH-10150, PR-10182

Full runtime dependencies of diameter-2.5.2

erts-10.0, kernel-3.2, ssl-9.0, stdlib-5.0

erts-16.1.1

The erts-16.1.1 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

Fixed the erl documentation of the default timewarp mode used.

Own Id: OTP-19790
Related Id(s): PR-9970
The erlang:suspend_process() BIFs failed to suspend processes currently executing on dirty schedulers.

Own Id: OTP-19799
Related Id(s): PR-10241

Full runtime dependencies of erts-16.1.1

kernel-9.0, sasl-3.3, stdlib-4.1

kernel-10.4.1

The kernel-10.4.1 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

With this change group.erl will not crash when receiving unknown message.

Own Id: OTP-19796
Related Id(s): ERIERL-1264, PR-10248

Full runtime dependencies of kernel-10.4.1

crypto-5.0, erts-15.2.5, sasl-3.0, stdlib-6.0

ssl-11.4.1

Note! The ssl-11.4.1 application cannot be applied independently of other applications on an arbitrary OTP 28 installation.

   On a full OTP 28 installation, also the following runtime
   dependencies have to be satisfied:
   -- crypto-5.7 (first satisfied in OTP 28.1)
   -- public_key-1.18.3 (first satisfied in OTP 28.1)

Fixed Bugs and Malfunctions

Fixed so that sending of application data will adhere to max_fragment_length. This was broken in OTP-27 release by an optimization.

Own Id: OTP-19774
Related Id(s): GH-10191, PR-10201
PR-10046 put to hard requirements on key file content. Make sure same file can be used as keyfile and certfile

Own Id: OTP-19780
Related Id(s): GH-10212, GH-10217, PR-10221
Assert that hello extensions are unique and send an illegal parameter alert if they are not.

Own Id: OTP-19791
Related Id(s): PR-10245
Avoid sending an internal message to the user process in conjunction with handling a key update.

Own Id: OTP-19806
Related Id(s): PR-10274

Full runtime dependencies of ssl-11.4.1

crypto-5.7, erts-16.0, inets-5.10.7, kernel-10.3, public_key-1.18.3, runtime_tools-1.15.1, stdlib-7.0

xmerl-2.1.7

The xmerl-2.1.7 application can be applied independently of other applications on a full OTP 28 installation.

Fixed Bugs and Malfunctions

The XSD validation failed due to not handling the optional text blocks correctly in an XSD complex type with attribute mixed=true.

Own Id: OTP-19792
Related Id(s): PR-10249, ERERL-1261

Full runtime dependencies of xmerl-2.1.7

erts-6.0, kernel-8.4, stdlib-2.5

Thanks to

Daniel Gorin, Dmytro Lytovchenko, Jean-Philippe Jodoin

`v28.1`: OTP 28.1

Compare Source

Patch Package:           OTP 28.1
Git Tag:                 OTP-28.1
Date:                    2025-09-17
Trouble Report Id:       OTP-16607, OTP-19552, OTP-19619, OTP-19642,
                         OTP-19646, OTP-19647, OTP-19648, OTP-19649,
                         OTP-19651, OTP-19655, OTP-19657, OTP-19659,
                         OTP-19660, OTP-19666, OTP-19667, OTP-19669,
                         OTP-19671, OTP-19677, OTP-19681, OTP-19685,
                         OTP-19686, OTP-19688, OTP-19689, OTP-19693,
                         OTP-19694, OTP-19696, OTP-19698, OTP-19704,
                         OTP-19706, OTP-19714, OTP-19719, OTP-19721,
                         OTP-19722, OTP-19723, OTP-19724, OTP-19725,
                         OTP-19726, OTP-19727, OTP-19728, OTP-19730,
                         OTP-19731, OTP-19733, OTP-19735, OTP-19736,
                         OTP-19737, OTP-19739, OTP-19745, OTP-19749,
                         OTP-19752, OTP-19754, OTP-19756, OTP-19757,
                         OTP-19758, OTP-19759, OTP-19760
Seq num:                 ERIERL-1209, ERIERL-1231, GH-10002, GH-10020,
                         GH-10057, GH-10061, GH-10065, GH-10072,
                         GH-10077, GH-10079, GH-10097, GH-10102,
                         GH-5697, GH-5756, GH-9631, GH-9638, GH-9771,
                         GH-9816, GH-9875, GH-9901, GH-9903, GH-9972,
                         GH-9987, OTP-16608, PR-10004, PR-10009,
                         PR-10011, PR-10014, PR-10019, PR-10034,
                         PR-10046, PR-100

</details>

---

### Configuration

📅 **Schedule**: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 **Automerge**: Disabled by config. Please merge this manually once you are satisfied.

♻ **Rebasing**: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 **Ignore**: Close this PR and you won't be reminded about this update again.

---

 - [ ] <!-- rebase-check -->If you want to rebase/retry this PR, check this box

---

This PR was generated by [Mend Renovate](https://mend.io/renovate/). View the [repository job log](https://developer.mend.io/github/satoren/y_ex).
<!--renovate-debug:eyJjcmVhdGVkSW5WZXIiOiI0Mi4xNi4xIiwidXBkYXRlZEluVmVyIjoiNDMuNDMuMiIsInRhcmdldEJyYW5jaCI6Im1haW4iLCJsYWJlbHMiOltdfQ==-->

coderabbitai · 2025-11-22T00:53:47Z

Important

Review skipped

Bot user detected.

To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

renovate bot force-pushed the renovate/erlang-28.x branch 2 times, most recently from 36bb7d4 to 2c270cb Compare November 24, 2025 17:56

renovate bot force-pushed the renovate/erlang-28.x branch from 2c270cb to a931cfa Compare December 10, 2025 20:00

renovate bot force-pushed the renovate/erlang-28.x branch from a931cfa to a404c0f Compare January 14, 2026 14:11

renovate bot force-pushed the renovate/erlang-28.x branch from a404c0f to 93cc30c Compare February 20, 2026 13:37

chore(deps): update dependency erlang to v28

52d6c76

renovate bot force-pushed the renovate/erlang-28.x branch from 93cc30c to 52d6c76 Compare February 27, 2026 13:18

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): update dependency erlang to v28#201

chore(deps): update dependency erlang to v28#201
renovate[bot] wants to merge 1 commit intomainfrom
renovate/erlang-28.x

renovate bot commented Nov 22, 2025 •

edited

Loading

Uh oh!

coderabbitai bot commented Nov 22, 2025

Review skipped

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

0 participants

Conversation

renovate bot commented Nov 22, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Release Notes

v28.3.3: OTP 28.3.3

erl_interface-5.6.3

Fixed Bugs and Malfunctions

erts-16.2.2

Fixed Bugs and Malfunctions

Full runtime dependencies of erts-16.2.2

v28.3.2: OTP 28.3.2

crypto-5.8.1

Fixed Bugs and Malfunctions

Full runtime dependencies of crypto-5.8.1

erts-16.2.1

Fixed Bugs and Malfunctions

Full runtime dependencies of erts-16.2.1

ssh-5.4.1

Fixed Bugs and Malfunctions

Full runtime dependencies of ssh-5.4.1

stdlib-7.2.1

Fixed Bugs and Malfunctions

Full runtime dependencies of stdlib-7.2.1

tftp-1.2.4

Fixed Bugs and Malfunctions

Full runtime dependencies of tftp-1.2.4

Thanks to

v28.3.1: OTP 28.3.1

megaco-4.8.2

Fixed Bugs and Malfunctions

Full runtime dependencies of megaco-4.8.2

mnesia-4.25.1

Fixed Bugs and Malfunctions

Full runtime dependencies of mnesia-4.25.1

public_key-1.20.1

Fixed Bugs and Malfunctions

Full runtime dependencies of public_key-1.20.1

ssl-11.5.1

Fixed Bugs and Malfunctions

Full runtime dependencies of ssl-11.5.1

xmerl-2.1.8

Fixed Bugs and Malfunctions

Full runtime dependencies of xmerl-2.1.8

Thanks to

v28.3: OTP 28.3

HIGHLIGHTS

POTENTIAL INCOMPATIBILITIES

OTP-28.3

Fixed Bugs and Malfunctions

Improvements and New Features

common_test-1.29.1

Improvements and New Features

Full runtime dependencies of common_test-1.29.1

compiler-9.0.4

Fixed Bugs and Malfunctions

Improvements and New Features

Full runtime dependencies of compiler-9.0.4

crypto-5.8

Fixed Bugs and Malfunctions

Improvements and New Features

Full runtime dependencies of crypto-5.8

diameter-2.6

Improvements and New Features

Full runtime dependencies of diameter-2.6

erl_interface-5.6.2

Improvements and New Features

Known Bugs and Problems

erts-16.2

Fixed Bugs and Malfunctions

Improvements and New Features

Full runtime dependencies of erts-16.2

eunit-2.10.1

Improvements and New Features

Full runtime dependencies of eunit-2.10.1

inets-9.5

Fixed Bugs and Malfunctions

Improvements and New Features

Full runtime dependencies of inets-9.5

kernel-10.5

Fixed Bugs and Malfunctions

renovate bot commented Nov 22, 2025 •

edited

Loading

`v28.3.3`: OTP 28.3.3

`v28.3.2`: OTP 28.3.2

`v28.3.1`: OTP 28.3.1

`v28.3`: OTP 28.3

`v28.2`: OTP 28.2

`v28.1.1`: OTP 28.1.1