LTS
Long Term Support
<a id="lts"></a>
Fastify’s Long Term Support (LTS) is provided according to the schedule laid out in this document:
- Major releases, “X” release of semantic versioning X.Y.Z release versions, are supported for a minimum period of six months from their release date. The release date of any specific version can be found at https://github.com/fastify/fastify/releases.
- Major releases will receive security updates for an additional six months from the release of the next major release. After this period we will still review and release security fixes as long as they are provided by the community and they do not violate other constraints, e.g. minimum supported Node.js version.
- Major releases will be tested and verified against all Node.js release lines that are supported by the Node.js LTS policy within the LTS period of that given Fastify release line. This implies that only the latest Node.js release of a given line is supported.
- In addition to Node.js runtime, major releases of Fastify will also be tested and verified against alternative runtimes that are compatible with Node.js. The maintenance teams of these alternative runtimes are responsible for ensuring and guaranteeing these tests work properly.
- N|Solid, maintained by NodeSource, commits to testing and verifying each Fastify major release against the N|Solid LTS versions that are current at the time of the Fastify release. NodeSource guarantees that Fastify will be compatible and function correctly with N|Solid, aligning with the support and compatibility scope of the N|Solid LTS versions available at the time of the Fastify release. This ensures users of N|Solid can confidently use Fastify.
A “month” is defined as 30 consecutive days.
Security Releases and Semver
As a consequence of providing long-term support for major releases, there are occasions where we need to release breaking changes as a minor version release. Such changes will always be noted in the release notes.
To avoid automatically receiving breaking security updates it is possible to use the tilde (
~
) range qualifier. For example, to get patches for the 3.15 release, and avoid automatically updating to the 3.16 release, specify the dependency as"fastify": "~3.15.x"
. This will leave your application vulnerable, so please use with caution.
Security Support Beyond LTS
Fastify’s partner, HeroDevs, provides commercial security support through the OpenJS Ecosystem Sustainability Program for versions of Fastify that are EOL. For more information, see their Never Ending Support service.
Schedule
<a id="lts-schedule"></a>
Version | Release Date | End Of LTS Date | Node.js | Nsolid(Node) |
---|---|---|---|---|
1.0.0 | 2018-03-06 | 2019-09-01 | 6, 8, 9, 10, 11 | |
2.0.0 | 2019-02-25 | 2021-01-31 | 6, 8, 10, 12, 14 | |
3.0.0 | 2020-07-07 | 2023-06-30 | 10, 12, 14, 16, 18 | v5(18) |
4.0.0 | 2022-06-08 | 2025-06-30 | 14, 16, 18, 20, 22 | v5(18), v5(20) |
5.0.0 | 2024-09-17 | TBD | 20, 22 | v5(20) |
CI tested operating systems
<a id="supported-os"></a>
Fastify uses GitHub Actions for CI testing, please refer to GitHub’s documentation regarding workflow runners for further details on what the latest virtual environment is in relation to the YAML workflow labels below:
OS | YAML Workflow Label | Package Manager | Node.js | Nsolid(Node) |
---|---|---|---|---|
Linux | ubuntu-latest | npm | 20 | v5(20) |
Linux | ubuntu-latest | yarn,pnpm | 20 | v5(20) |
Windows | windows-latest | npm | 20 | v5(20) |
MacOS | macos-latest | npm | 20 | v5(20) |
Using yarn might require passing the --ignore-engines
flag.