View categories

Categories

Language Support
- Node.js
- Ruby
  - Working with Bundler
  - Rails Support
- Python
  - Background Jobs in Python
  - Working with Django
- Java
  - Working with Maven
  - Java Database Operations
  - Java Advanced Topics
  - Working with Spring Boot
- PHP
- Go
  - Go Dependency Management
- Scala
- Clojure

Databases & Data Management
- Heroku Postgres
  - Postgres Basics
  - Postgres Getting Started
  - Postgres Performance
  - Postgres Data Transfer & Preservation
  - Postgres Availability
  - Postgres Special Topics
- Heroku Data For Redis
- Apache Kafka on Heroku
- Other Data Stores

Monitoring & Metrics
- Logging

App Performance

Add-ons
- All Add-ons

Collaboration

Security
- App Security
- Identities & Authentication
  - Single Sign-on (SSO)
- Compliance

Heroku Enterprise
- Private Spaces
  - Infrastructure Networking
- Enterprise Accounts
- Enterprise Teams
- Heroku Connect (Salesforce sync)
  - Heroku Connect Administration
  - Heroku Connect Reference
  - Heroku Connect Troubleshooting

Patterns & Best Practices

Extending Heroku
- Platform API
- App Webhooks
- Heroku Labs
- Building Add-ons
  - Add-on Development Tasks
  - Add-on APIs
  - Add-on Guidelines & Requirements
- Building CLI Plugins
- Developing Buildpacks
- Dev Center

Accounts & Billing

Troubleshooting & Support

Integrating with Salesforce

New Node.js versions available with OpenSSL vulnerability remediations

Change effective on 04 November 2022

The following Node.js versions have been released, and are available for use on Heroku: 19.0.1, 18.12.1, 16.18.1,14.21.1. These versions address several vulnerabilities classified as medium and high related to OpenSSL. We highly recommend rebuilding any and all Heroku apps that use Node.js as soon as possible to pickup one of these new versions.

You can read details about these fixes on the Node.js blog.

Please note that while Heroku stack images (heroku-18, heroku-20, and heroku-22) have already been patched for these OpenSSL vulnerabilities (details on that here), Node.js includes it’s own statically linked copies of OpenSSL, which may still be vulnerable unless updated to one of these new versions.

Python updated pip Heroku now deletes inactive accounts