Bump the npm_and_yarn group across 1 directory with 11 updates #2

dependabot · 2024-03-27T18:26:22Z

Bumps the npm_and_yarn group with 4 updates in the /functions/functions directory: @firebase/util, firebase-admin, express and jsonwebtoken.

Updates @firebase/util from 0.3.1 to 1.9.4

Changelog

Sourced from @firebase/util's changelog.

1.9.4

Patch Changes

434f8418c #7963 (fixes #7962) - Fix isSafari() throwing on React Native

1.9.3

Patch Changes

c59f537b1 #7019 - Modify base64 decoding logic to throw on invalid input, rather than silently truncating it.

1.9.2

Patch Changes

d071bd1ac #7007 (fixes #7005) - Move exports.default fields to always be the last field. This fixes a bug caused in 9.17.0 that prevented some bundlers and frameworks from building.

1.9.1

Patch Changes

0bab0b7a7 #6981 - Added browser CJS entry points (expected by Jest when using JSDOM mode).

1.9.0

Minor Changes

06dc1364d #6901 - Allow users to specify their environment as node or browser to override Firebase's runtime environment detection and force the SDK to act as if it were in the respective environment.

Patch Changes

d4114a4f7 #6874 (fixes #6838) - Reformat a comment that causes compile errors in some build toolchains.

1.8.0

Minor Changes

1625f7a95 #6799 - Update TypeScript version to 4.7.4.

Patch Changes

c20633ed3 #6841 - Fix for third party window content that cannot access IndexedDB if the browser is set to never accept third party cookies on Firefox.

1.7.3

Patch Changes

4af28c1a4 #6682 - Upgrade TypeScript to 4.7.4.

... (truncated)

Commits

9fa0e9f Version Packages (#7995)
434f841 Fix isSafari() throwing on React Native (fixes #7962) (#7963)
ebc694a Comment changes for OSS (#7778)
2be12d7 [CI] update chrome install steps for Auth builds. (#7602)
2e7e548 Version Packages (#7069)
c59f537 Improve decodeBase64() to throw on invalid input rather than silently accept ...
3d605f8 Version Packages (#7008)
d071bd1 Fix exports fields (#7007)
3323f68 Version Packages (#6995)
0bab0b7 Add CJS browser entry points for all packages (#6981)
Additional commits viewable in compare view

Updates firebase-admin from 9.1.1 to 9.12.0

Release notes

Sourced from firebase-admin's releases.

Firebase Admin Node.js SDK v9.12.0

New Features

feat(rc): Add Remote Config Parameter Value Type Support (#1424)

Bug Fixes

fix(fac): Verify Token: Change the jwks cache duration from 1 day to 6 hours (#1439)

fix(rtdb): Changed admin.database to use database-compat package (#1437)

Miscellaneous

[chore] Release 9.12.0 (#1442)

Pin @types/jsonwebtoken to 8.5.1 (#1438)

build(deps): bump tar from 6.1.3 to 6.1.11 (#1430)

build(deps-dev): bump @types/lodash from 4.14.171 to 4.14.173 (#1435)

build(deps-dev): bump @microsoft/api-extractor from 7.18.4 to 7.18.7 (#1423)

fix typo (#1420)

Firebase Admin Node.js SDK v9.11.1

Bug Fixes

fix: Update comments in index files (#1414)

fix: Throw error on user disabled and check revoked set true (#1401)

Miscellaneous

[chore] Release 9.11.1 (#1415)

build(deps): bump path-parse from 1.0.6 to 1.0.7 (#1413)

build(deps-dev): bump yargs from 17.0.1 to 17.1.1 (#1412)

chore: Add emulator tests to nightlies (#1409)

build(deps-dev): bump ts-node from 9.0.0 to 10.2.0 (#1402)

build(deps): bump tar from 6.1.0 to 6.1.3 (#1399)

build(deps-dev): bump @microsoft/api-extractor from 7.15.2 to 7.18.4 (#1379)

build(deps): bump jwks-rsa from 2.0.3 to 2.0.4 (#1393)

build(deps-dev): bump @types/minimist from 1.2.1 to 1.2.2 (#1388)

build(deps-dev): bump @types/request from 2.48.5 to 2.48.6 (#1387)

build(deps-dev): bump @types/lodash from 4.14.157 to 4.14.171 (#1386)

build(deps): bump @firebase/database from 0.10.6 to 0.10.7 (#1385)

build(deps-dev): bump @types/bcrypt from 2.0.0 to 5.0.0 (#1384)

build(deps-dev): bump nock from 13.1.0 to 13.1.1 (#1370)

Firebase Admin Node.js SDK v9.11.0

New Features

feat(fac): Add custom TTL options for App Check (#1363)

Miscellaneous

[chore] Release 9.11.0 (#1376)

... (truncated)

Commits

137905c [chore] Release 9.12.0 (#1442)
a0b71a2 fix(fac): Verify Token: Change the jwks cache duration from 1 day to 6 hours ...
894b04a fix(rtdb): Changed admin.database to use database-compat package (#1437)
d96e61b Pin @types/jsonwebtoken to 8.5.1 (#1438)
8610b94 build(deps): bump tar from 6.1.3 to 6.1.11 (#1430)
b4b220c build(deps-dev): bump @types/lodash from 4.14.171 to 4.14.173 (#1435)
82391d5 feat(rc): Add Remote Config Parameter Value Type Support (#1424)
bb1fb6f build(deps-dev): bump @microsoft/api-extractor from 7.18.4 to 7.18.7 (#1423)
3f432df fix typo (#1420)
ceaad33 [chore] Release 9.11.1 (#1415)
Additional commits viewable in compare view

Updates @google-cloud/firestore from 4.2.0 to 4.15.1

Release notes

Sourced from @google-cloud/firestore's releases.

@google-cloud/firestore v4.15.1

Bug Fixes

build: migrate to main branch (#1601) (6f16b9a)

@google-cloud/firestore v4.15.0

Features

turns on self-signed JWT feature flag (#1593) (feee8cc)

Bug Fixes

Handles identical document ids from different collections. (#1599) (745b608)

@google-cloud/firestore v4.14.2

Bug Fixes

deps: google-gax v2.24.1 (#1588) (56150b6)

@google-cloud/firestore v4.14.1

Bug Fixes

avoid destructuring undefined timestamps (#1575) (a61a24a)

v4.14.0

Features

add "NON_EMPTY_DEFAULT" FieldBehavior (#1554) (8d9c503)

allow UnhandledPromiseRejection errors in BulkWriter if no error handler is specified (#1572) (e862ac8)

v4.13.2

Bug Fixes

deps: google-gax v2.17.1 (#1557) (866bd25)

lower batch size on BulkWriter retry to stay under throughput limits (#1556) (f17a36e)

v4.13.1

Bug Fixes

lower batch size on BulkWriter retry (#1549) (26d480b)

... (truncated)

Changelog

Sourced from @google-cloud/firestore's changelog.

4.15.1 (2021-09-03)

Bug Fixes

build: migrate to main branch (#1601) (6f16b9a)

4.15.0 (2021-08-26)

Features

turns on self-signed JWT feature flag (#1593) (feee8cc)

Bug Fixes

Handles identical document ids from different collections. (#1599) (745b608)

4.14.2 (2021-08-17)

Bug Fixes

deps: google-gax v2.24.1 (#1588) (56150b6)

4.14.1 (2021-08-02)

Bug Fixes

avoid destructuring undefined timestamps (#1575) (a61a24a)

4.14.0 (2021-07-30)

Features

add "NON_EMPTY_DEFAULT" FieldBehavior (#1554) (8d9c503)

allow UnhandledPromiseRejection errors in BulkWriter if no error handler is specified (#1572) (e862ac8)

4.13.2 (2021-07-14)

Bug Fixes

deps: google-gax v2.17.1 (#1557) (866bd25)

lower batch size on BulkWriter retry to stay under throughput limits (#1556) (f17a36e)

4.13.1 (2021-07-01)

... (truncated)

Commits

301b2d8 chore: release 4.15.1 (#1602)
6f16b9a fix(build): migrate to main branch (#1601)
7ccc6bd chore: release 4.15.0 (#1594)
745b608 fix: Handles identical document ids from different collections. (#1599)
2522715 chore: disable renovate dependency dashboard (#1194) (#1597)
feee8cc feat: turns on self-signed JWT feature flag (#1593)
5ba3dc7 chore: release 4.14.2 (#1589)
56150b6 fix(deps): google-gax v2.24.1 (#1588)
0affc8b chore: migrate to owl bot (#1587)
9a1a9dc docs(nodejs): move branch references to main (#1586)
Additional commits viewable in compare view

Updates ansi-regex from 5.0.0 to 5.0.1

Release notes

Sourced from ansi-regex's releases.

v5.0.1

Fixes (backport of 6.0.1 to v5)

This is a backport of the minor ReDos vulnerability in ansi-regex@<6.0.1, as requested in #38.

Fix ReDoS in certain cases (#37) You are only really affected if you run the regex on untrusted user input in a server context, which it's very unlikely anyone is doing, since this regex is mainly used in command-line tools.

CVE-2021-3807

https://github.com/chalk/ansi-regex/compare/v5.0.0..v5.0.1

Thank you @yetingli for the patch and reproduction case!

Commits

a9babce 5.0.1
4657833 fix incorrect format
c3c0b3f Fix potential ReDoS (#37)
178363b Move to GitHub Actions (#35)
0755e66 Add @Qix- to funding.yml
See full diff in compare view

Updates dicer from 0.3.0 to 0.3.1

Commits

c64ada8 package: bump version to v0.3.1
0a6700c package: bump dev/non-dev dependency versions
fe52713 readme: fix quote
a2a0463 readme: update requirements, modernize example
2e369e3 ci: switch to Github Actions
ca20fd2 benchmarks: update benchmarking code
01dedb1 lib,test: modernize codebase
See full diff in compare view

Updates express from 4.17.1 to 4.19.2

Release notes

Sourced from express's releases.

4.19.2

What's Changed

Improved fix for open redirect allow list bypass

Full Changelog: expressjs/express@4.19.1...4.19.2

4.19.1

What's Changed

Fix ci after location patch by @wesleytodd in expressjs/express#5552

fixed un-edited version in history.md for 4.19.0 by @wesleytodd in expressjs/express#5556

Full Changelog: expressjs/express@4.19.0...4.19.1

4.19.0

What's Changed

fix typo in release date by @UlisesGascon in expressjs/express#5527

docs: nominating @wesleytodd to be project captian by @wesleytodd in expressjs/express#5511

docs: loosen TC activity rules by @wesleytodd in expressjs/express#5510

Add note on how to update docs for new release by @crandmck in expressjs/express#5541

Prevent open redirect allow list bypass due to encodeurl

Release 4.19.0 by @wesleytodd in expressjs/express#5551

New Contributors

@crandmck made their first contribution in expressjs/express#5541

Full Changelog: expressjs/express@4.18.3...4.19.0

4.18.3

Main Changes

Fix routing requests without method

deps: body-parser@1.20.2

Fix strict json error message on Node.js 19+

deps: content-type@~1.0.5

deps: raw-body@2.5.2

Other Changes

Use https: protocol instead of deprecated git: protocol by @vcsjones in expressjs/express#5032

build: Node.js@16.18 and Node.js@18.12 by @abenhamdine in expressjs/express#5034

ci: update actions/checkout to v3 by @armujahid in expressjs/express#5027

test: remove unused function arguments in params by @raksbisht in expressjs/express#5124

Remove unused originalIndex from acceptParams by @raksbisht in expressjs/express#5119

Fixed typos by @raksbisht in expressjs/express#5117

examples: remove unused params by @raksbisht in expressjs/express#5113

fix: parameter str is not described in JSDoc by @raksbisht in expressjs/express#5130

fix: typos in History.md by @raksbisht in expressjs/express#5131

build : add Node.js@19.7 by @abenhamdine in expressjs/express#5028

test: remove unused function arguments in params by @raksbisht in expressjs/express#5137

... (truncated)

Changelog

Sourced from express's changelog.

4.19.2 / 2024-03-25

Improved fix for open redirect allow list bypass

4.19.1 / 2024-03-20

Allow passing non-strings to res.location with new encoding handling checks

4.19.0 / 2024-03-20

Prevent open redirect allow list bypass due to encodeurl

deps: cookie@0.6.0

4.18.3 / 2024-02-29

Fix routing requests without method

deps: body-parser@1.20.2

Fix strict json error message on Node.js 19+

deps: content-type@~1.0.5

deps: raw-body@2.5.2

deps: cookie@0.6.0

Add partitioned option

4.18.2 / 2022-10-08

Fix regression routing a large stack in a single route

deps: body-parser@1.20.1

deps: qs@6.11.0

perf: remove unnecessary object clone

deps: qs@6.11.0

4.18.1 / 2022-04-29

Fix hanging on large stack of sync routes

4.18.0 / 2022-04-25

Add "root" option to res.download

Allow options without filename in res.download

Deprecate string and non-integer arguments to res.status

Fix behavior of null/undefined as maxAge in res.cookie

Fix handling very large stacks of sync middleware

Ignore Object.prototype values in settings through app.set/app.get

... (truncated)

Commits

04bc627 4.19.2
da4d763 Improved fix for open redirect allow list bypass
4f0f6cc 4.19.1
a003cfa Allow passing non-strings to res.location with new encoding handling checks f...
a1fa90f fixed un-edited version in history.md for 4.19.0
11f2b1d build: fix build due to inconsistent supertest behavior in older versions
084e365 4.19.0
0867302 Prevent open redirect allow list bypass due to encodeurl
567c9c6 Add note on how to update docs for new release (#5541)
69a4cf2 deps: cookie@0.6.0
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by wesleytodd, a new releaser for express since your current version.

Updates jsonwebtoken from 8.5.1 to 9.0.2

Changelog

Sourced from jsonwebtoken's changelog.

9.0.2 - 2023-08-30

security: updating semver to 7.5.4 to resolve CVE-2022-25883, closes #921.

refactor: reduce library size by using lodash specific dependencies, closes #878.

9.0.1 - 2023-07-05

fix(stubs): allow decode method to be stubbed

9.0.0 - 2022-12-21

Breaking changes: See Migration from v8 to v9

Breaking changes

Removed support for Node versions 11 and below.

The verify() function no longer accepts unsigned tokens by default. ([834503079514b72264fd13023a3b8d648afd6a16]auth0/node-jsonwebtoken@8345030)

RSA key size must be 2048 bits or greater. ([ecdf6cc6073ea13a7e71df5fad043550f08d0fa6]auth0/node-jsonwebtoken@ecdf6cc)

Key types must be valid for the signing / verification algorithm

Security fixes

security: fixes Arbitrary File Write via verify function - CVE-2022-23529

security: fixes Insecure default algorithm in jwt.verify() could lead to signature validation bypass - CVE-2022-23540

security: fixes Insecure implementation of key retrieval function could lead to Forgeable Public/Private Tokens from RSA to HMAC - CVE-2022-23541

security: fixes Unrestricted key type could lead to legacy keys usage - CVE-2022-23539

Commits

bc28861 Release 9.0.2 (#935)
96b8906 refactor: use specific lodash packages (#933)
ed35062 security: Updating semver to 7.5.4 to resolve CVE-2022-25883 (#932)
84539b2 Updating package version to 9.0.1 (#920)
a99fd4b fix(stubs): allow decode method to be stubbed (#876)
e1fa9dc Merge pull request from GHSA-8cf7-32gw-wr33
5eaedbf chore(ci): remove github test actions job (#861)
cd4163e chore(ci): configure Github Actions jobs for Tests & Security Scanning (#856)
ecdf6cc fix!: Prevent accidental use of insecure key sizes & misconfiguration of secr...
8345030 fix(sign&verify)!: Remove default none support from sign and verify met...
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by charlesrea, a new releaser for jsonwebtoken since your current version.

Updates firebase-admin from 9.12.0 to 12.0.0

Release notes

Sourced from firebase-admin's releases.

Firebase Admin Node.js SDK v9.12.0

New Features

feat(rc): Add Remote Config Parameter Value Type Support (#1424)

Bug Fixes

fix(fac): Verify Token: Change the jwks cache duration from 1 day to 6 hours (#1439)

fix(rtdb): Changed admin.database to use database-compat package (#1437)

Miscellaneous

[chore] Release 9.12.0 (#1442)

Pin @types/jsonwebtoken to 8.5.1 (#1438)

build(deps): bump tar from 6.1.3 to 6.1.11 (#1430)

build(deps-dev): bump @types/lodash from 4.14.171 to 4.14.173 (#1435)

build(deps-dev): bump @microsoft/api-extractor from 7.18.4 to 7.18.7 (#1423)

fix typo (#1420)

Firebase Admin Node.js SDK v9.11.1

Bug Fixes

fix: Update comments in index files (#1414)

fix: Throw error on user disabled and check revoked set true (#1401)

Miscellaneous

[chore] Release 9.11.1 (#1415)

build(deps): bump path-parse from 1.0.6 to 1.0.7 (#1413)

build(deps-dev): bump yargs from 17.0.1 to 17.1.1 (#1412)

chore: Add emulator tests to nightlies (#1409)

build(deps-dev): bump ts-node from 9.0.0 to 10.2.0 (#1402)

build(deps): bump tar from 6.1.0 to 6.1.3 (#1399)

build(deps-dev): bump @microsoft/api-extractor from 7.15.2 to 7.18.4 (#1379)

build(deps): bump jwks-rsa from 2.0.3 to 2.0.4 (#1393)

build(deps-dev): bump @types/minimist from 1.2.1 to 1.2.2 (#1388)

build(deps-dev): bump @types/request from 2.48.5 to 2.48.6 (#1387)

build(deps-dev): bump @types/lodash from 4.14.157 to 4.14.171 (#1386)

build(deps): bump @firebase/database from 0.10.6 to 0.10.7 (#1385)

build(deps-dev): bump @types/bcrypt from 2.0.0 to 5.0.0 (#1384)

build(deps-dev): bump nock from 13.1.0 to 13.1.1 (#1370)

Firebase Admin Node.js SDK v9.11.0

New Features

feat(fac): Add custom TTL options for App Check (#1363)

Miscellaneous

[chore] Release 9.11.0 (#1376)

... (truncated)

Commits

137905c [chore] Release 9.12.0 (#1442)
a0b71a2 fix(fac): Verify Token: Change the jwks cache duration from 1 day to 6 hours ...
894b04a fix(rtdb): Changed admin.database to use database-compat package (#1437)
d96e61b Pin @types/jsonwebtoken to 8.5.1 (#1438)
8610b94 build(deps): bump tar from 6.1.3 to 6.1.11 (#1430)
b4b220c build(deps-dev): bump @types/lodash from 4.14.171 to 4.14.173 (#1435)
82391d5 feat(rc): Add Remote Config Parameter Value Type Support (#1424)
bb1fb6f build(deps-dev): bump @microsoft/api-extractor from 7.18.4 to 7.18.7 (#1423)
3f432df fix typo (#1420)
ceaad33 [chore] Release 9.11.1 (#1415)
Additional commits viewable in compare view

Updates semver from 5.7.1 to 7.6.0

Release notes

Sourced from semver's releases.

v7.6.0

7.6.0 (2024-01-31)

Features

a7ab13a #671 preserve pre-release and build parts of a version on coerce (#671) (@madtisa, madtisa, @wraithgar)

Chores

816c7b2 #667 postinstall for dependabot template-oss PR (@lukekarrys)

0bd24d9 #667 bump @npmcli/template-oss from 4.21.1 to 4.21.3 (@dependabot[bot])

e521932 #652 postinstall for dependabot template-oss PR (@lukekarrys)

8873991 #652 chore: chore: postinstall for dependabot template-oss PR (@lukekarrys)

f317dc8 #652 bump @npmcli/template-oss from 4.19.0 to 4.21.0 (@dependabot[bot])

7303db1 #658 add clean() test for build metadata (#658) (@jethrodaniel)

6240d75 #656 add missing quotes in README.md (#656) (@zyxkad)

14d263f #625 postinstall for dependabot template-oss PR (@lukekarrys)

7c34e1a #625 bump @npmcli/template-oss from 4.18.1 to 4.19.0 (@dependabot[bot])

123e0b0 #622 postinstall for dependabot template-oss PR (@lukekarrys)

737d5e1 #622 bump @npmcli/template-oss from 4.18.0 to 4.18.1 (@dependabot[bot])

cce6180 #598 postinstall for dependabot template-oss PR (@lukekarrys)

b914a3d #598 bump @npmcli/template-oss from 4.17.0 to 4.18.0 (@dependabot[bot])

v7.5.4

7.5.4 (2023-07-07)

Bug Fixes

cc6fde2 #588 trim each range set before parsing (@lukekarrys)

99d8287 #583 correctly parse long build ids as valid (#583) (@lukekarrys)

v7.5.3

7.5.3 (2023-06-22)

Bug Fixes

abdd93d #571 set max lengths in regex for numeric and build identifiers (#571) (@lukekarrys)

Documentation

bf53dd8 #569 add example for > comparator (#569) (@mbtools)

v7.5.2

7.5.2 (2023-06-15)

Bug Fixes

58c791f #566 diff when detecting major change from prerelease (#566) (@lukekarrys)

5c8efbc #565 preserve build in raw after inc (#565) (@lukekarrys)

717534e #564 better handling of whitespace (#564) (@lukekarrys)

... (truncated)

Changelog

Sourced from semver's changelog.

7.6.0 (2024-01-31)

Features

a7ab13a #671 preserve pre-release and build parts of a version on coerce (#671) (@madtisa, madtisa, @wraithgar)

Chores

816c7b2 #667 postinstall for dependabot template-oss PR (@lukekarrys)

0bd24d9 #667 bump @npmcli/template-oss from 4.21.1 to 4.21.3 (@dependabot[bot])

e521932 #652 postinstall for dependabot template-oss PR (@lukekarrys)

8873991 #652 chore: chore: postinstall for dependabot template-oss PR (@lukekarrys)

f317dc8 #652 bump @npmcli/template-oss from 4.19.0 to 4.21.0 (@dependabot[bot])

7303db1 #658 add clean() test for build metadata (#658) (@jethrodaniel)

6240d75 #656 add missing quotes in README.md (#656) (@zyxkad)

14d263f #625 postinstall for dependabot template-oss PR (@lukekarrys)

7c34e1a #625 bump @npmcli/template-oss from 4.18.1 to 4.19.0 (@dependabot[bot])

123e0b0 #622 postinstall for dependabot template-oss PR (@lukekarrys)

737d5e1 #622 bump @npmcli/template-oss from 4.18.0 to 4.18.1 (@dependabot[bot])

cce6180 #598 postinstall for dependabot template-oss PR (@lukekarrys)

b914a3d #598 bump @npmcli/template-oss from 4.17.0 to 4.18.0 (@dependabot[bot])

7.5.4 (2023-07-07)

Bug Fixes

cc6fde2 #588 trim each range set before parsing (@lukekarrys)Description has been truncated

Bumps the npm_and_yarn group with 4 updates in the /functions/functions directory: [@firebase/util](https://github.com/firebase/firebase-js-sdk/tree/HEAD/packages/util), [firebase-admin](https://github.com/firebase/firebase-admin-node), [express](https://github.com/expressjs/express) and [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken). Updates `@firebase/util` from 0.3.1 to 1.9.4 - [Release notes](https://github.com/firebase/firebase-js-sdk/releases) - [Changelog](https://github.com/firebase/firebase-js-sdk/blob/master/packages/util/CHANGELOG.md) - [Commits](https://github.com/firebase/firebase-js-sdk/commits/@firebase/util@1.9.4/packages/util) Updates `firebase-admin` from 9.1.1 to 9.12.0 - [Release notes](https://github.com/firebase/firebase-admin-node/releases) - [Commits](firebase/firebase-admin-node@v9.1.1...v9.12.0) Updates `@google-cloud/firestore` from 4.2.0 to 4.15.1 - [Release notes](https://github.com/googleapis/nodejs-firestore/releases) - [Changelog](https://github.com/googleapis/nodejs-firestore/blob/main/CHANGELOG.md) - [Commits](googleapis/nodejs-firestore@v4.2.0...v4.15.1) Updates `ansi-regex` from 5.0.0 to 5.0.1 - [Release notes](https://github.com/chalk/ansi-regex/releases) - [Commits](chalk/ansi-regex@v5.0.0...v5.0.1) Updates `dicer` from 0.3.0 to 0.3.1 - [Commits](mscdex/dicer@v0.3.0...v0.3.1) Updates `express` from 4.17.1 to 4.19.2 - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/master/History.md) - [Commits](expressjs/express@4.17.1...4.19.2) Updates `jsonwebtoken` from 8.5.1 to 9.0.2 - [Changelog](https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md) - [Commits](auth0/node-jsonwebtoken@v8.5.1...v9.0.2) Updates `firebase-admin` from 9.12.0 to 12.0.0 - [Release notes](https://github.com/firebase/firebase-admin-node/releases) - [Commits](firebase/firebase-admin-node@v9.1.1...v9.12.0) Updates `semver` from 5.7.1 to 7.6.0 - [Release notes](https://github.com/npm/node-semver/releases) - [Changelog](https://github.com/npm/node-semver/blob/main/CHANGELOG.md) - [Commits](npm/node-semver@v5.7.1...v7.6.0) Updates `node-forge` from 0.9.1 to 1.3.1 - [Changelog](https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md) - [Commits](digitalbazaar/forge@0.9.1...v1.3.1) Updates `protobufjs` from 6.11.3 to 7.2.6 - [Release notes](https://github.com/protobufjs/protobuf.js/releases) - [Changelog](https://github.com/protobufjs/protobuf.js/blob/master/CHANGELOG.md) - [Commits](protobufjs/protobuf.js@v6.11.3...protobufjs-v7.2.6) Updates `qs` from 6.7.0 to 6.11.0 - [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md) - [Commits](ljharb/qs@v6.7.0...v6.11.0) --- updated-dependencies: - dependency-name: "@firebase/util" dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: firebase-admin dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: "@google-cloud/firestore" dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: ansi-regex dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: dicer dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: express dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: jsonwebtoken dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: firebase-admin dependency-type: direct:production dependency-group: npm_and_yarn-security-group - dependency-name: semver dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: node-forge dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: protobufjs dependency-type: indirect dependency-group: npm_and_yarn-security-group - dependency-name: qs dependency-type: indirect dependency-group: npm_and_yarn-security-group ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot bot added the dependencies Pull requests that update a dependency file label Mar 27, 2024

dependabot bot mentioned this pull request Mar 27, 2024

Bump the npm_and_yarn group across 1 directories with 11 updates #1

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Bump the npm_and_yarn group across 1 directory with 11 updates #2

Bump the npm_and_yarn group across 1 directory with 11 updates #2

Uh oh!

dependabot bot commented on behalf of github Mar 27, 2024

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Bump the npm_and_yarn group across 1 directory with 11 updates #2

Are you sure you want to change the base?

Bump the npm_and_yarn group across 1 directory with 11 updates #2

Uh oh!

Conversation

dependabot bot commented on behalf of github Mar 27, 2024

1.9.4

Patch Changes

1.9.3

Patch Changes

1.9.2

Patch Changes

1.9.1

Patch Changes

1.9.0

Minor Changes

Patch Changes

1.8.0

Minor Changes

Patch Changes

1.7.3

Patch Changes

Firebase Admin Node.js SDK v9.12.0

New Features

Bug Fixes

Miscellaneous

Firebase Admin Node.js SDK v9.11.1

Bug Fixes

Miscellaneous

Firebase Admin Node.js SDK v9.11.0

New Features

Miscellaneous

@​google-cloud/firestore v4.15.1

Bug Fixes

@​google-cloud/firestore v4.15.0

Features

Bug Fixes

@​google-cloud/firestore v4.14.2

Bug Fixes

@​google-cloud/firestore v4.14.1

Bug Fixes

v4.14.0

Features

v4.13.2

Bug Fixes

v4.13.1

Bug Fixes

4.15.1 (2021-09-03)

Bug Fixes

4.15.0 (2021-08-26)

Features

Bug Fixes

4.14.2 (2021-08-17)

Bug Fixes

4.14.1 (2021-08-02)

Bug Fixes

4.14.0 (2021-07-30)

Features

4.13.2 (2021-07-14)

Bug Fixes

4.13.1 (2021-07-01)

v5.0.1

Fixes (backport of 6.0.1 to v5)

4.19.2

What's Changed

4.19.1

What's Changed

4.19.0

What's Changed

New Contributors

4.18.3

Main Changes

Other Changes

4.19.2 / 2024-03-25

4.19.1 / 2024-03-20

4.19.0 / 2024-03-20

4.18.3 / 2024-02-29

4.18.2 / 2022-10-08

4.18.1 / 2022-04-29

4.18.0 / 2022-04-25

`@google-cloud/firestore` v4.15.1

`@google-cloud/firestore` v4.15.0

`@google-cloud/firestore` v4.14.2

`@google-cloud/firestore` v4.14.1

Fixes (backport of `6.0.1` to v5)