Skip to content

Commit 8e384c9

Browse files
hsubox76dependabot[bot]
hsubox76
and
dependabot[bot]
authored
chore: Combine a group of dependabot security updates (#9883)
* Bump decode-uri-component in /packages/auth-compat/demo Bumps [decode-uri-component](https://github.com/SamVerschueren/decode-uri-component) from 0.2.0 to 0.2.2. - [Release notes](https://github.com/SamVerschueren/decode-uri-component/releases) - [Commits](SamVerschueren/decode-uri-component@v0.2.0...v0.2.2) --- updated-dependencies: - dependency-name: decode-uri-component dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * Bump word-wrap in /packages/rules-unit-testing/functions Bumps [word-wrap](https://github.com/jonschlinkert/word-wrap) from 1.2.3 to 1.2.5. - [Release notes](https://github.com/jonschlinkert/word-wrap/releases) - [Commits](jonschlinkert/word-wrap@1.2.3...1.2.5) --- updated-dependencies: - dependency-name: word-wrap dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * Bump @grpc/grpc-js in /packages/rules-unit-testing/functions Bumps [@grpc/grpc-js](https://github.com/grpc/grpc-node) from 1.8.21 to 1.8.22. - [Release notes](https://github.com/grpc/grpc-node/releases) - [Commits](https://github.com/grpc/grpc-node/compare/@grpc/[email protected]...@grpc/[email protected]) --- updated-dependencies: - dependency-name: "@grpc/grpc-js" dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * Bump micromatch from 4.0.4 to 4.0.8 in /packages/auth-compat/demo Bumps [micromatch](https://github.com/micromatch/micromatch) from 4.0.4 to 4.0.8. - [Release notes](https://github.com/micromatch/micromatch/releases) - [Changelog](https://github.com/micromatch/micromatch/blob/master/CHANGELOG.md) - [Commits](micromatch/micromatch@4.0.4...4.0.8) --- updated-dependencies: - dependency-name: micromatch dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * Bump express in /packages/auth-compat/demo/functions Bumps [express](https://github.com/expressjs/express) from 4.17.1 to 4.21.0. - [Release notes](https://github.com/expressjs/express/releases) - [Changelog](https://github.com/expressjs/express/blob/4.21.0/History.md) - [Commits](expressjs/express@4.17.1...4.21.0) --- updated-dependencies: - dependency-name: express dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * Bump webpack-dev-server from 5.2.0 to 5.2.1 in /e2e/smoke-tests Bumps [webpack-dev-server](https://github.com/webpack/webpack-dev-server) from 5.2.0 to 5.2.1. - [Release notes](https://github.com/webpack/webpack-dev-server/releases) - [Changelog](https://github.com/webpack/webpack-dev-server/blob/master/CHANGELOG.md) - [Commits](webpack/webpack-dev-server@v5.2.0...v5.2.1) --- updated-dependencies: - dependency-name: webpack-dev-server dependency-version: 5.2.1 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <[email protected]> * build(deps): bump tmp in /packages/auth-compat/demo/functions Bumps [tmp](https://github.com/raszi/node-tmp) from 0.2.3 to 0.2.4. - [Changelog](https://github.com/raszi/node-tmp/blob/master/CHANGELOG.md) - [Commits](raszi/node-tmp@v0.2.3...v0.2.4) --- updated-dependencies: - dependency-name: tmp dependency-version: 0.2.4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * build(deps): bump sha.js from 2.4.11 to 2.4.12 Bumps [sha.js](https://github.com/crypto-browserify/sha.js) from 2.4.11 to 2.4.12. - [Changelog](https://github.com/browserify/sha.js/blob/master/CHANGELOG.md) - [Commits](browserify/sha.js@v2.4.11...v2.4.12) --- updated-dependencies: - dependency-name: sha.js dependency-version: 2.4.12 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * build(deps): bump tmp in /packages/rules-unit-testing/functions Bumps [tmp](https://github.com/raszi/node-tmp) from 0.2.1 to 0.2.5. - [Changelog](https://github.com/raszi/node-tmp/blob/master/CHANGELOG.md) - [Commits](raszi/node-tmp@v0.2.1...v0.2.5) --- updated-dependencies: - dependency-name: tmp dependency-version: 0.2.5 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * build(deps): bump tar-fs from 2.1.2 to 2.1.4 Bumps [tar-fs](https://github.com/mafintosh/tar-fs) from 2.1.2 to 2.1.4. - [Commits](mafintosh/tar-fs@v2.1.2...v2.1.4) --- updated-dependencies: - dependency-name: tar-fs dependency-version: 2.1.4 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * build(deps): bump tmp from 0.2.3 to 0.2.4 in /repo-scripts/size-analysis Bumps [tmp](https://github.com/raszi/node-tmp) from 0.2.3 to 0.2.4. - [Changelog](https://github.com/raszi/node-tmp/blob/master/CHANGELOG.md) - [Commits](raszi/node-tmp@v0.2.3...v0.2.4) --- updated-dependencies: - dependency-name: tmp dependency-version: 0.2.4 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> * build(deps): bump js-yaml from 4.1.0 to 4.1.1 Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 4.1.0 to 4.1.1. - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](nodeca/js-yaml@4.1.0...4.1.1) --- updated-dependencies: - dependency-name: js-yaml dependency-version: 4.1.1 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> * build(deps): bump js-yaml in /repo-scripts/api-documenter Bumps [js-yaml](https://github.com/nodeca/js-yaml) from 4.1.0 to 4.1.1. - [Changelog](https://github.com/nodeca/js-yaml/blob/master/CHANGELOG.md) - [Commits](nodeca/js-yaml@4.1.0...4.1.1) --- updated-dependencies: - dependency-name: js-yaml dependency-version: 4.1.1 dependency-type: direct:production ... Signed-off-by: dependabot[bot] <[email protected]> * build(deps): bump picomatch from 2.3.1 to 2.3.2 Bumps [picomatch](https://github.com/micromatch/picomatch) from 2.3.1 to 2.3.2. - [Release notes](https://github.com/micromatch/picomatch/releases) - [Changelog](https://github.com/micromatch/picomatch/blob/master/CHANGELOG.md) - [Commits](micromatch/picomatch@2.3.1...2.3.2) --- updated-dependencies: - dependency-name: picomatch dependency-version: 2.3.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * build(deps): bump handlebars in /packages/auth-compat/demo Bumps [handlebars](https://github.com/handlebars-lang/handlebars.js) from 4.7.7 to 4.7.9. - [Release notes](https://github.com/handlebars-lang/handlebars.js/releases) - [Changelog](https://github.com/handlebars-lang/handlebars.js/blob/v4.7.9/release-notes.md) - [Commits](handlebars-lang/handlebars.js@v4.7.7...v4.7.9) --- updated-dependencies: - dependency-name: handlebars dependency-version: 4.7.9 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * build(deps): bump yaml in /packages/auth-compat/demo Bumps [yaml](https://github.com/eemeli/yaml) from 1.10.2 to 1.10.3. - [Release notes](https://github.com/eemeli/yaml/releases) - [Commits](eemeli/yaml@v1.10.2...v1.10.3) --- updated-dependencies: - dependency-name: yaml dependency-version: 1.10.3 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * build(deps): bump basic-ftp from 5.2.0 to 5.2.2 Bumps [basic-ftp](https://github.com/patrickjuchli/basic-ftp) from 5.2.0 to 5.2.2. - [Release notes](https://github.com/patrickjuchli/basic-ftp/releases) - [Changelog](https://github.com/patrickjuchli/basic-ftp/blob/master/CHANGELOG.md) - [Commits](patrickjuchli/basic-ftp@v5.2.0...v5.2.2) --- updated-dependencies: - dependency-name: basic-ftp dependency-version: 5.2.2 dependency-type: indirect ... Signed-off-by: dependabot[bot] <[email protected]> * Add changeset * revert picomatch --------- Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
1 parent ffa39f6 commit 8e384c9

8 files changed

Lines changed: 379 additions & 277 deletions

File tree

.changeset/nasty-kiwis-yell.md

Lines changed: 53 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,53 @@
1+
---
2+
'@firebase/rules-unit-testing': patch
3+
'@firebase/auth-compat': patch
4+
'@firebase/ai': patch
5+
'@firebase/analytics': patch
6+
'@firebase/analytics-compat': patch
7+
'@firebase/analytics-interop-types': patch
8+
'@firebase/analytics-types': patch
9+
'@firebase/app': patch
10+
'@firebase/app-check': patch
11+
'@firebase/app-check-compat': patch
12+
'@firebase/app-check-interop-types': patch
13+
'@firebase/app-check-types': patch
14+
'@firebase/app-compat': patch
15+
'@firebase/app-types': patch
16+
'@firebase/auth': patch
17+
'@firebase/auth-interop-types': patch
18+
'@firebase/auth-types': patch
19+
'@firebase/component': patch
20+
'@firebase/data-connect': patch
21+
'@firebase/database': patch
22+
'@firebase/database-compat': patch
23+
'@firebase/database-types': patch
24+
'firebase': patch
25+
'@firebase/firestore': patch
26+
'@firebase/firestore-compat': patch
27+
'@firebase/firestore-types': patch
28+
'@firebase/functions': patch
29+
'@firebase/functions-compat': patch
30+
'@firebase/functions-types': patch
31+
'@firebase/installations': patch
32+
'@firebase/installations-compat': patch
33+
'@firebase/installations-types': patch
34+
'@firebase/logger': patch
35+
'@firebase/messaging': patch
36+
'@firebase/messaging-compat': patch
37+
'@firebase/messaging-interop-types': patch
38+
'@firebase/performance': patch
39+
'@firebase/performance-compat': patch
40+
'@firebase/performance-types': patch
41+
'@firebase/remote-config': patch
42+
'@firebase/remote-config-compat': patch
43+
'@firebase/remote-config-types': patch
44+
'@firebase/storage': patch
45+
'@firebase/storage-compat': patch
46+
'@firebase/storage-types': patch
47+
'@firebase/template': patch
48+
'@firebase/template-types': patch
49+
'@firebase/util': patch
50+
'@firebase/webchannel-wrapper': patch
51+
---
52+
53+
Updated dependencies.

e2e/smoke-tests/yarn.lock

Lines changed: 2 additions & 22 deletions
Original file line numberDiff line numberDiff line change
@@ -2303,7 +2303,7 @@
23032303
"@types/range-parser" "*"
23042304
"@types/send" "*"
23052305

2306-
"@types/express-serve-static-core@^4.17.21":
2306+
"@types/express-serve-static-core@^4.17.21", "@types/express-serve-static-core@^4.17.33":
23072307
version "4.19.8"
23082308
resolved "https://registry.npmjs.org/@types/express-serve-static-core/-/express-serve-static-core-4.19.8.tgz#99b960322a4d576b239a640ab52ef191989b036f"
23092309
integrity sha512-02S5fmqeoKzVZCHPZid4b8JH2eM5HzQLZWN2FohQEy/0eXTq8VXZfSN6Pcr3F6N9R/vNrj7cpgbhjie6m/1tCA==
@@ -2313,16 +2313,6 @@
23132313
"@types/range-parser" "*"
23142314
"@types/send" "*"
23152315

2316-
"@types/express-serve-static-core@^4.17.33":
2317-
version "4.19.6"
2318-
resolved "https://registry.npmjs.org/@types/express-serve-static-core/-/express-serve-static-core-4.19.6.tgz"
2319-
integrity sha512-N4LZ2xG7DatVqhCZzOGb1Yi5lMbXSZcmdLDe9EzSndPV2HpWYWzRbaerl2n27irrm94EPpprqa8KpskPT085+A==
2320-
dependencies:
2321-
"@types/node" "*"
2322-
"@types/qs" "*"
2323-
"@types/range-parser" "*"
2324-
"@types/send" "*"
2325-
23262316
"@types/express@*":
23272317
version "5.0.0"
23282318
resolved "https://registry.npmjs.org/@types/express/-/express-5.0.0.tgz"
@@ -5384,17 +5374,7 @@ schema-utils@^2.6.5:
53845374
ajv "^6.12.4"
53855375
ajv-keywords "^3.5.2"
53865376

5387-
schema-utils@^4.0.0, schema-utils@^4.2.0:
5388-
version "4.2.0"
5389-
resolved "https://registry.npmjs.org/schema-utils/-/schema-utils-4.2.0.tgz"
5390-
integrity sha512-L0jRsrPpjdckP3oPug3/VxNKt2trR8TcabrM6FOAAlvC/9Phcmm+cuAgTlxBqdBR1WJx7Naj9WHw+aOmheSVbw==
5391-
dependencies:
5392-
"@types/json-schema" "^7.0.9"
5393-
ajv "^8.9.0"
5394-
ajv-formats "^2.1.1"
5395-
ajv-keywords "^5.1.0"
5396-
5397-
schema-utils@^4.3.0:
5377+
schema-utils@^4.0.0, schema-utils@^4.2.0, schema-utils@^4.3.0:
53985378
version "4.3.0"
53995379
resolved "https://registry.npmjs.org/schema-utils/-/schema-utils-4.3.0.tgz"
54005380
integrity sha512-Gf9qqc58SpCA/xdziiHz35F4GNIWYWZrEshUc/G/r5BnLph6xpKuLeoJoQuj5WfBIx/eQLf+hmVPYHaxJu7V2g==

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -112,7 +112,7 @@
112112
"http-server": "14.1.1",
113113
"indexeddbshim": "10.1.0",
114114
"inquirer": "8.2.6",
115-
"js-yaml": "4.1.0",
115+
"js-yaml": "4.1.1",
116116
"karma": "6.4.4",
117117
"karma-chrome-launcher": "3.2.0",
118118
"karma-cli": "2.0.0",

0 commit comments

Comments
 (0)