Skip to content
This repository was archived by the owner on Mar 4, 2026. It is now read-only.
This repository was archived by the owner on Mar 4, 2026. It is now read-only.

Critical security vulnerability in protobufjs 7.0.0 #1888

Closed
#1889
Closed
Critical security vulnerability in protobufjs 7.0.0#1888
#1889
Assignees
MarkDuckworthmilaGGL
Labels
api: firestoreIssues related to the googleapis/nodejs-firestore API.priority: p2Moderately-important priority. Fix may not be included in next release.type: bugError or flaw in code with unintended results or allowing sub-optimal usage patterns.
@scopsy

Description

@scopsy
scopsy
opened on Aug 28, 2023

There is a security vulnerability disclosed in GHSA-h755-8qp9-cq85 which affects all versions above 7.0.0.

The issue was resolved in 7.2.4.

We are using the firebase admin package which depends on the firestore package.

Environment details

  • @google-cloud/firestore version: 6.7.0

Metadata

Metadata

Assignees

Labels

api: firestoreIssues related to the googleapis/nodejs-firestore API.priority: p2Moderately-important priority. Fix may not be included in next release.type: bugError or flaw in code with unintended results or allowing sub-optimal usage patterns.

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions