[Snyk] Upgrade firebase-admin from 8.3.0 to 8.13.0#18
Open
[Snyk] Upgrade firebase-admin from 8.3.0 to 8.13.0#18
Conversation
Snyk has created this PR to upgrade firebase-admin from 8.3.0 to 8.13.0. See this package in npm: https://www.npmjs.com/package/firebase-admin See this project in Snyk: https://app.snyk.io/org/alacret/project/15157ed6-835e-4a11-89ff-75223aa75e5a?utm_source=github&utm_medium=upgrade-pr
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade firebase-admin from 8.3.0 to 8.13.0.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version fixes:
SNYK-JS-WEBSOCKETEXTENSIONS-570623
Why? Proof of Concept exploit, CVSS 8.2
SNYK-JS-NODEFETCH-674311
Why? Proof of Concept exploit, CVSS 8.2
SNYK-JS-HTTPSPROXYAGENT-469131
Why? Proof of Concept exploit, CVSS 8.2
SNYK-JS-DOTPROP-543489
Why? Proof of Concept exploit, CVSS 8.2
(*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: firebase-admin
-
8.13.0 - 2020-06-29
- feat(rc): Add Remote Config Version Management API (#920)
- fix(auth): Migrated IAM sign endpoint to iamcredentials.googleapis.com (#916)
- fix(auth): Fixing flaky deleteUsers() integration tests (#917)
- fix: Upgraded node-forge and jsonwebtoken dependencies (#912)
- fix(auth): Add interfaces for UserProviderRequest and Metadata used in UserImportRecord (#909)
- fix: Fixed faulty metadata for the send-tweet Action (#908)
- fix(auth): Properly parse the lastRefreshTime. (#888)
- [chore] Release 8.13.0 (#925)
- Add integration tests for RC manage version operations (#914)
- Add another missing RC type to toc.yaml (#924)
- Add new RC types in toc.yaml (#923)
- Fixed a flaky auth integration test by retrying the GetUser() API call (#907)
- Bump websocket-extensions from 0.1.3 to 0.1.4 (#900)
- Fixing Firebase ML integration tests (#899)
- fixing tests with unhandled promises (#894)
- Rectified issues in comments for NotificationMessagePayload (#879)
- chore: Running CI workflow on pull_request (#886)
-
8.12.1 - 2020-05-08
- [chore] Release 8.12.1 (#883)
- Mark UserMetadata::lastRefreshTime as optional. (#881)
- Remove type aliases from toc.yaml (#877)
-
8.12.0 - 2020-05-06
- feat(auth): Add bulk get/delete methods (#726)
- [chore] Release 8.12.0 (#878)
- Bump jquery from 3.4.1 to 3.5.0 (#873)
- Fixed lint (#868)
- Refines
- Generate camelcase doc paths for machineLearning module (#863)
- Fix typo in release.yml (#862)
-
8.11.0 - 2020-04-22
- feat: Remote Config Management API (#845)
- feat(machine-learning): Adding Firebase ML management APIs (#850)
- fix(rtdb): Upgraded @ firebase/database dependency to latest available (#859)
- fix(auth): Defines missing
- fix(auth): Fixing UserImportRecord typings declaration (#835)
- [chore] Release 8.11.0 (#861)
- Update toc.yaml (#860)
- Update Database types (#830)
- Bump minimist from 1.2.0 to 1.2.3 (#839)
- chore: Cleaning up package verification scripts (#822)
- chore: Splitting the index.d.ts file into smaller files (#751)
- Fixing Android notification options descriptions (#820)
- Bump acorn from 6.1.1 to 6.4.1 (#815)
-
8.10.0 - 2020-03-12
- feat(auth): Multi-factor Auth support with SMS for Google Cloud Identity Platform (#804)
- [chore] Release 8.10.0 (take 2) (#812)
- [chore] Release 8.10.0 (#811)
- chore: Adding a .npmrc file to the root of the repo (#810)
- Defines MultiFactor{Create|Update}Settings interfaces. (#809)
- Removes special char from index.d.ts. (#808)
- Defines new MFA types in toc.yaml. (#807)
- Fix revokeRefreshTokens to round consistently with the other platforms. (#801)
- Build integration tests during CI (and release) (#800)
- Fix compilation error in integration tests (#798)
- chore: Enabling more ESLint checks and fixing errors (#797)
- Enabling additional ESLint checks (#794)
- chore: Migrated to ESlint (#790)
- chore: Experimental release flow based on Actions (#780)
- Improve customClaims Typing (#768)
- Custom Action for sending Tweets (#784)
-
8.9.2 - 2020-01-23
-
8.9.1 - 2020-01-15
-
8.9.0 - 2019-12-19
-
8.8.0 - 2019-11-19
-
8.7.0 - 2019-10-30
-
8.6.1 - 2019-10-16
-
8.6.0 - 2019-09-18
-
8.5.0 - 2019-09-05
-
8.4.0 - 2019-08-21
-
8.3.0 - 2019-07-24
from firebase-admin GitHub release notesNew Features
Bug Fixes
Miscellaneous
Miscellaneous
New Features
Miscellaneous
UserRecord.customClaimstype. (#866)New Features
Bug Fixes
DecodedIdTokentypes. (#852)Miscellaneous
New Features
Miscellaneous
Read more
Read more
Read more
Read more
Read more
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs