[Snyk] Upgrade: , , , dayjs, firebase-admin, newrelic, next #1156
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade:
- @aws-sdk/credential-provider-node from 3.632.0 to 3.637.0.
See this package in npm: https://www.npmjs.com/package/@aws-sdk/credential-provider-node
- @aws-sdk/client-ses from 3.632.0 to 3.637.0.
See this package in npm: https://www.npmjs.com/package/@aws-sdk/client-ses
- @next/third-parties from 14.2.5 to 14.2.6.
See this package in npm: https://www.npmjs.com/package/@next/third-parties
- dayjs from 1.11.12 to 1.11.13.
See this package in npm: https://www.npmjs.com/package/dayjs
- firebase-admin from 12.3.1 to 12.4.0.
See this package in npm: https://www.npmjs.com/package/firebase-admin
- newrelic from 12.1.1 to 12.2.0.
See this package in npm: https://www.npmjs.com/package/newrelic
- next from 14.2.5 to 14.2.6.
See this package in npm: https://www.npmjs.com/package/next
See this project in Snyk:
https://app.snyk.io/org/k2xl/project/cf09253a-8e4c-4f7f-b75f-a1763e5c78eb?utm_source=github&utm_medium=referral&page=upgrade-pr
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Snyk has created this PR to upgrade multiple dependencies.
👯 The following dependencies are linked and will therefore be updated together.ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
@aws-sdk/credential-provider-node
from 3.632.0 to 3.637.0 | 2 versions ahead of your current version | 22 days ago
on 2024-08-22
@aws-sdk/client-ses
from 3.632.0 to 3.637.0 | 3 versions ahead of your current version | 22 days ago
on 2024-08-22
@next/third-parties
from 14.2.5 to 14.2.6 | 1 version ahead of your current version | 22 days ago
on 2024-08-21
dayjs
from 1.11.12 to 1.11.13 | 1 version ahead of your current version | 24 days ago
on 2024-08-20
firebase-admin
from 12.3.1 to 12.4.0 | 1 version ahead of your current version | 21 days ago
on 2024-08-22
newrelic
from 12.1.1 to 12.2.0 | 1 version ahead of your current version | 25 days ago
on 2024-08-19
next
from 14.2.5 to 14.2.6 | 1 version ahead of your current version | 22 days ago
on 2024-08-21
Release notes
Package name: @aws-sdk/credential-provider-node
-
3.637.0 - 2024-08-22
- util-endpoints: update aws partitions.json (9d2511b8)
- endpoints: update endpoints model (f7ad4c17)
- models: update API models (842bde9e)
- client-codestar: deprecate CodeStar (#6402) (5327273d)
- client-auto-scaling: Amazon EC2 Auto Scaling now provides EBS health check to manage EC2 instance replacement (041f6dd9)
- client-route-53: Amazon Route 53 now supports the Asia Pacific (Malaysia) Region (ap-southeast-5) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region. (b3d22dec)
- client-emr-containers: Correct endpoint for FIPS is configured for US Gov Regions. (0cd9baec)
- client-inspector2: Add enums for Agentless scan statuses and EC2 enablement error states (52856e7f)
- client-quicksight: Explicit query for authors and dashboard viewing sharing for embedded users (18135bcc)
- client-bedrock: Amazon Bedrock Evaluation BatchDeleteEvaluationJob API allows customers to delete evaluation jobs under terminated evaluation job statuses - Stopped, Failed, or Completed. Customers can submit a batch of 25 evaluation jobs to be deleted at once. (06501cbb)
-
3.635.0 - 2024-08-20
- client-ecs: Documentation only release to address various tickets (a4a0836a)
- client-opensearchserverless: Added FailureCode and FailureMessage to BatchGetCollectionResponse for BatchGetVPCEResponse for non-Active Collection and VPCE. (7daa541c)
- client-s3: Amazon Simple Storage Service / Features : Add support for conditional writes for PutObject and CompleteMultipartUpload APIs. (b474584f)
- codegen: add Smithy RPCv2 CBOR to list of protocols (#6096) (5154d4f1)
-
3.632.0 - 2024-08-15
from @aws-sdk/credential-provider-node GitHub release notes3.637.0(2024-08-22)
Chores
Documentation Changes
New Features
For list of updated packages, view updated-packages.md in assets-3.637.0.zip
3.635.0(2024-08-20)
Documentation Changes
New Features
For list of updated packages, view updated-packages.md in assets-3.635.0.zip
Package name: @aws-sdk/client-ses
-
3.637.0 - 2024-08-22
- util-endpoints: update aws partitions.json (9d2511b8)
- endpoints: update endpoints model (f7ad4c17)
- models: update API models (842bde9e)
- client-codestar: deprecate CodeStar (#6402) (5327273d)
- client-auto-scaling: Amazon EC2 Auto Scaling now provides EBS health check to manage EC2 instance replacement (041f6dd9)
- client-route-53: Amazon Route 53 now supports the Asia Pacific (Malaysia) Region (ap-southeast-5) for latency records, geoproximity records, and private DNS for Amazon VPCs in that region. (b3d22dec)
- client-emr-containers: Correct endpoint for FIPS is configured for US Gov Regions. (0cd9baec)
- client-inspector2: Add enums for Agentless scan statuses and EC2 enablement error states (52856e7f)
- client-quicksight: Explicit query for authors and dashboard viewing sharing for embedded users (18135bcc)
- client-bedrock: Amazon Bedrock Evaluation BatchDeleteEvaluationJob API allows customers to delete evaluation jobs under terminated evaluation job statuses - Stopped, Failed, or Completed. Customers can submit a batch of 25 evaluation jobs to be deleted at once. (06501cbb)
-
3.636.0 - 2024-08-21
- turbo: simplify build scripts in package.json (#6366) (614d98e1)
- link to smithy/middleware-retry in Notable Changes (#6397) (31263194)
- clients: update client endpoints as of 2024-08-21 (f8aaf1df)
- client-ses: Enable email receiving customers to provide SES with access to their S3 buckets via an IAM role for "Deliver to S3 Action" (aafc6ebd)
- client-entityresolution: Increase the mapping attributes in Schema to 35. (d038be36)
- client-glue: Add optional field JobRunQueuingEnabled to CreateJob and UpdateJob APIs. (b3bbf579)
- client-securityhub: Security Hub documentation and definition updates (17db5f7e)
- client-lambda: Release FilterCriteria encryption for Lambda EventSourceMapping, enabling customers to encrypt their filter criteria using a customer-owned KMS key. (6fff3639)
- client-ec2: DescribeInstanceStatus now returns health information on EBS volumes attached to Nitro instances (1baa7ea8)
-
3.635.0 - 2024-08-20
- client-ecs: Documentation only release to address various tickets (a4a0836a)
- client-opensearchserverless: Added FailureCode and FailureMessage to BatchGetCollectionResponse for BatchGetVPCEResponse for non-Active Collection and VPCE. (7daa541c)
- client-s3: Amazon Simple Storage Service / Features : Add support for conditional writes for PutObject and CompleteMultipartUpload APIs. (b474584f)
- codegen: add Smithy RPCv2 CBOR to list of protocols (#6096) (5154d4f1)
-
3.632.0 - 2024-08-15
from @aws-sdk/client-ses GitHub release notes3.637.0(2024-08-22)
Chores
Documentation Changes
New Features
For list of updated packages, view updated-packages.md in assets-3.637.0.zip
3.636.0(2024-08-21)
Chores
Documentation Changes
New Features
For list of updated packages, view updated-packages.md in assets-3.636.0.zip
3.635.0(2024-08-20)
Documentation Changes
New Features
For list of updated packages, view updated-packages.md in assets-3.635.0.zip
Package name: @next/third-parties
-
14.2.6 - 2024-08-21
- Ensure fetch cache TTL is updated properly (#69164)
-
14.2.5 - 2024-07-10
from @next/third-parties GitHub release notesNote
This release is backporting bug fixes. It does not include all pending features/changes on canary.
Core Changes
Package name: dayjs
-
1.11.13 - 2024-08-20
- customParseFormat supports Q quter / w ww weekOfYear (#2705) (8ca74f1)
-
1.11.12 - 2024-07-18
- Add NegativeYear Plugin support (#2640) (6a42e0d)
- add UTC support to negativeYear plugin (#2692) (f3ef705)
- Fix zero offset issue when use tz with locale (#2532) (d0e6738)
- Improve typing for min/max plugin (#2573) (4fbe94a)
- timezone plugin currect parse UTC tz (#2693) (b575c81)
from dayjs GitHub release notes1.11.13 (2024-08-20)
Bug Fixes
1.11.12 (2024-07-18)
Bug Fixes
Package name: firebase-admin
-
12.4.0 - 2024-08-22
- [chore] Release 12.4.0 (#2674)
- build(deps-dev): bump @ firebase/app-compat from 0.2.38 to 0.2.39 (#2677)
- chore: Deprecate sendToTopic and Condition (#2683)
- build(deps): bump @ types/node from 22.1.0 to 22.3.0 (#2675)
- build(deps-dev): bump mocha from 10.7.0 to 10.7.3 (#2670)
- build(deps): bump @ google-cloud/storage from 7.12.0 to 7.12.1 (#2669)
- build(deps): bump axios in /.github/actions/send-email (#2673)
- build(deps-dev): bump @ microsoft/api-extractor from 7.47.5 to 7.47.6 (#2671)
- Reroute Cloud Tasks to emulator when it is running (#2649)
-
12.3.1 - 2024-08-08
- fix:
- [chore] Release 12.3.1 (#2667)
- chore: Skip sendToDeviceGroup integration test (#2666)
- build(deps-dev): bump @ microsoft/api-extractor from 7.47.2 to 7.47.5 (#2661)
- build(deps): bump @ types/node from 22.0.1 to 22.1.0 (#2663)
- build(deps-dev): bump @ firebase/app-compat from 0.2.37 to 0.2.38 (#2664)
- build(deps): bump @ types/node from 20.14.11 to 22.0.1 (#2657)
- build(deps-dev): bump chai from 4.4.1 to 4.5.0 (#2650)
- build(deps-dev): bump @ firebase/app-compat from 0.2.35 to 0.2.37 (#2653)
- build(deps): bump fast-xml-parser from 4.4.0 to 4.4.1 (#2654)
from firebase-admin GitHub release notesMiscellaneous
Bug Fixes
getToken()returns existing promise to a token if one exists instead of a new token. (#2648)Miscellaneous
Package name: newrelic
-
12.2.0 - 2024-08-19
- Added instrumentation support for Express 5 beta (#2476) (06a4c2f)
- This will be experimental until
- Updated
- Removed reference to
- Updated compatibility report (#2487) (c0a5e64)
- Reverted to upstream
- Updated aggregators unit tests to node:test (#2481) (fd2d76f)
-
12.1.1 - 2024-08-15
- Updated
- Updated
- Updated the
- Updated pino instrumentation to separate the wrapping of asJson into its own function (#2464) (81fdde1)
- Updated compatibility report (#2460) (a4570e9)
- Removed limit on superagent versioned testing (#2456) (b4b6a6b)
from newrelic GitHub release notesv12.2.0 (2024-08-19)
Features
[email protected]is generally availableBug fixes
koainstrumentation to properly get the matched route name and to handle changes in@ koa/[email protected](#2486) (0c2ee2f)Documentation
@ newrelic/nextin README (#2479) (8740539)Miscellaneous chores
require-in-the-middle(#2473) (9bbc41c)Support statement:
We recommend updating to the latest agent version as soon as it's available. If you can't upgrade to the latest version, update your agents to a version no more than 90 days old. Read more about keeping agents up to date. (https://docs.newrelic.com/docs/new-relic-solutions/new-relic-one/install-configure/update-new-relic-agent/)
See the New Relic Node.js agent EOL policy for information about agent releases and support dates. (https://docs.newrelic.com/docs/apm/agents/nodejs-agent/getting-started/nodejs-agent-eol-policy/)
v12.1.1 (2024-08-15)
Bug fixes
amqplibinstrumentation to properly parse host/port from connect (#2461) (91636a8)redisinstrumentation to parse host/port when a url is not provided (#2463) (2b67623)kafkajsnode metrics to remove/Namedfrom the name (#2458) (37ce113)Code refactoring
Documentation
Miscellaneous chores
Support statement:
We recommend updating to the latest agent version as soon as it's available. If you can't upgrade to the latest version, update your agents to a version no more than 90 days old. Read more about keeping agents up to date. (https://docs.newrelic.com/docs/new-relic-solutions/new-relic-one/install-configure/update-new-relic-agent/)
See the New Relic Node.js agent EOL policy for information about agent releases and support dates. (https://docs.newrelic.com/docs/apm/agents/nodejs-agent/getting-started/nodejs-agent-eol-policy/)
Package name: next
-
14.2.6 - 2024-08-21
- Ensure fetch cache TTL is updated properly (#69164)
-
14.2.5 - 2024-07-10
from next GitHub release notesNote
This release is backporting bug fixes. It does not include all pending features/changes on canary.
Core Changes
Important
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information: