{"payload":{"feedbackUrl":"https://github.com/orgs/community/discussions/53140","repo":{"id":462900266,"defaultBranch":"main","name":"pinball","ownerLogin":"flutter","currentUserCanPush":false,"isFork":false,"isEmpty":false,"createdAt":"2022-02-23T20:47:03.000Z","ownerAvatar":"https://avatars.githubusercontent.com/u/14101776?v=4","public":true,"private":false,"isOrgOwned":true},"refInfo":{"name":"","listCacheKey":"v0:1726953497.0","currentOid":""},"activityList":{"items":[{"before":"89adb5284e807d8d5d673d203ef9f8823ba973b0","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-d66d039ac5","pushedAt":"2024-09-21T21:18:17.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"86dd83aa819de7969ea44652000d2b3794cd77f7","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-cf87d80143","pushedAt":"2024-09-21T21:18:16.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"d39393bcbc55fec2a8adad7236f9b40be876d495","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-9423f4c335","pushedAt":"2024-09-21T21:17:14.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"parlough","name":"Parker Lougheed","path":"/parlough","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18372958?s=80&v=4"}},{"before":"24e00b4816f5acc222f706764f968fd8364a2138","after":"479868284a83c2421203afbafa48ccd82b7e1fe4","ref":"refs/heads/main","pushedAt":"2024-09-21T21:17:12.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"parlough","name":"Parker Lougheed","path":"/parlough","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18372958?s=80&v=4"},"commit":{"message":"chore(deps): bump body-parser and express in /functions (#509)\n\nBumps [body-parser](https://github.com/expressjs/body-parser) and\r\n[express](https://github.com/expressjs/express). These dependencies\r\nneeded to be updated together.\r\nUpdates `body-parser` from 1.20.2 to 1.20.3\r\n\r\nRelease notes\r\n
Sourced from body-parser's\r\nreleases.
\r\n
\r\n
1.20.3
\r\n
What's Changed
\r\n
Important
\r\n
\r\n
deps: qs@6.13.0
\r\n
add depth option to customize the depth level in the\r\nparser
\r\n
IMPORTANT: The default depth level for\r\nparsing URL-encoded data is now 32 (previously was\r\nInfinity). Documentation
\r\n
\r\n
Other changes
\r\n
\r\n
chore: add support for OSSF scorecard reporting by @inigomarquinez\r\nin expressjs/body-parser#522
\r\n
ci: fix errors in ci github action for node 8 and 9 by @inigomarquinez\r\nin expressjs/body-parser#523
\r\n
fix: pin to node@22.4.1 by @wesleytodd in expressjs/body-parser#527
\r\n
deps: qs@6.12.3 by @melikhov-dev\r\nin expressjs/body-parser#521
\r\n
Add OSSF Scorecard badge by @bjohansebas in\r\nexpressjs/body-parser#531
\r\n
Linter by @UlisesGascon\r\nin expressjs/body-parser#534
\r\n
Release: 1.20.3 by @UlisesGascon\r\nin expressjs/body-parser#535
\r\n
\r\n
New Contributors
\r\n
\r\n
@inigomarquinez\r\nmade their first contribution in expressjs/body-parser#522
\r\n
@melikhov-dev\r\nmade their first contribution in expressjs/body-parser#521
\r\n
@bjohansebas\r\nmade their first contribution in expressjs/body-parser#531
\r\n
@UlisesGascon\r\nmade their first contribution in expressjs/body-parser#534
\r\n
\r\n
Full Changelog: https://github.com/expressjs/body-parser/compare/1.20.2...1.20.3
\r\n
\r\n\r\n\r\nChangelog\r\n
Sourced from body-parser's\r\nchangelog.
\r\n
\r\n
1.20.3 / 2024-09-10
\r\n
\r\n
deps: qs@6.13.0
\r\n
add depth option to customize the depth level in the\r\nparser
\r\n
IMPORTANT: The default depth level for parsing\r\nURL-encoded data is now 32 (previously was\r\nInfinity)
\r\n
\r\n
\r\n\r\n\r\nCommits\r\n
\r\n
1752951\r\n1.20.3
\r\n
39744cf\r\nchore: linter (#534)
\r\n
b2695c4\r\nMerge commit from fork
\r\n
ade0f3f\r\nadd scorecard to readme (#531)
\r\n
99a1bd6\r\ndeps: qs@6.12.3 (#521)
\r\n
9478591\r\nfix: pin to node@22.4.1
\r\n
83db46a\r\nci: fix errors in ci github action for node 8 and 9 (#523)
\r\n
9d4e212\r\nchore: add support for OSSF scorecard reporting (#522)
\r\n
See full diff in compare\r\nview
\r\n
\r\n\r\n\r\nMaintainer changes\r\n
This version was pushed to npm by ulisesgascon, a new\r\nreleaser for body-parser since your current version.
\r\n\r\n \r\n\r\nUpdates `express` from 4.19.2 to 4.21.0\r\n\r\nRelease notes\r\n
Sourced from express's\r\nreleases.
\r\n
\r\n
4.21.0
\r\n
What's Changed
\r\n
\r\n
Deprecate "back" magic string in redirects by\r\n@blakeembrey\r\nin expressjs/express#5935
\r\n
finalhandler@1.3.1 by @wesleytodd in expressjs/express#5954
\r\n
fix(deps): serve-static@1.16.2 by @wesleytodd in expressjs/express#5951
\r\n
Upgraded dependency qs to 6.13.0 to match qs in body-parser by @agadzinski93\r\nin expressjs/express#5946
\r\n
\r\n
New Contributors
\r\n
\r\n
@agadzinski93\r\nmade their first contribution in expressjs/express#5946
\r\n
\r\n
Full Changelog: https://github.com/expressjs/express/compare/4.20.0...4.21.0
\r\n
4.20.0
\r\n
What's Changed
\r\n
Important
\r\n
\r\n
IMPORTANT: The default depth level for parsing\r\nURL-encoded data is now 32 (previously was\r\nInfinity)
\r\n
Remove link renderization in html while using\r\nres.redirect
\r\n
\r\n
Other Changes
\r\n
\r\n
4.19.2 Staging by @wesleytodd in expressjs/express#5561
\r\n
remove duplicate location test for data uri by @wesleytodd in expressjs/express#5562
\r\n
feat: document beta releases expectations by @marco-ippolito\r\nin expressjs/express#5565
\r\n
Cut down on duplicated CI runs by @jonchurch in expressjs/express#5564
\r\n
Add a Threat Model by @UlisesGascon\r\nin expressjs/express#5526
\r\n
Assign captain of encodeurl by @blakeembrey in\r\nexpressjs/express#5579
\r\n
Nominate jonchurch as repo captain for http-errors,\r\nexpressjs.com, morgan, cors,\r\nbody-parser by @jonchurch in expressjs/express#5587
\r\n
docs: update Security.md by @inigomarquinez\r\nin expressjs/express#5590
\r\n
docs: update triage nomination policy by @UlisesGascon\r\nin expressjs/express#5600
\r\n
Add CodeQL (SAST) by @UlisesGascon\r\nin expressjs/express#5433
\r\n
docs: add UlisesGascon as triage initiative captain by @UlisesGascon\r\nin expressjs/express#5605
\r\n
deps: encodeurl@~2.0.0 by @blakeembrey in\r\nexpressjs/express#5569
\r\n
skip QUERY method test by @jonchurch in expressjs/express#5628
\r\n
ignore ETAG query test on 21 and 22, reuse skip util by @jonchurch in expressjs/express#5639
\r\n
add support Node.js@22 in the CI by @mertcanaltin\r\nin expressjs/express#5627
\r\n
doc: add table of contents, tc/triager lists to readme by @mertcanaltin\r\nin expressjs/express#5619
\r\n
List and sort all projects, add captains by @blakeembrey in\r\nexpressjs/express#5653
\r\n
docs: add @UlisesGascon\r\nas captain for cookie-parser by @UlisesGascon\r\nin expressjs/express#5666
\r\n
✨ bring back query tests for node 21 by @ctcpip in expressjs/express#5690
\r\n
[v4] Deprecate res.clearCookie accepting\r\noptions.maxAge and options.expires by @jonchurch in expressjs/express#5672
\r\n
skip QUERY tests for Node 21 only, still not supported by @jonchurch in expressjs/express#5695
\r\n
📝 update people, add ctcpip to TC by @ctcpip in expressjs/express#5683
\r\n
remove minor version pinning from ci by @jonchurch in expressjs/express#5722
\r\n
Fix link variable use in attribution section of CODE OF CONDUCT by\r\n@IamLizu in expressjs/express#5762
\r\n
Replace Appveyor windows testing with GHA by @jonchurch in expressjs/express#5599
\r\n
Add OSSF Scorecard badge by @UlisesGascon\r\nin expressjs/express#5436
\r\n
update scorecard link by @bjohansebas in\r\nexpressjs/express#5814
\r\n
Nominate @IamLizu to the\r\ntriage team by @UlisesGascon\r\nin expressjs/express#5836
\r\n
deps: path-to-regexp@0.1.8 by @blakeembrey in\r\nexpressjs/express#5603
Remove link renderization in html while redirecting
\r\n
\r\n
\r\n
deps: send@0.19.0\r\n
\r\n
Remove link renderization in html while redirecting
\r\n
\r\n
\r\n
deps: body-parser@0.6.0\r\n
\r\n
add depth option to customize the depth level in the\r\nparser
\r\n
IMPORTANT: The default depth level for parsing\r\nURL-encoded data is now 32 (previously was\r\nInfinity)
\r\n
\r\n
\r\n
Remove link renderization in html while using\r\nres.redirect
\r\n
deps: path-to-regexp@0.1.10\r\n
\r\n
Adds support for named matching groups in the routes using a\r\nregex
\r\n
Adds backtracking protection to parameters without regexes\r\ndefined
\r\n
\r\n
\r\n
deps: encodeurl@~2.0.0\r\n
\r\n
Removes encoding of \\, |, and\r\n^ to align better with URL spec
\r\n
\r\n
\r\n
Deprecate passing options.maxAge and\r\noptions.expires to res.clearCookie\r\n
\r\n
Will be ignored in v5, clearCookie will set a cookie with an expires\r\nin the past to instruct clients to delete the cookie
\r\n
\r\n
\r\n
\r\n
\r\n\r\n\r\nCommits\r\n
\r\n
7e562c6\r\n4.21.0
\r\n
1bcde96\r\nfix(deps): qs@6.13.0 (#5946)
\r\n
7d36477\r\nfix(deps): serve-static@1.16.2 (#5951)
\r\n
40d2d8f\r\nfix(deps): finalhandler@1.3.1
\r\n
77ada90\r\nDeprecate "back" magic string in redirects (#5935)
\r\n
21df421\r\n4.20.0
\r\n
4c9ddc1\r\nfeat: upgrade to serve-static@0.16.0
\r\n
9ebe5d5\r\nfeat: upgrade to send@0.19.0 (#5928)
\r\n
ec4a01b\r\nfeat: upgrade to body-parser@1.20.3 (#5926)
\r\n
54271f6\r\nfix: don't render redirect values in anchor href
\r\n
Additional commits viewable in compare\r\nview
\r\n
\r\n\r\n \r\n\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n\r\nDependabot commands and options\r\n \r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/flutter/pinball/network/alerts).\r\n\r\n\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"chore(deps): bump body-parser and express in /functions (#509)"}},{"before":null,"after":"d39393bcbc55fec2a8adad7236f9b40be876d495","ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-9423f4c335","pushedAt":"2024-09-21T18:16:51.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump body-parser and express in /functions\n\nBumps [body-parser](https://github.com/expressjs/body-parser) and [express](https://github.com/expressjs/express). These dependencies needed to be updated together.\n\nUpdates `body-parser` from 1.20.2 to 1.20.3\n- [Release notes](https://github.com/expressjs/body-parser/releases)\n- [Changelog](https://github.com/expressjs/body-parser/blob/master/HISTORY.md)\n- [Commits](https://github.com/expressjs/body-parser/compare/1.20.2...1.20.3)\n\nUpdates `express` from 4.19.2 to 4.21.0\n- [Release notes](https://github.com/expressjs/express/releases)\n- [Changelog](https://github.com/expressjs/express/blob/4.21.0/History.md)\n- [Commits](https://github.com/expressjs/express/compare/4.19.2...4.21.0)\n\n---\nupdated-dependencies:\n- dependency-name: body-parser\n dependency-type: indirect\n- dependency-name: express\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump body-parser and express in /functions"}},{"before":null,"after":"86dd83aa819de7969ea44652000d2b3794cd77f7","ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-cf87d80143","pushedAt":"2024-09-21T02:50:29.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump send and express in /functions\n\nBumps [send](https://github.com/pillarjs/send) and [express](https://github.com/expressjs/express). These dependencies needed to be updated together.\n\nUpdates `send` from 0.18.0 to 0.19.0\n- [Release notes](https://github.com/pillarjs/send/releases)\n- [Changelog](https://github.com/pillarjs/send/blob/master/HISTORY.md)\n- [Commits](https://github.com/pillarjs/send/compare/0.18.0...0.19.0)\n\nUpdates `express` from 4.19.2 to 4.21.0\n- [Release notes](https://github.com/expressjs/express/releases)\n- [Changelog](https://github.com/expressjs/express/blob/4.21.0/History.md)\n- [Commits](https://github.com/expressjs/express/compare/4.19.2...4.21.0)\n\n---\nupdated-dependencies:\n- dependency-name: send\n dependency-type: indirect\n- dependency-name: express\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump send and express in /functions"}},{"before":null,"after":"89adb5284e807d8d5d673d203ef9f8823ba973b0","ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-d66d039ac5","pushedAt":"2024-09-21T02:28:08.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump serve-static and express in /functions\n\nBumps [serve-static](https://github.com/expressjs/serve-static) and [express](https://github.com/expressjs/express). These dependencies needed to be updated together.\n\nUpdates `serve-static` from 1.15.0 to 1.16.2\n- [Release notes](https://github.com/expressjs/serve-static/releases)\n- [Changelog](https://github.com/expressjs/serve-static/blob/v1.16.2/HISTORY.md)\n- [Commits](https://github.com/expressjs/serve-static/compare/v1.15.0...v1.16.2)\n\nUpdates `express` from 4.19.2 to 4.21.0\n- [Release notes](https://github.com/expressjs/express/releases)\n- [Changelog](https://github.com/expressjs/express/blob/4.21.0/History.md)\n- [Commits](https://github.com/expressjs/express/compare/4.19.2...4.21.0)\n\n---\nupdated-dependencies:\n- dependency-name: serve-static\n dependency-type: indirect\n- dependency-name: express\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump serve-static and express in /functions"}},{"before":"9991518b39404fc23c7ccfe4bb5b027413eb1f0d","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/functions/fast-xml-parser-4.4.1","pushedAt":"2024-07-30T08:03:05.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"parlough","name":"Parker Lougheed","path":"/parlough","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18372958?s=80&v=4"}},{"before":"31e02eb4a62b3d0a94246b0189b55c85e6fc55bf","after":"24e00b4816f5acc222f706764f968fd8364a2138","ref":"refs/heads/main","pushedAt":"2024-07-30T08:03:03.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"parlough","name":"Parker Lougheed","path":"/parlough","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/18372958?s=80&v=4"},"commit":{"message":"chore(deps): bump fast-xml-parser from 4.4.0 to 4.4.1 in /functions (#506)","shortMessageHtmlLink":"chore(deps): bump fast-xml-parser from 4.4.0 to 4.4.1 in /functions (#…"}},{"before":null,"after":"9991518b39404fc23c7ccfe4bb5b027413eb1f0d","ref":"refs/heads/dependabot/npm_and_yarn/functions/fast-xml-parser-4.4.1","pushedAt":"2024-07-29T22:48:23.000Z","pushType":"branch_creation","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump fast-xml-parser from 4.4.0 to 4.4.1 in /functions\n\nBumps [fast-xml-parser](https://github.com/NaturalIntelligence/fast-xml-parser) from 4.4.0 to 4.4.1.\n- [Release notes](https://github.com/NaturalIntelligence/fast-xml-parser/releases)\n- [Changelog](https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/NaturalIntelligence/fast-xml-parser/compare/v4.4.0...v4.4.1)\n\n---\nupdated-dependencies:\n- dependency-name: fast-xml-parser\n dependency-type: indirect\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump fast-xml-parser from 4.4.0 to 4.4.1 in /functions"}},{"before":"bce550fb857d7d2053e81a71e00d5248bbe71aee","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-a596928f83","pushedAt":"2024-07-09T13:15:15.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"}},{"before":"944b6722cbeb25b610fc18cb13b7e7f76bb1d820","after":"bce550fb857d7d2053e81a71e00d5248bbe71aee","ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-a596928f83","pushedAt":"2024-07-09T13:15:13.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"},"commit":{"message":"Merge branch 'main' into dependabot/npm_and_yarn/functions/multi-a596928f83","shortMessageHtmlLink":"Merge branch 'main' into dependabot/npm_and_yarn/functions/multi-a596…"}},{"before":"f4691f1b830ff076650b916031694001852d25e0","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-7856fb9190","pushedAt":"2024-07-09T13:15:03.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"}},{"before":"fa2df01d6da4cc6f09b8f76a2503ac9ddb1d8a05","after":"31e02eb4a62b3d0a94246b0189b55c85e6fc55bf","ref":"refs/heads/main","pushedAt":"2024-07-09T13:15:01.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"},"commit":{"message":"chore(deps): bump @google-cloud/firestore, firebase-admin and firebase-functions in /functions (#503)\n\n[//]: # (dependabot-start)\r\n⚠️ **Dependabot is rebasing this PR** ⚠️ \r\n\r\nRebasing might not happen immediately, so don't worry if this takes some\r\ntime.\r\n\r\nNote: if you make any changes to this PR yourself, they will take\r\nprecedence over the rebase.\r\n\r\n---\r\n\r\n[//]: # (dependabot-end)\r\n\r\nBumps\r\n[@google-cloud/firestore](https://github.com/googleapis/nodejs-firestore)\r\nto 7.9.0 and updates ancestor dependencies\r\n[@google-cloud/firestore](https://github.com/googleapis/nodejs-firestore),\r\n[firebase-admin](https://github.com/firebase/firebase-admin-node) and\r\n[firebase-functions](https://github.com/firebase/firebase-functions).\r\nThese dependencies need to be updated together.\r\n\r\nUpdates `@google-cloud/firestore` from 4.15.1 to 7.9.0\r\n\r\nRelease notes\r\n
Sourced from @google-cloud/firestore's\r\nreleases.
\r\n
\r\n
v7.9.0
\r\n
7.9.0\r\n(2024-06-25)
\r\n
Features
\r\n
\r\n
Update FirebaseFirestore.v1 and FirebaseFirestore.v1beta1 auto-gen\r\ntypes (6732d4d)
\r\n
\r\n
v7.8.0
\r\n
7.8.0\r\n(2024-05-28)
\r\n
Features
\r\n
\r\n
Query profiling for VectorQuery (d406f14)
\r\n
Update Nodejs generator to send API versions in headers for GAPICs\r\n(#2041)\r\n(6dbe4b0)
\r\n
\r\n
v7.7.0
\r\n
7.7.0\r\n(2024-05-07)
\r\n
Features
\r\n
\r\n
Add several fields to manage state of database encryption update (5811492)
\r\n
Lazy-started transactions (#2017)\r\n(2c726a1)
\r\n
\r\n
Bug Fixes
\r\n
\r\n
Nonblocking rollback (#2039)\r\n(52099c8)
\r\n
Upgrade the google-gax dependency version. (#2040)\r\n(0b9efa6)
\r\n
\r\n
v7.6.0
\r\n
7.6.0\r\n(2024-04-02)
\r\n
Features
\r\n
\r\n
Vector Search (#2006)\r\n(e906b42)
\r\n
\r\n
v7.5.0
\r\n
7.5.0\r\n(2024-03-25)
\r\n
Features
\r\n
\r\n
Protos and autogen client for vector (#2027)\r\n(c65cef0)
\r\n
Query Profile (#2014)\r\n(9a45ec8)
\r\n
\r\n
v7.4.0
\r\n\r\n
\r\n
... (truncated)
\r\n\r\n\r\nChangelog\r\n
Sourced from @google-cloud/firestore's\r\nchangelog.
\r\n
\r\n
7.9.0\r\n(2024-06-25)
\r\n
Features
\r\n
\r\n
Update FirebaseFirestore.v1 and FirebaseFirestore.v1beta1 auto-gen\r\ntypes (6732d4d)
\r\n
\r\n
7.8.0\r\n(2024-05-28)
\r\n
Features
\r\n
\r\n
Query profiling for VectorQuery (d406f14)
\r\n
Update Nodejs generator to send API versions in headers for GAPICs\r\n(#2041)\r\n(6dbe4b0)
\r\n
\r\n
7.7.0\r\n(2024-05-07)
\r\n
Features
\r\n
\r\n
Add several fields to manage state of database encryption update (5811492)
\r\n
Lazy-started transactions (#2017)\r\n(2c726a1)
\r\n
\r\n
Bug Fixes
\r\n
\r\n
Nonblocking rollback (#2039)\r\n(52099c8)
\r\n
Upgrade the google-gax dependency version. (#2040)\r\n(0b9efa6)
\r\n
\r\n
7.6.0\r\n(2024-04-02)
\r\n
Features
\r\n
\r\n
Vector Search (#2006)\r\n(e906b42)
\r\n
\r\n
7.5.0\r\n(2024-03-25)
\r\n
Features
\r\n
\r\n
Protos and autogen client for vector (#2027)\r\n(c65cef0)
\r\n
Query Profile (#2014)\r\n(9a45ec8)
\r\n
\r\n
7.4.0\r\n(2024-03-15)
\r\n
Features
\r\n
\r\n
A new message Backup is added (#2021)\r\n(6bced86)
\r\n
\r\n\r\n
\r\n
... (truncated)
\r\n\r\n\r\nCommits\r\n
\r\n
f73e28b\r\nchore(main): release 7.9.0 (#2073)
\r\n
3e91cf3\r\nchore: fix lint errors (#2074)
\r\n
6732d4d\r\nbuild: update gapic generator to allow individual location mixin\r\ngeneration (...
\r\n
672e6d8\r\nbuild: Running the license script for files in the types folder (#2066)
\r\n
337641a\r\nBuild: Pin the protobuf library to v26.1 (#2064)
\r\n
f64c2d9\r\nbuild: Pin the protobuf library to v27. Unblocks the release and pinning\r\nprev...
\r\n
e581271\r\nbuild: update owlbot.py to compile before copying d.ts files from the\r\nbuild f...
\r\n
4c2dc11\r\nchore: [node] add auto-approve templates, and install dependencies with\r\nengin...
\r\n
6a23b6c\r\nbuild: Attempting to fix an owlbot.py issue with copying to the types\r\nfolder ...
\r\n
df748ac\r\nchore(main): release 7.8.0 (#2048)
\r\n
Additional commits viewable in compare\r\nview
\r\n
\r\n\r\n \r\n\r\nUpdates `firebase-admin` from 10.2.0 to 12.2.0\r\n\r\nRelease notes\r\n
Sourced from firebase-admin's\r\nreleases.
\r\n
\r\n
Firebase Admin Node.js SDK v12.2.0
\r\n
Breaking Changes
\r\n
\r\n
change: Deprecate Node.js 16 support (#2574)
\r\n
\r\n
Bug Fixes
\r\n
\r\n
fix: Replace farmhash with farmhash-modern\r\n(#2603)
\r\n
fix: Make ADC + human account work with firebase-admin (#2553)
\r\n
fix: Use optional chaining in FirebaseError (#2581)
\r\n
\r\n
Miscellaneous
\r\n
\r\n
[chore] Release 12.2.0 (#2605)
\r\n
build(deps): bump uuid from 9.0.1 to 10.0.0 (#2599)
\r\n
build(deps-dev): bump chai-exclude from 2.1.0 to 2.1.1 (#2593)
\r\n
build(deps-dev): bump braces from 3.0.2 to 3.0.3 (#2595)
\r\n
build(deps): bump @grpc/grpc-js from 1.10.8 to 1.10.9\r\n(#2592)
\r\n
build(deps-dev): bump @types/lodash from 4.17.4 to\r\n4.17.5 (#2594)
\r\n
build(deps): bump @google-cloud/firestore from 7.7.0\r\nto 7.8.0 (#2583)
\r\n
build(deps): bump @types/node from 20.12.12 to 20.14.0\r\n(#2585)
\r\n
build(deps-dev): bump @firebase/app-compat from 0.2.34\r\nto 0.2.35 (#2575)
\r\n
build(deps-dev): bump chai-as-promised from 7.1.1 to 7.1.2 (#2578)
\r\n
build(deps): bump @google-cloud/storage from 7.11.0 to\r\n7.11.1 (#2579)
\r\n
\r\n
Firebase Admin Node.js SDK v12.1.1
\r\n
Bug Fixes
\r\n
\r\n
fix: Export error classes (#2151)
\r\n
\r\n
Miscellaneous
\r\n
\r\n
[chore] Release 12.1.1 (#2561)
\r\n
build(deps): updgrade jwks-rsa (#2570)
\r\n
--- (#2568)
\r\n
--- (#2566)
\r\n
--- (#2567)
\r\n
--- (#2569)
\r\n
build(deps-dev): bump @firebase/auth-types from 0.12.1\r\nto 0.12.2 (#2556)
\r\n
build(deps-dev): bump @microsoft/api-extractor from\r\n7.43.2 to 7.43.7 (#2559)
\r\n
chore: upgrade firestore to 7.7.0 (#2560)
\r\n
build(deps-dev): bump @firebase/app-compat from 0.2.32\r\nto 0.2.33 (#2555)
\r\n
build(deps): bump @google-cloud/firestore from 7.6.0\r\nto 7.7.0 (#2558)
\r\n
Fix api extractor issues to expose error types (#2549)
\r\n
build(deps-dev): bump @types/lodash from 4.17.0 to\r\n4.17.1 (#2546)
\r\n
build(deps): bump @google-cloud/storage from 7.10.2 to\r\n7.11.0 (#2547)
\r\n
build(deps-dev): bump @microsoft/api-extractor from\r\n7.43.1 to 7.43.2 (#2545)
\r\n
build(deps): bump @types/node from 20.12.7 to 20.12.10\r\n(#2544)
\r\n
\r\n\r\n
\r\n
... (truncated)
\r\n\r\n\r\nCommits\r\n
\r\n
5620e9c\r\n[chore] Release 12.2.0 (#2605)
\r\n
f6f7cb9\r\nbuild(deps): bump uuid from 9.0.1 to 10.0.0 (#2599)
\r\n
b890182\r\nfix: Replace farmhash with farmhash-modern (#2603)
\r\n
5f0f253\r\nfix: Make ADC + human account work with firebase-admin (#2553)
\r\n
fdde8c3\r\nbuild(deps-dev): bump chai-exclude from 2.1.0 to 2.1.1 (#2593)
\r\n
07855bf\r\nbuild(deps-dev): bump braces from 3.0.2 to 3.0.3 (#2595)
\r\n
5440580\r\nbuild(deps): bump @grpc/grpc-js from 1.10.8 to 1.10.9 (#2592)
\r\n
5f01f63\r\nbuild(deps-dev): bump @types/lodash from 4.17.4 to 4.17.5\r\n(#2594)
\r\n
4070f5b\r\nbuild(deps): bump @google-cloud/firestore from 7.7.0 to\r\n7.8.0 (#2583)
\r\n
07cfca8\r\nbuild(deps): bump @types/node from 20.12.12 to 20.14.0 (#2585)
\r\n
Additional commits viewable in compare\r\nview
\r\n
\r\n\r\n \r\n\r\nUpdates `firebase-functions` from 3.21.0 to 3.24.1\r\n\r\nRelease notes\r\n
Sourced from firebase-functions's\r\nreleases.
\r\n
\r\n
v3.24.1
\r\n
\r\n
Fix reference docs for performance monitoring.
\r\n
Fix bug where function configuration wil null values couldn't be\r\ndeployed. (#1246)
\r\n
\r\n
v3.24.0
\r\n
\r\n
Add performance monitoring triggers to v2 alerts (#1223).
\r\n
\r\n
v3.23.0
\r\n
\r\n
Fixes a bug that disallowed setting customClaims and/or\r\nsessionClaims in blocking functions (#1199).
\r\n
Add v2 Schedule Triggers (#1177).
\r\n
\r\n
v3.22.0
\r\n
\r\n
Adds RTDB Triggers for v2 functions (#1127)
\r\n
Adds support for Firebase Admin SDK v11 (#1151)
\r\n
Fixes bug where emulated task queue function required auth header\r\n(#1154)
\r\n
\r\n
v3.21.2
\r\n
\r\n
Fixes bug where toJSON was not defined in\r\nUserRecord (#1125).
\r\n
\r\n
v3.21.1
\r\n
\r\n
Add debug feature to enable cors option for v2 onRequest and onCall\r\nhandlers. (#1099)
\r\n
\r\n
\r\n\r\n\r\nCommits\r\n
\r\n
e4bda7d\r\n3.24.1
\r\n
3c5392d\r\nHide documentation for in-app feedback (#1245)
\r\n
cc6e28e\r\nFix bug where function configuration with null couldn't be deployed. (#1246)
\r\n
cf27ac6\r\nAdding required --project flag to v2 docgen script. (#1239)
\r\n
1ac04ad\r\nfix tsdoc comments (#1240)
\r\n
bd0fcbc\r\n[firebase-release] Removed change log and reset repo after 3.24.0\r\nrelease
\r\n
e191af7\r\n3.24.0
\r\n
b93e397\r\nDon't delete fields on a non-breaking change release (#1238)
\r\n
65e66a2\r\nConverting alert type and app id to camel case in the CloudEvent (#1236)
\r\n
c18e832\r\nAdds performance monitoring triggers to v2 alerts (#1223)
\r\n
Additional commits viewable in compare\r\nview
\r\n
\r\n\r\n \r\n\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n\r\nDependabot commands and options\r\n \r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/flutter/pinball/network/alerts).\r\n\r\n\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"chore(deps): bump @google-cloud/firestore, firebase-admin and firebas…"}},{"before":"8dfe9aba6fb205e4f21785c9f9962f697e0c8e30","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-75197f1ef3","pushedAt":"2024-07-09T13:14:24.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"}},{"before":"7137067a15f4a183c51f317ca3a84ca93b2e029a","after":"fa2df01d6da4cc6f09b8f76a2503ac9ddb1d8a05","ref":"refs/heads/main","pushedAt":"2024-07-09T13:14:23.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"},"commit":{"message":"chore(deps): bump jsonwebtoken, firebase-admin and firebase-functions in /functions (#502)\n\nBumps [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) to\r\n9.0.2 and updates ancestor dependencies\r\n[jsonwebtoken](https://github.com/auth0/node-jsonwebtoken),\r\n[firebase-admin](https://github.com/firebase/firebase-admin-node) and\r\n[firebase-functions](https://github.com/firebase/firebase-functions).\r\nThese dependencies need to be updated together.\r\n\r\nUpdates `jsonwebtoken` from 8.5.1 to 9.0.2\r\n\r\nChangelog\r\n
Sourced from jsonwebtoken's\r\nchangelog.
\r\n
\r\n
9.0.2 - 2023-08-30
\r\n
\r\n
security: updating semver to 7.5.4 to resolve CVE-2022-25883, closes\r\n#921.
\r\n
refactor: reduce library size by using lodash specific dependencies,\r\ncloses #878.
\r\n
\r\n
9.0.1 - 2023-07-05
\r\n
\r\n
fix(stubs): allow decode method to be stubbed
\r\n
\r\n
9.0.0 - 2022-12-21
\r\n
Breaking changes: See Migration\r\nfrom v8 to v9
\r\n
Breaking changes
\r\n
\r\n
Removed support for Node versions 11 and below.
\r\n
The verify() function no longer accepts unsigned tokens by default.\r\n([834503079514b72264fd13023a3b8d648afd6a16]https://github.com/auth0/node-jsonwebtoken/commit/834503079514b72264fd13023a3b8d648afd6a16)
\r\n
RSA key size must be 2048 bits or greater.\r\n([ecdf6cc6073ea13a7e71df5fad043550f08d0fa6]https://github.com/auth0/node-jsonwebtoken/commit/ecdf6cc6073ea13a7e71df5fad043550f08d0fa6)
\r\n
Key types must be valid for the signing / verification\r\nalgorithm
\r\n
\r\n
Security fixes
\r\n
\r\n
security: fixes Arbitrary File Write via verify\r\nfunction - CVE-2022-23529
\r\n
security: fixes Insecure default algorithm in jwt.verify()\r\ncould lead to signature validation bypass - CVE-2022-23540
\r\n
security: fixes Insecure implementation of key retrieval\r\nfunction could lead to Forgeable Public/Private Tokens from RSA to\r\nHMAC - CVE-2022-23541
\r\n
security: fixes Unrestricted key type could lead to legacy\r\nkeys usage - CVE-2022-23539
\r\n
\r\n
\r\n\r\n\r\nCommits\r\n
\r\n
bc28861\r\nRelease 9.0.2 (#935)
\r\n
96b8906\r\nrefactor: use specific lodash packages (#933)
\r\n
ed35062\r\nsecurity: Updating semver to 7.5.4 to resolve CVE-2022-25883 (#932)
\r\n
84539b2\r\nUpdating package version to 9.0.1 (#920)
\r\n
a99fd4b\r\nfix(stubs): allow decode method to be stubbed (#876)
\r\n
e1fa9dc\r\nMerge pull request from GHSA-8cf7-32gw-wr33
\r\n
5eaedbf\r\nchore(ci): remove github test actions job (#861)
\r\n
cd4163e\r\nchore(ci): configure Github Actions jobs for Tests & Security\r\nScanning (#856)
\r\n
ecdf6cc\r\nfix!: Prevent accidental use of insecure key sizes &\r\nmisconfiguration of secr...
\r\n
8345030\r\nfix(sign&verify)!: Remove default none support from\r\nsign and verify met...
\r\n
Additional commits viewable in compare\r\nview
\r\n
\r\n\r\n\r\nMaintainer changes\r\n
This version was pushed to npm by charlesrea, a new releaser\r\nfor jsonwebtoken since your current version.
\r\n\r\n \r\n\r\nUpdates `firebase-admin` from 10.2.0 to 12.2.0\r\n\r\nRelease notes\r\n
Sourced from firebase-admin's\r\nreleases.
\r\n
\r\n
Firebase Admin Node.js SDK v12.2.0
\r\n
Breaking Changes
\r\n
\r\n
change: Deprecate Node.js 16 support (#2574)
\r\n
\r\n
Bug Fixes
\r\n
\r\n
fix: Replace farmhash with farmhash-modern\r\n(#2603)
\r\n
fix: Make ADC + human account work with firebase-admin (#2553)
\r\n
fix: Use optional chaining in FirebaseError (#2581)
\r\n
\r\n
Miscellaneous
\r\n
\r\n
[chore] Release 12.2.0 (#2605)
\r\n
build(deps): bump uuid from 9.0.1 to 10.0.0 (#2599)
\r\n
build(deps-dev): bump chai-exclude from 2.1.0 to 2.1.1 (#2593)
\r\n
build(deps-dev): bump braces from 3.0.2 to 3.0.3 (#2595)
\r\n
build(deps): bump @grpc/grpc-js from 1.10.8 to 1.10.9\r\n(#2592)
\r\n
build(deps-dev): bump @types/lodash from 4.17.4 to\r\n4.17.5 (#2594)
\r\n
build(deps): bump @google-cloud/firestore from 7.7.0\r\nto 7.8.0 (#2583)
\r\n
build(deps): bump @types/node from 20.12.12 to 20.14.0\r\n(#2585)
\r\n
build(deps-dev): bump @firebase/app-compat from 0.2.34\r\nto 0.2.35 (#2575)
\r\n
build(deps-dev): bump chai-as-promised from 7.1.1 to 7.1.2 (#2578)
\r\n
build(deps): bump @google-cloud/storage from 7.11.0 to\r\n7.11.1 (#2579)
\r\n
\r\n
Firebase Admin Node.js SDK v12.1.1
\r\n
Bug Fixes
\r\n
\r\n
fix: Export error classes (#2151)
\r\n
\r\n
Miscellaneous
\r\n
\r\n
[chore] Release 12.1.1 (#2561)
\r\n
build(deps): updgrade jwks-rsa (#2570)
\r\n
--- (#2568)
\r\n
--- (#2566)
\r\n
--- (#2567)
\r\n
--- (#2569)
\r\n
build(deps-dev): bump @firebase/auth-types from 0.12.1\r\nto 0.12.2 (#2556)
\r\n
build(deps-dev): bump @microsoft/api-extractor from\r\n7.43.2 to 7.43.7 (#2559)
\r\n
chore: upgrade firestore to 7.7.0 (#2560)
\r\n
build(deps-dev): bump @firebase/app-compat from 0.2.32\r\nto 0.2.33 (#2555)
\r\n
build(deps): bump @google-cloud/firestore from 7.6.0\r\nto 7.7.0 (#2558)
\r\n
Fix api extractor issues to expose error types (#2549)
\r\n
build(deps-dev): bump @types/lodash from 4.17.0 to\r\n4.17.1 (#2546)
\r\n
build(deps): bump @google-cloud/storage from 7.10.2 to\r\n7.11.0 (#2547)
\r\n
build(deps-dev): bump @microsoft/api-extractor from\r\n7.43.1 to 7.43.2 (#2545)
\r\n
build(deps): bump @types/node from 20.12.7 to 20.12.10\r\n(#2544)
\r\n
\r\n\r\n
\r\n
... (truncated)
\r\n\r\n\r\nCommits\r\n
\r\n
5620e9c\r\n[chore] Release 12.2.0 (#2605)
\r\n
f6f7cb9\r\nbuild(deps): bump uuid from 9.0.1 to 10.0.0 (#2599)
\r\n
b890182\r\nfix: Replace farmhash with farmhash-modern (#2603)
\r\n
5f0f253\r\nfix: Make ADC + human account work with firebase-admin (#2553)
\r\n
fdde8c3\r\nbuild(deps-dev): bump chai-exclude from 2.1.0 to 2.1.1 (#2593)
\r\n
07855bf\r\nbuild(deps-dev): bump braces from 3.0.2 to 3.0.3 (#2595)
\r\n
5440580\r\nbuild(deps): bump @grpc/grpc-js from 1.10.8 to 1.10.9 (#2592)
\r\n
5f01f63\r\nbuild(deps-dev): bump @types/lodash from 4.17.4 to 4.17.5\r\n(#2594)
\r\n
4070f5b\r\nbuild(deps): bump @google-cloud/firestore from 7.7.0 to\r\n7.8.0 (#2583)
\r\n
07cfca8\r\nbuild(deps): bump @types/node from 20.12.12 to 20.14.0 (#2585)
\r\n
Additional commits viewable in compare\r\nview
\r\n
\r\n\r\n \r\n\r\nUpdates `firebase-functions` from 3.21.0 to 3.24.1\r\n\r\nRelease notes\r\n
Sourced from firebase-functions's\r\nreleases.
\r\n
\r\n
v3.24.1
\r\n
\r\n
Fix reference docs for performance monitoring.
\r\n
Fix bug where function configuration wil null values couldn't be\r\ndeployed. (#1246)
\r\n
\r\n
v3.24.0
\r\n
\r\n
Add performance monitoring triggers to v2 alerts (#1223).
\r\n
\r\n
v3.23.0
\r\n
\r\n
Fixes a bug that disallowed setting customClaims and/or\r\nsessionClaims in blocking functions (#1199).
\r\n
Add v2 Schedule Triggers (#1177).
\r\n
\r\n
v3.22.0
\r\n
\r\n
Adds RTDB Triggers for v2 functions (#1127)
\r\n
Adds support for Firebase Admin SDK v11 (#1151)
\r\n
Fixes bug where emulated task queue function required auth header\r\n(#1154)
\r\n
\r\n
v3.21.2
\r\n
\r\n
Fixes bug where toJSON was not defined in\r\nUserRecord (#1125).
\r\n
\r\n
v3.21.1
\r\n
\r\n
Add debug feature to enable cors option for v2 onRequest and onCall\r\nhandlers. (#1099)
\r\n
\r\n
\r\n\r\n\r\nCommits\r\n
\r\n
e4bda7d\r\n3.24.1
\r\n
3c5392d\r\nHide documentation for in-app feedback (#1245)
\r\n
cc6e28e\r\nFix bug where function configuration with null couldn't be deployed. (#1246)
\r\n
cf27ac6\r\nAdding required --project flag to v2 docgen script. (#1239)
\r\n
1ac04ad\r\nfix tsdoc comments (#1240)
\r\n
bd0fcbc\r\n[firebase-release] Removed change log and reset repo after 3.24.0\r\nrelease
\r\n
e191af7\r\n3.24.0
\r\n
b93e397\r\nDon't delete fields on a non-breaking change release (#1238)
\r\n
65e66a2\r\nConverting alert type and app id to camel case in the CloudEvent (#1236)
\r\n
c18e832\r\nAdds performance monitoring triggers to v2 alerts (#1223)
\r\n
Additional commits viewable in compare\r\nview
\r\n
\r\n\r\n \r\n\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n\r\nDependabot commands and options\r\n \r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/flutter/pinball/network/alerts).\r\n\r\n\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>","shortMessageHtmlLink":"chore(deps): bump jsonwebtoken, firebase-admin and firebase-functions…"}},{"before":"e9f6fb871c7cd953ef249d50d180b503de44422e","after":"944b6722cbeb25b610fc18cb13b7e7f76bb1d820","ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-a596928f83","pushedAt":"2024-07-08T21:02:54.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump @grpc/grpc-js, firebase-admin and firebase-functions\n\nBumps [@grpc/grpc-js](https://github.com/grpc/grpc-node) to 1.10.10 and updates ancestor dependencies [@grpc/grpc-js](https://github.com/grpc/grpc-node), [firebase-admin](https://github.com/firebase/firebase-admin-node) and [firebase-functions](https://github.com/firebase/firebase-functions). These dependencies need to be updated together.\n\n\nUpdates `@grpc/grpc-js` from 1.6.7 to 1.10.10\n- [Release notes](https://github.com/grpc/grpc-node/releases)\n- [Commits](https://github.com/grpc/grpc-node/compare/@grpc/grpc-js@1.6.7...@grpc/grpc-js@1.10.10)\n\nUpdates `firebase-admin` from 10.2.0 to 12.2.0\n- [Release notes](https://github.com/firebase/firebase-admin-node/releases)\n- [Commits](https://github.com/firebase/firebase-admin-node/compare/v10.2.0...v12.2.0)\n\nUpdates `firebase-functions` from 3.21.0 to 3.24.1\n- [Release notes](https://github.com/firebase/firebase-functions/releases)\n- [Changelog](https://github.com/firebase/firebase-functions/blob/master/tsconfig.release.json)\n- [Commits](https://github.com/firebase/firebase-functions/compare/v3.21.0...v3.24.1)\n\n---\nupdated-dependencies:\n- dependency-name: \"@grpc/grpc-js\"\n dependency-type: indirect\n- dependency-name: firebase-admin\n dependency-type: direct:production\n- dependency-name: firebase-functions\n dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump @grpc/grpc-js, firebase-admin and firebase-functions"}},{"before":"1caa8adbcf21ce0fc4a1e47dd591232380478cd5","after":"f4691f1b830ff076650b916031694001852d25e0","ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-7856fb9190","pushedAt":"2024-07-08T21:02:52.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump @google-cloud/firestore, firebase-admin and firebase-functions\n\nBumps [@google-cloud/firestore](https://github.com/googleapis/nodejs-firestore) to 7.9.0 and updates ancestor dependencies [@google-cloud/firestore](https://github.com/googleapis/nodejs-firestore), [firebase-admin](https://github.com/firebase/firebase-admin-node) and [firebase-functions](https://github.com/firebase/firebase-functions). These dependencies need to be updated together.\n\n\nUpdates `@google-cloud/firestore` from 4.15.1 to 7.9.0\n- [Release notes](https://github.com/googleapis/nodejs-firestore/releases)\n- [Changelog](https://github.com/googleapis/nodejs-firestore/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/googleapis/nodejs-firestore/compare/v4.15.1...v7.9.0)\n\nUpdates `firebase-admin` from 10.2.0 to 12.2.0\n- [Release notes](https://github.com/firebase/firebase-admin-node/releases)\n- [Commits](https://github.com/firebase/firebase-admin-node/compare/v10.2.0...v12.2.0)\n\nUpdates `firebase-functions` from 3.21.0 to 3.24.1\n- [Release notes](https://github.com/firebase/firebase-functions/releases)\n- [Changelog](https://github.com/firebase/firebase-functions/blob/master/tsconfig.release.json)\n- [Commits](https://github.com/firebase/firebase-functions/compare/v3.21.0...v3.24.1)\n\n---\nupdated-dependencies:\n- dependency-name: \"@google-cloud/firestore\"\n dependency-type: indirect\n- dependency-name: firebase-admin\n dependency-type: direct:production\n- dependency-name: firebase-functions\n dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump @google-cloud/firestore, firebase-admin and firebas…"}},{"before":"c543798cfe8b0ebc336559e9d50469a4c958bb6d","after":"8dfe9aba6fb205e4f21785c9f9962f697e0c8e30","ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-75197f1ef3","pushedAt":"2024-07-08T21:02:50.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump jsonwebtoken, firebase-admin and firebase-functions\n\nBumps [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) to 9.0.2 and updates ancestor dependencies [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken), [firebase-admin](https://github.com/firebase/firebase-admin-node) and [firebase-functions](https://github.com/firebase/firebase-functions). These dependencies need to be updated together.\n\n\nUpdates `jsonwebtoken` from 8.5.1 to 9.0.2\n- [Changelog](https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/auth0/node-jsonwebtoken/compare/v8.5.1...v9.0.2)\n\nUpdates `firebase-admin` from 10.2.0 to 12.2.0\n- [Release notes](https://github.com/firebase/firebase-admin-node/releases)\n- [Commits](https://github.com/firebase/firebase-admin-node/compare/v10.2.0...v12.2.0)\n\nUpdates `firebase-functions` from 3.21.0 to 3.24.1\n- [Release notes](https://github.com/firebase/firebase-functions/releases)\n- [Changelog](https://github.com/firebase/firebase-functions/blob/master/tsconfig.release.json)\n- [Commits](https://github.com/firebase/firebase-functions/compare/v3.21.0...v3.24.1)\n\n---\nupdated-dependencies:\n- dependency-name: jsonwebtoken\n dependency-type: indirect\n- dependency-name: firebase-admin\n dependency-type: direct:production\n- dependency-name: firebase-functions\n dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump jsonwebtoken, firebase-admin and firebase-functions"}},{"before":"d1a0b92990a0ac2ece7ea0fa25782236bc72a23a","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/functions/express-4.19.2","pushedAt":"2024-07-08T21:01:56.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"}},{"before":"ca4a79d4628a07c47acd2b1847ed96c932954c38","after":"7137067a15f4a183c51f317ca3a84ca93b2e029a","ref":"refs/heads/main","pushedAt":"2024-07-08T21:01:54.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"},"commit":{"message":"chore(deps): bump express from 4.18.1 to 4.19.2 in /functions (#501)\n\nBumps [express](https://github.com/expressjs/express) from 4.18.1 to\r\n4.19.2.\r\n\r\nRelease notes\r\n
Sourced from express's\r\nreleases.
\r\n
\r\n
4.19.2
\r\n
What's Changed
\r\n
\r\n
Improved\r\nfix for open redirect allow list bypass
\r\n
\r\n
Full Changelog: https://github.com/expressjs/express/compare/4.19.1...4.19.2
\r\n
4.19.1
\r\n
What's Changed
\r\n
\r\n
Fix ci after location patch by @wesleytodd in expressjs/express#5552
\r\n
fixed un-edited version in history.md for 4.19.0 by @wesleytodd in expressjs/express#5556
\r\n
\r\n
Full Changelog: https://github.com/expressjs/express/compare/4.19.0...4.19.1
\r\n
4.19.0
\r\n
What's Changed
\r\n
\r\n
fix typo in release date by @UlisesGascon\r\nin expressjs/express#5527
\r\n
docs: nominating @wesleytodd to be\r\nproject captian by @wesleytodd in expressjs/express#5511
\r\n
docs: loosen TC activity rules by @wesleytodd in expressjs/express#5510
\r\n
Add note on how to update docs for new release by @crandmck in expressjs/express#5541
\r\n
Prevent\r\nopen redirect allow list bypass due to encodeurl
\r\n
Release 4.19.0 by @wesleytodd in expressjs/express#5551
\r\n
\r\n
New Contributors
\r\n
\r\n
@crandmck\r\nmade their first contribution in expressjs/express#5541
\r\n
\r\n
Full Changelog: https://github.com/expressjs/express/compare/4.18.3...4.19.0
\r\n
4.18.3
\r\n
Main Changes
\r\n
\r\n
Fix routing requests without method
\r\n
deps: body-parser@1.20.2\r\n
\r\n
Fix strict json error message on Node.js 19+
\r\n
deps: content-type@~1.0.5
\r\n
deps: raw-body@2.5.2
\r\n
\r\n
\r\n
\r\n
Other Changes
\r\n
\r\n
Use https: protocol instead of deprecated git: protocol by @vcsjones in expressjs/express#5032
\r\n
build: Node.js@16.18 and Node.js@18.12 by @abenhamdine in\r\nexpressjs/express#5034
\r\n
ci: update actions/checkout to v3 by @armujahid in expressjs/express#5027
\r\n
test: remove unused function arguments in params by @raksbisht in expressjs/express#5124
\r\n
Remove unused originalIndex from acceptParams by @raksbisht in expressjs/express#5119
\r\n
Fixed typos by @raksbisht in expressjs/express#5117
\r\n
examples: remove unused params by @raksbisht in expressjs/express#5113
\r\n
fix: parameter str is not described in JSDoc by @raksbisht in expressjs/express#5130
\r\n
fix: typos in History.md by @raksbisht in expressjs/express#5131
\r\n
build : add Node.js@19.7 by @abenhamdine in\r\nexpressjs/express#5028
\r\n
test: remove unused function arguments in params by @raksbisht in expressjs/express#5137
\r\n
\r\n\r\n
\r\n
... (truncated)
\r\n\r\n\r\nChangelog\r\n
Sourced from express's\r\nchangelog.
\r\n
\r\n
4.19.2 / 2024-03-25
\r\n
\r\n
Improved fix for open redirect allow list bypass
\r\n
\r\n
4.19.1 / 2024-03-20
\r\n
\r\n
Allow passing non-strings to res.location with new encoding handling\r\nchecks
\r\n
\r\n
4.19.0 / 2024-03-20
\r\n
\r\n
Prevent open redirect allow list bypass due to encodeurl
\r\n
deps: cookie@0.6.0
\r\n
\r\n
4.18.3 / 2024-02-29
\r\n
\r\n
Fix routing requests without method
\r\n
deps: body-parser@1.20.2\r\n
\r\n
Fix strict json error message on Node.js 19+
\r\n
deps: content-type@~1.0.5
\r\n
deps: raw-body@2.5.2
\r\n
\r\n
\r\n
deps: cookie@0.6.0\r\n
\r\n
Add partitioned option
\r\n
\r\n
\r\n
\r\n
4.18.2 / 2022-10-08
\r\n
\r\n
Fix regression routing a large stack in a single route
\r\n
deps: body-parser@1.20.1\r\n
\r\n
deps: qs@6.11.0
\r\n
perf: remove unnecessary object clone
\r\n
\r\n
\r\n
deps: qs@6.11.0
\r\n
\r\n
\r\n\r\n\r\nCommits\r\n
\r\n
04bc627\r\n4.19.2
\r\n
da4d763\r\nImproved fix for open redirect allow list bypass
\r\n
4f0f6cc\r\n4.19.1
\r\n
a003cfa\r\nAllow passing non-strings to res.location with new encoding handling\r\nchecks f...
\r\n
a1fa90f\r\nfixed un-edited version in history.md for 4.19.0
\r\n
11f2b1d\r\nbuild: fix build due to inconsistent supertest behavior in older\r\nversions
\r\n
084e365\r\n4.19.0
\r\n
0867302\r\nPrevent open redirect allow list bypass due to encodeurl
\r\n
567c9c6\r\nAdd note on how to update docs for new release (#5541)
\r\n
69a4cf2\r\ndeps: cookie@0.6.0
\r\n
Additional commits viewable in compare\r\nview
\r\n
\r\n\r\n\r\nMaintainer changes\r\n
This version was pushed to npm by wesleytodd, a new releaser\r\nfor express since your current version.
\r\n\r\n \r\n\r\n\r\n[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n\r\nDependabot commands and options\r\n \r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/flutter/pinball/network/alerts).\r\n\r\n\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>\r\nCo-authored-by: Álvaro Stivi ","shortMessageHtmlLink":"chore(deps): bump express from 4.18.1 to 4.19.2 in /functions (#501)"}},{"before":"e3b610c0b521cc9acf0484efc51ef953e5f47082","after":"1caa8adbcf21ce0fc4a1e47dd591232380478cd5","ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-7856fb9190","pushedAt":"2024-07-08T20:58:43.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump @google-cloud/firestore, firebase-admin and firebase-functions\n\nBumps [@google-cloud/firestore](https://github.com/googleapis/nodejs-firestore) to 7.9.0 and updates ancestor dependencies [@google-cloud/firestore](https://github.com/googleapis/nodejs-firestore), [firebase-admin](https://github.com/firebase/firebase-admin-node) and [firebase-functions](https://github.com/firebase/firebase-functions). These dependencies need to be updated together.\n\n\nUpdates `@google-cloud/firestore` from 4.15.1 to 7.9.0\n- [Release notes](https://github.com/googleapis/nodejs-firestore/releases)\n- [Changelog](https://github.com/googleapis/nodejs-firestore/blob/main/CHANGELOG.md)\n- [Commits](https://github.com/googleapis/nodejs-firestore/compare/v4.15.1...v7.9.0)\n\nUpdates `firebase-admin` from 10.2.0 to 12.2.0\n- [Release notes](https://github.com/firebase/firebase-admin-node/releases)\n- [Commits](https://github.com/firebase/firebase-admin-node/compare/v10.2.0...v12.2.0)\n\nUpdates `firebase-functions` from 3.21.0 to 3.24.1\n- [Release notes](https://github.com/firebase/firebase-functions/releases)\n- [Changelog](https://github.com/firebase/firebase-functions/blob/master/tsconfig.release.json)\n- [Commits](https://github.com/firebase/firebase-functions/compare/v3.21.0...v3.24.1)\n\n---\nupdated-dependencies:\n- dependency-name: \"@google-cloud/firestore\"\n dependency-type: indirect\n- dependency-name: firebase-admin\n dependency-type: direct:production\n- dependency-name: firebase-functions\n dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump @google-cloud/firestore, firebase-admin and firebas…"}},{"before":"fca3b9677506033f81fee31e3e219178edd83c50","after":"e9f6fb871c7cd953ef249d50d180b503de44422e","ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-a596928f83","pushedAt":"2024-07-08T20:58:42.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump @grpc/grpc-js, firebase-admin and firebase-functions\n\nBumps [@grpc/grpc-js](https://github.com/grpc/grpc-node) to 1.10.10 and updates ancestor dependencies [@grpc/grpc-js](https://github.com/grpc/grpc-node), [firebase-admin](https://github.com/firebase/firebase-admin-node) and [firebase-functions](https://github.com/firebase/firebase-functions). These dependencies need to be updated together.\n\n\nUpdates `@grpc/grpc-js` from 1.6.7 to 1.10.10\n- [Release notes](https://github.com/grpc/grpc-node/releases)\n- [Commits](https://github.com/grpc/grpc-node/compare/@grpc/grpc-js@1.6.7...@grpc/grpc-js@1.10.10)\n\nUpdates `firebase-admin` from 10.2.0 to 12.2.0\n- [Release notes](https://github.com/firebase/firebase-admin-node/releases)\n- [Commits](https://github.com/firebase/firebase-admin-node/compare/v10.2.0...v12.2.0)\n\nUpdates `firebase-functions` from 3.21.0 to 3.24.1\n- [Release notes](https://github.com/firebase/firebase-functions/releases)\n- [Changelog](https://github.com/firebase/firebase-functions/blob/master/tsconfig.release.json)\n- [Commits](https://github.com/firebase/firebase-functions/compare/v3.21.0...v3.24.1)\n\n---\nupdated-dependencies:\n- dependency-name: \"@grpc/grpc-js\"\n dependency-type: indirect\n- dependency-name: firebase-admin\n dependency-type: direct:production\n- dependency-name: firebase-functions\n dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump @grpc/grpc-js, firebase-admin and firebase-functions"}},{"before":"d3d0d3842245523c5de6f61c8c8627a48b0bd38a","after":"c543798cfe8b0ebc336559e9d50469a4c958bb6d","ref":"refs/heads/dependabot/npm_and_yarn/functions/multi-75197f1ef3","pushedAt":"2024-07-08T20:58:42.000Z","pushType":"force_push","commitsCount":0,"pusher":{"login":"dependabot[bot]","name":null,"path":"/apps/dependabot","primaryAvatarUrl":"https://avatars.githubusercontent.com/in/29110?s=80&v=4"},"commit":{"message":"chore(deps): bump jsonwebtoken, firebase-admin and firebase-functions\n\nBumps [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) to 9.0.2 and updates ancestor dependencies [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken), [firebase-admin](https://github.com/firebase/firebase-admin-node) and [firebase-functions](https://github.com/firebase/firebase-functions). These dependencies need to be updated together.\n\n\nUpdates `jsonwebtoken` from 8.5.1 to 9.0.2\n- [Changelog](https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md)\n- [Commits](https://github.com/auth0/node-jsonwebtoken/compare/v8.5.1...v9.0.2)\n\nUpdates `firebase-admin` from 10.2.0 to 12.2.0\n- [Release notes](https://github.com/firebase/firebase-admin-node/releases)\n- [Commits](https://github.com/firebase/firebase-admin-node/compare/v10.2.0...v12.2.0)\n\nUpdates `firebase-functions` from 3.21.0 to 3.24.1\n- [Release notes](https://github.com/firebase/firebase-functions/releases)\n- [Changelog](https://github.com/firebase/firebase-functions/blob/master/tsconfig.release.json)\n- [Commits](https://github.com/firebase/firebase-functions/compare/v3.21.0...v3.24.1)\n\n---\nupdated-dependencies:\n- dependency-name: jsonwebtoken\n dependency-type: indirect\n- dependency-name: firebase-admin\n dependency-type: direct:production\n- dependency-name: firebase-functions\n dependency-type: direct:production\n...\n\nSigned-off-by: dependabot[bot] ","shortMessageHtmlLink":"chore(deps): bump jsonwebtoken, firebase-admin and firebase-functions"}},{"before":"47b9177fc032ba7eda47df52e6224193fc3e97b6","after":"d1a0b92990a0ac2ece7ea0fa25782236bc72a23a","ref":"refs/heads/dependabot/npm_and_yarn/functions/express-4.19.2","pushedAt":"2024-07-08T20:57:57.000Z","pushType":"push","commitsCount":4,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"},"commit":{"message":"Merge branch 'main' into dependabot/npm_and_yarn/functions/express-4.19.2","shortMessageHtmlLink":"Merge branch 'main' into dependabot/npm_and_yarn/functions/express-4.…"}},{"before":"e2fb9e541eb282ef8d53781dfe25c790ab8cee82","after":null,"ref":"refs/heads/dependabot/npm_and_yarn/functions/jose-2.0.7","pushedAt":"2024-07-08T20:57:44.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"}},{"before":"91965f8dd1695182b6abb8be17b0c4c9a0c0299f","after":"ca4a79d4628a07c47acd2b1847ed96c932954c38","ref":"refs/heads/main","pushedAt":"2024-07-08T20:57:42.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"},"commit":{"message":"chore(deps): bump jose from 2.0.5 to 2.0.7 in /functions (#500)\n\nBumps [jose](https://github.com/panva/jose) from 2.0.5 to 2.0.7.\r\n\r\nRelease notes\r\n
Sourced from jose's\r\nreleases.
\r\n
\r\n
v2.0.7
\r\n
Fixes
\r\n
\r\n
add a maxOutputLength option to zlib inflate (02a6579),\r\nfixes CVE-2024-28176
\r\n\r\n \r\n\r\n\r\n[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)\r\n\r\nDependabot will resolve any conflicts with this PR as long as you don't\r\nalter it yourself. You can also trigger a rebase manually by commenting\r\n`@dependabot rebase`.\r\n\r\n[//]: # (dependabot-automerge-start)\r\n[//]: # (dependabot-automerge-end)\r\n\r\n---\r\n\r\n\r\nDependabot commands and options\r\n \r\n\r\nYou can trigger Dependabot actions by commenting on this PR:\r\n- `@dependabot rebase` will rebase this PR\r\n- `@dependabot recreate` will recreate this PR, overwriting any edits\r\nthat have been made to it\r\n- `@dependabot merge` will merge this PR after your CI passes on it\r\n- `@dependabot squash and merge` will squash and merge this PR after\r\nyour CI passes on it\r\n- `@dependabot cancel merge` will cancel a previously requested merge\r\nand block automerging\r\n- `@dependabot reopen` will reopen this PR if it is closed\r\n- `@dependabot close` will close this PR and stop Dependabot recreating\r\nit. You can achieve the same result by closing it manually\r\n- `@dependabot show ignore conditions` will show all\r\nof the ignore conditions of the specified dependency\r\n- `@dependabot ignore this major version` will close this PR and stop\r\nDependabot creating any more for this major version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this minor version` will close this PR and stop\r\nDependabot creating any more for this minor version (unless you reopen\r\nthe PR or upgrade to it yourself)\r\n- `@dependabot ignore this dependency` will close this PR and stop\r\nDependabot creating any more for this dependency (unless you reopen the\r\nPR or upgrade to it yourself)\r\nYou can disable automated security fix PRs for this repo from the\r\n[Security Alerts\r\npage](https://github.com/flutter/pinball/network/alerts).\r\n\r\n\r\n\r\nSigned-off-by: dependabot[bot] \r\nCo-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>\r\nCo-authored-by: Álvaro Stivi ","shortMessageHtmlLink":"chore(deps): bump jose from 2.0.5 to 2.0.7 in /functions (#500)"}},{"before":"63c548cb96f04f9f768ed2ccdbe7be149c98ec1e","after":"e2fb9e541eb282ef8d53781dfe25c790ab8cee82","ref":"refs/heads/dependabot/npm_and_yarn/functions/jose-2.0.7","pushedAt":"2024-07-08T20:54:23.000Z","pushType":"push","commitsCount":3,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"},"commit":{"message":"Merge branch 'main' into dependabot/npm_and_yarn/functions/jose-2.0.7","shortMessageHtmlLink":"Merge branch 'main' into dependabot/npm_and_yarn/functions/jose-2.0.7"}},{"before":"1c6a3cde65e04dbae500a983a2e975a564949537","after":"91965f8dd1695182b6abb8be17b0c4c9a0c0299f","ref":"refs/heads/main","pushedAt":"2024-07-08T20:54:02.000Z","pushType":"pr_merge","commitsCount":1,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"},"commit":{"message":"ci: update `actions/checkout` from v2 to v3 in our GitHub workflows (#499)\n\n## Description\r\n\r\nNode 12 is deprecated for GitHub Actions. This is the reason why we are\r\ngetting a warning from GitHub:\r\n\r\n> Node.js 12 actions are deprecated. Please update the following actions\r\nto use Node.js 16: actions/checkout@v2. For more information see:\r\nhttps://github.blog/changelog/2022-09-22-github-actions-all-actions-will-begin-running-on-node16-instead-of-node12/.\r\n\r\nThis PR updates `actions/checkout` from v2 to v3 which should fix the\r\nproblem.\r\n\r\n## Type of Change\r\n\r\n\r\n\r\n- [ ] ✨ New feature (non-breaking change which adds functionality)\r\n- [ ] 🛠️ Bug fix (non-breaking change which fixes an issue)\r\n- [ ] ❌ Breaking change (fix or feature that would cause existing\r\nfunctionality to change)\r\n- [ ] 🧹 Code refactor\r\n- [x] ✅ Build configuration change\r\n- [ ] 📝 Documentation\r\n- [ ] 🗑️ Chore\r\n\r\nCo-authored-by: Álvaro Stivi ","shortMessageHtmlLink":"ci: update actions/checkout from v2 to v3 in our GitHub workflows (#…"}},{"before":"961ebd5cecc419f7fffe134bf9b620f773fdbfd2","after":null,"ref":"refs/heads/flutter_3.22","pushedAt":"2024-07-08T20:47:05.000Z","pushType":"branch_deletion","commitsCount":0,"pusher":{"login":"astivi","name":"Álvaro Stivi","path":"/astivi","primaryAvatarUrl":"https://avatars.githubusercontent.com/u/22512995?s=80&v=4"}}],"hasNextPage":true,"hasPreviousPage":false,"activityType":"all","actor":null,"timePeriod":"all","sort":"DESC","perPage":30,"startCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wOS0yMVQyMToxODoxNy4wMDAwMDBazwAAAAS84uny","endCursor":"Y3Vyc29yOnYyOpK7MjAyNC0wNy0wOFQyMDo0NzowNS4wMDAwMDBazwAAAAR6Ains"}},"title":"Activity · flutter/pinball"}