chore(deps): bump the security-updates group in /agenta-web with 12 updates

[dependabot[bot]]

Bumps the security-updates group in /agenta-web with 12 updates:

Package	From	To
ag-grid-community	31.2.0	31.3.4
ag-grid-react	31.2.0	31.3.4
axios	1.6.2	1.7.7
next	14.2.4	14.2.16
@sentry/browser	8.18.0	8.37.1
@sentry/nextjs	8.18.0	8.37.1
braces	3.0.2	3.0.3
cookie	0.4.0	0.7.2
supertokens-node	20.1.2	21.0.0
micromatch	4.0.5	4.0.8
rollup	3.29.4	3.29.5
webpack	5.89.0	5.96.1

Updates ag-grid-community from 31.2.0 to 31.3.4

Release notes

Sourced from ag-grid-community's releases.

v31.3.4

https://www.ag-grid.com/changelog/?fixVersion=31.3.4

v31.3.2

https://www.ag-grid.com/changelog/?fixVersion=31.3.2

v31.3.1

https://www.ag-grid.com/changelog/?fixVersion=31.3.1

v31.2.1

https://www.ag-grid.com/changelog/?fixVersion=31.2.1

Commits

• b632ff5 Release 31.3.4
• ff73169 AG-12065 Avoid prototype pollution (#8250) (#8343)
• c583dd3 31.3.3 prep
• 5d1080c 31.3.3 prep
• ca7d2c6 AG-3390 - Update pricing page content
• 9b35236 AG-11709 Fix Cumulative Layout Shift
• 70740ed AG-11514 Make sitemap responsive
• 48fc05f AG-3390 Fix title tag length
• 0f23c05 AG-3390 Improve Getting Started Meta-Description
• fd2b816 AG-3390 Fix broken links
• Additional commits viewable in compare view

Updates ag-grid-react from 31.2.0 to 31.3.4

Release notes

Sourced from ag-grid-react's releases.

v31.3.4

https://www.ag-grid.com/changelog/?fixVersion=31.3.4

v31.3.2

https://www.ag-grid.com/changelog/?fixVersion=31.3.2

v31.3.1

https://www.ag-grid.com/changelog/?fixVersion=31.3.1

v31.2.1

https://www.ag-grid.com/changelog/?fixVersion=31.2.1

Commits

• b632ff5 Release 31.3.4
• ff73169 AG-12065 Avoid prototype pollution (#8250) (#8343)
• c583dd3 31.3.3 prep
• 5d1080c 31.3.3 prep
• ca7d2c6 AG-3390 - Update pricing page content
• 9b35236 AG-11709 Fix Cumulative Layout Shift
• 70740ed AG-11514 Make sitemap responsive
• 48fc05f AG-3390 Fix title tag length
• 0f23c05 AG-3390 Improve Getting Started Meta-Description
• fd2b816 AG-3390 Fix broken links
• Additional commits viewable in compare view

Updates axios from 1.6.2 to 1.7.7

Release notes

Sourced from axios's releases.

Release v1.7.7

Release notes:

Bug Fixes

• fetch: fix stream handling in Safari by fallback to using a stream reader instead of an async iterator; (#6584) (d198085)
• http: fixed support for IPv6 literal strings in url (#5731) (364993f)

Contributors to this release

• Rishi556
• Dmitriy Mozgovoy

Release v1.7.6

Release notes:

Bug Fixes

• fetch: fix content length calculation for FormData payload; (#6524) (085f568)
• fetch: optimize signals composing logic; (#6582) (df9889b)

Contributors to this release

• Dmitriy Mozgovoy
• Jacques Germishuys
• kuroino721

Release v1.7.5

Release notes:

Bug Fixes

• adapter: fix undefined reference to hasBrowserEnv (#6572) (7004707)
• core: add the missed implementation of AxiosError#status property; (#6573) (6700a8a)
• core: fix ReferenceError: navigator is not defined for custom environments; (#6567) (fed1a4b)
• fetch: fix credentials handling in Cloudflare workers (#6533) (550d885)

Contributors to this release

• Dmitriy Mozgovoy
• Antonin Bas
• Hans Otto Wirtz

Release v1.7.4

Release notes:

Bug Fixes

• sec: CVE-2024-39338 (#6539) (#6543) (6b6b605)
• sec: disregard protocol-relative URL to remediate SSRF (#6539) (07a661a)

Contributors to this release

• Lev Pachmanov

... (truncated)

Changelog

Sourced from axios's changelog.

1.7.7 (2024-08-31)

Bug Fixes

• fetch: fix stream handling in Safari by fallback to using a stream reader instead of an async iterator; (#6584) (d198085)
• http: fixed support for IPv6 literal strings in url (#5731) (364993f)

Contributors to this release

• Rishi556
• Dmitriy Mozgovoy

1.7.6 (2024-08-30)

Bug Fixes

• fetch: fix content length calculation for FormData payload; (#6524) (085f568)
• fetch: optimize signals composing logic; (#6582) (df9889b)

Contributors to this release

• Dmitriy Mozgovoy
• Jacques Germishuys
• kuroino721

1.7.5 (2024-08-23)

Bug Fixes

• adapter: fix undefined reference to hasBrowserEnv (#6572) (7004707)
• core: add the missed implementation of AxiosError#status property; (#6573) (6700a8a)
• core: fix ReferenceError: navigator is not defined for custom environments; (#6567) (fed1a4b)
• fetch: fix credentials handling in Cloudflare workers (#6533) (550d885)

Contributors to this release

• Dmitriy Mozgovoy
• Antonin Bas
• Hans Otto Wirtz

1.7.4 (2024-08-13)

Bug Fixes

• sec: CVE-2024-39338 (#6539) (#6543) (6b6b605)
• sec: disregard protocol-relative URL to remediate SSRF (#6539) (07a661a)

... (truncated)

Commits

• 5b8a826 chore(release): v1.7.7 (#6585)
• 364993f fix(http): fixed support for IPv6 literal strings in url (#5731)
• d198085 fix(fetch): fix stream handling in Safari by fallback to using a stream reade...
• d584fcf chore(release): v1.7.6 (#6583)
• bc03c6c chore(examples): fix module import (#6575)
• df9889b fix(fetch): optimize signals composing logic; (#6582)
• ee208cf chore(sponsor): update sponsor block (#6576)
• 085f568 fix(fetch): fix content length calculation for FormData payload; (#6524)
• 59cd6b0 chore(release): v1.7.5 (#6574)
• 6700a8a fix(core): add the missed implementation of AxiosError#status property; (#6573)
• Additional commits viewable in compare view

Updates next from 14.2.4 to 14.2.16

Release notes

Sourced from next's releases.

v14.2.15

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• support breadcrumb style catch-all parallel routes #65063
• Provide non-dynamic segments to catch-all parallel routes #65233
• Fix client reference access causing metadata missing #70732
• feat(next/image): add support for decoding prop #70298
• feat(next/image): add images.localPatterns config #70529
• fix(next/image): handle undefined images.localPatterns config in images-manifest.json
• fix: Do not omit alt on getImgProps return type, ImgProps #70608
• [i18n] Routing fix #70761

Credits

Huge thanks to @​ztanner, @​agadzik, @​huozhi, @​styfle, @​icyJoseph and @​wyattjoh for helping!

v14.2.14

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• Fix: clone response in first handler to prevent race (#70082) (#70649)
• Respect reexports from metadata API routes (#70508) (#70647)
• Externalize node binary modules for app router (#70646)
• Fix revalidateTag() behaviour when invoked in server components (#70446) (#70642)
• Fix prefetch bailout detection for nested loading segments (#70618)
• Add missing node modules to externals (#70382)
• Feature: next/image: add support for images.remotePatterns.search (#70302)

Credits

Huge thanks to @​styfle, @​ztanner, @​ijjk, @​huozhi and @​wyattjoh for helping!

v14.2.13

[!NOTE]
This release is backporting bug fixes. It does not include all pending features/changes on canary.

Core Changes

• Fix missing cache-control on SSR app route (#70265)
• feat: add polyfill of URL.canParse for browser compatibility (#70228)
• Fix vercel og package memory leak (#70214)
• Fix startTime error on Android 9 with Chrome 74 (#67391)

Credits

Huge thanks to @​raeyoung-kim, @​huozhi, @​devjiwonchoi, and @​ijjk for helping!

v14.2.12

[!NOTE]

... (truncated)

Commits

• 3c01e3a v14.2.16
• 4f395f5 Fix clone response backport (#71115)
• 737c29e v14.2.15
• 1c8234e backport: [i18n] Routing fix #70761 (#70976)
• bb3f580 fix: Do not omit alt on getImgProps return type, ImgProps (#70818)
• cb8113b fix(next/image): handle undefined images.localPatterns config in `images-ma...
• 9c1191a fix missing helpers in next-test-utils.ts
• 0de4183 fix lint
• e03c4ff feat(next/image): add images.localPatterns config (#70802)
• 540ea2d backport: support breadcrumb style catch-all parallel routes (#65063) (#70794)
• Additional commits viewable in compare view

Updates @sentry/browser from 8.18.0 to 8.37.1

Release notes

Sourced from @​sentry/browser's releases.

8.37.1

• feat(deps): Bump @​opentelemetry/instrumentation from 0.53.0 to 0.54.0 for @​sentry/opentelemetry (#14187)

Bundle size 📦

Path	Size
@​sentry/browser	22.76 KB
@​sentry/browser - with treeshaking flags	21.54 KB
@​sentry/browser (incl. Tracing)	35.18 KB
@​sentry/browser (incl. Tracing, Replay)	71.9 KB
@​sentry/browser (incl. Tracing, Replay) - with treeshaking flags	62.33 KB
@​sentry/browser (incl. Tracing, Replay with Canvas)	76.22 KB
@​sentry/browser (incl. Tracing, Replay, Feedback)	89.02 KB
@​sentry/browser (incl. Feedback)	39.9 KB
@​sentry/browser (incl. sendFeedback)	27.4 KB
@​sentry/browser (incl. FeedbackAsync)	32.2 KB
@​sentry/react	25.51 KB
@​sentry/react (incl. Tracing)	38.15 KB
@​sentry/vue	26.9 KB
@​sentry/vue (incl. Tracing)	37.07 KB
@​sentry/svelte	22.89 KB
CDN Bundle	24.11 KB
CDN Bundle (incl. Tracing)	37 KB
CDN Bundle (incl. Tracing, Replay)	71.66 KB
CDN Bundle (incl. Tracing, Replay, Feedback)	77 KB
CDN Bundle - uncompressed	70.66 KB
CDN Bundle (incl. Tracing) - uncompressed	109.79 KB
CDN Bundle (incl. Tracing, Replay) - uncompressed	222.31 KB
CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	235.52 KB
@​sentry/nextjs (client)	38.23 KB
@​sentry/sveltekit (client)	35.78 KB
@​sentry/node	131.52 KB
@​sentry/node - without tracing	95.64 KB
@​sentry/aws-serverless	105.91 KB

8.37.0

Important CHanges

• feat(nuxt): Add piniaIntegration (#14138)

The Nuxt SDK now allows you to track Pinia state for captured errors. To enable the Pinia plugin, add the piniaIntegration to your client config:

// sentry.client.config.ts
import { usePinia } from '#imports';
Sentry.init({

integrations: [

Sentry.piniaIntegration(usePinia(), {

</tr></table>

... (truncated)

Changelog

Sourced from @​sentry/browser's changelog.

8.37.1

• feat(deps): Bump @​opentelemetry/instrumentation from 0.53.0 to 0.54.0 for @​sentry/opentelemetry (#14187)

8.37.0

Important Changes

• feat(nuxt): Add piniaIntegration (#14138)

The Nuxt SDK now allows you to track Pinia state for captured errors. To enable the Pinia plugin, add the piniaIntegration to your client config:

// sentry.client.config.ts
import { usePinia } from '#imports';
Sentry.init({

integrations: [

Sentry.piniaIntegration(usePinia(), {

/* optional Pinia plugin options */

}),

],

});

• feat: Deprecate metrics API (#14157)

The Sentry Metrics beta has ended in favour of revisiting metrics in another form at a later date.

This new approach will include different APIs, making the current metrics API unnecessary. This release deprecates the metrics API with the plan to remove in the next SDK major version. If you currently use the metrics API in your code, you can safely continue to do so but sent data will no longer be processed by Sentry.

Learn more about the end of the Metrics beta.

Other Changes

• feat(browser): Add http.response_delivery_type attribute to resource spans (#14056)
• feat(browser): Add skipBrowserExtensionCheck escape hatch option (#14147)
• feat(deps): Bump @​opentelemetry/instrumentation from 0.53.0 to 0.54.0 (#14174)
• feat(deps): Bump @​opentelemetry/instrumentation-fastify from 0.40.0 to 0.41.0 (#14175)
• feat(deps): Bump @​opentelemetry/instrumentation-graphql from 0.43.0 to 0.44.0 (#14173)
• feat(deps): Bump @​opentelemetry/instrumentation-mongodb from 0.47.0 to 0.48.0 (#14171)
• feat(deps): Bump @​opentelemetry/propagator-aws-xray from 1.25.1 to 1.26.0 (#14172)
• feat(nuxt): Add asyncFunctionReExports to define re-exported server functions (#14104)
• feat(nuxt): Add piniaIntegration (#14138)
• fix(browser): Avoid recording long task spans starting before their parent span (#14183)
• fix(core): Ensure errors thrown in async cron jobs bubble up (#14182)
• fix(core): Silently fail maybeInstrument (#14140)
• fix(nextjs): Resolve path for dynamic webpack import (#13751)

... (truncated)

Commits

• f27ee4e release: 8.37.1
• abde7a0 Merge pull request #14189 from getsentry/prepare-release/8.37.1
• d3a628e meta(changelog): Update changelog for 8.37.1
• 5b8e7ba Merge pull request #14185 from getsentry/master
• 3612bdd feat(deps): Bump @​opentelemetry/instrumentation from 0.53.0 to 0.54.0 for @​se...
• daf2d3a Merge branch 'release/8.37.0'
• e82a929 release: 8.37.0
• 765de25 Merge pull request #14184 from getsentry/prepare-release/8.37.0
• ad42711 meta: Update Changelog for 8.37.0
• ac57e53 fix(browser): Avoid recording long task spans starting before their parent sp...
• Additional commits viewable in compare view

Updates @sentry/nextjs from 8.18.0 to 8.37.1

Release notes

Sourced from @​sentry/nextjs's releases.

8.37.1

• feat(deps): Bump @​opentelemetry/instrumentation from 0.53.0 to 0.54.0 for @​sentry/opentelemetry (#14187)

Bundle size 📦

Path	Size
@​sentry/browser	22.76 KB
@​sentry/browser - with treeshaking flags	21.54 KB
@​sentry/browser (incl. Tracing)	35.18 KB
@​sentry/browser (incl. Tracing, Replay)	71.9 KB
@​sentry/browser (incl. Tracing, Replay) - with treeshaking flags	62.33 KB
@​sentry/browser (incl. Tracing, Replay with Canvas)	76.22 KB
@​sentry/browser (incl. Tracing, Replay, Feedback)	89.02 KB
@​sentry/browser (incl. Feedback)	39.9 KB
@​sentry/browser (incl. sendFeedback)	27.4 KB
@​sentry/browser (incl. FeedbackAsync)	32.2 KB
@​sentry/react	25.51 KB
@​sentry/react (incl. Tracing)	38.15 KB
@​sentry/vue	26.9 KB
@​sentry/vue (incl. Tracing)	37.07 KB
@​sentry/svelte	22.89 KB
CDN Bundle	24.11 KB
CDN Bundle (incl. Tracing)	37 KB
CDN Bundle (incl. Tracing, Replay)	71.66 KB
CDN Bundle (incl. Tracing, Replay, Feedback)	77 KB
CDN Bundle - uncompressed	70.66 KB
CDN Bundle (incl. Tracing) - uncompressed	109.79 KB
CDN Bundle (incl. Tracing, Replay) - uncompressed	222.31 KB
CDN Bundle (incl. Tracing, Replay, Feedback) - uncompressed	235.52 KB
@​sentry/nextjs (client)	38.23 KB
@​sentry/sveltekit (client)	35.78 KB
@​sentry/node	131.52 KB
@​sentry/node - without tracing	95.64 KB
@​sentry/aws-serverless	105.91 KB

8.37.0

Important CHanges

• feat(nuxt): Add piniaIntegration (#14138)

The Nuxt SDK now allows you to track Pinia state for captured errors. To enable the Pinia plugin, add the piniaIntegration to your client config:

// sentry.client.config.ts
import { usePinia } from '#imports';
Sentry.init({

integrations: [

Sentry.piniaIntegration(usePinia(), {

</tr></table>

... (truncated)

Changelog

Sourced from @​sentry/nextjs's changelog.

8.37.1

• feat(deps): Bump @​opentelemetry/instrumentation from 0.53.0 to 0.54.0 for @​sentry/opentelemetry (#14187)

8.37.0

Important Changes

• feat(nuxt): Add piniaIntegration (#14138)

The Nuxt SDK now allows you to track Pinia state for captured errors. To enable the Pinia plugin, add the piniaIntegration to your client config:

// sentry.client.config.ts
import { usePinia } from '#imports';
Sentry.init({

integrations: [

Sentry.piniaIntegration(usePinia(), {

/* optional Pinia plugin options */

}),

],

});

• feat: Deprecate metrics API (#14157)

The Sentry Metrics beta has ended in favour of revisiting metrics in another form at a later date.

This new approach will include different APIs, making the current metrics API unnecessary. This release deprecates the metrics API with the plan to remove in the next SDK major version. If you currently use the metrics API in your code, you can safely continue to do so but sent data will no longer be processed by Sentry.

Learn more about the end of the Metrics beta.

Other Changes

• feat(browser): Add http.response_delivery_type attribute to resource spans (#14056)
• feat(browser): Add skipBrowserExtensionCheck escape hatch option (#14147)
• feat(deps): Bump @​opentelemetry/instrumentation from 0.53.0 to 0.54.0 (#14174)
• feat(deps): Bump @​opentelemetry/instrumentation-fastify from 0.40.0 to 0.41.0 (#14175)
• feat(deps): Bump @​opentelemetry/instrumentation-graphql from 0.43.0 to 0.44.0 (#14173)
• feat(deps): Bump @​opentelemetry/instrumentation-mongodb from 0.47.0 to 0.48.0 (#14171)
• feat(deps): Bump @​opentelemetry/propagator-aws-xray from 1.25.1 to 1.26.0 (#14172)
• feat(nuxt): Add asyncFunctionReExports to define re-exported server functions (#14104)
• feat(nuxt): Add piniaIntegration (#14138)
• fix(browser): Avoid recording long task spans starting before their parent span (#14183)
• fix(core): Ensure errors thrown in async cron jobs bubble up (#14182)
• fix(core): Silently fail maybeInstrument (#14140)
• fix(nextjs): Resolve path for dynamic webpack import (#13751)

... (truncated)

Commits

• f27ee4e release: 8.37.1
• abde7a0 Merge pull request #14189 from getsentry/prepare-release/8.37.1
• d3a628e meta(changelog): Update changelog for 8.37.1
• 5b8e7ba Merge pull request #14185 from getsentry/master
• 3612bdd feat(deps): Bump @​opentelemetry/instrumentation from 0.53.0 to 0.54.0 for @​se...
• daf2d3a Merge branch 'release/8.37.0'
• e82a929 release: 8.37.0
• 765de25 Merge pull request #14184 from getsentry/prepare-release/8.37.0
• ad42711 meta: Update Changelog for 8.37.0
• ac57e53 fix(browser): Avoid recording long task spans starting before their parent sp...
• Additional commits viewable in compare view

Updates braces from 3.0.2 to 3.0.3

Commits

• 74b2db2 3.0.3
• 88f1429 update eslint. lint, fix unit tests.
• 415d660 Snyk js braces 6838727 (#40)
• 190510f fix tests, skip 1 test in test/braces.expand
• 716eb9f readme bump
• a5851e5 Merge pull request #37 from coderaiser/fix/vulnerability
• 2092bd1 feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...
• 9f5b4cf fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)
• 98414f9 remove funding file
• 665ab5d update keepEscaping doc (#27)
• Additional commits viewable in compare view

Updates cookie from 0.4.0 to 0.7.2

Release notes

Sourced from cookie's releases.

v0.7.2

Fixed

• Fix object assignment of hasOwnProperty (#177) bc38ffd

https://github.com/jshttp/cookie/compare/v0.7.1...v0.7.2

0.7.1

Fixed

• Allow leading dot for domain (#174)
  • Although not permitted in the spec, some users expect this to work and user agents ignore the leading dot according to spec
• Add fast path for serialize without options, use obj.hasOwnProperty when parsing (#172)

https://github.com/jshttp/cookie/compare/v0.7.0...v0.7.1

0.7.0

• perf: parse cookies ~10% faster (#144 by @​kurtextrem and #170)
• fix: narrow the validation of cookies to match RFC6265 (#167 by @​bewinsnw)
• fix: add main to package.json for rspack (#166 by @​proudparrot2)

https://github.com/jshttp/cookie/compare/v0.6.0...v0.7.0

0.6.0

• Add partitioned option

0.5.0

• Add priority option
• Fix expires option to reject invalid dates
• pref: improve default decode speed
• pref: remove slow string split in parse

0.4.2

• pref: read value only when assigning in parse
• pref: remove unnecessary regexp in parse

0.4.1

• Fix maxAge option to reject invalid values

Commits

• d19eaa1 0.7.2
• bc38ffd Fix object assignment of hasOwnProperty (#177)
• cf4658f 0.7.1
• 6a8b8f5 Allow leading dot for domain (#174)
• 58015c0 Remove more code and perf wins (#172)
• ab057d6 0.7.0
• 5f02ca8 Migrate history to GitHub releases
• a5d591c Migrate history to GitHub releases
• 51968f9 Skip isNaN
• 9e7ca51 perf(parse): cache length, return early (#144)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by blakeembrey, a new releaser for cookie since your current version.

Updates supertokens-node from 20.1.2 to 21.0.0

Release notes

Sourced from supertokens-node's releases.

v21.0.0

What's Changed

• feat!: Add OAuth2 recipe and introduce shouldTryLinkingWithSessionUser by @​porcellus in supertokens/supertokens-node#927
• ci: remove params from continuation config by @​porcellus in supertokens/supertokens-node#934
• feat: remove fastify with type implementation by @​deepjyoti30-st in supertokens/supertokens-node#932
• updates cookie versions by @​rishabhpoddar in supertokens/supertokens-node#936
• feat: refactor custom framework utils to reuse them by @​deepjyoti30-st in supertokens/supertokens-node#933
• maybe fixes issue, testing pending by @​rishabhpoddar in supertokens/supertokens-node#948
• fix: userContext-test-for-custom-framework by @​deepjyoti30-st in supertokens/supertokens-node#949
• feat!: removed overwriteSessionDuringSignInUp by @​porcellus in supertokens/supertokens-node#940
• refactor(types): Minor Type Improvements for the ThirdParty Recipe by @​ITenthusiasm in supertokens/supertokens-node#946
• feat: add client id secret and refresh token rotation settings + fix CI issues by @​porcellus in supertokens/supertokens-node#953
• fix: self review test fixes by @​porcellus in supertokens/supertokens-node#955
• test: add exception for changes introduced in #946 by @​porcellus in supertokens/supertokens-node#956

Full Changelog: https://github.com/supertokens/supertokens-node/compare/v20.1.5...v21.0.0

v20.1.5

What's Changed

• fix: password reset flows should allow some cases with no primary user and ep user existing by @​porcellus in supertokens/supertokens-node#941
• test: add support for new overrides in test-server by @​porcellus in supertokens/supertokens-node#943

Full Changelog: https://github.com/supertokens/supertokens-node/compare/v20.1.4...v20.1.5

v20.1.4

What's Changed

• fix: fix the session revocation throwing when email verification links in a non-default tenant by @​porcellus in supertokens/supertokens-node#939

Full Changelog: https://github.com/supertokens/supertokens-node/compare/v20.1.3...v20.1.4

v20.1.3

What's Changed

• fix: Make edge workflows work properly by @​deepjyoti30-st in supertokens/supertokens-node#925
• feat: replace psl deprecation warning by using tldts by @​deepjyoti30-st in supertokens/supertokens-node#930
• fix: failing tests for domain parse util function by @​deepjyoti30-st in supertokens/supertokens-node#931

Full Changelog: https://github.com/supertokens/supertokens-node/compare/v20.1.2...v20.1.3

Changelog

Sourced from supertokens-node's changelog.

[21.0.0] - 2024-10-07

• Added OAuth2Provider recipe
• Added a way to run CI on unmerged PRs
• Added support for FDIs: 3.1 and 4.0. Required by: auth-react >=0.48.0 and web-js>=0.14.0
• The networkInterceptor now also gets a new params prop in the request config.
• Adds customFramework util functions to minimize code required in custom frameworks like remix, astro etc.
• Replicates fastify types based on requirement for the SDK instead of using the original module.
• Improved type definitions for TypeProvider

Breaking change

• Changes type of value in formField object to be unknown instead of string to add support for accepting any type of value in form fields.
• Only supporting CDI 5.2, Compatible with Core version >= 9.3
• Removed the overwriteSessionDuringSignInUp option.
• Added a new shouldTryLinkingWithSessionUser to sign in/up related APIs (and the related recipe functions)
  • This will default to false on the API
  • This will be set to true in function calls if you pass a session, otherwise it is set to false
  • By setting this to true you can enable MFA flows (trying to connect to the session user)
  • If set to false, the sign-in/up will be considered a first-factor
  • Changed APIs:
    • EmailPassword.signInPOST
    • EmailPassword.signUpPOST
    • ThirdParty.signInUpPOST
    • Passwordless.createCodePOST
    • Passwordless.consumeCodePOST
    • Passwordless.resendCodePOST
  • Changed functions:
    • EmailPassword.signIn
    • EmailPassword.signUp
    • ThirdParty.signInUp
    • ThirdPary.manuallyCreateOrUpdateUser
    • Passwordless.createCode
    • Passwordless.consumeCode
• We no longer try to load the session if shouldTryLinkingWithSessionUser is set to false.
• Changed the return type of getOpenIdConfiguration and getOpenIdDiscoveryConfigurationGET, and added the following props:
  • authorization_endpoint
  • token_endpoint
  • userinfo_endpoint
  • revocation_endpoint
  • token_introspection_endpoint
  • end_session_endpoint
  • subject_types_supported
  • id_token_signing_alg_values_supported
  • response_types_supported
• Exposing the OpenId recipe separately and remove it from the Session recipe
  • This means that we removed override.openIdFeature from the Session recipe configuration
• Removed getJWKS from the OpenId recipe, as it is already exposed by the JWT recipe
• We now automatically initialize the OpenId and JWT recipes even if you do not use the Session recipe
• getAppDirRequestHandler for nextjs will no longer accept a Response object.

... (truncated)

Commits

• 6d84241 adding dev-v21.0.0 tag to this commit to ensure building
• 58cffe4 test: add exception for changes introduced in #946 (#956)
• 128437c adding dev-v21.0.0 tag to this commit to ensure building
• fc6c0e9 fix: self review test fixes (#955)
• f734bc4 adding dev-v21.0.0 tag to this commit to ensure building
• dc4ddc2 feat: add client id secret and refresh token rotation settings + fix CI issue...
• vercel[bot] commented 2 weeks ago

  Deployment failed with the following error:

  Resource is limited - try again in 2 hours (more than 100, code: "api-deployments-free-per-day").

[vercel[bot]]

Deployment failed with the following error:

Resource is limited - try again in 10 minutes (more than 100, code: "api-deployments-free-per-day").