Bump @grpc/grpc-js, firebase and google-gax

dependabot[bot] commented 5 months ago

Bumps @grpc/grpc-js to 1.9.15 and updates ancestor dependencies @grpc/grpc-js, firebase and google-gax. These dependencies need to be updated together.

Updates @grpc/grpc-js from 1.7.3 to 1.9.15

Release notes

Sourced from @grpc/grpc-js's releases.

@grpc/grpc-js 1.9.15

Avoid buffering significantly more than grpc.max_receive_message_size per received message.

@grpc/grpc-js 1.9.14

Fix a bug that could rarely cause connection leaks (#2644)

Fix a bug that could cause clients to go IDLE incorrectly some time after calling waitForReady (#2643)

@grpc/grpc-js 1.9.13

Fix a bug that could cause the Node process to close early when establishing a connection while a request is pending (#2626)

@grpc/grpc-js 1.9.12

Fix a bug that could cause connectivity state information to become stale in some circumstances (#2623)

@grpc/grpc-js 1.9.11

Fix a busy loop when recovering from a failure to establish a connection to a unix domain socket address target (#2618)

Fix a bug that caused clients to stop trying to connect to a fixed IP address target after a working connection drops (#2619)

@grpc/grpc-js 1.9.10

Provide the correct port to the proxy when connecting to a target without an explicitly specified port (#2608 contributed by @segevfiner)

Properly handle goaway events with no additional data attached (#2611)

@grpc/grpc-js 1.9.9

Fix a busy loop when recovering from a failure to establish a connection to a fixed IP address target (#2609)

@grpc/grpc-js 1.9.8

Fix a memory leak caused by creating and closing multiple clients (#2606)

@grpc/grpc-js 1.9.7

Fix a bug that could cause a client to not update name resolution after multiple failed connection attempts (#2602)

@grpc/grpc-js 1.9.6

Include more information in most "No connection established" errors (#2598)

Remove the index tracer, and add more information to other trace logs (#2599)

@grpc/grpc-js 1.9.5

Fix a type inconsistency in server-call.ts (#2589 contributed by @rsnullptr)

Close ports if the server is shut down while the bind operation is ongoing (#2590)

@grpc/grpc-js 1.9.4

Fix a bug that could cause a client to sometimes incorrectly hold the process open when no longer in use (#2586)

@grpc/grpc-js 1.9.3

Make a few improvements to DNS resolving timing (#2571)

Experimental changes:

Added grpc.experimental.BackoffTimeout#getEndTime

@grpc/grpc-js 1.9.2

Handle error when sending keepalive pings (#2563)

... (truncated)

Commits

08b0422 Merge pull request from GHSA-7v5v-9h63-cj86
c75e048 grpc-js: Bump to 1.9.15
d5d62b4 grpc-js: Avoid buffering significantly more than max_receive_message_size per...
02d0344 Merge pull request #2741 from sergiitk/backport-1.9-psm-interop-common-prod-t...
cf14020 Merge pull request #2729 from sergiitk/psm-interop-common-prod-tests
da44229 Merge pull request #2738 from murgatroid99/backport-1.9-grpc-js_linkify-it_fix
5ae7c8c Merge pull request #2735 from murgatroid99/grpc-js_linkify-it_fix
eed21ba Merge pull request #2714 from sergiitk/backport-1.9-psm-interop-pkg-dev
63763a4 Merge pull request #2712 from sergiitk/psm-interop-pkg-dev
5be83dd Merge pull request #2643 from murgatroid99/grpc-js_idle_timer_fix
Additional commits viewable in compare view

Updates firebase from 9.19.1 to 10.12.2

Release notes

Sourced from firebase's releases.

firebase@10.12.2

For more detailed release notes, see Firebase JavaScript SDK Release Notes.

What's Changed

@firebase/app@0.10.5

Patch Changes

Update SDK_VERSION.

@firebase/app-compat@0.2.35

Patch Changes

Updated dependencies []:

@firebase/app@0.10.5

@firebase/auth@1.7.4

Patch Changes

0af23e02e #8251 (fixes #8222) - Generate dts rollups for auth web extension and cordova

@firebase/auth-compat@0.5.9

Patch Changes

Updated dependencies [0af23e02e]:

@firebase/auth@1.7.4

firebase@10.12.2

Patch Changes

Updated dependencies [3883133c3, 0af23e02e]:

@firebase/app@0.10.5

@firebase/vertexai-preview@0.0.2

@firebase/auth@1.7.4

@firebase/app-compat@0.2.35

@firebase/auth-compat@0.5.9

@firebase/vertexai-preview@0.0.2

Patch Changes

3883133c3 #8256 - Change types paths to point to rolled-up public d.ts files. This fixes some TypeScript compiler errors users are seeing.

firebase@10.12.1

For more detailed release notes, see Firebase JavaScript SDK Release Notes.

... (truncated)

Commits

d92d01e Version Packages (#8264)
a8bdda6 Merge master into release
52d6266 Add vertex preview token to canary deploy workflow. (#8262)
0af23e0 Generate dts rollups for auth webextension and cordova (#8251)
370b6c8 Add toc (#8257)
aa060a7 More robust clean up after unexpected docgen process exits. (#8260)
3883133 Fix typings issue (#8256)
7381f21 Version Packages (#8254)
ff65c13 Merge master into release
43a8d99 Add job to create a GitHub release (#8248)
Additional commits viewable in compare view

Updates google-gax from 3.5.3 to 3.6.1

Changelog

Sourced from google-gax's changelog.

Changelog

npm history

4.3.6 (2024-06-06)

Bug Fixes

reduce duplicate code (#1612) (c540ef6)

4.3.5 (2024-05-28)

Bug Fixes

fix lint warning (#1608) (863d563)

raise error on retryable error when max retries is 0 (#1605) (b4f2f30)

Reset the retry counter to 0 when receiving data (#1604) (13b5d23)

4.3.4 (2024-05-22)

Bug Fixes

Counter does increment first retry (#1601) (4b77bf3)

don't emit error event during stream handoff (#1592) (2e7d30a)

Only call getResumptionRequestFn once (#1593) (e1755a9)

4.3.3 (2024-04-19)

Bug Fixes

don't retry server streaming calls if retryCodes is the empty array (#1578) (150a683)

update minimum grpc-js to 1.10.3 to skip potentially problematic 1.10.2 (#1576) (43e6fc0)

4.3.2 (2024-03-26)

Bug Fixes

deps: include new proto changes (#1573) (87b5718)

4.3.1 (2024-02-08)

Bug Fixes

... (truncated)

Commits

See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/DaftDoris/newsdesk/network/alerts).

cloudflare-workers-and-pages[bot] commented 5 months ago

Deploying newsdesk with Cloudflare Pages

Latest commit:	`f6a4322`
Status:	✅ Deploy successful!
Preview URL:	https://8414b23a.newsdesk.pages.dev
Branch Preview URL:	https://dependabot-npm-and-yarn-mult.newsdesk.pages.dev

View logs

sonarcloud[bot] commented 5 months ago

Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
No data about Coverage
0.0% Duplication on New Code

See analysis details on SonarCloud

DaftDoris / newsdesk