search

ForestAdmin / forest-express

🧱 Dependency of Express Lianas for Forest Admin
GNU General Public License v3.0
72 stars 21 forks source link

chore(deps): bump openid-client from 4.2.0 to 5.4.2 #1003

Open dependabot[bot] opened 1 year ago

dependabot[bot] commented 1 year ago

Bumps openid-client from 4.2.0 to 5.4.2.

Release notes

Sourced from openid-client's releases.

v5.4.2

Fixes

v5.4.1

This release contains only code refactoring, dependency, or documentation updates. The release process now also uses provenance statements.

v5.4.0

Features

  • allow third party initiated login requests to trigger strategy (568709a), closes #510 #564

v5.3.4

Refactor

Fixes

  • regression introduced in v5.3.3 (4f6e847)

v5.3.2

Fixes

  • passport: ignore static state and nonce passed to Strategy() (#556) (43daff3)

v5.3.1

Fixes

  • typescript: requestResource returns a Promise (#546) (8bc9519), closes #488

v5.3.0

Features

  • JARM is now a stable feature (10e3a37)

v5.2.1

Fixes

  • typescript: add client_id and logout_hint to EndSessionParameters (b7b5438)

v5.2.0

Features

  • add client_id to endSessionUrl query strings (6fd9350)

Fixes

... (truncated)

Changelog

Sourced from openid-client's changelog.

5.4.2 (2023-04-25)

Fixes

5.4.1 (2023-04-21)

5.4.0 (2023-02-05)

Features

  • allow third party initiated login requests to trigger strategy (568709a), closes #510 #564

5.3.4 (2023-02-02)

Fixes

  • regression introduced in v5.3.3 (4f6e847)

5.3.3 (2023-02-02)

Refactor

5.3.2 (2023-01-20)

Fixes

  • passport: ignore static state and nonce passed to Strategy() (#556) (43daff3)

5.3.1 (2022-11-28)

Fixes

  • typescript: requestResource returns a Promise (#546) (8bc9519), closes #488

5.3.0 (2022-11-09)

Features

  • JARM is now a stable feature (10e3a37)

... (truncated)

Commits
  • 69bab2f chore(release): 5.4.2
  • 20607e9 fix: bump oidc-token-hash
  • f623eb0 build: no need to npm i -g npm for provenance on lts/hydrogen
  • 23a7bb8 build: add default title to gh release
  • 5e4862e chore(release): 5.4.1
  • f3776e4 chore: bump dependencies
  • 7275d52 build: update release process
  • 4d221a5 build: automate releases with provenance
  • ae1222c ci: update lock.yml (#577)
  • 563fc64 ci: add check-latest to node tests
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
codeclimate[bot] commented 1 year ago

Code Climate has analyzed commit cd84c36b and detected 0 issues on this pull request.

The test coverage on the diff in this pull request is 100.0% (70% is the threshold).

This pull request will bring the total coverage in the repository to 61.4% (0.0% change).

View more on Code Climate.