build(deps): bump jose from 4.8.1 to 4.9.3

[dependabot[bot]]

Bumps jose from 4.8.1 to 4.9.3.

Release notes

Sourced from jose's releases.

v4.9.3

Refactor

• update CEK length validation error message (81a92a9)
• update key input validation error messages (2eac34a)
• update keylike description for WinterCG (6741679)

v4.9.2

Fixes

• limit default PBES2 alg's computational expense (03d6d01)

v4.9.1

Fixes

• deno: add a Deno package entrypoint (9f3c459)

v4.9.0

Features

• add support for RFC 9278 - JWK Thumbprint URI (d06ce65)

Refactor

• consume some base64url decode errors (#436) (caaf2c3)
• unify JOSENotSupported throw on key export (fe5d093)

v4.8.3

This release contains only code refactoring and documentation updates.

Changelog

Sourced from jose's changelog.

4.9.3 (2022-09-15)

Refactor

• update CEK length validation error message (81a92a9)
• update key input validation error messages (2eac34a)
• update keylike description for WinterCG (6741679)

4.9.2 (2022-09-01)

Fixes

• limit default PBES2 alg's computational expense (03d6d01)

4.9.1 (2022-08-29)

Fixes

• deno: add a Deno package entrypoint (9f3c459)

4.9.0 (2022-08-17)

Features

• add support for RFC 9278 - JWK Thumbprint URI (d06ce65)

Refactor

• consume some base64url decode errors (#436) (caaf2c3)
• unify JOSENotSupported throw on key export (fe5d093)

4.8.3 (2022-06-29)

Commits

• eca8ac3 chore(release): 4.9.3
• 2eac34a refactor: update key input validation error messages
• 6741679 refactor: update keylike description for WinterCG
• 81a92a9 refactor: update CEK length validation error message
• 644a13b style: prettier
• ec6a6a5 test: add a check that signatures are verified before claims set
• f64cadd chore: cleanup after publish
• db71b3d chore(release): 4.9.2
• 03d6d01 fix: limit default PBES2 alg's computational expense
• 8c5cc34 chore: cleanup after publish
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[codecov[bot]]

Codecov Report

Merging #477 (5f8ae1a) into master (f2bb7e2) will not change coverage. The diff coverage is n/a.

@@           Coverage Diff           @@
##           master     #477   +/-   ##
=======================================
  Coverage   78.58%   78.58%           
=======================================
  Files          36       36           
  Lines         780      780           
=======================================
  Hits          613      613           
  Misses        167      167           

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

[dependabot[bot]]

Superseded by #478.