Correct the function BooleanExpression#then to BooleanExpression#thenElse (#1268)
v4.0.0
Breaking Changes
Deprecated allowInvalidAppCheckToken option. Instead use
enforceAppCheck.
App Check enforcement on callable functions is disabled by default in v4.
Requests containing invalid App Check tokens won't be denied unless you
explicitly enable App Check enforcement using the new enforceAppCheck option.
Furthermore, when enforcement is enabled, callable functions will deny
all requests without App Check tokens.
Dropped support for Node.js versions 8, 10, and 12.
Dropped support for Admin SDK versions 8 and 9.
Removed the functions.handler namespace.
DataSnapshot passed to the Firebase Realtime Database trigger now
matches the DataSnapshot returned by the Admin SDK, with null values
removed.
Removed __trigger object on function handlers.
Reorganized source code location. This affects only apps that directly import files instead of using the recommend entry points specified in the
Reworked the apps library and removed lodash as a runtime dependency.
Change default behavior of function deploy to clear configurations not specified in the source code (e.g. change memory configuration in Google Cloud Console). Use preserveExternalChanges to keep existing behavior. See docs for more info.
Enhancements
Logs created with the functions.logger package in v2 functions
are now annotated with each request's trace ID, making it easy to correlate
log entries with the incoming request. Trace IDs are especially useful for
cases where 2nd gen's concurrency feature permits a function
to handle multiple requests at any given time. See
Correlate log entries to learn more.
functions.logger.error now always outputs an error object and is included in Google Cloud Error Reporting.
The logging severity of Auth/App Check token validation has changed from info to debug level.
This version was pushed to npm by google-wombot, a new releaser for firebase-functions since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/alexabbott/firebase-cms/network/alerts).
Bumps jsonwebtoken to 9.0.0 and updates ancestor dependencies jsonwebtoken, firebase-admin and firebase-functions. These dependencies need to be updated together.
Updates
jsonwebtoken
from 7.1.9 to 9.0.0Changelog
Sourced from jsonwebtoken's changelog.
... (truncated)
Commits
e1fa9dc
Merge pull request from GHSA-8cf7-32gw-wr335eaedbf
chore(ci): remove github test actions job (#861)cd4163e
chore(ci): configure Github Actions jobs for Tests & Security Scanning (#856)ecdf6cc
fix!: Prevent accidental use of insecure key sizes & misconfiguration of secr...8345030
fix(sign&verify)!: Remove defaultnone
support fromsign
andverify
met...7e6a86b
Upload OpsLevel YAML (#849)74d5719
docs: update references vercel/ms references (#770)d71e383
docs: document "invalid token" error3765003
docs: fix spelling in README.md: Peak -> Peek (#754)a46097e
docs: make decode impossible to discover before verifyMaintainer changes
This version was pushed to npm by julien.wollscheid, a new releaser for jsonwebtoken since your current version.
Updates
firebase-admin
from 4.2.1 to 11.4.1Release notes
Sourced from firebase-admin's releases.
... (truncated)
Commits
Maintainer changes
This version was pushed to npm by google-wombot, a new releaser for firebase-admin since your current version.
Updates
firebase-functions
from 0.5.9 to 4.1.1Release notes
Sourced from firebase-functions's releases.
... (truncated)
Commits
0a13ef2
4.1.183f1b9d
Extend CI tests to cover nodejs18 (#1325)2c073d3
Fix bug where SDK returned annonymous function instead of return value specif...632d6b5
Fix typo: sections -> seconds. (#1321)0aa6d6b
booleanParams need thenElse too (#1318)53d566c
[firebase-release] Removed change log and reset repo after 4.1.0 release9cdb57b
4.1.06c10dc6
Update CHANGELOG.md (#1316)0b066d6
Fix schedule function deployment (#1305)efc160a
Allow v1 and v2 functions to set the Omit option on a function (#1298)Maintainer changes
This version was pushed to npm by google-wombot, a new releaser for firebase-functions since your current version.
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/alexabbott/firebase-cms/network/alerts).