This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade firebase-admin from 9.11.0 to 10.2.0.
![merge advice](https://app.snyk.io/badges/merge-advice/?package_manager=npm&package_name=firebase-admin&from_version=9.11.0&to_version=10.2.0&pr_id=9bf78c70-bd98-4245-9512-456e4271a144&visibility=true&has_feature_flag=false)
As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user.
:sparkles: Snyk has automatically assigned this pull request, [set who gets assigned](https://app.snyk.io/org/aporia/project/e325e2e0-2f76-484e-9926-f5229e0dd505/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr/settings/integration).
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
*Warning:* This is a major version upgrade, and may be a breaking change.
- The recommended version is **9 versions** ahead of your current version.
- The recommended version was released **23 days ago**, on 2022-05-05.
The recommended version fixes:
Severity | Issue | PriorityScore (*) | Exploit Maturity |
:-------------------------:|:-------------------------|-------------------------|:-------------------------
| Prototype Pollution [SNYK-JS-PROTOBUFJS-2441248](https://snyk.io/vuln/SNYK-JS-PROTOBUFJS-2441248) | **589/1000** **Why?** Proof of Concept exploit, Recently disclosed, CVSS 8.2 | Proof of Concept
| Improper Verification of Cryptographic Signature [SNYK-JS-NODEFORGE-2430339](https://snyk.io/vuln/SNYK-JS-NODEFORGE-2430339) | **589/1000** **Why?** Proof of Concept exploit, Recently disclosed, CVSS 8.2 | No Known Exploit
| Improper Verification of Cryptographic Signature [SNYK-JS-NODEFORGE-2430341](https://snyk.io/vuln/SNYK-JS-NODEFORGE-2430341) | **589/1000** **Why?** Proof of Concept exploit, Recently disclosed, CVSS 8.2 | No Known Exploit
| Improper Verification of Cryptographic Signature [SNYK-JS-NODEFORGE-2430337](https://snyk.io/vuln/SNYK-JS-NODEFORGE-2430337) | **589/1000** **Why?** Proof of Concept exploit, Recently disclosed, CVSS 8.2 | No Known Exploit
| Prototype Pollution [SNYK-JS-NODEFORGE-2331908](https://snyk.io/vuln/SNYK-JS-NODEFORGE-2331908) | **589/1000** **Why?** Proof of Concept exploit, Recently disclosed, CVSS 8.2 | No Known Exploit
| Open Redirect [SNYK-JS-NODEFORGE-2330875](https://snyk.io/vuln/SNYK-JS-NODEFORGE-2330875) | **589/1000** **Why?** Proof of Concept exploit, Recently disclosed, CVSS 8.2 | Proof of Concept
(*) Note that the real score may have changed since the PR was raised.
Release notes Package name: firebase-admin
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade firebase-admin from 9.11.0 to 10.2.0.
![merge advice](https://app.snyk.io/badges/merge-advice/?package_manager=npm&package_name=firebase-admin&from_version=9.11.0&to_version=10.2.0&pr_id=9bf78c70-bd98-4245-9512-456e4271a144&visibility=true&has_feature_flag=false) As this is a private repository, Snyk-bot does not have access. Therefore, this PR has been created automatically, but appears to have been created by a real user. :sparkles: Snyk has automatically assigned this pull request, [set who gets assigned](https://app.snyk.io/org/aporia/project/e325e2e0-2f76-484e-9926-f5229e0dd505/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr/settings/integration). :information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.*Warning:* This is a major version upgrade, and may be a breaking change. - The recommended version is **9 versions** ahead of your current version. - The recommended version was released **23 days ago**, on 2022-05-05. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Prototype Pollution
[SNYK-JS-PROTOBUFJS-2441248](https://snyk.io/vuln/SNYK-JS-PROTOBUFJS-2441248) | **589/1000**
**Why?** Proof of Concept exploit, Recently disclosed, CVSS 8.2 | Proof of Concept | Improper Verification of Cryptographic Signature
[SNYK-JS-NODEFORGE-2430339](https://snyk.io/vuln/SNYK-JS-NODEFORGE-2430339) | **589/1000**
**Why?** Proof of Concept exploit, Recently disclosed, CVSS 8.2 | No Known Exploit | Improper Verification of Cryptographic Signature
[SNYK-JS-NODEFORGE-2430341](https://snyk.io/vuln/SNYK-JS-NODEFORGE-2430341) | **589/1000**
**Why?** Proof of Concept exploit, Recently disclosed, CVSS 8.2 | No Known Exploit | Improper Verification of Cryptographic Signature
[SNYK-JS-NODEFORGE-2430337](https://snyk.io/vuln/SNYK-JS-NODEFORGE-2430337) | **589/1000**
**Why?** Proof of Concept exploit, Recently disclosed, CVSS 8.2 | No Known Exploit | Prototype Pollution
[SNYK-JS-NODEFORGE-2331908](https://snyk.io/vuln/SNYK-JS-NODEFORGE-2331908) | **589/1000**
**Why?** Proof of Concept exploit, Recently disclosed, CVSS 8.2 | No Known Exploit | Open Redirect
[SNYK-JS-NODEFORGE-2330875](https://snyk.io/vuln/SNYK-JS-NODEFORGE-2330875) | **589/1000**
**Why?** Proof of Concept exploit, Recently disclosed, CVSS 8.2 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.
Release notes
Package name: firebase-admin
New Features
Miscellaneous
Bug Fixes
Miscellaneous
Breaking Changes
New Features
firebase-admin/app
,firebase-admin/auth
etc)Bug Fixes
Miscellaneous
New Features
Bug Fixes
Miscellaneous
**Note:** *You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.* For more information: π§ [View latest project report](https://app.snyk.io/org/aporia/project/e325e2e0-2f76-484e-9926-f5229e0dd505?utm_source=github&utm_medium=referral&page=upgrade-pr) π©βπ» [Set who automatically gets assigned](https://app.snyk.io/org/aporia/project/e325e2e0-2f76-484e-9926-f5229e0dd505/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr/) π [Adjust upgrade PR settings](https://app.snyk.io/org/aporia/project/e325e2e0-2f76-484e-9926-f5229e0dd505/settings/integration?utm_source=github&utm_medium=referral&page=upgrade-pr) π [Ignore this dependency or unsubscribe from future upgrade PRs](https://app.snyk.io/org/aporia/project/e325e2e0-2f76-484e-9926-f5229e0dd505/settings/integration?pkg=firebase-admin&utm_source=github&utm_medium=referral&page=upgrade-pr#auto-dep-upgrades)