Bump jose from 2.0.5 to 5.2.2

[dependabot[bot]]

Bumps jose from 2.0.5 to 5.2.2.

Release notes

Sourced from jose's releases.

v5.2.2

Fixes

• types: iv and tag is optional in JSON serializations (53019cd)

v5.2.1

Fixes

• build: refactor export targets for browser, node cjs, and node esm builds (50cbc65)

v5.2.0

Features

• extend JWT NumericDate setter syntax (ae363c3)

v5.1.3

Build

• add errors and base64url submodule exports (564412d)

v5.1.2

Fixes

• do not mutate JWTVerifyOptions.requiredClaims (1bf9cec), closes #610

v5.1.1

Refactor

• deprecate the RSA1_5 JWE Algorithm (f746da1)

v5.1.0

Features

• add payload generics to jose.decodeJwt (9de49e2), closes #604

v5.0.2

Fixes

• createRemoteJWKSet: ensure a default user-agent header is present (887dd3c), closes #600

v5.0.1

Fixes

• also use ES2020 in the CDN bundles (8c4d390)

v5.0.0

⚠ BREAKING CHANGES

• Node.js: return Uint8Array (not a Buffer) from base64url.decode
• Browser distribution is now built using ES2020 as a target

... (truncated)

Changelog

Sourced from jose's changelog.

5.2.2 (2024-02-11)

Fixes

• types: iv and tag is optional in JSON serializations (53019cd)

5.2.1 (2024-02-03)

Fixes

• build: refactor export targets for browser, node cjs, and node esm builds (50cbc65)

5.2.0 (2023-12-24)

Features

• extend JWT NumericDate setter syntax (ae363c3)

5.1.3 (2023-11-30)

5.1.2 (2023-11-27)

Fixes

• do not mutate JWTVerifyOptions.requiredClaims (1bf9cec), closes #610

5.1.1 (2023-11-14)

Refactor

• deprecate the RSA1_5 JWE Algorithm (f746da1)

5.1.0 (2023-11-03)

Features

• add payload generics to jose.decodeJwt (9de49e2), closes #604

5.0.2 (2023-11-02)

Fixes

• createRemoteJWKSet: ensure a default user-agent header is present (887dd3c), closes #600

... (truncated)

Commits

• e7ee8c1 chore(release): 5.2.2
• 53019cd fix(types): iv and tag is optional in JSON serializations
• f23a29a docs: add import key notes about OID id-RSASSA-PSS support
• d85e3eb ci: bump update macos to macos-14
• f757d46 chore: bump dev deps
• a24b984 chore: bump dev deps
• 109c222 chore: bump dev deps
• c89f51a ci: update actions/upload-artifact to v4
• 51170e2 chore: cleanup after release
• dfb34e2 chore(release): 5.2.1
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by panva, a new releaser for jose since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot[bot]]

Superseded by #112.