Note: These commands were previously available to early access users behind an experiment flag. There are some breaking changes from the early access version of these commands.
ext:dev:publish has been renamed to ext:dev:upload. ext:dev:upload defaults to uploading extensions from GitHub instead of local source.
ext:dev:publish is deprecated and will be removed in version 13.
ext:dev:delete, ext:dev:unpublish, ext:sources:create and ext:dev:emualtors:* have been removed.
Support for Next.js i18n, basePath, and more advanced rewrites/redirects/headers (#5788)
hosting.frameworksBackend now respects omit: true (#5788)
Web Frameworks now memoizes framework builds for single builds across multiple hosting sites (#5788)
Trip the backend requirement for Angular applications using ng-deploy w/serveOptimizedImages (#5774)
Fixes a bug where the Storage emulator would not fall back to open rules for 'demo-' projects if firebase.json contained multiple storage targets (#5170)
Updates firebase init function templates for TypeScript and Javascript to 2nd gen (#5775)
Allow for atomic deployment of Hosting content & Functions rewrites via tag pinning (#5753)
v11.30.0
Added more helpful error messages for the Firebase Hosting GitHub Action (#5749)
Upgrade Firestore emulator to 1.17.4
Web Frameworks will no longer try to deploy unsupported versions of NodeJS to Cloud Functions (#5733)
Fixes bug where emulators would not start correctly due to corrupted ZIP files. (#5614, #5677)
Adding experimental support for deploying Flutter Web applications to Firebase Hosting (#5332)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/joie/joie-web-app/network/alerts).
Bumps jsonwebtoken to 9.0.0 and updates ancestor dependencies jsonwebtoken, firebase-admin and firebase-tools. These dependencies need to be updated together.
Updates
jsonwebtoken
from 8.5.1 to 9.0.0Changelog
Sourced from jsonwebtoken's changelog.
Commits
e1fa9dc
Merge pull request from GHSA-8cf7-32gw-wr335eaedbf
chore(ci): remove github test actions job (#861)cd4163e
chore(ci): configure Github Actions jobs for Tests & Security Scanning (#856)ecdf6cc
fix!: Prevent accidental use of insecure key sizes & misconfiguration of secr...8345030
fix(sign&verify)!: Remove defaultnone
support fromsign
andverify
met...7e6a86b
Upload OpsLevel YAML (#849)74d5719
docs: update references vercel/ms references (#770)d71e383
docs: document "invalid token" error3765003
docs: fix spelling in README.md: Peak -> Peek (#754)a46097e
docs: make decode impossible to discover before verifyMaintainer changes
This version was pushed to npm by julien.wollscheid, a new releaser for jsonwebtoken since your current version.
Updates
firebase-admin
from 9.4.1 to 11.8.0Release notes
Sourced from firebase-admin's releases.
... (truncated)
Commits
09c9ef6
[chore] Release 11.8.0 (#2175)966f2fd
build(deps-dev): bump@firebase/auth-compat
from 0.3.7 to 0.4.1 (#2173)7b27cc0
build(deps): bump@types/node
from 18.16.1 to 18.16.3 (#2172)5631e24
build(deps-dev): bump@typescript-eslint/parser
from 5.59.0 to 5.59.2 (#2171)a43df9e
feat(appcheck): Added replay protection feature to App CheckverifyToken()
...125c5bf
build(deps): bump@types/node
from 18.15.11 to 18.16.1 (#2166)d6e6286
build(deps-dev): bump eslint from 8.38.0 to 8.39.0 (#2160)bbcd8bd
build(deps-dev): bump sinon from 15.0.3 to 15.0.4 (#2162)06e259a
[chore] Release 11.7.0 (#2158)faeba45
build(deps-dev): bump@types/sinon
from 10.0.13 to 10.0.14 (#2157)Updates
firebase-tools
from 8.13.1 to 12.0.0Release notes
Sourced from firebase-tools's releases.
... (truncated)
Commits
916138b
12.0.0cf799e9
Replace user of source command with (#5818)6e73140
Quick fix for the frameworks integration test (#5817)94a9ba3
Angular i18n, baseHref, and optimized images (#5774)25fc217
Update builder image to npm 9.5 (#5816)9d0d4c8
Upgrade tooling to node 18, remove explicit support for node 14 (#5730)b343e5d
Enable the pinTags experiment by default (#5753)c295ed8
Handle publisher profile not found errors better. (#5813)9491152
Fix link typos (#5812)40c18d6
Add support for latest-approved version, and default to it instead of latest....Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/joie/joie-web-app/network/alerts).