search

mozilla / web-ext

A command line tool to help build, run, and test web extensions
Mozilla Public License 2.0
2.65k stars 334 forks source link

chore(deps): bump jose from 4.15.5 to 5.3.0 #3130

Closed dependabot[bot] closed 2 months ago

dependabot[bot] commented 2 months ago

Bumps jose from 4.15.5 to 5.3.0.

Release notes

Sourced from jose's releases.

v5.3.0

Features

  • allow observing remote JWKS resolver state and its manual reload (fa8b639)

Refactor

  • if should not be the only statement in else blocks (a6b716b)

v5.2.4

Refactor

  • use createLocalJWKSet instead of LocalJWKSet in createRemoteJWKSet (a7c566c)

v5.2.3

Refactor

  • move iv generation and optional outputs around (05c4351)

v5.2.2

Fixes

  • types: iv and tag is optional in JSON serializations (53019cd)

v5.2.1

Fixes

  • build: refactor export targets for browser, node cjs, and node esm builds (50cbc65)

v5.2.0

Features

  • extend JWT NumericDate setter syntax (ae363c3)

v5.1.3

Build

  • add errors and base64url submodule exports (564412d)

v5.1.2

Fixes

  • do not mutate JWTVerifyOptions.requiredClaims (1bf9cec), closes #610

v5.1.1

Refactor

  • deprecate the RSA1_5 JWE Algorithm (f746da1)

... (truncated)

Changelog

Sourced from jose's changelog.

5.3.0 (2024-05-10)

Features

  • allow observing remote JWKS resolver state and its manual reload (fa8b639)

Refactor

  • if should not be the only statement in else blocks (a6b716b)

5.2.4 (2024-04-07)

Refactor

  • use createLocalJWKSet instead of LocalJWKSet in createRemoteJWKSet (a7c566c)

5.2.3 (2024-03-07)

Refactor

  • move iv generation and optional outputs around (05c4351)

5.2.2 (2024-02-11)

Fixes

  • types: iv and tag is optional in JSON serializations (53019cd)

5.2.1 (2024-02-03)

Fixes

  • build: refactor export targets for browser, node cjs, and node esm builds (50cbc65)

5.2.0 (2023-12-24)

Features

  • extend JWT NumericDate setter syntax (ae363c3)

5.1.3 (2023-11-30)

5.1.2 (2023-11-27)

... (truncated)

Commits
  • f126d36 chore(release): 5.3.0
  • fa8b639 feat: allow observing remote JWKS resolver state and its manual reload
  • 2595451 chore: bump dev deps
  • fd46e2c chore: bump dev deps
  • a6b716b refactor: if should not be the only statement in else blocks
  • 96b15a9 chore: bump dev deps
  • a0fc293 chore: bump dev deps
  • 9199481 chore: bump dev deps
  • adc0f69 chore: cleanup after release
  • 8fde79f chore(release): 5.2.4
  • Additional commits viewable in compare view


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)