Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[Snyk] Security upgrade firebase-admin from 7.1.1 to 9.0.0 #805

Open
wants to merge 39 commits into
base: master
Choose a base branch
from
Open

[Snyk] Security upgrade firebase-admin from 7.1.1 to 9.0.0 #805

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
39 commits
Select commit Hold shift + click to select a range
2c55d6f
fix: upgrade firebase-admin from 7.1.1 to 7.4.0
snyk-bot May 10, 2020
0785cf5
fix: upgrade sharp from 0.18.4 to 0.25.2
snyk-bot May 10, 2020
d2822ae
fix: upgrade @google-cloud/storage from 0.4.0 to 0.8.0
snyk-bot May 10, 2020
2dae9df
fix: upgrade next from 3.0.1-beta.18 to 3.2.3
snyk-bot May 10, 2020
253a472
fix: upgrade next from 3.0.1-beta.18 to 3.2.3
snyk-bot May 10, 2020
15f32a2
fix: upgrade multiple dependencies with Snyk
snyk-bot May 10, 2020
67b1ca7
fix: upgrade multiple dependencies with Snyk
snyk-bot May 10, 2020
8c4f31d
fix: nextjs-with-firebase-hosting/src/functions/package.json & nextjs…
snyk-bot Jun 20, 2020
1f7ccd0
Merge pull request #5 from kleva-j/snyk-upgrade-9b322e5b9b024d2041c58…
kleva-j Jun 28, 2020
b247c20
Merge pull request #1 from kleva-j/snyk-upgrade-e72c03953e69530043e89…
kleva-j Jun 28, 2020
4a5acf6
Merge pull request #2 from kleva-j/snyk-upgrade-19bc6e021ab814620ce40…
kleva-j Jun 28, 2020
1605af5
Merge branch 'master' into snyk-upgrade-fe20b0336c595d96aeabde009a6d909d
kleva-j Jun 28, 2020
baca081
Merge pull request #3 from kleva-j/snyk-upgrade-fe20b0336c595d96aeabd…
kleva-j Jun 28, 2020
a03f155
fix: image-sharp/functions/package.json & image-sharp/functions/.snyk…
snyk-bot Jun 28, 2020
965baf4
Merge branch 'master' into snyk-upgrade-f2ff5138e5fc5cd5a84f31c0e96df89f
kleva-j Jun 28, 2020
77f5fd9
Merge pull request #4 from kleva-j/snyk-upgrade-f2ff5138e5fc5cd5a84f3…
kleva-j Jun 28, 2020
f759051
Merge pull request #11 from kleva-j/snyk-fix-c134e38bd6fdc288f1502892…
kleva-j Jun 29, 2020
dced722
fix: nextjs-with-firebase-hosting/src/functions/package.json, nextjs-…
snyk-bot Jun 29, 2020
7b18627
Merge pull request #12 from kleva-j/snyk-fix-7b3b364384d5ec3f8513f400…
kleva-j Jun 29, 2020
03c50e1
Merge pull request #13 from kleva-j/snyk-fix-e46128848af39dc7febb7cd0…
kleva-j Jun 29, 2020
d5b1564
fix: upgrade firebase-admin from 7.1.1 to 7.4.0
snyk-bot Jun 29, 2020
a1054bc
fix: upgrade @google-cloud/storage from 0.4.0 to 0.8.0
snyk-bot Jun 29, 2020
90e58fc
fix: isomorphic-react-app/src/package.json to reduce vulnerabilities
snyk-bot Jul 9, 2020
8087ea8
Merge pull request #20 from kleva-j/snyk-fix-5d8a3eeffdb8e461ad631f1a…
kleva-j Jul 12, 2020
8bc5b5d
Merge pull request #14 from kleva-j/snyk-upgrade-1257bf6847a80649bf32…
kleva-j Jul 13, 2020
dfa3aae
Merge pull request #15 from kleva-j/snyk-upgrade-12aa3e9fc9bc0723f50d…
kleva-j Jul 13, 2020
60fc3c2
fix: crashlytics-integration/jira-issue/functions/package.json to red…
snyk-bot Sep 16, 2020
ba75bba
fix: nextjs-with-firebase-hosting/src/app/package.json & nextjs-with-…
snyk-bot Sep 24, 2020
c505625
fix: nextjs-with-firebase-hosting/src/functions/package.json & nextjs…
snyk-bot Sep 24, 2020
346cceb
fix: isomorphic-react-app/src/package.json to reduce vulnerabilities
snyk-bot Oct 2, 2020
80543ac
fix: isomorphic-react-app/functions/package.json to reduce vulnerabil…
snyk-bot Oct 2, 2020
5643236
Merge pull request #198 from kleva-j/snyk-fix-727428d038ef222f3a198ed…
kleva-j Oct 5, 2020
3fe9d50
Merge pull request #205 from kleva-j/snyk-fix-29eab0b4d802c044b1bafa5…
kleva-j Oct 5, 2020
e491c30
Merge pull request #204 from kleva-j/snyk-fix-a7feeca69bdba73f78ac77f…
kleva-j Oct 5, 2020
3b8b595
Merge pull request #203 from kleva-j/snyk-fix-472fce69269701a0ba4054f…
kleva-j Oct 6, 2020
ac90a97
Merge pull request #202 from kleva-j/snyk-fix-b972b41c3ef1626f35b444a…
kleva-j Oct 6, 2020
2cb869c
fix: nextjs-with-firebase-hosting/src/app/package.json & nextjs-with-…
snyk-bot Jul 15, 2022
88b1c5b
Merge pull request #598 from kleva-j/snyk-fix-e17594fa55ead9f5ef93827…
kleva-j Jul 22, 2022
ec79ed9
fix: nextjs-with-firebase-hosting/src/functions/package.json, nextjs-…
snyk-bot Aug 31, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion assistant-say-number/functions/package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@
"description": "Firebase Functions",
"dependencies": {
"actions-on-google": "^1.0.7",
"firebase-admin": "~7.1.1",
"firebase-admin": "~7.4.0",
"firebase-functions": "^2.2.1"
},
"devDependencies": {
Expand Down
2 changes: 1 addition & 1 deletion crashlytics-integration/jira-issue/functions/package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
"dependencies": {
"request": "^2.81.0",
"request-promise": "^4.2.1",
"firebase-admin": "~7.1.1",
"firebase-admin": "~9.2.0",
"firebase-functions": "^2.2.1"
},
"devDependencies": {
Expand Down
2 changes: 1 addition & 1 deletion crashlytics-integration/slack-notifier/functions/package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
"dependencies": {
"request": "^2.81.0",
"request-promise": "^4.2.1",
"firebase-admin": "~7.1.1",
"firebase-admin": "~7.4.0",
"firebase-functions": "^2.2.1"
},
"devDependencies": {
Expand Down
2 changes: 1 addition & 1 deletion ffmpeg-convert-audio/functions/package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
"name": "ffmpeg-convert-audio",
"description": "FFMPEG Convert Audio Firebase Functions sample",
"dependencies": {
"@google-cloud/storage": "^0.4.0",
"@google-cloud/storage": "^0.8.0",
"ffmpeg-static": "^2.0.0",
"fluent-ffmpeg": "^2.1.2",
"firebase-admin": "~7.1.1",
Expand Down
8 changes: 8 additions & 0 deletions image-sharp/functions/.snyk
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,8 @@
# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities.
version: v1.16.0
ignore: {}
# patches apply the minimum changes required to fix a vulnerability
patch:
SNYK-JS-LODASH-567746:
- '@google-cloud/storage > @google-cloud/common > google-auto-auth > async > lodash':
patched: '2020-06-28T09:37:24.989Z'
14 changes: 9 additions & 5 deletions image-sharp/functions/package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,10 +2,11 @@
"name": "generate-thumbnail-sharp-functions",
"description": "Generate Thumbnail with Sharp Firebase Functions sample",
"dependencies": {
"@google-cloud/storage": "^0.4.0",
"sharp": "^0.18.1",
"@google-cloud/storage": "^0.8.0",
"sharp": "^0.25.2",
"firebase-admin": "~7.1.1",
"firebase-functions": "^2.2.1"
"firebase-functions": "^2.2.1",
"snyk": "^1.349.0"
},
"devDependencies": {
"eslint": "^4.13.1",
Expand All @@ -17,10 +18,13 @@
"shell": "firebase experimental:functions:shell",
"start": "npm run shell",
"deploy": "firebase deploy --only functions",
"logs": "firebase functions:log"
"logs": "firebase functions:log",
"snyk-protect": "snyk protect",
"prepublish": "npm run snyk-protect"
},
"engines": {
"node": "8"
},
"private": true
"private": true,
"snyk": true
}
2 changes: 1 addition & 1 deletion isomorphic-react-app/functions/package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,7 +3,7 @@
"description": "A sample isomorphic React app using Functions and Hosting",
"dependencies": {
"express": "4.17.1",
"firebase": "7.6.1",
"firebase": "7.22.0",
"firebase-admin": "8.9.0",
"firebase-functions": "3.3.0",
"react": "16.12.0",
Expand Down
4 changes: 2 additions & 2 deletions isomorphic-react-app/src/package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -8,8 +8,8 @@
"build": "npm run createfirebaseconf && npm run buildClient && npm run buildServer"
},
"dependencies": {
"firebase": "7.6.1",
"lodash": "4.17.15",
"firebase": "7.22.0",
"lodash": "4.17.16",
"react": "16.12.0",
"react-dom": "16.12.0",
"react-router": "5.1.2",
Expand Down
6 changes: 3 additions & 3 deletions nextjs-with-firebase-hosting/src/app/package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,9 +2,9 @@
"name": "app",
"version": "1.0.0",
"dependencies": {
"next": "beta",
"react": "^15.6.1",
"react-dom": "^15.6.1"
"next": "7.0.3",
"react": "^16.5.0",
"react-dom": "^16.5.0"
},
"scripts": {
"dev": "next",
Expand Down
Loading