From 8fba714ad2e0f01bcb04e23269dc004ac7e98465 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 30 Dec 2024 15:21:57 +0000 Subject: [PATCH] Bump openid-client from 5.7.0 to 6.1.7 Bumps [openid-client](https://github.com/panva/openid-client) from 5.7.0 to 6.1.7. - [Release notes](https://github.com/panva/openid-client/releases) - [Changelog](https://github.com/panva/openid-client/blob/main/CHANGELOG.md) - [Commits](https://github.com/panva/openid-client/compare/v5.7.0...v6.1.7) --- updated-dependencies: - dependency-name: openid-client dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] --- package-lock.json | 52 +++++++++------------------------------ packages/cli/package.json | 2 +- 2 files changed, 13 insertions(+), 41 deletions(-) diff --git a/package-lock.json b/package-lock.json index 74617567..3fc32fd9 100644 --- a/package-lock.json +++ b/package-lock.json @@ -10886,11 +10886,12 @@ "node": ">=8" } }, - "node_modules/object-hash": { - "version": "2.2.0", - "license": "MIT", - "engines": { - "node": ">= 6" + "node_modules/oauth4webapi": { + "version": "3.1.4", + "resolved": "https://registry.npmjs.org/oauth4webapi/-/oauth4webapi-3.1.4.tgz", + "integrity": "sha512-eVfN3nZNbok2s/ROifO0UAc5G8nRoLSbrcKJ09OqmucgnhXEfdIQOR4gq1eJH1rN3gV7rNw62bDEgftsgFtBEg==", + "funding": { + "url": "https://github.com/sponsors/panva" } }, "node_modules/object-inspect": { @@ -11051,13 +11052,6 @@ "node": ">=8" } }, - "node_modules/oidc-token-hash": { - "version": "5.0.3", - "license": "MIT", - "engines": { - "node": "^10.13.0 || >=12.0.0" - } - }, "node_modules/on-finished": { "version": "2.4.1", "license": "MIT", @@ -11164,39 +11158,17 @@ } }, "node_modules/openid-client": { - "version": "5.7.0", - "license": "MIT", + "version": "6.1.7", + "resolved": "https://registry.npmjs.org/openid-client/-/openid-client-6.1.7.tgz", + "integrity": "sha512-JfY/KvQgOutmG2P+oVNKInE7zIh+im1MQOaO7g5CtNnTWMociA563WweiEMKfR9ry9XG3K2HGvj9wEqhCQkPMg==", "dependencies": { - "jose": "^4.15.9", - "lru-cache": "^6.0.0", - "object-hash": "^2.2.0", - "oidc-token-hash": "^5.0.3" + "jose": "^5.9.6", + "oauth4webapi": "^3.1.4" }, "funding": { "url": "https://github.com/sponsors/panva" } }, - "node_modules/openid-client/node_modules/jose": { - "version": "4.15.9", - "license": "MIT", - "funding": { - "url": "https://github.com/sponsors/panva" - } - }, - "node_modules/openid-client/node_modules/lru-cache": { - "version": "6.0.0", - "license": "ISC", - "dependencies": { - "yallist": "^4.0.0" - }, - "engines": { - "node": ">=10" - } - }, - "node_modules/openid-client/node_modules/yallist": { - "version": "4.0.0", - "license": "ISC" - }, "node_modules/optionator": { "version": "0.9.4", "dev": true, @@ -13182,7 +13154,7 @@ "@sigstore/oci": "^0.4.0", "@sigstore/sign": "^3.0.0", "open": "^8.4.2", - "openid-client": "^5.7.0", + "openid-client": "^6.1.7", "sigstore": "^3.0.0" }, "bin": { diff --git a/packages/cli/package.json b/packages/cli/package.json index 37aab2fe..5fcabdd9 100644 --- a/packages/cli/package.json +++ b/packages/cli/package.json @@ -39,7 +39,7 @@ "@sigstore/oci": "^0.4.0", "@sigstore/sign": "^3.0.0", "open": "^8.4.2", - "openid-client": "^5.7.0", + "openid-client": "^6.1.7", "sigstore": "^3.0.0" }, "devDependencies": {