Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update dependency @google-cloud/firestore to v6 [SECURITY] #88

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

renovate[bot]
Copy link

@renovate renovate bot commented Jun 17, 2024

Mend Renovate

This PR contains the following updates:

Package Change Age Adoption Passing Confidence
@google-cloud/firestore 0.21.0 -> 6.2.0 age adoption passing confidence

GitHub Vulnerability Alerts

CVE-2023-6460

A potential logging of the firestore key via logging within nodejs-firestore exists - Developers who were logging objects through this._settings would be logging the firestore key as well potentially exposing it to anyone with logs read access. We recommend upgrading to version 6.1.0 to avoid this issue


Release Notes

googleapis/nodejs-firestore (@​google-cloud/firestore)

v6.2.0

Compare Source

Features
Bug Fixes
  • Minify proto JSON files (#​1771) (6393fe7)
  • Remove hack in update.sh, and replace with existing pattern for protobuf dependencies. (#​1769) (6ba6751)

v6.0.0

Compare Source

⚠ BREAKING CHANGES
  • update library to use Node 12 (#​1725)
Features
Bug Fixes
Build System
5.0.2 (2022-01-07)
Bug Fixes
5.0.1 (2021-12-02)
Bug Fixes

v5.0.2

Compare Source

v5.0.1

Compare Source

v4.15.1

Compare Source

v4.15.0

Compare Source

Features
Bug Fixes
  • Handles identical document ids from different collections. (#​1599) (745b608)
4.14.2 (2021-08-17)
Bug Fixes
4.14.1 (2021-08-02)
Bug Fixes

v4.14.2

Compare Source

v4.14.1

Compare Source

v4.14.0

Compare Source

Features
  • add "NON_EMPTY_DEFAULT" FieldBehavior (#​1554) (8d9c503)
  • allow UnhandledPromiseRejection errors in BulkWriter if no error handler is specified (#​1572) (e862ac8)
4.13.2 (2021-07-14)
Bug Fixes
4.13.1 (2021-07-01)
Bug Fixes

v4.13.2

Compare Source

v4.13.1

Compare Source

v4.13.0

Compare Source

Features
Bug Fixes
4.12.3 (2021-06-16)
Bug Fixes
  • bulkWriter: ensure buffered batches are sent after flush (#​1535) (115a134)
  • GoogleAdsError missing using generator version after 1.3.0 (#​1526) (adfe68e)
4.12.2 (2021-05-27)
Bug Fixes
4.12.1 (2021-05-27)
Bug Fixes

v4.12.3

Compare Source

v4.12.2

Compare Source

v4.12.1

Compare Source

v4.12.0

Compare Source

Features
4.11.1 (2021-05-13)
Bug Fixes

v4.11.1

Compare Source

v4.11.0

Compare Source

Features
4.10.1 (2021-04-28)
Bug Fixes
  • type of QuerySnapshot.docChanges() should be generic (#​1484) (3ed1929)

v4.10.1

Compare Source

v4.10.0

Compare Source

Features
Bug Fixes
  • use BigInt when calculating nanos in Timestamp.fromMillis() (#​1468) (cf1949f)
4.9.9 (2021-04-07)
Bug Fixes
  • BulkWriter: apply rate limiter before sending batch (#​1451) (3a50f8b)
  • remove floating point rounding error in Timestamp.fromMillis() (#​1464) (97e7281)
4.9.8 (2021-03-15)
Bug Fixes
4.9.7 (2021-03-09)
Bug Fixes
  • export v1 and v1beta1 client class types correctly (#​1445) (6c9319e)
  • retry BulkWriter deletes that fail with RST_STREAM error (#​1442) (cccf48d)
4.9.6 (2021-03-03)
Bug Fixes
  • set default max ratelimiter throughput to 10k for BulkWriter (#​1439) (c06fb3c)
4.9.5 (2021-03-02)
Bug Fixes
4.9.4 (2021-02-15)
Bug Fixes
4.9.3 (2021-02-09)
Bug Fixes
4.9.2 (2021-02-05)
Bug Fixes
4.9.1 (2021-01-26)
Bug Fixes
  • handle ignoreUndefinedProperties in set(merge: true) (#​1396) (d870c9d)

v4.9.9

Compare Source

v4.9.8

Compare Source

v4.9.7

Compare Source

v4.9.6

Compare Source

v4.9.5

Compare Source

v4.9.4

Compare Source

v4.9.3

Compare Source

v4.9.2

Compare Source

v4.9.1

Compare Source

v4.8.1

Compare Source

v4.8.0

Compare Source

Features
Bug Fixes
4.7.2 (2020-11-25)
Bug Fixes
4.7.1 (2020-11-10)
Bug Fixes

v4.7.2

Compare Source

v4.7.1

Compare Source

v4.7.0

Compare Source

Features
  • add ability to specify custom headers for individual RPC types (#​1355) (0900379)
4.6.1 (2020-11-03)
Bug Fixes

v4.6.1

Compare Source

v4.6.0

Compare Source

Features
  • add onWriteError() and onWriteResult() handlers to BulkWriter (#​1315) (a173f4d)
Bug Fixes
  • retry transactions that fail with expired transaction IDs (#​1347) (a18ab50)

v4.5.0

Compare Source

Features
Bug Fixes

v4.4.0

Compare Source

Features

v4.2.0

Compare Source

Features
  • allow Settings.host to be used when Settings.servicePath is set (#​1275) (34d6728)
4.1.2 (2020-07-24)
Bug Fixes
4.1.1 (2020-07-09)
Bug Fixes

v4.1.2

Compare Source

v4.1.1

Compare Source

v4.1.0

Compare Source

Features
  • Added Firestore.bulkWriter(), which performs large scale writes in parallel. By default, BulkWriter throttles writes according to the "500/50/5" rule and retries writes that fail due to contention. (#​1252) (d0c6c4b)

v4.0.0

Compare Source

⚠ BREAKING CHANGES
  • drop Node 8 support (#​1006)
  • FirestoreDataConverter.fromFirestore() is now called with a QueryDocumentSnapshot instead of DocumentData (#​965)
Features
  • add support for serialization to BigInt (via settings({useBigInt: true}) (#​1016)
  • add support for set() with SetOptions when using FirestoreDataConverter (#​1087)
  • retry CommitRequests that fail with UNAVAILABLE (#​1235)
Bug Fix
  • remove fallback code that periodically invoked CommitRequests inside Transactions on GCF (#​1112)
  • fixes an error that prevented Firestore from connecting to the Emulator if multiple versions of @grpc/grpc-js are installed (#​1233)
3.8.6 (2020-06-19)
Bug Fixes
3.8.5 (2020-06-10)
Bug Fixes
3.8.4 (2020-06-01)
Bug Fixes
  • send Authentication header with every emulator request (#​1105) (83f617c)
3.8.3 (2020-05-31)
Bug Fixes
3.8.2 (2020-05-30)
Bug Fixes
3.8.1 (2020-05-27)
Bug Fixes
  • Add tests to check fields used in whereIn should be equality filters (#​1081) (3153dd2)
  • capture error stacks across async calls (#​1088) (7acdd7e)

v3.8.6

Compare Source

v3.8.5

Compare Source

v3.8.4

Compare Source

v3.8.3

Compare Source

v3.8.2

Compare Source

v3.8.1

Compare Source

v3.8.0

Compare Source

Features
Bug Fixes
3.7.5 (2020-04-25)
Bug Fixes
3.7.4 (2020-04-09)
Bug Fixes
3.7.3 (2020-03-31)
Bug Fixes
3.7.2 (2020-03-25)
Bug Fixes
  • fix flaky contention test (#​979) (f294998)
  • fix: use Random Number from crypto to generate AutoId (05b3363)
3.7.1 (2020-03-16)
Bug Fixes
  • support Query.stream() as first client operation (#​971) (a48017c)

v3.7.5

Compare Source

v3.7.4

Compare Source

v3.7.3

Compare Source

v3.7.2

Compare Source

v3.7.1

Compare Source

v3.7.0

Compare Source

Features

v3.6.0

Compare Source

Features
3.5.1 (2020-02-19)
Bug Fixes

v3.5.1

Compare Source

v3.5.0

Compare Source

Features
Bug Fixes
  • add missing generics on query (#​917) (c5b9442)
  • better parameter naming in path template helpers (aac02f4)
  • retry streaming methods if initial write errored (#​897) (2ec0489)
3.4.1 (2020-01-22)
Bug Fixes
  • do not assume all custom objects have constructors (#​893) (f668e8e)

v3.4.1

Compare Source

v3.4.0

Compare Source

Features
Bug Fixes
3.3.4 (2020-01-12)
Bug Fixes
3.3.3 (2020-01-08)
Bug Fixes
3.3.2 (2020-01-06)
Bug Fixes
3.3.1 (2020-01-06)
Bug Fixes
  • don't recreate instances when client is idle (0aa2a8b)

v3.3.4

Compare Source

v3.3.3

Compare Source

v3.3.2

Compare Source

v3.3.1

Compare Source

v3.3.0

Compare Source

Features
Bug Fixes

v3.2.0

Compare Source

Features
  • allow specifying how many idle GRPC channels to keep (#​837) (37e93da)
Bug Fixes
  • reduce overhead for listDocuments()/listCollections() (#​838) (5c870e6)

v3.1.0

Compare Source

Features
Bug Fixes

v3.0.0

Compare Source

⚠ BREAKING CHANGES
  • convert Gapic client to TypeScript (#​805)
  • remove deprecated timestampInSnapshots setting (#​808)
Features
Bug Fixes
2.6.1 (2019-12-05)
Bug Fixes
  • deps: pin TypeScript below 3.7.0 (0d4e558)
  • docs: snippets are now replaced in jsdoc comments (#​795) (396bebb)

v2.6.1

Compare Source

v2.6.0

Compare Source

Features

v2.5.0

Compare Source

Features
  • introduces ARRAY_CONTAINS_ANY and IN to operator enum (2c8869d)
Bug Fixes

v2.4.0

Compare Source

Bug Fixes
  • provide custom error for FieldValue subclasses (#​771) (29c3e9b)
  • use compatible version of google-gax (b0c89c5)
Features
  • ability to specify the Collection Group query scope in the V1 Admin API (#​762) (b16cd40)

v2.3.0

Compare Source

Features
2.2.9 (2019-08-30)
Bug Fixes
2.2.8 (2019-08-22)
Bug Fixes
2.2.7 (2019-08-16)
Bug Fixes
2.2.6 (2019-08-02)
Bug Fixes
2.2.5 (2019-08-02)
B

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.


  • If you want to rebase/retry this PR, check this box

This PR was generated by Mend Renovate. View the repository job log.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

0 participants