nodejs-getting-started
nodejs-getting-started copied to clipboard

Published 20 hours ago •

GoogleCloudPlatform

Reame
Issues

fix(deps): update dependency @google-cloud/firestore to v7 [security]

Open renovate-bot opened this issue 1 year ago • 1 comments

This PR contains the following updates:

Package	Change	Age	Adoption	Passing	Confidence
@google-cloud/firestore	`^5.0.0` -> `^7.0.0`

GitHub Vulnerability Alerts

CVE-2023-6460

A potential logging of the firestore key via logging within nodejs-firestore exists - Developers who were logging objects through this._settings would be logging the firestore key as well potentially exposing it to anyone with logs read access. We recommend upgrading to version 6.1.0 to avoid this issue

Release Notes

googleapis/nodejs-firestore (@google-cloud/firestore)

`v7.3.0`

Features

Expose the undeliverable_first_gen_event.proto (b4f7d60)

Bug Fixes

Allow an explicit MustExist precondition for update (#1985) (99d60a6)
Fix redaction of credentials in Firestore settings (#1989) (98e668b)
Improve retry logic for streaming API calls (b4f7d60)
Removed unsupported QueryMode, QueryPlan, and ResultSetStats protos (b4f7d60)

`v7.2.0`

Features

Add new types QueryMode, QueryPlan, ResultSetStats (#1911) (8f77b68)
Expose databaseId and projectId getter on Firestore class (#1937) (d9c867f), closes #1936

Bug Fixes

Make transaction rollback best effort. (#1967) (1d76546)

`v7.1.0`

Features

Sum and Average aggregations (#1873) (b9ea514)

`v7.0.0`

⚠ BREAKING CHANGES

upgrade to Node 14 (#1900)
Fix the UpdateData incorrect parameter type issue (#1887)

Features

Fix the UpdateData incorrect parameter type issue (#1887) (0afadef)

Bug Fixes

Remove DocumentReference from cursor (#1882) (da4f8f8)

Miscellaneous Chores

Upgrade to Node 14 (#1900) (1f5abb8)

`v6.8.0`

Features

Publish proto definitions for SUM/AVG in Firestore (#1856) (ac35b37)

Bug Fixes

deps: Use protobufjs v7.2.5 (#1889)
Add tests for multiple inequality support (#1878) (8e621d5)

`v6.7.0`

Features

Expose MultiDb (#1857) (1e913db)

Bug Fixes

Resolving issues with MultiDb support (#1864) (1af49c1)

`v6.6.1`

Bug Fixes

Updated logging in the client pool and client factory to log information about the required transport and actual transport used. (#1853) (fe03d02)

`v6.6.0`

Features

Add ApiScope and COLLECTION_RECURSIVE query_scope for Firestore index (#1849) (b671452)
Add bloom filter related proto fields (#1843) (b64e0c1)
Add support for environment variable FIRESTORE_PREFER_REST (#1848) (96b1d2a)

`v6.5.0`

Features

OR Queries (#1800) (983a477)

Bug Fixes

Enable REST numeric enums (#1829) (3737696)
Update generated proto types; fix the update script (#1825) (a7e4212)

`v6.4.3`

Bug Fixes

deps: Use google-gax v3.5.3 (#1818) (88981ad)
Emulator support for system tests. Run system tests against the emulator using: yarn system-test:grpc:emulator or yarn system-test:rest:emulator (8aedc63)
Update the depth validation used when writing documents, so that it matches the validation of the Firestore backend. (789d9eb)

`v6.4.2`

Bug Fixes

deps: Use google-gax v3.5.2 (#1794) (b1a0313)
Ensure that the client pool consistently uses gRPC clients after transitioning from REST (3068361)
Fix duplicates in Query.stream() with back pressure (#1806) (a5b680d)

`v6.4.1`

Bug Fixes

Force use of http by the GAX module when using the GAX fallback and connecting to the emulator (#1788) (50747ad)

`v6.4.0`

Features

Add internal multi-db support (#1761) (5ba8df0)
COUNT Queries (#1774) (bcaecb4)

Bug Fixes

Remove @internal annotation from snapshot_ (#1728) (983ab89)

`v6.3.0`

Features

Add aggregation query APIs (#1765) (18be4d0)

Bug Fixes

Tests will now verify asynchronous termination of underlying steam, and fix related bug. (#1772) (a1717ff)

`v6.2.0`

Features

Use REST (#1698) (d85b0e9)

Bug Fixes

Minify proto JSON files (#1771) (6393fe7)
Remove hack in update.sh, and replace with existing pattern for protobuf dependencies. (#1769) (6ba6751)

`v6.0.0`

⚠ BREAKING CHANGES

update library to use Node 12 (#1725)

Features

Enable RunQueryResponse.done (#1712) (0cc549c)
Support Logical Termination on RunQueryResponse (#1741) (07de28a)
support regapic LRO (#1729) (b9d8fef)
update client libraries to support Database operations (#1676) (533aade)

Bug Fixes

change REST binding for ListDocuments to support root collection (#1695) (6185f13)
deps: update dependency protobufjs to v7 (#1747) (4e8d33c)
split v1 and v1beta1 protos to improve startup time (#1664) (f3729cf)

Build System

update library to use Node 12 (#1725) (0abbd21)

5.0.2 (2022-01-07)

Bug Fixes

remove serializer check from Query.isEqual() (#1654) (f13da18)

5.0.1 (2021-12-02)

Bug Fixes

save negative zero as doubleValue (#1639) (a6ba5cc)

Configuration

📅 Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR is behind base branch, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

[ ] If you want to rebase/retry this PR, check this box

This PR has been generated by Mend Renovate. View repository job log here.

Jan 04 '24 17:01 renovate-bot

/gcbrun

Jan 04 '24 17:01 dpebot