From b28167a85a2023b9667c0784a3aed8ada3efba19 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Fri, 15 Dec 2023 09:22:50 +0100
Subject: [PATCH] Bump oidc-provider from 8.4.2 to 8.4.3 (#704)
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit
Bumps [oidc-provider](https://github.com/panva/node-oidc-provider) from
8.4.2 to 8.4.3.
Changelog
Sourced from oidc-provider's
changelog.
8.4.3
(2023-12-14)
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all
of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
Signed-off-by: dependabot[bot]
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
---
package-lock.json | 14 +++++++-------
1 file changed, 7 insertions(+), 7 deletions(-)
diff --git a/package-lock.json b/package-lock.json
index cda2c6f8..a6816576 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -1476,9 +1476,9 @@
}
},
"node_modules/@koa/cors": {
- "version": "4.0.0",
- "resolved": "https://registry.npmjs.org/@koa/cors/-/cors-4.0.0.tgz",
- "integrity": "sha512-Y4RrbvGTlAaa04DBoPBWJqDR5gPj32OOz827ULXfgB1F7piD1MB/zwn8JR2LAnvdILhxUbXbkXGWuNVsFuVFCQ==",
+ "version": "5.0.0",
+ "resolved": "https://registry.npmjs.org/@koa/cors/-/cors-5.0.0.tgz",
+ "integrity": "sha512-x/iUDjcS90W69PryLDIMgFyV21YLTnG9zOpPXS7Bkt2b8AsY3zZsIpOLBkYr9fBcF3HbkKaER5hOBZLfpLgYNw==",
"dev": true,
"dependencies": {
"vary": "^1.1.2"
@@ -9933,12 +9933,12 @@
}
},
"node_modules/oidc-provider": {
- "version": "8.4.2",
- "resolved": "https://registry.npmjs.org/oidc-provider/-/oidc-provider-8.4.2.tgz",
- "integrity": "sha512-2uYTNcgstsp8NZtEnAuBkri1i4ziLLGYqe1TgbmLWg6Qh3X0rzGQjny9NJeit6TLvF8TmaeRm1L2FN8Y8C8aQQ==",
+ "version": "8.4.3",
+ "resolved": "https://registry.npmjs.org/oidc-provider/-/oidc-provider-8.4.3.tgz",
+ "integrity": "sha512-XEGMwSJEMXf0z2lKLts/y5p9cd5hBODKmwJnLeOhdKJh8kgYfFLYtc555/9cBBLmQ4JBnK4xb/zk1AGbvZdYvw==",
"dev": true,
"dependencies": {
- "@koa/cors": "^4.0.0",
+ "@koa/cors": "^5.0.0",
"@koa/router": "^12.0.1",
"debug": "^4.3.4",
"eta": "^3.2.0",