fix(deps): update dependency jose to v4.15.5
This MR contains the following updates:
| Package | Type | Update | Change |
|---|---|---|---|
| jose | dependencies | minor | 4.8.1 -> 4.15.5 |
Release Notes
panva/jose (jose)
v4.15.5
Fixes
- add a maxOutputLength option to zlib inflate (1b91d88), fixes CVE-2024-28176
v4.15.4
Fixes
v4.15.3
v4.15.2
Fixes
- build: add a node target for jose-browser-runtime releases (abb63d0)
v4.15.1
Fixes
- resolve missing types for the cryptoRuntime const (1627965)
v4.15.0
Features
- export the used crypto runtime as a constant (0681dda)
v4.14.6
Fixes
v4.14.5
Refactor
- catch type error when decoding base64url signature (#569) (935e920)
- catch type errors when decoding various base64url strings (9024e87)
v4.14.4
Refactor
- cleanup NODE-ED25519 workerd workarounds (072e83d)
v4.14.3
Reverts
- Revert "fix(types): headers and payloads may only be JSON values and primitives" (06d8101), closes #534
v4.14.2
Fixes
- types: headers and payloads may only be JSON values and primitives (24f306e)
v4.14.1
v4.14.0
Features
- add requiredClaims JWT validation option (eeea91d)
v4.13.2
Refactor
- src/util/decode_protected_header.ts (5716725)
v4.13.1
Fixes
- workerd: avoid "The script will never generate a response" edge cases completely (96a8c99), closes #355 #509
v4.13.0
Features
- types: allow generics to aid in CryptoKey or KeyObject narrowing of KeyLike (6effa4d)
Fixes
- make jose.EmbeddedJWK arguments optional (20610a9)
v4.12.2
Fixes
- types: declare explicit return from EmbeddedJWK (46934ac)
v4.12.1
Refactor
- clarify when alg is used and required on key imports (19e525f)
- node: have node:crypto deal with x509 parsing (45bb45d)
v4.12.0
Features
- enable key iteration over JWKSMultipleMatchingKeys (a278acd)
v4.11.4
Fixes
- build: ignore deno files in npm publishes (b3d6a11)
v4.11.3
Fixes
- CF Workers: improve miniflare compat with different Node.js versions, get ready for future non-proprietary support (3406b9f), closes #446 #495 #497
v4.11.2
Refactor
- node: dry node version checks (aff2f7c)
v4.11.1
v4.11.0
Features
- add bun as a supported runtime (3a63631)
Fixes
- respect JWK ext for symmetric keys (20557fc)
v4.10.4
Fixes
- typo in importPKSC8 error message (#468) (746bc64)
- workaround for invalid use checks on CF Workers and Deno (e4d04eb)
v4.10.3
v4.10.2
v4.10.1
v4.10.0
Features
- Curve25519, and Curve448 support for WebCryptoAPI runtimes (fea359a)
Fixes
v4.9.3
Refactor
- update CEK length validation error message (81a92a9)
- update key input validation error messages (2eac34a)
- update keylike description for WinterCG (6741679)
v4.9.2
Fixes
- limit default PBES2 alg's computational expense (03d6d01)
v4.9.1
Fixes
- deno: add a Deno package entrypoint (9f3c459)
v4.9.0
Features
- add support for RFC 9278 - JWK Thumbprint URI (d06ce65)
Refactor
- consume some base64url decode errors (#436) (caaf2c3)
- unify JOSENotSupported throw on key export (fe5d093)
v4.8.3
Configuration
-
If you want to rebase/retry this MR, check this box
This MR has been generated by Renovate Bot.
Edited by Ghost User