Update dependency stripe to v14.25.0 #38
Conversation
![renovate[bot]](https://avatars.githubusercontent.com/in/2740?s=60&v=4){kind=small}
|
Important Review skippedBot user detected. To trigger a single review, invoke the You can disable this status message by setting the Thank you for using CodeRabbit. We offer it for free to the OSS community and would appreciate your support in helping us grow. If you find it useful, would you consider giving us a shout-out on your favorite social media? TipsChatThere are 3 ways to chat with CodeRabbit:
Note: Be mindful of the bot's finite context window. It's strongly recommended to break down tasks such as reading entire modules into smaller chunks. For a focused discussion, use review comments to chat about specific files and their changes, instead of using the PR comments. CodeRabbit Commands (invoked as PR comments)
Additionally, you can add CodeRabbit Configration File (
|
|
Here's the code health analysis summary for commits Analysis Summary
|
renovate
bot
force-pushed
the
renovate/stripe-14.x-lockfile
branch
from
1e67fe8
to
30b2dcd
Compare
![cr-gpt[bot]](https://avatars.githubusercontent.com/in/292659?s=60&v=4){kind=small}
| "integrity": "sha512-iwV5SKoXuRIQFne4twGwiiczOkVW73eE2CKn6ltUKCacDy4SGHBX6kj1/xCV2bzzzQjcVtsh5F1aAbJTmf3tLw==", | ||
| "version": "14.21.0", | ||
| "resolved": "https://registry.npmjs.org/stripe/-/stripe-14.21.0.tgz", | ||
| "integrity": "sha512-PFmpl35Myn6UDdVLTHcuppdbkPVvlQfkMHOmgGZh5QOdSUxVmvz090Z4obLg8ta1MNs1PNpzr9i7E39iAIv07A==", | ||
| "dependencies": { | ||
| "@types/node": ">=8.1.0", | ||
| "qs": "^6.11.0" |
There was a problem hiding this comment.
-
Version Bump:
- The version for
stripehas been updated from "14.17.0" to "14.21.0". Ensure compatibility with other dependencies considering this change.
- The version for
-
Dependency Update:
qsdependency remains at "^6.11.0". Consider updating this dependency to the latest compatible version if necessary.
-
Security:
- Confirm that the new version of
stripedoes not introduce security vulnerabilities or issues that might impact your application.
- Confirm that the new version of
-
URL Changes:
- Check if the new resolved URL for
stripepoints to a valid and trusted source.
- Check if the new resolved URL for
-
Checksum Integrity:
- The integrity hash has been updated based on the new version. Ensure that the new hash matches the integrity of the downloaded package.
-
Testing:
- After the update, test relevant functionalities thoroughly to ensure that components using
stripecontinue to work as expected.
- After the update, test relevant functionalities thoroughly to ensure that components using
-
Documentation:
- Update any relevant documentation or README files to reflect the changes made to the
stripedependency.
- Update any relevant documentation or README files to reflect the changes made to the
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/stripe-14.x-lockfile
branch
from
30b2dcd
to
c3184e2
Compare
| "integrity": "sha512-iwV5SKoXuRIQFne4twGwiiczOkVW73eE2CKn6ltUKCacDy4SGHBX6kj1/xCV2bzzzQjcVtsh5F1aAbJTmf3tLw==", | ||
| "version": "14.22.0", | ||
| "resolved": "https://registry.npmjs.org/stripe/-/stripe-14.22.0.tgz", | ||
| "integrity": "sha512-Pj8SAdTNjMq42UnWzBTTy8KMQ8qbQoVemPHbw3x+rHvwq1Psg9UFPT58j54F5os/SCgUAOZSEMcUedvzIDuqvw==", | ||
| "dependencies": { | ||
| "@types/node": ">=8.1.0", | ||
| "qs": "^6.11.0" |
There was a problem hiding this comment.
Code Review:
-
Version Update:
- The version of
"stripe"has been changed from"14.17.0"to"14.22.0". - Corresponding integrity checksum (
integrity) has been updated.
- The version of
-
Dependency Updates / Changes:
- No explicit dependency changes are present in the provided snippet.
- The dependencies
"@types/node"and"qs"remain with their specified versions.
-
Risk Assessment:
- The code patch appears to mainly involve a version update of the
"stripe"package and its associated integrity checksum. - Given that it's a straightforward version bump without evident code modifications, there shouldn't be significant new risks introduced.
- The code patch appears to mainly involve a version update of the
-
Improvement Suggestions:
- Consider providing more context around why the version update was necessary (e.g., bug fixes, new features, security patches).
- Ensure the compatibility of the new versions with existing components and any downstream dependencies.
Overall, the provided code patch seems minimal and specific to updating the "stripe" package version. It looks safe on its own, but always test thoroughly in your development environment before deploying changes to production.
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/stripe-14.x-lockfile
branch
from
c3184e2
to
78025d8
Compare
| "integrity": "sha512-iwV5SKoXuRIQFne4twGwiiczOkVW73eE2CKn6ltUKCacDy4SGHBX6kj1/xCV2bzzzQjcVtsh5F1aAbJTmf3tLw==", | ||
| "version": "14.22.0", | ||
| "resolved": "https://registry.npmjs.org/stripe/-/stripe-14.22.0.tgz", | ||
| "integrity": "sha512-Pj8SAdTNjMq42UnWzBTTy8KMQ8qbQoVemPHbw3x+rHvwq1Psg9UFPT58j54F5os/SCgUAOZSEMcUedvzIDuqvw==", | ||
| "dependencies": { | ||
| "@types/node": ">=8.1.0", | ||
| "qs": "^6.11.0" |
There was a problem hiding this comment.
Code Review:
-
Version Update:
- The version of the
"stripe"module has been updated from14.17.0to14.22.0, and the corresponding resolved URL and integrity hash have been updated. This seems like a routine package update.
- The version of the
-
Dependency Updates:
- Dependencies are specified for the
"stripe"module ("@types/node": ">=8.1.0", "qs": "^6.11.0"). Ensure that these dependencies are up-to-date and compatible with the current project setup.
- Dependencies are specified for the
-
Risk and Improvement Suggestions:
- Risk: Verify if the updated version
14.22.0of"stripe"or its dependencies introduce any breaking changes in functionality or security vulnerabilities. - Improvement:
- Regularly review and update dependencies to ensure you benefit from bug fixes, performance improvements, and security patches.
- Consider using a lock file (e.g.,
package-lock.jsonoryarn.lock) to maintain consistent dependency versions across environments.
- Risk: Verify if the updated version
-
Code Quality:
- Based on the provided snippet, no apparent code quality issues are visible. The changes seem straightforward and limited to updating the version information for the Stripe module.
-
Testing:
- After this change, it would be advisable to run tests to verify that the functionality of your application hasn't been impacted by the updates.
-
Documentation:
- Ensure that relevant documentation is updated to reflect the changes made to the Stripe module version.
Overall:
The code patch appears to be a standard version upgrade for the Stripe module. Ensure that the updated version works as expected with existing code and dependencies. Continue monitoring for potential issues post-upgrade, and consider automating dependency checks to stay informed about newer releases and potential vulnerabilities in dependencies.
renovate
bot
force-pushed
the
renovate/stripe-14.x-lockfile
branch
from
78025d8
to
b18a7df
Compare
renovate
bot
changed the title
| "integrity": "sha512-iwV5SKoXuRIQFne4twGwiiczOkVW73eE2CKn6ltUKCacDy4SGHBX6kj1/xCV2bzzzQjcVtsh5F1aAbJTmf3tLw==", | ||
| "version": "14.23.0", | ||
| "resolved": "https://registry.npmjs.org/stripe/-/stripe-14.23.0.tgz", | ||
| "integrity": "sha512-OPD7LqBmni6uDdqA05GGgMZyyRWxJOehONBNC9tYgY4Uh089EtXd6QLIgRGrqTDlQH3cA2BXo848nxwa/zsQzw==", | ||
| "dependencies": { | ||
| "@types/node": ">=8.1.0", | ||
| "qs": "^6.11.0" |
There was a problem hiding this comment.
This code patch shows an update to the version of the "stripe" package from "14.17.0" to "14.23.0". Here are some points for your code review:
Bug Risk:
- The update involves changing the version number and integrity hash, which must align with what is published on the npm registry. Ensure that the new version works correctly in your project and doesn't introduce any unexpected bugs.
Improvement Suggestions:
-
Consistency in Version Updates: If you're updating the
"stripe"package due to a fix or feature enhancement, consider updating related packages to maintain compatibility and potentially optimize performance. -
Security Considerations: Always keep dependencies up-to-date to leverage security patches and improvements.
-
Automated Testing: After updating dependencies, run tests to validate that your application still functions correctly with the new version.
-
Review Changes: Verify if there are any specific changes in the
"stripe"package between the two versions that might affect your application. Check the release notes or changelog for any breaking changes or deprecations. -
Dependency Locking: If not done already, consider using a lock file (like
package-lock.jsonoryarn.lock) to ensure consistent installations across different environments.
Remember, these suggestions aim to enhance code stability, security, and performance. Always tailor them according to your project's specific needs and requirements.
renovate
bot
force-pushed
the
renovate/stripe-14.x-lockfile
branch
from
b18a7df
to
ff610c8
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/stripe-14.x-lockfile
branch
from
ff610c8
to
4ca88d5
Compare
renovate
bot
changed the title
renovate
bot
force-pushed
the
renovate/stripe-14.x-lockfile
branch
from
4ca88d5
to
b4604ea
Compare
|
renovate
bot
force-pushed
the
renovate/stripe-14.x-lockfile
branch
from
b4604ea
to
2aafef5
Compare
|
This PR contains the following updates:
14.17.0->14.25.0Release Notes
stripe/stripe-node (stripe)
v14.25.0Compare Source
Entitlements.ActiveEntitlementandEntitlements.Featurelistandretrievemethods on resourceActiveEntitlementcreate,list,retrieve, andupdatemethods on resourceFeaturecontrolleronAccountCreateParamsfees,losses,requirement_collection, andstripe_dashboardonAccount.controllernoneon enumAccount.typeevent_nameonBilling.MeterEventAdjustmentCreateParamsandBilling.MeterEventAdjustmentcancelandtypeonBilling.MeterEventAdjustmentv14.24.0Compare Source
Charge.payment_method_details.us_bank_account.payment_reference,PaymentIntent.next_action.swish_handle_redirect_or_display_qr_code.hosted_instructions_url,PaymentIntent.next_action.swish_handle_redirect_or_display_qr_code.mobile_auth_url,PaymentIntent.next_action.swish_handle_redirect_or_display_qr_code.qr_code.data,PaymentIntent.next_action.swish_handle_redirect_or_display_qr_code.qr_code.image_url_png,PaymentIntent.next_action.swish_handle_redirect_or_display_qr_code.qr_code.image_url_svg,PaymentIntent.next_action.swish_handle_redirect_or_display_qr_code.qr_code, andPaymentIntent.payment_method_options.swish.referenceto be requiredCheckout.SessionCreateParams.payment_method_options.swish.referencefromemptyable(string)tostringsubscription_itemonDiscountemailandphoneonIdentity.VerificationReport,Identity.VerificationSession.options,Identity.VerificationSession.verified_outputs,Identity.VerificationSessionCreateParams.options, andIdentity.VerificationSessionUpdateParams.optionsverification_flowonIdentity.VerificationReport,Identity.VerificationSessionCreateParams, andIdentity.VerificationSessionverification_flowon enumsIdentity.VerificationReport.typeandIdentity.VerificationSession.typeprovided_detailsonIdentity.VerificationSessionCreateParams,Identity.VerificationSessionUpdateParams, andIdentity.VerificationSessionIdentity.VerificationSessionCreateParams.typeto be optionalemail_unverified_other,email_verification_declined,phone_unverified_other, andphone_verification_declinedon enumIdentity.VerificationSession.last_error.codepromotion_codeonInvoiceCreateParams.discounts[],InvoiceItemCreateParams.discounts[],InvoiceItemUpdateParams.discounts[],InvoiceUpdateParams.discounts[],QuoteCreateParams.discounts[], andQuoteUpdateParams.discounts[]discountsonInvoiceUpcomingLinesParams.subscription_items[],InvoiceUpcomingParams.subscription_items[],QuoteCreateParams.line_items[],QuoteUpdateParams.line_items[],SubscriptionCreateParams.add_invoice_items[],SubscriptionCreateParams.items[],SubscriptionCreateParams,SubscriptionItemCreateParams,SubscriptionItemUpdateParams,SubscriptionItem,SubscriptionSchedule.phases[].add_invoice_items[],SubscriptionSchedule.phases[].items[],SubscriptionSchedule.phases[],SubscriptionScheduleCreateParams.phases[].add_invoice_items[],SubscriptionScheduleCreateParams.phases[].items[],SubscriptionScheduleCreateParams.phases[],SubscriptionScheduleUpdateParams.phases[].add_invoice_items[],SubscriptionScheduleUpdateParams.phases[].items[],SubscriptionScheduleUpdateParams.phases[],SubscriptionUpdateParams.add_invoice_items[],SubscriptionUpdateParams.items[],SubscriptionUpdateParams, andSubscriptionInvoice.discountsfromarray(expandable(deletable($Discount))) | nulltoarray(expandable(deletable($Discount)))allowed_merchant_countriesandblocked_merchant_countriesonIssuing.Card.spending_controls,Issuing.CardCreateParams.spending_controls,Issuing.CardUpdateParams.spending_controls,Issuing.Cardholder.spending_controls,Issuing.CardholderCreateParams.spending_controls, andIssuing.CardholderUpdateParams.spending_controlsziponPaymentMethodConfigurationCreateParams,PaymentMethodConfigurationUpdateParams, andPaymentMethodConfigurationofflineonSetupAttempt.payment_method_details.card_presentcard_presentonSetupIntent.payment_method_options,SetupIntentConfirmParams.payment_method_options,SetupIntentCreateParams.payment_method_options, andSetupIntentUpdateParams.payment_method_optionsmobile_phone_readeron enumsTerminal.Reader.device_typeandTerminal.ReaderListParams.device_typev14.23.0Compare Source
Billing.MeterEventAdjustment,Billing.MeterEvent, andBilling.Metercreate,deactivate,list,reactivate,retrieve, andupdatemethods on resourceMetercreatemethod on resourcesMeterEventAdjustmentandMeterEventamazon_pay_paymentsonAccount.capabilities,AccountCreateParams.capabilities, andAccountUpdateParams.capabilitiesverification_failed_representative_authorityon enumsAccount.future_requirements.errors[].code,Account.requirements.errors[].code,BankAccount.future_requirements.errors[].code, andBankAccount.requirements.errors[].codedestination_on_behalf_of_charge_managementonAccountSession.components.payment_details.features,AccountSession.components.payments.features,AccountSessionCreateParams.components.payment_details.features, andAccountSessionCreateParams.components.payments.featuresmandateonCharge.payment_method_details.us_bank_account,Treasury.InboundTransfer.origin_payment_method_details.us_bank_account,Treasury.OutboundPayment.destination_payment_method_details.us_bank_account, andTreasury.OutboundTransfer.destination_payment_method_details.us_bank_accountsecond_lineonIssuing.CardCreateParamsmeteronPlanCreateParams,Plan,Price.recurring,PriceCreateParams.recurring, andPriceListParams.recurringv14.22.0Compare Source
ConfirmationTokenandForwarding.Requestretrievemethod on resourceConfirmationTokencreate,list, andretrievemethods on resourceRequestmobilepay_paymentsonAccount.capabilities,AccountCreateParams.capabilities, andAccountUpdateParams.capabilitiesforwarding_api_inactive,forwarding_api_invalid_parameter,forwarding_api_upstream_connection_error, andforwarding_api_upstream_connection_timeouton enumsInvoice.last_finalization_error.code,PaymentIntent.last_payment_error.code,SetupAttempt.setup_error.code,SetupIntent.last_setup_error.code, andStripeError.codemobilepayonCharge.payment_method_details,PaymentIntent.payment_method_options,PaymentIntentConfirmParams.payment_method_data,PaymentIntentConfirmParams.payment_method_options,PaymentIntentCreateParams.payment_method_data,PaymentIntentCreateParams.payment_method_options,PaymentIntentUpdateParams.payment_method_data,PaymentIntentUpdateParams.payment_method_options,PaymentMethodCreateParams,PaymentMethod,SetupIntentConfirmParams.payment_method_data,SetupIntentCreateParams.payment_method_data, andSetupIntentUpdateParams.payment_method_datapayment_referenceonCharge.payment_method_details.us_bank_accountmobilepayon enumsCustomerListPaymentMethodsParams.type,PaymentMethodCreateParams.type, andPaymentMethodListParams.typeconfirmation_tokenonPaymentIntentConfirmParams,PaymentIntentCreateParams,SetupIntentConfirmParams, andSetupIntentCreateParamsmobilepayon enumsPaymentIntentConfirmParams.payment_method_data.type,PaymentIntentCreateParams.payment_method_data.type,PaymentIntentUpdateParams.payment_method_data.type,SetupIntentConfirmParams.payment_method_data.type,SetupIntentCreateParams.payment_method_data.type, andSetupIntentUpdateParams.payment_method_data.typemobilepayon enumPaymentMethod.typenameonTerminal.ConfigurationCreateParams,Terminal.ConfigurationUpdateParams, andTerminal.ConfigurationpayoutonTreasury.ReceivedDebit.linked_flowsv14.21.0Compare Source
Issuing.PersonalizationDesignandIssuing.PhysicalBundlecreate,list,retrieve, andupdatemethods on resourcePersonalizationDesignlistandretrievemethods on resourcePhysicalBundlepersonalization_designonIssuing.CardCreateParams,Issuing.CardListParams,Issuing.CardUpdateParams, andIssuing.CardSubscriptionCreateParams.application_fee_percentandSubscriptionUpdateParams.application_fee_percentfromnumbertoemptyStringable(number)sepa_debitonSubscription.payment_settings.payment_method_options,SubscriptionCreateParams.payment_settings.payment_method_options, andSubscriptionUpdateParams.payment_settings.payment_method_optionsv14.20.0Compare Source
documentsonAccountSession.componentsandAccountSessionCreateParams.componentsrequest_three_d_secureonCheckout.Session.payment_method_options.cardandCheckout.SessionCreateParams.payment_method_options.cardcreatedonCreditNoteListParamssepa_debitonInvoice.payment_settings.payment_method_options,InvoiceCreateParams.payment_settings.payment_method_options, andInvoiceUpdateParams.payment_settings.payment_method_optionsv14.19.0Compare Source
Identity.VerificationReport.type,SubscriptionSchedule.default_settings.invoice_settings.account_tax_ids,SubscriptionSchedule.phases[].invoice_settings.account_tax_ids, andTaxId.ownerto be requiredIdentity.VerificationSession.typefromenum('document'|'id_number') | nulltoenum('document'|'id_number')numberonInvoiceCreateParamsandInvoiceUpdateParamsenable_customer_cancellationonTerminal.Reader.action.process_payment_intent.process_config,Terminal.Reader.action.process_setup_intent.process_config,Terminal.ReaderProcessPaymentIntentParams.process_config, andTerminal.ReaderProcessSetupIntentParams.process_configrefund_payment_configonTerminal.Reader.action.refund_paymentandTerminal.ReaderRefundPaymentParamspayment_methodonTokenCreateParams.bank_accountv14.18.0Compare Source
client_reference_idonIdentity.VerificationReportListParams,Identity.VerificationReport,Identity.VerificationSessionCreateParams,Identity.VerificationSessionListParams, andIdentity.VerificationSessioninclude_and_requirefrom enumInvoiceCreateParams.pending_invoice_items_behaviorservice_taxfrom enumsTaxRate.tax_type,TaxRateCreateParams.tax_type, andTaxRateUpdateParams.tax_typecreatedonTreasury.OutboundPaymentListParamsCapabilityListParamsrenamed toAccountListCapabilitiesParamsCapabilityRetrieveParamsrenamed toAccountRetrieveCapabilityParamsCapabilityUpdateParamsrenamed toAccountUpdateCapabilityParamsCashBalanceRetrieveParamsrenamed toCustomerRetrieveCashBalanceParamsCashBalanceUpdateParamsrenamed toCustomerUpdateCashBalanceParamsCreditNoteLineItemListParamsrenamed toCreditNoteListLineItemsParamsCustomerBalanceTransactionCreateParamsrenamed toCustomerCreateBalanceTransactionParamsCustomerBalanceTransactionListParamsrenamed toCustomerListBalanceTransactionsParamsCustomerBalanceTransactionRetrieveParamsrenamed toCustomerRetrieveBalanceTransactionParamsCustomerBalanceTransactionUpdateParamsrenamed toCustomerUpdateBalanceTransactionParamsCustomerCashBalanceTransactionListParamsrenamed toCustomerListCashBalanceTransactionsParamsCustomerCashBalanceTransactionRetrieveParamsrenamed toCustomerRetrieveCashBalanceTransactionParamsCustomerSourceCreateParamsrenamed toCustomerCreateSourceParamsCustomerSourceDeleteParamsrenamed toCustomerDeleteSourceParamsCustomerSourceListParamsrenamed toCustomerListSourcesParamsCustomerSourceRetrieveParamsrenamed toCustomerRetrieveSourceParamsCustomerSourceUpdateParamsrenamed toCustomerUpdateSourceParamsCustomerSourceVerifyParamsrenamed toCustomerVerifySourceParamsExternalAccountCreateParamsrenamed toAccountCreateExternalAccountParamsExternalAccountDeleteParamsrenamed toAccountDeleteExternalAccountParamsExternalAccountListParamsrenamed toAccountListExternalAccountsParamsExternalAccountRetrieveParamsrenamed toAccountRetrieveExternalAccountParamsExternalAccountUpdateParamsrenamed toAccountUpdateExternalAccountParamsFeeRefundCreateParamsrenamed toApplicationFeeCreateRefundParamsFeeRefundListParamsrenamed toApplicationFeeListRefundsParamsFeeRefundRetrieveParamsrenamed toApplicationFeeRetrieveRefundParamsFeeRefundUpdateParamsrenamed toApplicationFeeUpdateRefundParamsInvoiceLineItemListParamsrenamed toInvoiceListLineItemsParamsInvoiceLineItemUpdateParamsrenamed toInvoiceUpdateLineItemParamsLoginLinkCreateParamsrenamed toAccountCreateLoginLinkParamsPersonCreateParamsrenamed toAccountCreatePersonParamsPersonDeleteParamsrenamed toAccountDeletePersonParamsPersonListParamsrenamed toAccountListPersonsParamsPersonRetrieveParamsrenamed toAccountRetrievePersonParamsPersonUpdateParamsrenamed toAccountUpdatePersonParamsTaxIdCreateParamsrenamed toCustomerCreateTaxIdParamsTaxIdDeleteParamsrenamed toCustomerDeleteTaxIdParamsTaxIdListParamsrenamed toCustomerListTaxIdsParamsTaxIdRetrieveParamsrenamed toCustomerRetrieveTaxIdParamsTransferReversalCreateParamsrenamed toTransferCreateReversalParamsTransferReversalListParamsrenamed toTransferListReversalsParamsTransferReversalRetrieveParamsrenamed toTransferRetrieveReversalParamsTransferReversalUpdateParamsrenamed toTransferUpdateReversalParamsUsageRecordCreateParamsrenamed toSubscriptionItemCreateUsageRecordParamsUsageRecordSummaryListParamsrenamed toSubscriptionItemListUsageRecordSummariesParamsOld names will still work but are deprecated and will be removed in future versions.
create,del,list, andretrievemethods on resourceTaxIdConfiguration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR was generated by Mend Renovate. View the repository job log.