[Snyk] Upgrade jwt-decode from 3.1.2 to 4.0.0 #10411
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Snyk has created this PR to upgrade jwt-decode from 3.1.2 to 4.0.0. See this package in npm: https://www.npmjs.com/package/jwt-decode See this project in Snyk: https://app.snyk.io/org/platform-PdyoyHbTw9cST38KuLAtvg/project/c47dea13-f7a6-4a2a-8f7d-9a6bff4c902a?utm_source=github-enterprise&utm_medium=referral&page=upgrade-pr
willmcvay
approved these changes
Dec 13, 2023
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR was automatically created by Snyk using the credentials of a real user.
Snyk has created this PR to upgrade jwt-decode from 3.1.2 to 4.0.0.
ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
Warning: This is a major version upgrade, and may be a breaking change.
Release notes
Package name: jwt-decode
-
4.0.0 - 2023-10-27
- No longer include a polyfill for atob, as this is supported in all major browsers (and node environments > 14).
- Compile to ES2017, dropping support for anything that does not support ES2017 (which should be very limited according to caniuse)
- Use Node's atob when running on node.
- Drop support for Node 14 and 16, add support for Node 20.
- Add support for package.json's
- Reorganize build artifacts for better CJS/ESM support (cjs and esm needs to be their own directory with a cjs specific package.json file)
- Drop manual UMD bundle creation in
- Infer JwtPayload and JwtHeader default types from the
-
4.0.0-beta.4 - 2023-09-05
- Raise minimum Node.js version to 18 #209 (jonkoops)
- fix default condition should be the last one #199 (frederikprijck)
-
4.0.0-beta.3 - 2023-08-16
- Drop UMD bundle #193 (frederikprijck)
- Use modern JavaScript syntax #187 (jonkoops)
- Use ESNext as default module system #188 (jonkoops)
- Avoid using any bundlers but use tsc instead #192 (frederikprijck)
-
4.0.0-beta.2 - 2023-08-04
- Avoid using default exports #175 (frederikprijck)
- Make options optional no default function parameter initializer #179 (cristobal)
- Ensure types are bundled and correctly linked #174 (jonkoops)
-
4.0.0-beta.1 - 2023-07-29
- Ensure build is run on prepack #167 (frederikprijck)
-
4.0.0-beta.0 - 2023-07-28
- No longer include a polyfill for atob, as this is supported in all major browsers (and node environments > 14).
- Compile to ES2017, dropping support for anything that does not support ES2017 (which should be very limited according to caniuse)
- Use Node's atob when running on node.
- Drop support for Node 14, add support for Node 20.
- Add support for package.json's
- Reorganize build artifacts for better CJS/ESM support (cjs and esm needs to be their own directory with a cjs specific package.json file)
- Drop manual UMD bundle creation in
- Infer JwtPayload and JwtHeader default types from the
- ESM and CJS decreased by 22%
- UMD decreased by 37%
-
3.1.2 - 2020-11-16
from jwt-decode GitHub release notesA new version of the library, including a couple of improvements:
exportsfield, for better CJS/ESM supportindex.standalone.ts, but rely on rollup instead.headerargument by using overloads.Even though some users might experience breaking changes, mostly because of the
exportsfield, the majority should be able to update without making any changes, assuming the SDK is used in environments with support foratob.Migration to v4.0.0
The
jwtDecodefunction is now no longer the default export, and is instead provided as a named export. Make sure to update your code in places where you are importing this function:Breaking changes
Fixed
Breaking changes
Changed
Changed
Fixed
Fixed
A new version of the library, including a couple of improvements:
exportsfield, for better CJS/ESM supportindex.standalone.ts, but rely on rollup instead.headerargument by using overloads.Additionally, this PR ensures the file size is decreased:
Even though some users might experience breaking changes, mostly because of the
exportsfield, the majority should be able to update without making any changes, assuming the SDK is used in environments with support foratob.3.1.2
Commit messages
Package name: jwt-decode
Compare
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs