From a8ccc2e3ec7a15b4e3bcc5f23b090c165234e7a4 Mon Sep 17 00:00:00 2001 From: Christopher Banck Date: Thu, 4 Dec 2025 12:30:17 +0100 Subject: [PATCH 1/2] update to cf cli v8.17.0 --- action.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/action.yaml b/action.yaml index d3e8672..36cf8ca 100644 --- a/action.yaml +++ b/action.yaml @@ -46,7 +46,7 @@ inputs: version: description: "cf cli version" required: true - default: "8.16.0" + default: "8.17.0" runs: using: "node20" main: "dist/index.js" From 7afb4bf25f05445c65cc13b626dcc06d81b8e7d6 Mon Sep 17 00:00:00 2001 From: Christopher Banck Date: Thu, 4 Dec 2025 12:30:28 +0100 Subject: [PATCH 2/2] update dependencies --- action.yaml | 2 +- dist/index.js | 275 ++++++++++++++++++++++++++++++++++++++-------- package-lock.json | 82 +++++++------- package.json | 12 +- 4 files changed, 275 insertions(+), 96 deletions(-) diff --git a/action.yaml b/action.yaml index 36cf8ca..6c52635 100644 --- a/action.yaml +++ b/action.yaml @@ -48,5 +48,5 @@ inputs: required: true default: "8.17.0" runs: - using: "node20" + using: "node24" main: "dist/index.js" diff --git a/dist/index.js b/dist/index.js index bad090e..4f856d9 100644 --- a/dist/index.js +++ b/dist/index.js @@ -4614,6 +4614,9 @@ module.exports = function(algorithm, key) { /***/ 8448: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const ANY = Symbol('SemVer ANY') // hoisted class for cyclic dependency class Comparator { @@ -4762,6 +4765,9 @@ const Range = __nccwpck_require__(4967) /***/ 4967: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SPACE_CHARACTERS = /\s+/g // hoisted class for cyclic dependency @@ -5017,6 +5023,7 @@ const isSatisfiable = (comparators, options) => { // already replaced the hyphen ranges // turn into a set of JUST comparators. const parseComparator = (comp, options) => { + comp = comp.replace(re[t.BUILD], '') debug('comp', comp, options) comp = replaceCarets(comp, options) debug('caret', comp) @@ -5323,9 +5330,12 @@ const testSet = (set, version, options) => { /***/ 5412: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const debug = __nccwpck_require__(7384) const { MAX_LENGTH, MAX_SAFE_INTEGER } = __nccwpck_require__(5994) -const { safeRe: re, safeSrc: src, t } = __nccwpck_require__(5862) +const { safeRe: re, t } = __nccwpck_require__(5862) const parseOptions = __nccwpck_require__(6555) const { compareIdentifiers } = __nccwpck_require__(3523) @@ -5434,11 +5444,25 @@ class SemVer { other = new SemVer(other, this.options) } - return ( - compareIdentifiers(this.major, other.major) || - compareIdentifiers(this.minor, other.minor) || - compareIdentifiers(this.patch, other.patch) - ) + if (this.major < other.major) { + return -1 + } + if (this.major > other.major) { + return 1 + } + if (this.minor < other.minor) { + return -1 + } + if (this.minor > other.minor) { + return 1 + } + if (this.patch < other.patch) { + return -1 + } + if (this.patch > other.patch) { + return 1 + } + return 0 } comparePre (other) { @@ -5507,8 +5531,7 @@ class SemVer { } // Avoid an invalid semver results if (identifier) { - const r = new RegExp(`^${this.options.loose ? src[t.PRERELEASELOOSE] : src[t.PRERELEASE]}$`) - const match = `-${identifier}`.match(r) + const match = `-${identifier}`.match(this.options.loose ? re[t.PRERELEASELOOSE] : re[t.PRERELEASE]) if (!match || match[1] !== identifier) { throw new Error(`invalid identifier: ${identifier}`) } @@ -5648,6 +5671,9 @@ module.exports = SemVer /***/ 3830: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const parse = __nccwpck_require__(4547) const clean = (version, options) => { const s = parse(version.trim().replace(/^[=v]+/, ''), options) @@ -5661,6 +5687,9 @@ module.exports = clean /***/ 4255: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const eq = __nccwpck_require__(6081) const neq = __nccwpck_require__(4527) const gt = __nccwpck_require__(8460) @@ -5720,6 +5749,9 @@ module.exports = cmp /***/ 746: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SemVer = __nccwpck_require__(5412) const parse = __nccwpck_require__(4547) const { safeRe: re, t } = __nccwpck_require__(5862) @@ -5787,6 +5819,9 @@ module.exports = coerce /***/ 5581: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SemVer = __nccwpck_require__(5412) const compareBuild = (a, b, loose) => { const versionA = new SemVer(a, loose) @@ -5801,6 +5836,9 @@ module.exports = compareBuild /***/ 1651: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const compare = __nccwpck_require__(6176) const compareLoose = (a, b) => compare(a, b, true) module.exports = compareLoose @@ -5811,6 +5849,9 @@ module.exports = compareLoose /***/ 6176: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SemVer = __nccwpck_require__(5412) const compare = (a, b, loose) => new SemVer(a, loose).compare(new SemVer(b, loose)) @@ -5823,6 +5864,9 @@ module.exports = compare /***/ 8632: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const parse = __nccwpck_require__(4547) const diff = (version1, version2) => { @@ -5888,6 +5932,9 @@ module.exports = diff /***/ 6081: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const compare = __nccwpck_require__(6176) const eq = (a, b, loose) => compare(a, b, loose) === 0 module.exports = eq @@ -5898,6 +5945,9 @@ module.exports = eq /***/ 8460: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const compare = __nccwpck_require__(6176) const gt = (a, b, loose) => compare(a, b, loose) > 0 module.exports = gt @@ -5908,6 +5958,9 @@ module.exports = gt /***/ 3577: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const compare = __nccwpck_require__(6176) const gte = (a, b, loose) => compare(a, b, loose) >= 0 module.exports = gte @@ -5918,6 +5971,9 @@ module.exports = gte /***/ 9343: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SemVer = __nccwpck_require__(5412) const inc = (version, release, options, identifier, identifierBase) => { @@ -5944,6 +6000,9 @@ module.exports = inc /***/ 8467: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const compare = __nccwpck_require__(6176) const lt = (a, b, loose) => compare(a, b, loose) < 0 module.exports = lt @@ -5954,6 +6013,9 @@ module.exports = lt /***/ 640: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const compare = __nccwpck_require__(6176) const lte = (a, b, loose) => compare(a, b, loose) <= 0 module.exports = lte @@ -5964,6 +6026,9 @@ module.exports = lte /***/ 2186: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SemVer = __nccwpck_require__(5412) const major = (a, loose) => new SemVer(a, loose).major module.exports = major @@ -5974,6 +6039,9 @@ module.exports = major /***/ 3566: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SemVer = __nccwpck_require__(5412) const minor = (a, loose) => new SemVer(a, loose).minor module.exports = minor @@ -5984,6 +6052,9 @@ module.exports = minor /***/ 4527: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const compare = __nccwpck_require__(6176) const neq = (a, b, loose) => compare(a, b, loose) !== 0 module.exports = neq @@ -5994,6 +6065,9 @@ module.exports = neq /***/ 4547: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SemVer = __nccwpck_require__(5412) const parse = (version, options, throwErrors = false) => { if (version instanceof SemVer) { @@ -6017,6 +6091,9 @@ module.exports = parse /***/ 3021: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SemVer = __nccwpck_require__(5412) const patch = (a, loose) => new SemVer(a, loose).patch module.exports = patch @@ -6027,6 +6104,9 @@ module.exports = patch /***/ 6577: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const parse = __nccwpck_require__(4547) const prerelease = (version, options) => { const parsed = parse(version, options) @@ -6040,6 +6120,9 @@ module.exports = prerelease /***/ 8594: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const compare = __nccwpck_require__(6176) const rcompare = (a, b, loose) => compare(b, a, loose) module.exports = rcompare @@ -6050,6 +6133,9 @@ module.exports = rcompare /***/ 565: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const compareBuild = __nccwpck_require__(5581) const rsort = (list, loose) => list.sort((a, b) => compareBuild(b, a, loose)) module.exports = rsort @@ -6060,6 +6146,9 @@ module.exports = rsort /***/ 6278: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const Range = __nccwpck_require__(4967) const satisfies = (version, range, options) => { try { @@ -6077,6 +6166,9 @@ module.exports = satisfies /***/ 8215: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const compareBuild = __nccwpck_require__(5581) const sort = (list, loose) => list.sort((a, b) => compareBuild(a, b, loose)) module.exports = sort @@ -6087,6 +6179,9 @@ module.exports = sort /***/ 6569: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const parse = __nccwpck_require__(4547) const valid = (version, options) => { const v = parse(version, options) @@ -6100,6 +6195,9 @@ module.exports = valid /***/ 9749: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + // just pre-load all the stuff that index.js lazily exports const internalRe = __nccwpck_require__(5862) const constants = __nccwpck_require__(5994) @@ -6196,6 +6294,9 @@ module.exports = { /***/ 5994: /***/ ((module) => { +"use strict"; + + // Note: this is the semver.org version of the spec that it implements // Not necessarily the package version of this code. const SEMVER_SPEC_VERSION = '2.0.0' @@ -6238,6 +6339,9 @@ module.exports = { /***/ 7384: /***/ ((module) => { +"use strict"; + + const debug = ( typeof process === 'object' && process.env && @@ -6254,8 +6358,15 @@ module.exports = debug /***/ 3523: /***/ ((module) => { +"use strict"; + + const numeric = /^[0-9]+$/ const compareIdentifiers = (a, b) => { + if (typeof a === 'number' && typeof b === 'number') { + return a === b ? 0 : a < b ? -1 : 1 + } + const anum = numeric.test(a) const bnum = numeric.test(b) @@ -6284,6 +6395,9 @@ module.exports = { /***/ 1290: /***/ ((module) => { +"use strict"; + + class LRUCache { constructor () { this.max = 1000 @@ -6331,6 +6445,9 @@ module.exports = LRUCache /***/ 6555: /***/ ((module) => { +"use strict"; + + // parse out just the options we care about const looseOption = Object.freeze({ loose: true }) const emptyOpts = Object.freeze({ }) @@ -6353,6 +6470,9 @@ module.exports = parseOptions /***/ 5862: /***/ ((module, exports, __nccwpck_require__) => { +"use strict"; + + const { MAX_SAFE_COMPONENT_LENGTH, MAX_SAFE_BUILD_LENGTH, @@ -6431,12 +6551,14 @@ createToken('MAINVERSIONLOOSE', `(${src[t.NUMERICIDENTIFIERLOOSE]})\\.` + // ## Pre-release Version Identifier // A numeric identifier, or a non-numeric identifier. +// Non-numberic identifiers include numberic identifiers but can be longer. +// Therefore non-numberic identifiers must go first. -createToken('PRERELEASEIDENTIFIER', `(?:${src[t.NUMERICIDENTIFIER] -}|${src[t.NONNUMERICIDENTIFIER]})`) +createToken('PRERELEASEIDENTIFIER', `(?:${src[t.NONNUMERICIDENTIFIER] +}|${src[t.NUMERICIDENTIFIER]})`) -createToken('PRERELEASEIDENTIFIERLOOSE', `(?:${src[t.NUMERICIDENTIFIERLOOSE] -}|${src[t.NONNUMERICIDENTIFIER]})`) +createToken('PRERELEASEIDENTIFIERLOOSE', `(?:${src[t.NONNUMERICIDENTIFIER] +}|${src[t.NUMERICIDENTIFIERLOOSE]})`) // ## Pre-release Version // Hyphen, followed by one or more dot-separated pre-release version @@ -6579,6 +6701,9 @@ createToken('GTE0PRE', '^\\s*>=\\s*0\\.0\\.0-0\\s*$') /***/ 9331: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + // Determine if version is greater than all the versions possible in the range. const outside = __nccwpck_require__(7203) const gtr = (version, range, options) => outside(version, range, '>', options) @@ -6590,6 +6715,9 @@ module.exports = gtr /***/ 1868: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const Range = __nccwpck_require__(4967) const intersects = (r1, r2, options) => { r1 = new Range(r1, options) @@ -6604,6 +6732,9 @@ module.exports = intersects /***/ 7022: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const outside = __nccwpck_require__(7203) // Determine if version is less than all the versions possible in the range const ltr = (version, range, options) => outside(version, range, '<', options) @@ -6615,6 +6746,9 @@ module.exports = ltr /***/ 8380: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SemVer = __nccwpck_require__(5412) const Range = __nccwpck_require__(4967) @@ -6647,6 +6781,9 @@ module.exports = maxSatisfying /***/ 1742: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SemVer = __nccwpck_require__(5412) const Range = __nccwpck_require__(4967) const minSatisfying = (versions, range, options) => { @@ -6678,6 +6815,9 @@ module.exports = minSatisfying /***/ 125: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SemVer = __nccwpck_require__(5412) const Range = __nccwpck_require__(4967) const gt = __nccwpck_require__(8460) @@ -6746,6 +6886,9 @@ module.exports = minVersion /***/ 7203: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const SemVer = __nccwpck_require__(5412) const Comparator = __nccwpck_require__(8448) const { ANY } = Comparator @@ -6833,6 +6976,9 @@ module.exports = outside /***/ 3629: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + // given a set of versions and a range, create a "simplified" range // that includes the same versions that the original range does // If the original range is shorter than the simplified one, return that. @@ -6887,6 +7033,9 @@ module.exports = (versions, range, options) => { /***/ 3384: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const Range = __nccwpck_require__(4967) const Comparator = __nccwpck_require__(8448) const { ANY } = Comparator @@ -7141,6 +7290,9 @@ module.exports = subset /***/ 6959: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const Range = __nccwpck_require__(4967) // Mostly just for testing and legacy API reasons @@ -7156,6 +7308,9 @@ module.exports = toComparators /***/ 1634: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +"use strict"; + + const Range = __nccwpck_require__(4967) const validRange = (range, options) => { try { @@ -7704,7 +7859,6 @@ module.exports = function (jwtString, secretOrPublicKey, options, callback) { /***/ 8622: /***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { -var bufferEqual = __nccwpck_require__(9732); var Buffer = (__nccwpck_require__(3058).Buffer); var crypto = __nccwpck_require__(6982); var formatEcdsa = __nccwpck_require__(325); @@ -7841,10 +7995,25 @@ function createHmacSigner(bits) { } } +var bufferEqual; +var timingSafeEqual = 'timingSafeEqual' in crypto ? function timingSafeEqual(a, b) { + if (a.byteLength !== b.byteLength) { + return false; + } + + return crypto.timingSafeEqual(a, b) +} : function timingSafeEqual(a, b) { + if (!bufferEqual) { + bufferEqual = __nccwpck_require__(9732); + } + + return bufferEqual(a, b) +} + function createHmacVerifier(bits) { return function verify(thing, signature, secret) { var computedSig = createHmacSigner(bits)(thing, secret); - return bufferEqual(Buffer.from(signature), Buffer.from(computedSig)); + return timingSafeEqual(Buffer.from(signature), Buffer.from(computedSig)); } } @@ -7945,7 +8114,7 @@ module.exports = function jwa(algorithm) { es: createECDSAVerifer, none: createNoneVerifier, } - var match = algorithm.match(/^(RS|PS|ES|HS)(256|384|512)$|^(none)$/i); + var match = algorithm.match(/^(RS|PS|ES|HS)(256|384|512)$|^(none)$/); if (!match) throw typeError(MSG_INVALID_ALGORITHM, algorithm); var algo = (match[1] || match[3]).toLowerCase(); @@ -8090,7 +8259,12 @@ function jwsSign(opts) { } function SignStream(opts) { - var secret = opts.secret||opts.privateKey||opts.key; + var secret = opts.secret; + secret = secret == null ? opts.privateKey : secret; + secret = secret == null ? opts.key : secret; + if (/^hs/i.test(opts.header.alg) === true && secret == null) { + throw new TypeError('secret must be a string or buffer or a KeyObject') + } var secretStream = new DataStream(secret); this.readable = true; this.header = opts.header; @@ -8237,7 +8411,12 @@ function jwsDecode(jwsSig, opts) { function VerifyStream(opts) { opts = opts || {}; - var secretOrKey = opts.secret||opts.publicKey||opts.key; + var secretOrKey = opts.secret; + secretOrKey = secretOrKey == null ? opts.publicKey : secretOrKey; + secretOrKey = secretOrKey == null ? opts.key : secretOrKey; + if (/^hs/i.test(opts.algorithm) === true && secretOrKey == null) { + throw new TypeError('secret must be a string or buffer or a KeyObject') + } var secretStream = new DataStream(secretOrKey); this.readable = true; this.algorithm = opts.algorithm; @@ -17515,7 +17694,7 @@ module.exports = { const { parseSetCookie } = __nccwpck_require__(8915) -const { stringify, getHeadersList } = __nccwpck_require__(3834) +const { stringify } = __nccwpck_require__(3834) const { webidl } = __nccwpck_require__(4222) const { Headers } = __nccwpck_require__(6349) @@ -17591,14 +17770,13 @@ function getSetCookies (headers) { webidl.brandCheck(headers, Headers, { strict: false }) - const cookies = getHeadersList(headers).cookies + const cookies = headers.getSetCookie() if (!cookies) { return [] } - // In older versions of undici, cookies is a list of name:value. - return cookies.map((pair) => parseSetCookie(Array.isArray(pair) ? pair[1] : pair)) + return cookies.map((pair) => parseSetCookie(pair)) } /** @@ -18026,14 +18204,15 @@ module.exports = { /***/ }), /***/ 3834: -/***/ ((module, __unused_webpack_exports, __nccwpck_require__) => { +/***/ ((module) => { "use strict"; -const assert = __nccwpck_require__(2613) -const { kHeadersList } = __nccwpck_require__(6443) - +/** + * @param {string} value + * @returns {boolean} + */ function isCTLExcludingHtab (value) { if (value.length === 0) { return false @@ -18294,31 +18473,13 @@ function stringify (cookie) { return out.join('; ') } -let kHeadersListNode - -function getHeadersList (headers) { - if (headers[kHeadersList]) { - return headers[kHeadersList] - } - - if (!kHeadersListNode) { - kHeadersListNode = Object.getOwnPropertySymbols(headers).find( - (symbol) => symbol.description === 'headers list' - ) - - assert(kHeadersListNode, 'Headers cannot be parsed') - } - - const headersList = headers[kHeadersListNode] - assert(headersList) - - return headersList -} - module.exports = { isCTLExcludingHtab, - stringify, - getHeadersList + validateCookieName, + validateCookiePath, + validateCookieValue, + toIMFDate, + stringify } @@ -22322,6 +22483,7 @@ const { isValidHeaderName, isValidHeaderValue } = __nccwpck_require__(5523) +const util = __nccwpck_require__(9023) const { webidl } = __nccwpck_require__(4222) const assert = __nccwpck_require__(2613) @@ -22875,6 +23037,9 @@ Object.defineProperties(Headers.prototype, { [Symbol.toStringTag]: { value: 'Headers', configurable: true + }, + [util.inspect.custom]: { + enumerable: false } }) @@ -32051,6 +32216,20 @@ class Pool extends PoolBase { ? { ...options.interceptors } : undefined this[kFactory] = factory + + this.on('connectionError', (origin, targets, error) => { + // If a connection error occurs, we remove the client from the pool, + // and emit a connectionError event. They will not be re-used. + // Fixes https://github.com/nodejs/undici/issues/3895 + for (const target of targets) { + // Do not use kRemoveClient here, as it will close the client, + // but the client cannot be closed in this state. + const idx = this[kClients].indexOf(target) + if (idx !== -1) { + this[kClients].splice(idx, 1) + } + } + }) } [kGetDispatcher] () { diff --git a/package-lock.json b/package-lock.json index 39390fb..221d5b8 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,24 +1,24 @@ { "name": "setup-cf", - "version": "3.0.0", + "version": "3.0.1", "lockfileVersion": 3, "requires": true, "packages": { "": { "name": "setup-cf", - "version": "3.0.0", + "version": "3.0.1", "license": "MIT", "dependencies": { "@actions/core": "^1.11.1", "@actions/exec": "^1.1.1", "@actions/tool-cache": "^2.0.2", - "jsonwebtoken": "^9.0.2" + "jsonwebtoken": "^9.0.3" }, "devDependencies": { - "@types/node": "^24.1.0", - "@vercel/ncc": "^0.38.3", - "prettier": "^3.6.2", - "typescript": "^5.8.3" + "@types/node": "^24.10.1", + "@vercel/ncc": "^0.38.4", + "prettier": "^3.7.4", + "typescript": "^5.9.3" }, "engines": { "node": ">=24.0.0 <25.0.0" @@ -82,19 +82,19 @@ } }, "node_modules/@types/node": { - "version": "24.1.0", - "resolved": "https://registry.npmjs.org/@types/node/-/node-24.1.0.tgz", - "integrity": "sha512-ut5FthK5moxFKH2T1CUOC6ctR67rQRvvHdFLCD2Ql6KXmMuCrjsSsRI9UsLCm9M18BMwClv4pn327UvB7eeO1w==", + "version": "24.10.1", + "resolved": "https://registry.npmjs.org/@types/node/-/node-24.10.1.tgz", + "integrity": "sha512-GNWcUTRBgIRJD5zj+Tq0fKOJ5XZajIiBroOF0yvj2bSU1WvNdYS/dn9UxwsujGW4JX06dnHyjV2y9rRaybH0iQ==", "dev": true, "license": "MIT", "dependencies": { - "undici-types": "~7.8.0" + "undici-types": "~7.16.0" } }, "node_modules/@vercel/ncc": { - "version": "0.38.3", - "resolved": "https://registry.npmjs.org/@vercel/ncc/-/ncc-0.38.3.tgz", - "integrity": "sha512-rnK6hJBS6mwc+Bkab+PGPs9OiS0i/3kdTO+CkI8V0/VrW3vmz7O2Pxjw/owOlmo6PKEIxRSeZKv/kuL9itnpYA==", + "version": "0.38.4", + "resolved": "https://registry.npmjs.org/@vercel/ncc/-/ncc-0.38.4.tgz", + "integrity": "sha512-8LwjnlP39s08C08J5NstzriPvW1SP8Zfpp1BvC2sI35kPeZnHfxVkCwu4/+Wodgnd60UtT1n8K8zw+Mp7J9JmQ==", "dev": true, "license": "MIT", "bin": { @@ -117,12 +117,12 @@ } }, "node_modules/jsonwebtoken": { - "version": "9.0.2", - "resolved": "https://registry.npmjs.org/jsonwebtoken/-/jsonwebtoken-9.0.2.tgz", - "integrity": "sha512-PRp66vJ865SSqOlgqS8hujT5U4AOgMfhrwYIuIhfKaoSCZcirrmASQr8CX7cUg+RMih+hgznrjp99o+W4pJLHQ==", + "version": "9.0.3", + "resolved": "https://registry.npmjs.org/jsonwebtoken/-/jsonwebtoken-9.0.3.tgz", + "integrity": "sha512-MT/xP0CrubFRNLNKvxJ2BYfy53Zkm++5bX9dtuPbqAeQpTVe0MQTFhao8+Cp//EmJp244xt6Drw/GVEGCUj40g==", "license": "MIT", "dependencies": { - "jws": "^3.2.2", + "jws": "^4.0.1", "lodash.includes": "^4.3.0", "lodash.isboolean": "^3.0.3", "lodash.isinteger": "^4.0.4", @@ -139,9 +139,9 @@ } }, "node_modules/jsonwebtoken/node_modules/semver": { - "version": "7.7.1", - "resolved": "https://registry.npmjs.org/semver/-/semver-7.7.1.tgz", - "integrity": "sha512-hlq8tAfn0m/61p4BVRcPzIGr6LKiMwo4VM6dGi6pt4qcRkmNzTcWq6eCEjEh+qXjkMDvPlOFFSGwQjoEa6gyMA==", + "version": "7.7.3", + "resolved": "https://registry.npmjs.org/semver/-/semver-7.7.3.tgz", + "integrity": "sha512-SdsKMrI9TdgjdweUSR9MweHA4EJ8YxHn8DFaDisvhVlUOe4BF1tLD7GAj0lIqWVl+dPb/rExr0Btby5loQm20Q==", "license": "ISC", "bin": { "semver": "bin/semver.js" @@ -151,23 +151,23 @@ } }, "node_modules/jwa": { - "version": "1.4.1", - "resolved": "https://registry.npmjs.org/jwa/-/jwa-1.4.1.tgz", - "integrity": "sha512-qiLX/xhEEFKUAJ6FiBMbes3w9ATzyk5W7Hvzpa/SLYdxNtng+gcurvrI7TbACjIXlsJyr05/S1oUhZrc63evQA==", + "version": "2.0.1", + "resolved": "https://registry.npmjs.org/jwa/-/jwa-2.0.1.tgz", + "integrity": "sha512-hRF04fqJIP8Abbkq5NKGN0Bbr3JxlQ+qhZufXVr0DvujKy93ZCbXZMHDL4EOtodSbCWxOqR8MS1tXA5hwqCXDg==", "license": "MIT", "dependencies": { - "buffer-equal-constant-time": "1.0.1", + "buffer-equal-constant-time": "^1.0.1", "ecdsa-sig-formatter": "1.0.11", "safe-buffer": "^5.0.1" } }, "node_modules/jws": { - "version": "3.2.2", - "resolved": "https://registry.npmjs.org/jws/-/jws-3.2.2.tgz", - "integrity": "sha512-YHlZCB6lMTllWDtSPHz/ZXTsi8S00usEV6v1tjq8tOUZzw7DpSDWVXjXDre6ed1w/pd495ODpHZYSdkRTsa0HA==", + "version": "4.0.1", + "resolved": "https://registry.npmjs.org/jws/-/jws-4.0.1.tgz", + "integrity": "sha512-EKI/M/yqPncGUUh44xz0PxSidXFr/+r0pA70+gIYhjv+et7yxM+s29Y+VGDkovRofQem0fs7Uvf4+YmAdyRduA==", "license": "MIT", "dependencies": { - "jwa": "^1.4.1", + "jwa": "^2.0.1", "safe-buffer": "^5.0.1" } }, @@ -220,9 +220,9 @@ "license": "MIT" }, "node_modules/prettier": { - "version": "3.6.2", - "resolved": "https://registry.npmjs.org/prettier/-/prettier-3.6.2.tgz", - "integrity": "sha512-I7AIg5boAr5R0FFtJ6rCfD+LFsWHp81dolrFD8S79U9tb8Az2nGrJncnMSnys+bpQJfRUzqs9hnA81OAA3hCuQ==", + "version": "3.7.4", + "resolved": "https://registry.npmjs.org/prettier/-/prettier-3.7.4.tgz", + "integrity": "sha512-v6UNi1+3hSlVvv8fSaoUbggEM5VErKmmpGA7Pl3HF8V6uKY7rvClBOJlH6yNwQtfTueNkGVpOv/mtWL9L4bgRA==", "dev": true, "license": "MIT", "bin": { @@ -274,9 +274,9 @@ } }, "node_modules/typescript": { - "version": "5.8.3", - "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.8.3.tgz", - "integrity": "sha512-p1diW6TqL9L07nNxvRMM7hMMw4c5XOo/1ibL4aAIGmSAt9slTE1Xgw5KWuof2uTOvCg9BY7ZRi+GaF+7sfgPeQ==", + "version": "5.9.3", + "resolved": "https://registry.npmjs.org/typescript/-/typescript-5.9.3.tgz", + "integrity": "sha512-jl1vZzPDinLr9eUt3J/t7V6FgNEw9QjvBPdysz9KfQDD41fQrC2Y4vKQdiaUpFT4bXlb1RHhLpp8wtm6M5TgSw==", "dev": true, "license": "Apache-2.0", "bin": { @@ -288,9 +288,9 @@ } }, "node_modules/undici": { - "version": "5.28.5", - "resolved": "https://registry.npmjs.org/undici/-/undici-5.28.5.tgz", - "integrity": "sha512-zICwjrDrcrUE0pyyJc1I2QzBkLM8FINsgOrt6WjA+BgajVq9Nxu2PbFFXUrAggLfDXlZGZBVZYw7WNV5KiBiBA==", + "version": "5.29.0", + "resolved": "https://registry.npmjs.org/undici/-/undici-5.29.0.tgz", + "integrity": "sha512-raqeBD6NQK4SkWhQzeYKd1KmIG6dllBOTt55Rmkt4HtI9mwdWtJljnrXjAFUBLTSN67HWrOIZ3EPF4kjUw80Bg==", "license": "MIT", "dependencies": { "@fastify/busboy": "^2.0.0" @@ -300,9 +300,9 @@ } }, "node_modules/undici-types": { - "version": "7.8.0", - "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-7.8.0.tgz", - "integrity": "sha512-9UJ2xGDvQ43tYyVMpuHlsgApydB8ZKfVYTsLDhXkFL/6gfkp+U8xTGdh8pMJv1SpZna0zxG1DwsKZsreLbXBxw==", + "version": "7.16.0", + "resolved": "https://registry.npmjs.org/undici-types/-/undici-types-7.16.0.tgz", + "integrity": "sha512-Zz+aZWSj8LE6zoxD+xrjh4VfkIG8Ya6LvYkZqtUQGJPZjYl53ypCaUwWqo7eI0x66KBGeRo+mlBEkMSeSZ38Nw==", "dev": true, "license": "MIT" } diff --git a/package.json b/package.json index e497c92..fa133a3 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "setup-cf", - "version": "3.0.0", + "version": "3.0.1", "description": "Github action to setup Cloud Foundry cli", "main": "src/index.ts", "scripts": { @@ -16,13 +16,13 @@ "@actions/core": "^1.11.1", "@actions/exec": "^1.1.1", "@actions/tool-cache": "^2.0.2", - "jsonwebtoken": "^9.0.2" + "jsonwebtoken": "^9.0.3" }, "devDependencies": { - "@types/node": "^24.1.0", - "@vercel/ncc": "^0.38.3", - "prettier": "^3.6.2", - "typescript": "^5.8.3" + "@types/node": "^24.10.1", + "@vercel/ncc": "^0.38.4", + "prettier": "^3.7.4", + "typescript": "^5.9.3" }, "engines": { "node": ">=24.0.0 <25.0.0"