From 273399c3fdb1a4ee346e183b1bba24331147bcf2 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 19 Jan 2026 16:56:19 +0000 Subject: [PATCH] fix(deps): bump the production-dependencies group across 1 directory with 2 updates Bumps the production-dependencies group with 2 updates in the / directory: [jsonwebtoken](https://github.com/auth0/node-jsonwebtoken) and [url-join](https://github.com/jfromaniello/url-join). Updates `jsonwebtoken` from 9.0.2 to 9.0.3 - [Changelog](https://github.com/auth0/node-jsonwebtoken/blob/master/CHANGELOG.md) - [Commits](https://github.com/auth0/node-jsonwebtoken/compare/v9.0.2...v9.0.3) Updates `url-join` from 4.0.1 to 5.0.0 - [Release notes](https://github.com/jfromaniello/url-join/releases) - [Changelog](https://github.com/jfromaniello/url-join/blob/main/CHANGELOG.md) - [Commits](https://github.com/jfromaniello/url-join/compare/v4.0.1...v5.0.0) --- updated-dependencies: - dependency-name: jsonwebtoken dependency-version: 9.0.3 dependency-type: direct:production update-type: version-update:semver-patch dependency-group: production-dependencies - dependency-name: url-join dependency-version: 5.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: production-dependencies ... Signed-off-by: dependabot[bot] --- package.json | 6 +++--- yarn.lock | 53 ++++++++++++++++++++++++---------------------------- 2 files changed, 27 insertions(+), 32 deletions(-) diff --git a/package.json b/package.json index 7a11981..d8b3b49 100644 --- a/package.json +++ b/package.json @@ -37,8 +37,8 @@ "provenance": true }, "dependencies": { - "jsonwebtoken": "^9.0.2", - "url-join": "^4.0.1" + "jsonwebtoken": "^9.0.3", + "url-join": "^5.0.0" }, "devDependencies": { "@semantic-release/changelog": "^6.0.3", @@ -46,7 +46,7 @@ "@types/jest": "^30.0.0", "@types/jsonwebtoken": "^9.0.10", "@types/node": "^24.10.1", - "@types/url-join": "^4.0.3", + "@types/url-join": "^5.0.0", "@typescript-eslint/eslint-plugin": "^8.48.0", "@typescript-eslint/parser": "^8.48.0", "eslint": "^9.39.1", diff --git a/yarn.lock b/yarn.lock index 2e4700c..240d136 100644 --- a/yarn.lock +++ b/yarn.lock @@ -2507,10 +2507,12 @@ __metadata: languageName: node linkType: hard -"@types/url-join@npm:^4.0.3": - version: 4.0.3 - resolution: "@types/url-join@npm:4.0.3" - checksum: 10c0/7f0f86693070355ce731ec3861d47c03eaae09ab0ea1a72dde6b38a2a17089941acc59bac9ea2472376b6f96e189478da0a7ed29e2d282d1543382e92408d6ca +"@types/url-join@npm:^5.0.0": + version: 5.0.0 + resolution: "@types/url-join@npm:5.0.0" + dependencies: + url-join: "npm:*" + checksum: 10c0/c71d9178c74890c47a62e0d3d878e4782b6fb7c32b5c378b28b5aa99737dbebcfbad07cbca9bf7e37af14f7fe5818581effa31d978ca89f18d67a24f0ec67925 languageName: node linkType: hard @@ -3059,12 +3061,12 @@ __metadata: "@types/jest": "npm:^30.0.0" "@types/jsonwebtoken": "npm:^9.0.10" "@types/node": "npm:^24.10.1" - "@types/url-join": "npm:^4.0.3" + "@types/url-join": "npm:^5.0.0" "@typescript-eslint/eslint-plugin": "npm:^8.48.0" "@typescript-eslint/parser": "npm:^8.48.0" eslint: "npm:^9.39.1" jest: "npm:^30.2.0" - jsonwebtoken: "npm:^9.0.2" + jsonwebtoken: "npm:^9.0.3" prettier: "npm:^3.7.3" rimraf: "npm:^6.1.2" semantic-release: "npm:^25.0.2" @@ -3072,7 +3074,7 @@ __metadata: ts-node: "npm:^10.9.2" tsup: "npm:^8.5.1" typescript: "npm:^5.9.3" - url-join: "npm:^4.0.1" + url-join: "npm:^5.0.0" languageName: unknown linkType: soft @@ -6041,11 +6043,11 @@ __metadata: languageName: node linkType: hard -"jsonwebtoken@npm:^9.0.2": - version: 9.0.2 - resolution: "jsonwebtoken@npm:9.0.2" +"jsonwebtoken@npm:^9.0.3": + version: 9.0.3 + resolution: "jsonwebtoken@npm:9.0.3" dependencies: - jws: "npm:^3.2.2" + jws: "npm:^4.0.1" lodash.includes: "npm:^4.3.0" lodash.isboolean: "npm:^3.0.3" lodash.isinteger: "npm:^4.0.4" @@ -6055,7 +6057,7 @@ __metadata: lodash.once: "npm:^4.0.0" ms: "npm:^2.1.1" semver: "npm:^7.5.4" - checksum: 10c0/d287a29814895e866db2e5a0209ce730cbc158441a0e5a70d5e940eb0d28ab7498c6bf45029cc8b479639bca94056e9a7f254e2cdb92a2f5750c7f358657a131 + checksum: 10c0/6ca7f1e54886ea3bde7146a5a22b53847c46e25453c7f7307a69818b9a6ad48c390b2e59d5690fcfd03c529b01960060cc4bb0c686991d6edae2285dfd30f4ba languageName: node linkType: hard @@ -6073,24 +6075,24 @@ __metadata: languageName: node linkType: hard -"jwa@npm:^1.4.2": - version: 1.4.2 - resolution: "jwa@npm:1.4.2" +"jwa@npm:^2.0.1": + version: 2.0.1 + resolution: "jwa@npm:2.0.1" dependencies: buffer-equal-constant-time: "npm:^1.0.1" ecdsa-sig-formatter: "npm:1.0.11" safe-buffer: "npm:^5.0.1" - checksum: 10c0/210a544a42ca22203e8fc538835205155ba3af6a027753109f9258bdead33086bac3c25295af48ac1981f87f9c5f941bc8f70303670f54ea7dcaafb53993d92c + checksum: 10c0/ab3ebc6598e10dc11419d4ed675c9ca714a387481466b10e8a6f3f65d8d9c9237e2826f2505280a739cf4cbcf511cb288eeec22b5c9c63286fc5a2e4f97e78cf languageName: node linkType: hard -"jws@npm:^3.2.2": - version: 3.2.3 - resolution: "jws@npm:3.2.3" +"jws@npm:^4.0.1": + version: 4.0.1 + resolution: "jws@npm:4.0.1" dependencies: - jwa: "npm:^1.4.2" + jwa: "npm:^2.0.1" safe-buffer: "npm:^5.0.1" - checksum: 10c0/9fdf9d6783b1892ef413ef373cd351eacc847ba01deec6fbfea96830e93241863ccbee66f3b749fc2310c59b6db2209d3f4b52931c0c259b52b17de20715917f + checksum: 10c0/6be1ed93023aef570ccc5ea8d162b065840f3ef12f0d1bb3114cade844de7a357d5dc558201d9a65101e70885a6fa56b17462f520e6b0d426195510618a154d0 languageName: node linkType: hard @@ -9338,14 +9340,7 @@ __metadata: languageName: node linkType: hard -"url-join@npm:^4.0.1": - version: 4.0.1 - resolution: "url-join@npm:4.0.1" - checksum: 10c0/ac65e2c7c562d7b49b68edddcf55385d3e922bc1dd5d90419ea40b53b6de1607d1e45ceb71efb9d60da02c681d13c6cb3a1aa8b13fc0c989dfc219df97ee992d - languageName: node - linkType: hard - -"url-join@npm:^5.0.0": +"url-join@npm:*, url-join@npm:^5.0.0": version: 5.0.0 resolution: "url-join@npm:5.0.0" checksum: 10c0/ed2b166b4b5a98adcf6828a48b6bd6df1dac4c8a464a73cf4d8e2457ed410dd8da6be0d24855b86026cd7f5c5a3657c1b7b2c7a7c5b8870af17635a41387b04c