unboundsoftware/auth0mock
6
0
Fork 0
Code Issues 1 Pull Requests 1 Actions Packages Projects Releases 14 Activity

Chore(deps): bump node-forge from 1.1.0 to 1.2.0 #30

Merged
argoyle merged 1 commits from dependabot-npm_and_yarn-node-forge-1.2.0 into main 2022-01-09 10:07:42 +00:00
Conversation 1 Commits 1 Files Changed 2
+5 -5
argoyle commented 2022-01-09 01:50:45 +00:00 (Migrated from gitlab.com)
Copy Link
Copy Source

Bumps node-forge from 1.1.0 to 1.2.0.

Changelog

Sourced from node-forge's changelog.

1.2.0 - 2022-01-07

Fixed

  • [x509] 'Expected' and 'Actual' issuers were backwards in verification failure message.

Added

  • [oid,x509]: Added OID 1.3.14.3.2.29 / sha1WithRSASignature for sha1 with RSA. Considered a deprecated equivalent to 1.2.840.113549.1.1.5 / sha1WithRSAEncryption. See discussion and links.

Changed

  • [x509]: Reduce duplicate code. Add helper function to create a signature digest given an signature algorithm OID. Add helper function to verify signatures.
Commits
  • 866ed40 Release 1.2.0.
  • a9f013a Update changelog.
  • f8e498a Fix typos.
  • 9d8b0ee Add verification helper.
  • 2fb9995 Add helper to create signature digest.
  • 03d3ed7 Added alternate OID 1.3.14.3.2.29 for sha1 with RSA
  • 874cef8 Update changelog.
  • cca7eea 'Expected' and 'Actual' issuers were backwards in verification failure message
  • c61b204 Start 1.1.1-0.
  • See full diff in compare view

Dependabot commands
You can trigger Dependabot actions by commenting on this MR
  • $dependabot rebase will rebase this MR
  • $dependabot recreate will recreate this MR rewriting all the manual changes and resolving conflicts
Bumps [node-forge](https://github.com/digitalbazaar/forge) from 1.1.0 to 1.2.0. <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/digitalbazaar/forge/blob/main/CHANGELOG.md">node-forge's changelog</a>.</em></p> <blockquote> <h2>1.2.0 - 2022-01-07</h2> <h3>Fixed</h3> <ul> <li>[x509] 'Expected' and 'Actual' issuers were backwards in verification failure message.</li> </ul> <h3>Added</h3> <ul> <li>[oid,x509]: Added OID <code>1.3.14.3.2.29 / sha1WithRSASignature</code> for sha1 with RSA. Considered a deprecated equivalent to <code>1.2.840.113549.1.1.5 / sha1WithRSAEncryption</code>. See <a href="https://github.com/digitalbazaar/forge/issues/825">discussion and links</a>.</li> </ul> <h3>Changed</h3> <ul> <li>[x509]: Reduce duplicate code. Add helper function to create a signature digest given an signature algorithm OID. Add helper function to verify signatures.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/digitalbazaar/forge/commit/866ed40ae64264d48ffcc8cf663a6d13b9446e78"><code>866ed40</code></a> Release 1.2.0.</li> <li><a href="https://github.com/digitalbazaar/forge/commit/a9f013ab985cdb87536826e86d2adb0b26c7652d"><code>a9f013a</code></a> Update changelog.</li> <li><a href="https://github.com/digitalbazaar/forge/commit/f8e498a6682dc32233eb361400ee7198cf95c855"><code>f8e498a</code></a> Fix typos.</li> <li><a href="https://github.com/digitalbazaar/forge/commit/9d8b0eea8196d49d73e5e2f4c971d53c81d6e233"><code>9d8b0ee</code></a> Add verification helper.</li> <li><a href="https://github.com/digitalbazaar/forge/commit/2fb9995d783626aec7519641b06223c9d58f67c8"><code>2fb9995</code></a> Add helper to create signature digest.</li> <li><a href="https://github.com/digitalbazaar/forge/commit/03d3ed73711cf7b391edeb9a50fdbaca2986a893"><code>03d3ed7</code></a> Added alternate OID 1.3.14.3.2.29 for sha1 with RSA</li> <li><a href="https://github.com/digitalbazaar/forge/commit/874cef8c9a2e7d756603a08a740c24dbca70df58"><code>874cef8</code></a> Update changelog.</li> <li><a href="https://github.com/digitalbazaar/forge/commit/cca7eea9d6a885913522d56f43f20d8ed6bd7f14"><code>cca7eea</code></a> 'Expected' and 'Actual' issuers were backwards in verification failure message</li> <li><a href="https://github.com/digitalbazaar/forge/commit/c61b204874d9341fa8bf8bb626aa532520c3e205"><code>c61b204</code></a> Start 1.1.1-0.</li> <li>See full diff in <a href="https://github.com/digitalbazaar/forge/compare/v1.1.0...v1.2.0">compare view</a></li> </ul> </details> <br /> --- <details> <summary>Dependabot commands</summary> <br /> You can trigger Dependabot actions by commenting on this MR - `$dependabot rebase` will rebase this MR - `$dependabot recreate` will recreate this MR rewriting all the manual changes and resolving conflicts </details>
argoyle commented 2022-01-09 10:07:42 +00:00 (Migrated from gitlab.com)
Copy Link
Copy Source

mentioned in commit 29219b095c

mentioned in commit 29219b095c489da19665032a0841d8c7d82c4d00
argoyle (Migrated from gitlab.com) merged commit 29219b095c into main 2022-01-09 10:07:42 +00:00
Sign in to join this conversation.
Reviewers
No Reviewers
Labels
Clear labels
dependencies
Pull requests that update a dependency file
 docker
javascript
security
Pull requests that address a security vulnerability
 severity:moderate
No Label dependencies javascript
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
acctest (Shiny Acctest) argoyle (Joakim Olsson) buildtools (Buildtools) kubernetes (Kubernetes) peter releaser (Unbound Releaser) renovate (Renovate Bot)
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: unboundsoftware/auth0mock#30
Delete Branch "dependabot-npm_and_yarn-node-forge-1.2.0"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?