[Snyk] Upgrade @inrupt/solid-client-authn-node from 2.2.4 to 2.3.0

[d-a-v-i--]

Snyk has created this PR to upgrade @inrupt/solid-client-authn-node from 2.2.4 to 2.3.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 4 versions ahead of your current version.

• The recommended version was released 2 months ago.

Release notes

Package name: @inrupt/solid-client-authn-node

• 2.3.0 - 2024-11-14
  

  Deprecation notice

  • A new signature is introduced for getSessionFromStorage in this release. The legacy signature is
    deprecated, and could be removed with the next major release.

  // Deprecated signature
  const session = await getSessionFromStorage(
    sessionId,
    storage,
    onNewRefreshToken,
    refresh,
  );
  // Replacement signature
  const session = await getSessionFromStorage(sessionId, {
    storage,
    onNewRefreshToken,
    refresh,
  });

  Bugfix

  node

  • The session expiration date (session.info.expirationDate) is now correct when loading a Session from storage.

  Feature

  node

  • It is now possible to build a Session using getSessionFromStorage and not log it in
    using its refresh token. To do so, a new refresh optional flag has been introduced.
    It defaults to true, which makes this a non-breaking change. In addition, a new signature
    is introduced to make it easier to provide the optional arguments:
  // Legacy signature only specifying one optional argument
  const session = await getSessionFromStorage(
  sessionId,
  undefined,
  undefined,
  false,
  );

  // New signature
  const session = await getSessionFromStorage(sessionId, { refresh: false });

  Full Changelog: v2.2.7...v2.3.0

• 2.2.7 - 2024-10-30
  

  Bugfix

  node

  • The IdP logout no longer fails in Node if the session was restored from
    storage (using getSessionFromStorage), which is the typical way server-side
    sessions are retrieved.

  Full Changelog: v2.2.6...v2.2.7

• 2.2.6 - 2024-09-18
  

  node and browser

  • Repository URL in package.json updated to set the repository.type property to git. This intends at
    restoring the previous behavior of npm view @ inrupt/solid-client-authn repository.url, expected to return
    git+https://github.com/inrupt/solid-client-authn-js.git.

  Full Changelog: v2.2.5...v2.2.6

• 2.2.5 - 2024-09-16
  

  New Features

  • Node 22 is now supported

  Full Changelog: v2.2.4...v2.2.5

• 2.2.4 - 2024-06-24
  

  Bugfixes

  node and browser

  • The clientAppId property is now correctly set in the ISessionInfo objects returned by the handleIncomingRedirect function in ClientAuthentication and in the Session class.

  node

  • The keepAlive option (introduced in v2.2.0) is now correctly observed in a script using the Client Credentials flow (i.e. using a clientId and a clientSecret to log in). It previously was disregarded, and the Session always self-refreshed in the background

  Full Changelog: v2.2.3...v2.2.4

from @inrupt/solid-client-authn-node GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[vercel]

The latest updates on your projects. Learn more about Vercel for Git ↗︎

Name	Status	Preview	Comments	Updated (UTC)
authorization-management-component	✅ Ready (Inspect)	Visit Preview	💬 Add feedback	Jan 9, 2025 2:28pm

[edwardsph]

Leave this for dependabot