[Security] Bump tough-cookie and @kubernetes/client-node (!67) · Merge requests · tools / infra / zeroscale

Removes tough-cookie. It's no longer used after updating ancestor dependency @kubernetes/client-node. These dependencies need to be updated together.

Removes tough-cookie This update includes a security fix. Updates @kubernetes/client-node from 0.22.3 to 1.3.0

Release notes

Sourced from @kubernetes/client-node's releases.

1.3.0

What's Changed

Update README.md by @brendandburns in kubernetes-client/javascript#2418

ci: test on Node v24 by @cjihrig in kubernetes-client/javascript#2419

build(deps): bump openid-client from 6.4.2 to 6.5.0 by @dependabot in kubernetes-client/javascript#2422

build(deps): bump @types/node from 22.15.11 to 22.15.14 by @dependabot in kubernetes-client/javascript#2423

build(deps): bump @types/node from 22.15.14 to 22.15.15 by @dependabot in kubernetes-client/javascript#2426

build(deps): bump @types/node from 22.15.15 to 22.15.17 by @dependabot in kubernetes-client/javascript#2428

Cherry-pick in two watch changes from the 0.x branch, clean up tests, fix list -> resourceVersion handling by @brendandburns in kubernetes-client/javascript#2429

build(deps-dev): bump typescript-eslint from 8.32.0 to 8.32.1 by @dependabot in kubernetes-client/javascript#2431

build(deps): bump @types/node from 22.15.17 to 22.15.18 by @dependabot in kubernetes-client/javascript#2436

feat: add model registry to object serializer by @schrodit in kubernetes-client/javascript#2433

build(deps-dev): bump @eslint/js from 9.26.0 to 9.27.0 by @dependabot in kubernetes-client/javascript#2439

build(deps): bump @types/node from 22.15.18 to 22.15.19 by @dependabot in kubernetes-client/javascript#2440

build(deps-dev): bump eslint from 9.26.0 to 9.27.0 by @dependabot in kubernetes-client/javascript#2441

chore: readd ws as a dependency by @mstruebing in kubernetes-client/javascript#2442

build(deps): bump @types/node from 22.15.19 to 22.15.21 by @dependabot in kubernetes-client/javascript#2445

fix: readd AbortError export by @xkabylgSICKAG in kubernetes-client/javascript#2446

build(deps): bump tar-fs from 3.0.8 to 3.0.9 by @dependabot in kubernetes-client/javascript#2447

build(deps-dev): bump typedoc from 0.28.4 to 0.28.5 by @dependabot in kubernetes-client/javascript#2452

update package versions in preparation for release by @cjihrig in kubernetes-client/javascript#2454

build(deps): bump @types/node from 22.15.21 to 22.15.23 by @dependabot in kubernetes-client/javascript#2456

build(deps-dev): bump typescript-eslint from 8.32.1 to 8.33.0 by @dependabot in kubernetes-client/javascript#2457

Full Changelog: https://github.com/kubernetes-client/javascript/compare/1.2.0...1.3.0

1.2.0

What's Changed

Reintroduce timeout and keep-alive for watch requests to match client-go by @rossanthony in kubernetes-client/javascript#2367

watch: prevent done callback from being called twice on connection loss by @bverhoeven in kubernetes-client/javascript#2389

config: support username impersonation by @cjihrig in kubernetes-client/javascript#2373

fix(object): properly serialize objects on create/replace/patch by @schrodit in kubernetes-client/javascript#2400

Regenerate for Kubernetes 1.33 by @brendandburns in kubernetes-client/javascript#2416

New Contributors

@rossanthony made their first contribution in kubernetes-client/javascript#2367

@juldrixx made their first contribution in kubernetes-client/javascript#2388

@bverhoeven made their first contribution in kubernetes-client/javascript#2389

Full Changelog: https://github.com/kubernetes-client/javascript/compare/1.1.2...1.2.0

1.1.2

What's Changed between 1.0.0 and 1.1.2

test: support testing transpiled code by @cjihrig in kubernetes-client/javascript#2122

Add proxy support by @krmodelski in kubernetes-client/javascript#2111

Fix type definition for KubernetesObjectApi.read() by @jportner in kubernetes-client/javascript#2129

export ApiConstructor-type by @mstruebing in kubernetes-client/javascript#2139

websocket: do not close when protocol supports it by @cjihrig in kubernetes-client/javascript#2144

Improve loadFromCluster testing by @brendandburns in kubernetes-client/javascript#2191

... (truncated)

Commits

940af26 Merge pull request #2457 from kubernetes-client/dependabot/npm_and_yarn/main/...
5dad6d3 Merge pull request #2456 from kubernetes-client/dependabot/npm_and_yarn/main/...
55e1a8a build(deps-dev): bump typescript-eslint from 8.32.1 to 8.33.0
adf25e2 build(deps): bump @types/node from 22.15.21 to 22.15.23
2ed3379 Merge pull request #2454 from cjihrig/bump
4846def update package versions in preparation for release
f809c36 Merge pull request #2452 from kubernetes-client/dependabot/npm_and_yarn/main/...
52c1acf build(deps-dev): bump typedoc from 0.28.4 to 0.28.5
1fcb3a6 Merge pull request #2447 from kubernetes-client/dependabot/npm_and_yarn/main/...
affa86a build(deps): bump tar-fs from 3.0.8 to 3.0.9
Additional commits viewable in compare view

Dependabot commands

You can trigger Dependabot actions by commenting on this MR

$dependabot recreate will recreate this MR rewriting all the manual changes and resolving conflicts

[Security] Bump tough-cookie and @kubernetes/client-node

1.3.0

What's Changed

1.2.0

What's Changed

New Contributors

1.1.2

What's Changed between 1.0.0 and 1.1.2

Merge request reports