Skip to content

build(deps): bump uuid, @azure/msal-node and nyc#146

Merged
MichaelCurrin merged 1 commit into
masterfrom
dependabot/npm_and_yarn/multi-eb5a22d836
Jul 1, 2026
Merged

build(deps): bump uuid, @azure/msal-node and nyc#146
MichaelCurrin merged 1 commit into
masterfrom
dependabot/npm_and_yarn/multi-eb5a22d836

Conversation

@dependabot

@dependabot dependabot Bot commented on behalf of github Jun 30, 2026

Copy link
Copy Markdown
Contributor

Removes uuid. It's no longer used after updating ancestor dependencies uuid, @azure/msal-node and nyc. These dependencies need to be updated together.

Removes uuid

Updates @azure/msal-node from 5.1.3 to 5.3.0

Release notes

Sourced from @​azure/msal-node's releases.

@​azure/msal-react v5.3.0

5.3.0

Thu, 16 Apr 2026 22:44:53 GMT

Minor changes

  • Bump @​azure/msal-browser to v5.7.0 (beachball)

Patches

@​azure/msal-angular v5.3.0

5.3.0

Tue, 23 Jun 2026 22:19:29 GMT

Minor changes

@​azure/msal-node-extensions v5.3.0

5.3.0

Tue, 23 Jun 2026 22:19:30 GMT

Minor changes

@​azure/msal-node v5.3.0

5.3.0

Tue, 23 Jun 2026 22:19:30 GMT

Minor changes

  • Add Federated Managed Identity (FMI) and User Federated Identity Credential (user_fic) grant type support. Also fixes a long-standing bug where the tokenEndpoint field on ClientAssertionConfig was incorrectly populated with resourceRequestUri during client-credential flows; it now correctly contains the AAD token endpoint. #8614 (avdunn@microsoft.com)
  • Make correlationId a required parameter on NodeAuthError and ManagedIdentityError, #8609 (sameera.gajjarapu@microsoft.com)
  • Bump @​azure/msal-common to v16.10.0 (beachball)

@​azure/msal-angular v5.2.8

5.2.8

Tue, 16 Jun 2026 19:46:36 GMT

Patches

... (truncated)

Commits
  • f8cf6a4 feat: add default idToken claims (signin_state, login_hint) and kmsi on Accou...
  • 906f4d8 Migrate region discovery to IMDS /compute JSON endpoint (#8660)
  • 6d53ace Deprecate the max_age request parameter and stop validating tokens (#8664)
  • 27c074b [correlationId] Make correlationId a required parameter on AuthError construc...
  • e5eb6fd Add Native Account Id to TenantProfile (#8649)
  • f06838b Post-release PR (#8657)
  • 9941501 docs: warn that events should not be used for telemetry (#8641)
  • 5054263 Add Federated Managed Identity (FMI) and User Federated Identity Credential (...
  • 5fbb1e5 Upgrade dependencies (#8630)
  • e63bd1a Enforce API Extractor error/none policy and tag internal APIs (#8653)
  • Additional commits viewable in compare view

Updates nyc from 17.1.0 to 18.0.0

Release notes

Sourced from nyc's releases.

nyc: v18.0.0

18.0.0 (2026-02-22)

⚠ BREAKING CHANGES

  • deps: transitive dependencies now require node 20 || >=22.

Bug Fixes

  • deps: update dependencies pulling in old glob (#1612) (0707729)
Changelog

Sourced from nyc's changelog.

18.0.0 (2026-02-22)

⚠ BREAKING CHANGES

  • deps: transitive dependencies now require node 20 || >=22.

Bug Fixes

  • deps: update dependencies pulling in old glob (#1612) (0707729)
Commits
  • 3ce6d97 chore(main): release nyc 18.0.0 (#1613)
  • b9f6781 build: publication is now manual again due to changes in tokens
  • 0707729 fix(deps)!: update dependencies pulling in old glob (#1612)
  • See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Removes [uuid](https://github.com/uuidjs/uuid). It's no longer used after updating ancestor dependencies [uuid](https://github.com/uuidjs/uuid), [@azure/msal-node](https://github.com/AzureAD/microsoft-authentication-library-for-js) and [nyc](https://github.com/istanbuljs/nyc). These dependencies need to be updated together.


Removes `uuid`

Updates `@azure/msal-node` from 5.1.3 to 5.3.0
- [Release notes](https://github.com/AzureAD/microsoft-authentication-library-for-js/releases)
- [Commits](AzureAD/microsoft-authentication-library-for-js@msal-node-v5.1.3...msal-node-v5.3.0)

Updates `nyc` from 17.1.0 to 18.0.0
- [Release notes](https://github.com/istanbuljs/nyc/releases)
- [Changelog](https://github.com/istanbuljs/nyc/blob/main/CHANGELOG.md)
- [Commits](istanbuljs/nyc@nyc-v17.1.0...nyc-v18.0.0)

---
updated-dependencies:
- dependency-name: uuid
  dependency-version:
  dependency-type: indirect
- dependency-name: "@azure/msal-node"
  dependency-version: 5.3.0
  dependency-type: indirect
- dependency-name: nyc
  dependency-version: 18.0.0
  dependency-type: direct:development
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot Bot added dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code labels Jun 30, 2026
@MichaelCurrin MichaelCurrin merged commit 75f3841 into master Jul 1, 2026
4 checks passed
@MichaelCurrin MichaelCurrin deleted the dependabot/npm_and_yarn/multi-eb5a22d836 branch July 1, 2026 13:54
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

dependencies Pull requests that update a dependency file javascript Pull requests that update javascript code

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant