microsoft · Saadnajmi · Nov 14, 2024 · Oct 30, 2024 · Oct 30, 2024 · Oct 30, 2024
@@ -70,26 +70,24 @@ GEM
     json (2.7.2)
     minitest (5.24.1)
     molinillo (0.8.0)
-    nanaimo (0.3.0)
+    nanaimo (0.4.0)
     nap (1.1.0)
     netrc (0.11.0)
     nkf (0.2.0)
     public_suffix (4.0.7)
-    rexml (3.2.9)
-      strscan
+    rexml (3.3.9)
     ruby-macho (2.5.1)
-    strscan (3.1.0)
     typhoeus (1.4.1)
       ethon (>= 0.9.0)
     tzinfo (2.0.6)
       concurrent-ruby (~> 1.0)
-    xcodeproj (1.24.0)
+    xcodeproj (1.26.0)
       CFPropertyList (>= 2.3.3, < 4.0)
       atomos (~> 0.1.3)
       claide (>= 1.0.2, < 2.0)
       colored2 (~> 3.1)
-      nanaimo (~> 0.3.0)
-      rexml (~> 3.2.4)
+      nanaimo (~> 0.4.0)
+      rexml (>= 3.3.6, < 4.0)
 
 PLATFORMS
   ruby

@@ -120,7 +120,6 @@
     "@grpc/proto-loader": "^0.7.8",
     "async": "^3.2.2",
     "debug": ">=3.1.0",
-    "es5-ext": "0.10.53",
     "micromatch": "^4.0.0",
     "readable-stream": "^4.0.0 <4.4.2",
     "shell-quote": "^1.7.3",
@@ -130,7 +129,6 @@
     "@grpc/proto-loader": "Resolves a security issue with protobufjs, one of its dependencies",
     "async": "Versions of async prior to 3.2.2 are vulnerable to prototype pollution",
     "debug": "ReDoS vulnerability in older versions, plus the dependents that pull in debug@<1.0.0 haven't been updated in years",
-    "es5-ext": "Packages after 0.10.54 and at the moment up until 0.10.59 contain a protest message. A policy prevents us from using packages with protestware, therefore downgrading to the latest release without the message.",
     "micromatch": "Version 3.x.x depends on decode-uri-component 0.2.0, which has a DoS vulnerability",
     "readable-stream": "Eliminates dependency on outdated string_decoder component",
     "shell-quote": "Versions prior to 1.7.3 have an RCE vulnerability. Should be removable once we upgrade CLI tools to ^8.0.0 with RN 0.69.",

@@ -21,7 +21,7 @@
   },
   "dependencies": {
     "@octokit/rest": "^18.12.0",
-    "firebase": "^9.6.5"
+    "firebase": "^11.0.1"
   },
   "resolutions": {
     "readable-stream": "^4.0.0"

@@ -154,7 +154,6 @@
     "@grpc/proto-loader": "^0.7.8",
     "async": "^3.2.2",
     "debug": ">=3.1.0",
-    "es5-ext": "0.10.53",
     "micromatch": "^4.0.0",
     "readable-stream": "^4.0.0",
     "shell-quote": "^1.7.3",
@@ -164,7 +163,6 @@
     "@grpc/proto-loader": "Resolves a security issue with protobufjs, one of its dependencies",
     "async": "Versions of async prior to 3.2.2 are vulnerable to prototype pollution",
     "debug": "ReDoS vulnerability in older versions, plus the dependents that pull in debug@<1.0.0 haven't been updated in years",
-    "es5-ext": "Packages after 0.10.54 and at the moment up until 0.10.59 contain a protest message. A policy prevents us from using packages with protestware, therefore downgrading to the latest release without the message.",
     "micromatch": "Version 3.x.x depends on decode-uri-component 0.2.0, which has a DoS vulnerability",
     "readable-stream": "Eliminates dependency on outdated string_decoder component",
     "shell-quote": "Versions prior to 1.7.3 have an RCE vulnerability. Should be removable once we upgrade CLI tools to ^8.0.0 with RN 0.69.",