From 291ba88224763b75aba2183ccaa74632cfe60c67 Mon Sep 17 00:00:00 2001 From: Henry Heino <46334387+personalizedrefrigerator@users.noreply.github.com> Date: Mon, 2 Jun 2025 13:03:27 -0700 Subject: [PATCH] Server: Security: SAML: Update samlify to v2.10.0 (#12371) --- packages/server/package.json | 2 +- yarn.lock | 49 ++++++++++++++++++++++++++---------- 2 files changed, 37 insertions(+), 14 deletions(-) diff --git a/packages/server/package.json b/packages/server/package.json index ad77ebb770..98e0e0e507 100644 --- a/packages/server/package.json +++ b/packages/server/package.json @@ -54,7 +54,7 @@ "query-string": "7.1.3", "rate-limiter-flexible": "5.0.3", "raw-body": "2.5.2", - "samlify": "2.8.10", + "samlify": "2.10.0", "sqlite3": "5.1.6", "stripe": "8.222.0", "uuid": "9.0.1", diff --git a/yarn.lock b/yarn.lock index dd872c3da6..a4d89b5214 100644 --- a/yarn.lock +++ b/yarn.lock @@ -9328,7 +9328,7 @@ __metadata: query-string: 7.1.3 rate-limiter-flexible: 5.0.3 raw-body: 2.5.2 - samlify: 2.8.10 + samlify: 2.10.0 source-map-support: 0.5.21 sqlite3: 5.1.6 stripe: 8.222.0 @@ -15362,7 +15362,14 @@ __metadata: languageName: node linkType: hard -"@xmldom/xmldom@npm:^0.8.6": +"@xmldom/is-dom-node@npm:^1.0.1": + version: 1.0.1 + resolution: "@xmldom/is-dom-node@npm:1.0.1" + checksum: 24a412fbd996b4de757c3905f4b4aad28578aaf6687fd4fc986f339d476dcf5153c50a4f408099c2a894961a1517c927163ec37a1ade9f73b5c0ad478b34190e + languageName: node + linkType: hard + +"@xmldom/xmldom@npm:^0.8.10, @xmldom/xmldom@npm:^0.8.6": version: 0.8.10 resolution: "@xmldom/xmldom@npm:0.8.10" checksum: 4c136aec31fb3b49aaa53b6fcbfe524d02a1dc0d8e17ee35bd3bf35e9ce1344560481cd1efd086ad1a4821541482528672306d5e37cdbd187f33d7fadd3e2cf0 @@ -42545,9 +42552,9 @@ __metadata: languageName: node linkType: hard -"samlify@npm:2.8.10": - version: 2.8.10 - resolution: "samlify@npm:2.8.10" +"samlify@npm:2.10.0": + version: 2.10.0 + resolution: "samlify@npm:2.10.0" dependencies: "@authenio/xml-encryption": ^2.0.2 "@xmldom/xmldom": ^0.8.6 @@ -42557,9 +42564,10 @@ __metadata: pako: ^1.0.10 uuid: ^8.3.2 xml: ^1.0.1 - xml-crypto: ^3.0.1 + xml-crypto: ^6.1.0 + xml-escape: ^1.1.0 xpath: ^0.0.32 - checksum: fdfb4bd36d1bac531fe26f7c4c41ca215df2a7eebab9c6c7f980bd2026e5e3ac6340560c55169b639d90af3ef5d783b565d31fab31641b3562a8f1e357908ef1 + checksum: 001615af81e02b52c36fd1338863f43b15a8b8e7a38a84ef12ab09e04155df27c3533142c412d59449d7cf1ce07347f29bd81bed6668a8b7ec3aa5b380b69f8b languageName: node linkType: hard @@ -49741,13 +49749,21 @@ __metadata: languageName: node linkType: hard -"xml-crypto@npm:^3.0.1": - version: 3.2.0 - resolution: "xml-crypto@npm:3.2.0" +"xml-crypto@npm:^6.1.0": + version: 6.1.2 + resolution: "xml-crypto@npm:6.1.2" dependencies: - "@xmldom/xmldom": ^0.8.8 - xpath: 0.0.32 - checksum: 6c4974a7518307ea006dcfc1405f61c6738b45574b4d9d1e62f53b602bfcf894d34017f99d618f26f67c40a5e6d78e6228116ded2768b2ca5b2df5c8bf7774b7 + "@xmldom/is-dom-node": ^1.0.1 + "@xmldom/xmldom": ^0.8.10 + xpath: ^0.0.33 + checksum: 96f764d79afbfb701fa968a624ee2ff1eeb6c96b2d2f7227bf8c38f0dd89a244b2831435ac9f845f3aa0c8ae71871348cfa1e01fa64e4c4021abef324b200b94 + languageName: node + linkType: hard + +"xml-escape@npm:^1.1.0": + version: 1.1.0 + resolution: "xml-escape@npm:1.1.0" + checksum: a19bd1006cfaaa0cfebd9e4f5b38397e86de8043f34a9321f90fcabe72d59e237e6a3e4e298f9db146b114cb4ac1dcbd68868690f95d60b8a6e27fff4aeb43fc languageName: node linkType: hard @@ -49869,6 +49885,13 @@ __metadata: languageName: node linkType: hard +"xpath@npm:^0.0.33": + version: 0.0.33 + resolution: "xpath@npm:0.0.33" + checksum: 075cd553819302b9df0ae11526b666016ee286b72e0600a923c7565d847fcfa7ff195db3065ec86b9a12f1f81bfc82f1a316fc53442a8572c31582e87ccaec4a + languageName: node + linkType: hard + "xtend@npm:^4.0.0, xtend@npm:^4.0.1, xtend@npm:^4.0.2, xtend@npm:~4.0.0, xtend@npm:~4.0.1": version: 4.0.2 resolution: "xtend@npm:4.0.2"