[Snyk] Upgrade @google-cloud/datastore from 1.3.4 to 6.6.2

[snyk-bot]

Snyk has created this PR to upgrade @google-cloud/datastore from 1.3.4 to 6.6.2.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

Warning: This is a major version upgrade, and may be a breaking change.

• The recommended version is 50 versions ahead of your current version.
• The recommended version was released 2 months ago, on 2021-11-08.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Arbitrary File Write SNYK-JS-TAR-1579155	639/1000 Why? Has a fix available, CVSS 8.5	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579152	639/1000 Why? Has a fix available, CVSS 8.5	No Known Exploit
	Arbitrary File Write SNYK-JS-TAR-1579147	639/1000 Why? Has a fix available, CVSS 8.5	No Known Exploit
	Arbitrary File Overwrite SNYK-JS-TAR-1536531	639/1000 Why? Has a fix available, CVSS 8.5	No Known Exploit
	Arbitrary File Overwrite SNYK-JS-TAR-1536528	639/1000 Why? Has a fix available, CVSS 8.5	No Known Exploit
	Prototype Pollution SNYK-JS-GRPC-598671	639/1000 Why? Has a fix available, CVSS 8.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-AXIOS-1579269	639/1000 Why? Has a fix available, CVSS 8.5	Proof of Concept
	Prototype Pollution SNYK-JS-AJV-584908	639/1000 Why? Has a fix available, CVSS 8.5	No Known Exploit
	Prototype Pollution npm:hoek:20180212	639/1000 Why? Has a fix available, CVSS 8.5	Proof of Concept
	Prototype Pollution SNYK-JS-NODEFORGE-2331908	639/1000 Why? Has a fix available, CVSS 8.5	No Known Exploit
	Open Redirect SNYK-JS-NODEFORGE-2330875	639/1000 Why? Has a fix available, CVSS 8.5	Proof of Concept
	Information Exposure SNYK-JS-FOLLOWREDIRECTS-2332181	639/1000 Why? Has a fix available, CVSS 8.5	Proof of Concept
	Server-Side Request Forgery (SSRF) SNYK-JS-AXIOS-1038255	639/1000 Why? Has a fix available, CVSS 8.5	Proof of Concept
	Regular Expression Denial of Service (ReDoS) SNYK-JS-TAR-1536758	639/1000 Why? Has a fix available, CVSS 8.5	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: @google-cloud/datastore

• 6.6.2 - 2021-11-08
  

  Bug Fixes

  • cloud-rad: move comments for TSDoc (#896) (2941f2f)
• 6.6.1 - 2021-11-04
  

  Bug Fixes

  • deps: update dependency sinon to v12 (#894) (6010464)
• 6.6.0 - 2021-10-13
  

  Features

  • update retry and timeout logic for generated async/stream (#883) (cd3ae5c)
• 6.5.0 - 2021-08-23
  

  Features

  • turns on self-signed JWT feature flag (#869) (a42c88e)
• 6.4.8 - 2021-08-17
  

  Bug Fixes

  • build: migrate to using main branch (#866) (85844a4)
  • deps: google-gax v2.24.1 (#868) (1c0d40f)
• 6.4.7 - 2021-07-26
  

  Bug Fixes

  • drop dependency on pumpify (#860) (f3d4fd9)
• 6.4.6 - 2021-07-19
  

  Bug Fixes

  • Updating WORKSPACE files to use the newest version of the Typescript generator. (#855) (1cdba8c)
• 6.4.5 - 2021-07-12
  

  Bug Fixes

  • deps: google-gax v2.17.1 (#853) (67b47ce)
• 6.4.4 - 2021-06-30
  

  Bug Fixes

  • deps: google-gax v2.17.0 with mTLS (#849) (76fa921)
• 6.4.3 - 2021-06-30
  

  Bug Fixes

  • Resolve getProjectId (#848) (9bfa885)
• 6.4.2 - 2021-06-23
• 6.4.1 - 2021-06-10
• 6.4.0 - 2021-04-29
• 6.3.1 - 2020-12-02
• 6.3.0 - 2020-11-09
• 6.2.0 - 2020-10-08
• 6.1.1 - 2020-09-17
• 6.1.0 - 2020-07-07
• 6.0.0 - 2020-06-02
• 5.1.0 - 2020-03-12
• 5.0.6 - 2020-02-20
• 5.0.5 - 2020-02-12
• 5.0.4 - 2020-01-31
• 5.0.3 - 2020-01-02
• 5.0.2 - 2019-12-12
• 5.0.1 - 2019-12-05
• 5.0.0 - 2019-11-15
• 4.5.2 - 2019-11-08
• 4.5.1 - 2019-11-08
• 4.5.0 - 2019-11-04
• 4.4.1 - 2019-10-22
• 4.4.0 - 2019-10-14
• 4.3.0 - 2019-09-12
• 4.2.0 - 2019-08-09
• 4.1.4 - 2019-07-23
• 4.1.3 - 2019-06-27
• 4.1.2 - 2019-06-20
• 4.1.1 - 2019-06-11
• 4.1.0 - 2019-06-05
• 4.0.0 - 2019-05-15
• 3.1.2 - 2019-03-06
• 3.1.1 - 2019-02-19
• 3.1.0 - 2019-02-11
• 3.0.1 - 2019-01-15
• 3.0.0 - 2019-01-15
• 2.0.0 - 2018-09-28
• 1.4.2 - 2018-08-21
• 1.4.1 - 2018-06-21
• 1.4.0 - 2018-03-19
• 1.3.5 - 2018-03-08
• 1.3.4 - 2018-02-12

from @google-cloud/datastore GitHub release notes

Commit messages

Package name: @google-cloud/datastore

• a67a301 chore: release 6.6.2 (Fix typo GoogleCloudPlatform/community#897)
• 2941f2f fix(cloud-rad): move comments for TSDoc (various production fixes GoogleCloudPlatform/community#896)
• 9c9913f chore: release 6.6.1 (#895)
• 6010464 fix(deps): update dependency sinon to v12 (Update nginx-ingress-gke tutorial GoogleCloudPlatform/community#894)
• c7a08a8 chore(cloud-rad): Add code fencing (Revert "Laravel: adds info about how the logs appear in the UI (#885)" GoogleCloudPlatform/community#893)
• 152b90c chore(deps): update dependency @ types/node to v16 (s/package/Package for Swift tutorials GoogleCloudPlatform/community#890)
• 66004fa chore(cloud-rad): delete api-extractor config (#888)
• 855d7d6 build(node): update deps used during postprocessing (Bump forwarded from 0.1.0 to 0.1.2 in /archived/express-memcached-session-appengine GoogleCloudPlatform/community#1243) (Laravel: adds info about how the logs appear in the UI GoogleCloudPlatform/community#885)
• 918ace7 chore: release 6.6.0 (Updates for test pass in May 2019. GoogleCloudPlatform/community#884)
• cd3ae5c feat: update retry and timeout logic for generated async/stream (#883)
• 5cfca3a chore(cloud-rad): fix links in docs (updates app.yamls for Laravel example GoogleCloudPlatform/community#882)
• 5024af2 chore(cloud-rad): explicitly export v1 classes ( Tutorial: Deploying private Forseti with SCC integration GoogleCloudPlatform/community#881)
• eb1df69 build(node): run linkinator against index.html (#1227) (Patch for new cloud build service account. GoogleCloudPlatform/community#879)
• c0eb5ab chore: relocate owl bot post processor (New: Local Development for Cloud Run with Docker Compose GoogleCloudPlatform/community#874)
• 8057db0 build: enable release-trigger bot (moving tutorial to archived folder pending fix for security vulnerability GoogleCloudPlatform/community#1212) (Make small typo and punctuation fixes. GoogleCloudPlatform/community#873)
• 17d47ee chore: disable renovate dependency dashboard (#1194) (add pihole over vpn setup GoogleCloudPlatform/community#872)
• 2384fa0 chore: release 6.5.0 (Pi hole ad blocker vpn GoogleCloudPlatform/community#870)
• a42c88e feat: turns on self-signed JWT feature flag (removing redundant H1 GoogleCloudPlatform/community#869)
• 43b1837 chore: release 6.4.8 (#867)
• 1c0d40f fix(deps): google-gax v2.24.1 (making code explanation and headings more clear GoogleCloudPlatform/community#868)
• 85844a4 fix(build): migrate to using main branch (bigtable-oc - added latency and transaction count metrics GoogleCloudPlatform/community#866)
• 406b15d chore(nodejs): update client ref docs link in metadata (#864)
• f0d9222 build: update auto-approve config for new validation (Update index.md GoogleCloudPlatform/community#1169) (making project creation clearer in non-interactive case GoogleCloudPlatform/community#862)
• 4ff52bf chore: release 6.4.7 (fixing indentation that caused incorrect rendering of code blocks GoogleCloudPlatform/community#861)

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs