[Snyk] Security upgrade @google-cloud/firestore from 0.8.2 to 0.13.1

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	696/1000 Why? Recently disclosed, Has a fix available, CVSS 8.2	Arbitrary File Overwrite SNYK-JS-TAR-1536528	No	No Known Exploit
	696/1000 Why? Recently disclosed, Has a fix available, CVSS 8.2	Arbitrary File Overwrite SNYK-JS-TAR-1536531	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: @google-cloud/firestore

The new version differs by 82 commits.

• dcc7464 fix(package): update @ google-cloud/common to version 0.17.0 (Firebase App Auto Init firebase/firebase-admin-node#164)
• a57b790 fix(package): update google-gax to version 0.16.0 (Start testing against Node 8 and 9 firebase/firebase-admin-node#153)
• ee04b67 Adding Query Tests for NaN and Null (Not clear how to set channel for messaging firebase/firebase-admin-node#168)
• 1df29bf chore(package): update @ types/mocha to version 5.0.0 (Exception during save data to firestore from cloud function firebase/firebase-admin-node#165)
• 63041b1 Bumping version to v0.13.1 (Bumped version to 5.6.0 firebase/firebase-admin-node#167)
• 3668407 Improved error messages for custom types (Fixing some Firestore test warnings, caused by failure to find ADC firebase/firebase-admin-node#162)
• 9cc94f4 Fixing API documentation for 'id' (Fixing a Path Typo in the Contribution Guide firebase/firebase-admin-node#163)
• dde2233 Keeping non-empty nested objects (Upgraded sinon to latest firebase/firebase-admin-node#161)
• 1f98dd7 chore: setup nighty build in CircleCI (FR: Improve auth.createUser to support importing users from a different service firebase/firebase-admin-node#158)
• 12f91b6 Upgrade repo-tools and regenerate scaffolding. (Upload via FirbaseStorage - Issue: Firebase/Storage in the console firebase/firebase-admin-node#156)
• 037763a Fixing order test to verify that we order by components (NSP vulnerability 532 firebase/firebase-admin-node#154)
• c95c08c release v0.13.0 (FR: Add platform specific Cloud Message attributes firebase/firebase-admin-node#151)
• 3aa0e4e fix(package): update @ google-cloud/common-grpc to version 0.6.0 (Program doesn't terminate when running FCM.sendToDevice in nodejs. firebase/firebase-admin-node#150)
• 671c654 chore(package): update proxyquire to version 2.0.0 (Updated types to include potential for other keys in AppOptions. firebase/firebase-admin-node#148)
• 64040df fix(package): update google-gax to version 0.15.0 (Implements all refresh token revocation APIs. firebase/firebase-admin-node#149)
• 0d9adff Improving error message for multiple conflicting fields (Can't resolve firebase/firebase-admin-node#146)
• 7c3bdaa Preparing 0.12.0 release (Removing unused dependency firebase/firebase-admin-node#145)
• ef2730d Allowing empty merge calls (ThenableReference returning PromiseLike - should be Promise? firebase/firebase-admin-node#144)
• f23c167 Adding isEqual to the public API (Adding the RTDB typings back firebase/firebase-admin-node#140)
• 25067bb chore: removing node7 job from CircleCI (Implemented IID Delete API firebase/firebase-admin-node#142)
• 35c1af0 100% Test coverage and misc cleanup (Upgraded Firestore dependency to 0.10.0 firebase/firebase-admin-node#139)
• 463fbfc Rejecting custom types from the API surface (admin.intializeApp returns Raw server response firebase/firebase-admin-node#137)
• 843a5d1 Test refactor (Type names not found firebase/firebase-admin-node#138)
• a620ada Accept strings in where(FieldPath.documentId(), ...) (Wrong "typings" key in package.json after monorepo refactor. firebase/firebase-admin-node#136)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic