Bump @simplewebauthn/browser from 13.1.2 to 13.2.0 in the prod-minor-updates group #902

New Issue

MrUnknownDE · 2026-04-05T17:57:28+02:00

MrUnknownDE commented

2026-04-05 17:57:28 +02:00

Originally created by @dependabot[bot] on 9/18/2025

Bumps the prod-minor-updates group with 1 update: @simplewebauthn/browser.

Updates @simplewebauthn/browser from 13.1.2 to 13.2.0

Release notes

Sourced from @simplewebauthn/browser's releases.

v13.2.0

[server] The return value from verifyRegistrationResponse() has been defined more strictly to communicate that registrationInfo will only ever be present if verified is true (#715)

[server] verifyRegistrationResponse() can now verify attestations containing SHA256 hashes by using EC public keys with the P-384 curve (#721)

[server] The Android SafetyNet "CTS profile match" system integrity check can now be disabled by setting attestationSafetyNetEnforceCTSCheck: false when calling verifyRegistrationResponse(). This check remains enforced by default (#722)

[browser] [server] These libraries now have better support in Deno 2.2+ projects which use generic typing for Uint8Array via TypeScript 5.7. SimpleWebAuthn values of type Uint8Array_ are equivalent to Uint8Array in Deno 2.1 and earlier, and Uint8Array<ArrayBuffer> in Deno 2.2 and later. (#717)

Changelog

Sourced from @simplewebauthn/browser's changelog.

v13.2.0

Changes

[server] The return value from verifyRegistrationResponse() has been defined more strictly to communicate that registrationInfo will only ever be present if verified is true (#715)

[server] verifyRegistrationResponse() can now verify attestations containing SHA256 hashes by using EC public keys with the P-384 curve (#721)

[server] The Android SafetyNet "CTS profile match" system integrity check can now be disabled by setting attestationSafetyNetEnforceCTSCheck: false when calling verifyRegistrationResponse(). This check remains enforced by default (#722)

[browser] [server] These libraries now have better support in Deno 2.2+ projects which use generic typing for Uint8Array via TypeScript 5.7. SimpleWebAuthn values of type Uint8Array_ are equivalent to Uint8Array in Deno 2.1 and earlier, and Uint8Array<ArrayBuffer> in Deno 2.2 and later. (#717)

Commits

84c61db Publish v13.2.0
f5f3de7 Refactor Uint8Array to Uint8Array_
e552884 Codegen another use of Uint8Array_
e2a3a85 Define Uint8Array_ for Deno backwards compat
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore <dependency name> major version will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself)
@dependabot ignore <dependency name> minor version will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself)
@dependabot ignore <dependency name> will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself)
@dependabot unignore <dependency name> will remove all of the ignore conditions of the specified dependency
@dependabot unignore <dependency name> <ignore condition> will remove the ignore condition of the specified dependency and ignore conditions

*Originally created by @dependabot[bot] on 9/18/2025* Bumps the prod-minor-updates group with 1 update: [@simplewebauthn/browser](https://github.com/MasterKale/SimpleWebAuthn/tree/HEAD/packages/browser). Updates `@simplewebauthn/browser` from 13.1.2 to 13.2.0 <details> <summary>Release notes</summary> Sourced from <a href="https://github.com/MasterKale/SimpleWebAuthn/releases"><code>@simplewebauthn/browser</code>'s releases</a>. <blockquote> <h2>v13.2.0</h2> <ul> <li>[server] The return value from <code>verifyRegistrationResponse()</code> has been defined more strictly to communicate that <code>registrationInfo</code> will only ever be present if <code>verified</code> is <code>true</code> (<a href="https://redirect.github.com/MasterKale/SimpleWebAuthn/pull/715">#715</a>)</li> <li>[server] <code>verifyRegistrationResponse()</code> can now verify attestations containing SHA256 hashes by using EC public keys with the P-384 curve (<a href="https://redirect.github.com/MasterKale/SimpleWebAuthn/pull/721">#721</a>)</li> <li>[server] The Android SafetyNet "CTS profile match" system integrity check can now be disabled by setting <code>attestationSafetyNetEnforceCTSCheck: false</code> when calling <code>verifyRegistrationResponse()</code>. This check remains enforced by default (<a href="https://redirect.github.com/MasterKale/SimpleWebAuthn/pull/722">#722</a>)</li> <li>[browser] [server] These libraries now have better support in Deno 2.2+ projects which use <a href="https://typescriptdocs.com/release-notes/TypeScript%205.7.html#typedarrays-are-now-generic-over-arraybufferlike">generic typing for <code>Uint8Array</code> via TypeScript 5.7</a>. SimpleWebAuthn values of type <code>Uint8Array_</code> are equivalent to <code>Uint8Array</code> in Deno 2.1 and earlier, and <code>Uint8Array<ArrayBuffer></code> in Deno 2.2 and later. (<a href="https://redirect.github.com/MasterKale/SimpleWebAuthn/pull/717">#717</a>)</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> Sourced from <a href="https://github.com/MasterKale/SimpleWebAuthn/blob/master/CHANGELOG.md"><code>@simplewebauthn/browser</code>'s changelog</a>. <blockquote> <h2>v13.2.0</h2> Changes <ul> <li>[server] The return value from <code>verifyRegistrationResponse()</code> has been defined more strictly to communicate that <code>registrationInfo</code> will only ever be present if <code>verified</code> is <code>true</code> (<a href="https://redirect.github.com/MasterKale/SimpleWebAuthn/pull/715">#715</a>)</li> <li>[server] <code>verifyRegistrationResponse()</code> can now verify attestations containing SHA256 hashes by using EC public keys with the P-384 curve (<a href="https://redirect.github.com/MasterKale/SimpleWebAuthn/pull/721">#721</a>)</li> <li>[server] The Android SafetyNet "CTS profile match" system integrity check can now be disabled by setting <code>attestationSafetyNetEnforceCTSCheck: false</code> when calling <code>verifyRegistrationResponse()</code>. This check remains enforced by default (<a href="https://redirect.github.com/MasterKale/SimpleWebAuthn/pull/722">#722</a>)</li> <li>[browser] [server] These libraries now have better support in Deno 2.2+ projects which use <a href="https://typescriptdocs.com/release-notes/TypeScript%205.7.html#typedarrays-are-now-generic-over-arraybufferlike">generic typing for <code>Uint8Array</code> via TypeScript 5.7</a>. SimpleWebAuthn values of type <code>Uint8Array_</code> are equivalent to <code>Uint8Array</code> in Deno 2.1 and earlier, and <code>Uint8Array<ArrayBuffer></code> in Deno 2.2 and later. (<a href="https://redirect.github.com/MasterKale/SimpleWebAuthn/pull/717">#717</a>)</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/MasterKale/SimpleWebAuthn/commit/84c61db7b22c14f0e4ebba860023dd76d589c5f5"><code>84c61db</code></a> Publish v13.2.0</li> <li><a href="https://github.com/MasterKale/SimpleWebAuthn/commit/f5f3de7b8f3c948d78e149f50cb3ca27091780b7"><code>f5f3de7</code></a> Refactor Uint8Array to Uint8Array_</li> <li><a href="https://github.com/MasterKale/SimpleWebAuthn/commit/e552884f0fb4b84ee38b851fa4db53ca9a86d50d"><code>e552884</code></a> Codegen another use of Uint8Array_</li> <li><a href="https://github.com/MasterKale/SimpleWebAuthn/commit/e2a3a8564259a9a166fedb9ecb913faecc39558d"><code>e2a3a85</code></a> Define Uint8Array_ for Deno backwards compat</li> <li>See full diff in <a href="https://github.com/MasterKale/SimpleWebAuthn/commits/v13.2.0/packages/browser">compare view</a></li> </ul> </details> [![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=@simplewebauthn/browser&package-manager=npm_and_yarn&previous-version=13.1.2&new-version=13.2.0)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `@dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) --- <details> <summary>Dependabot commands and options</summary> You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show <dependency name> ignore conditions` will show all of the ignore conditions of the specified dependency - `@dependabot ignore <dependency name> major version` will close this group update PR and stop Dependabot creating any more for the specific dependency's major version (unless you unignore this specific dependency's major version or upgrade to it yourself) - `@dependabot ignore <dependency name> minor version` will close this group update PR and stop Dependabot creating any more for the specific dependency's minor version (unless you unignore this specific dependency's minor version or upgrade to it yourself) - `@dependabot ignore <dependency name>` will close this group update PR and stop Dependabot creating any more for the specific dependency (unless you unignore this specific dependency or upgrade to it yourself) - `@dependabot unignore <dependency name>` will remove all of the ignore conditions of the specified dependency - `@dependabot unignore <dependency name> <ignore condition>` will remove the ignore condition of the specified dependency and ignore conditions </details>

MrUnknownDE closed this issue

2026-04-05 17:57:28 +02:00

Sign in to join this conversation.

Branches Tags

main

dev

dependabot/npm_and_yarn/dev-minor-updates-b4e5d6b9c5

revert-2766-feature/systemd-install-instructions

dependabot/npm_and_yarn/prod-patch-updates-05702d39f2

dependabot/npm_and_yarn/next-16.2.1

dependabot/npm_and_yarn/recharts-3.8.1

alerting-rules

private-site-ha

dependabot/docker/docker/library/node-25-slim

ssh

delete-account

msg-delivery

org-only-idp

cicd

patch

site-targets-auto-login

No Label dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies dependencies javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript javascript

1 Participants

Notifications

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github/pangolin#902