@continuoussecuritytooling/keycloak-reporter 0.8.12 → 1.0.0

package/.bin/start-server.mjs

@@ -11,6 +11,8 @@ import { fileURLToPath } from 'node:url'
 import { promisify } from 'node:util'
 import tar from 'tar-fs'
 
+// renovate: datasource=docker depName=quay.io/keycloak/keycloak
+const KEYCLOAK_VERSION = '25.0.6';
 const DIR_NAME = path.dirname(fileURLToPath(import.meta.url))
 const SERVER_DIR = path.resolve(DIR_NAME, '../tmp/server')
 const SCRIPT_EXTENSION = process.platform === 'win32' ? '.bat' : '.sh'
@@ -53,22 +55,22 @@ async function downloadServer () {
 
   console.info('Downloading and extracting server…')
 
-  const nightlyAsset = await getNightlyAsset()
-  const assetStream = await getAssetAsStream(nightlyAsset)
+  const asset = await getAsset()
+  const assetStream = await getAssetAsStream(asset)
 
   await extractTarball(assetStream, SERVER_DIR, { strip: 1 })
 }
 
-async function getNightlyAsset () {
+async function getAsset () {
   const api = new Octokit()
   const release = await api.repos.getReleaseByTag({
     owner: 'keycloak',
     repo: 'keycloak',
-    tag: 'nightly'
+    tag: KEYCLOAK_VERSION
   })
 
   return release.data.assets.find(
-    ({ name }) => name === 'keycloak-999.0.0-SNAPSHOT.tar.gz'
+    ({ name }) => name === `keycloak-${KEYCLOAK_VERSION}.tar.gz`
   )
 }
 
@@ -84,4 +86,4 @@ async function getAssetAsStream (asset) {
 
 function extractTarball (stream, path, options) {
   return pipelineAsync(stream, gunzip(), tar.extract(path, options))
-}
+}

package/.github/workflows/pipeline.yml

@@ -80,7 +80,11 @@ jobs:
 
       - name: Run chart-testing (install - with args)
         if: steps.list-changed.outputs.changed == 'true'
-        run: ct install --target-branch ${{ github.event.repository.default_branch }} --helm-extra-set-args "-f charts/keycloak-reporter/ci.values.yaml"
+        run: |
+          kubectl create ns kc-reporter
+          kubectl -n kc-reporter create secret generic kc-reporter \
+            --from-literal=clientSecret=test
+          ct install --target-branch ${{ github.event.repository.default_branch }} --namespace kc-reporter --helm-extra-set-args "-f charts/keycloak-reporter/ci.values.yaml"
 
       - uses: actions/upload-artifact@v4
         with:
@@ -138,6 +142,23 @@ jobs:
           WEBHOOK_TESTING_SLACK: ${{ secrets.WEBHOOK_TESTING_SLACK }}
           WEBHOOK_ADDITIONAL_MESSAGE: ${{ github.head_ref || github.ref_name }}
 
+  build-results:
+    name: Build results
+    if: ${{ always() }}
+    runs-on: ubuntu-latest
+    needs:
+      - build
+      - chart
+      - end2end
+    steps:
+      - run: exit 1
+        # see https://stackoverflow.com/a/67532120/4907315
+        if: >-
+          ${{
+                contains(needs.*.result, 'failure')
+            || contains(needs.*.result, 'cancelled')
+                || contains(needs.*.result, 'skipped')
+                }}
   package:
     name: Package Application
     runs-on: ubuntu-latest

package/.github/workflows/release.yml

@@ -1,54 +1,193 @@
-name: Release Chart
-
+name: Create release # You may choose a different name
+run-name: ${{ inputs.releaseversion }} # Enumerates entries in the "workflow runs" view
 on:
-  push:
-    branches:
-      - main
+    workflow_dispatch:
+        inputs:
+            releaseversion:
+                description: 'Release version'
+                required: true
+                type: string
+                default: "X.Y.Z"
 
 jobs:
-  release:
-    # depending on default permission settings for your org (contents being read-only or read-write for workloads), you will have to add permissions
-    # see: https://docs.github.com/en/actions/security-guides/automatic-token-authentication#modifying-the-permissions-for-the-github_token
-    permissions:
-      contents: write
-    runs-on: ubuntu-latest
-    steps:
-      - name: Checkout
-        uses: actions/checkout@v4
-        with:
-          fetch-depth: 0
-
-      - name: Configure Git
-        run: |
-          git config user.name "$GITHUB_ACTOR"
-          git config user.email "$GITHUB_ACTOR@users.noreply.github.com"
-
-      - name: Install Helm
-        uses: azure/setup-helm@v4
-      - name: Install Python
-        uses: actions/setup-python@v5
-        with:
-          python-version: '3.9'
-          check-latest: true
-      - name: Set up chart-testing
-        uses: helm/chart-testing-action@v2.6.1
-
-      - name: Run chart-testing (lint)
-        run: ct lint --config .ct.yaml
-
-      - name: Helm Package
-        run: helm package charts/keycloak-reporter/
-
-      - name: Login to GitHub Container Registry
-        run: |
-          echo ${{ secrets.CT_OCI_GITHUB_TOKEN }} | helm registry login ghcr.io -u $ --password-stdin
-
-      - name: Push Charts to GHCR
-        run: |
-          shopt -s nullglob
-          for pkg in *.tgz; do
-            if [ -z "${pkg:-}" ]; then
-              break
-            fi
-            helm push "${pkg}" oci://ghcr.io/cloudtooling/helm-charts
-          done
+    release: # Arbitrarily chosen
+        name: Release
+        runs-on: ubuntu-latest
+        permissions:
+            contents: write
+            packages: write
+            attestations: write
+            id-token: write
+        steps:
+
+            -   uses: actions/create-github-app-token@v1
+                id: app-token
+                with:
+                    app-id: ${{ vars.CI_APP_ID }}
+                    private-key: ${{ secrets.CI_PRIVATE_KEY }}
+
+            -   name: Checkout
+                uses: actions/checkout@v4
+                with:
+                    fetch-depth: 0
+                    token: ${{ steps.app-token.outputs.token }}
+                    ref: ${{ github.head_ref }}
+
+            -   name: Get GitHub App User ID
+                id: get-user-id
+                run: echo "user-id=$(gh api "/users/${{ steps.app-token.outputs.app-slug }}[bot]" --jq .id)" >> "$GITHUB_OUTPUT"
+                env:
+                    GH_TOKEN: ${{ steps.app-token.outputs.token }}
+
+            -   name: Configure Git author
+                run: |
+                    git config --global user.name '${{ steps.app-token.outputs.app-slug }}[bot]'
+                    git config --global user.email '${{ steps.get-user-id.outputs.user-id }}+${{ steps.app-token.outputs.app-slug }}[bot]@users.noreply.github.com>'
+
+            -   name: Setup NodeJS
+                uses: actions/setup-node@v4
+                with:
+                    node-version: '20'
+                    registry-url: 'https://registry.npmjs.org'
+
+            -   name: Setup Java
+                uses: actions/setup-java@v4 # Does also set up Maven and GPG
+                with:
+                    distribution: 'temurin' # As good as any other, see: https://github.com/actions/setup-java#supported-distributions
+                    java-version: '21'
+
+            -   name: Package Application
+                run: |
+                    npm run clean
+                    npm version --no-git-tag-version ${{ github.event.inputs.releaseversion }}
+                    npm run build
+
+            -   name: Install Helm
+                uses: azure/setup-helm@v4
+
+            -   name: Install Python
+                uses: actions/setup-python@v5
+                with:
+                    python-version: '3.9'
+                    check-latest: true
+            -   name: Set up chart-testing
+                uses: helm/chart-testing-action@v2.6.1
+
+            -   name: Set up helm-docs
+                uses: gabe565/setup-helm-docs-action@v1
+
+            -   name: Run chart-testing (lint)
+                run: ct lint --config .ct.yaml
+
+            -   name: Helm Package
+                run: |
+
+                    # Increment a version string using Semantic Versioning (SemVer) terminology.
+                    # Parse command line options.
+                    # Source: https://github.com/fmahnke/shell-semver
+                    #
+                    # usage: increment_version.sh [-Mmp] major.minor.patch
+                    increment_version() {
+                      while getopts ":Mmp" Option
+                      do
+                        case $Option in
+                          M ) major=true;;
+                          m ) minor=true;;
+                          p ) patch=true;;
+                          * ) patch=true;;
+                        esac
+                      done
+
+                      # shellcheck disable=SC2004,SC2206
+                      shift $(($OPTIND - 1))
+
+                      version=$1
+
+                      # Build array from version string.
+                      # shellcheck disable=SC2206
+                      a=( ${version//./ } )
+                      # If version string is missing or has the wrong number of members, show usage message.
+                      if [ ${#a[@]} -ne 3 ]
+                      then
+                        echo "usage: $(basename $0) [-Mmp] major.minor.patch"
+                        exit 1
+                      fi
+
+                      # Increment version numbers as requested.
+
+                      if [ -n "$major" ]
+                      then
+                        ((a[0]++))
+                        a[1]=0
+                        a[2]=0
+                      fi
+
+                      if [ -n "$minor" ]
+                      then
+                        ((a[1]++))
+                        a[2]=0
+                      fi
+
+                      if [ -n "$patch" ]
+                      then
+                        ((a[2]++))
+                      fi
+
+                      echo "${a[0]}.${a[1]}.${a[2]}"
+                    }
+
+                    export HELM_CHART_DIR=charts/keycloak-reporter
+                    chartVersion=$(cat $HELM_CHART_DIR/Chart.yaml | grep "version: " | sed -E -n "s/^version: \s*(.*)$/\1/p")
+                    appVersion=$(cat $HELM_CHART_DIR/Chart.yaml | grep "appVersion: " | sed -E -n "s/^appVersion: \s*(.*)$/\1/p")
+                    newVersion=$(increment_version -p $chartVersion)
+                    sed -i 's/version: '"$chartVersion"'/version: '"$newVersion"'/g' $HELM_CHART_DIR/Chart.yaml
+                    sed -i 's/appVersion: '"$appVersion"'/appVersion: '"${{ github.event.inputs.releaseversion }}"'/g' $HELM_CHART_DIR/Chart.yaml
+                    helm-docs
+                    helm package $HELM_CHART_DIR
+                    git add .
+
+
+            -   name: Run chart-testing (lint)
+                run: ct lint --config .ct.yaml
+
+            -   name: Conventional Changelog Action
+                uses: TriPSs/conventional-changelog-action@v5
+                with:
+                    input-file: CHANGELOG.md
+                    github-token: ${{ steps.app-token.outputs.token }}
+                    version-file: package.json
+                    pre-release: true
+                    skip-bump: true
+                    skip-tag: true
+                    skip-on-empty: true
+                    tag-prefix: 'v'
+
+            -   name: Create Release on GH
+                id: tag-and-release
+                uses: avakar/tag-and-release@v1
+                with:
+                    draft: true
+                    release_name: ${{ github.event.inputs.releaseversion }}
+                    tag_name: v${{ github.event.inputs.releaseversion }}
+                env:
+                    GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+
+            -   name: Publish npm package
+                run: |
+                    npm publish
+                env:
+                    NODE_AUTH_TOKEN: ${{ secrets.NPM_AUTH_TOKEN }}
+
+            -   name: Login to GitHub Container Registry
+                run: |
+                    echo ${{ secrets.CT_OCI_GITHUB_TOKEN }} | helm registry login ghcr.io -u $ --password-stdin
+
+            -   name: Push Charts to GHCR
+                run: |
+                    shopt -s nullglob
+                    for pkg in *.tgz; do
+                      if [ -z "${pkg:-}" ]; then
+                        break
+                      fi
+                      helm push "${pkg}" oci://ghcr.io/cloudtooling/helm-charts
+                    done

package/CHANGELOG.md

@@ -1,3 +1,74 @@
+# [1.0.0](https://github.com/ContinuousSecurityTooling/keycloak-reporter/compare/v0.8.12...v1.0.0) (2024-10-17)
+
+
+### Bug Fixes
+
+* **Chart:** Correcting chart version ([bd7eb36](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/bd7eb36b0e0c77cfedef23005c25190f2d9aa156))
+* **deps:** update dependency @continuoussecuritytooling/keycloak-auditor to v1.1.10 ([ac7118b](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/ac7118bbcdd08dc4df3e33aca1d207ff946abbe6))
+* **deps:** update dependency @continuoussecuritytooling/keycloak-auditor to v1.1.16 ([2c4a9b7](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/2c4a9b7e10d481fcfb663ce257abdfd0facc7ae1))
+* **deps:** update dependency @continuoussecuritytooling/keycloak-auditor to v2 ([ecee366](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/ecee366ba32cba49e14f116d0e0dffb836182d81))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.4 ([e79d129](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/e79d129308de45c661374303990aad06a3264a48))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.5 ([179de86](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/179de86d06f61eadf6975bee86784fab0fc510a2))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.6 ([291594b](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/291594b23d396d53de98ed458ce133f1b541f779))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v26 ([813c5b1](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/813c5b1c80bd657e97f7d7e1dd323d3f1a1d47a4))
+* **deps:** update dependency @slack/webhook to v7.0.3 ([483dce5](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/483dce5975e0722e531f673035703ef78983afa0))
+* **deps:** update dependency ms-teams-webhook to v2.2.0 ([38e4184](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/38e41849a6a5eb41edafe813f8d9dcd7bfc37f7e))
+* **deps:** update dependency ms-teams-webhook to v2.2.1 ([eb91bcf](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/eb91bcff5142099cada7ed1cb9cceac71ebfd9bd))
+* **deps:** update dependency ms-teams-webhook to v2.2.2 ([1ccd777](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/1ccd7771918077cadbe74e88e78554e7307871b1))
+* **deps:** update dependency npm to v10.8.3 ([b14ebf4](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/b14ebf4f2fa6295aad533f610949425313cb92ce))
+* **deps:** update dependency npm to v10.9.0 ([f2d65c4](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/f2d65c43374fc5a32262269d479355ede46ae7f8))
+* **deps:** update dependency openid-client to v5.7.0 ([8688200](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/8688200de26bd62077aeec9f01ce8f503e92e296))
+* **deps:** update dependency openid-client to v6 ([cd3edc3](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/cd3edc35ca2193a53bd5912d2dd6a074524e647b))
+
+
+
+## [0.8.14](https://github.com/ContinuousSecurityTooling/keycloak-reporter/compare/v0.8.12...v0.8.14) (2024-09-17)
+
+
+### Bug Fixes
+
+* **deps:** update dependency @continuoussecuritytooling/keycloak-auditor to v1.1.10 ([ac7118b](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/ac7118bbcdd08dc4df3e33aca1d207ff946abbe6))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.4 ([e79d129](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/e79d129308de45c661374303990aad06a3264a48))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.5 ([179de86](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/179de86d06f61eadf6975bee86784fab0fc510a2))
+* **deps:** update dependency @slack/webhook to v7.0.3 ([483dce5](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/483dce5975e0722e531f673035703ef78983afa0))
+* **deps:** update dependency ms-teams-webhook to v2.2.0 ([38e4184](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/38e41849a6a5eb41edafe813f8d9dcd7bfc37f7e))
+* **deps:** update dependency ms-teams-webhook to v2.2.1 ([eb91bcf](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/eb91bcff5142099cada7ed1cb9cceac71ebfd9bd))
+* **deps:** update dependency ms-teams-webhook to v2.2.2 ([1ccd777](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/1ccd7771918077cadbe74e88e78554e7307871b1))
+* **deps:** update dependency npm to v10.8.3 ([b14ebf4](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/b14ebf4f2fa6295aad533f610949425313cb92ce))
+* **deps:** update dependency openid-client to v5.7.0 ([8688200](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/8688200de26bd62077aeec9f01ce8f503e92e296))
+
+
+
+## [0.8.13](https://github.com/ContinuousSecurityTooling/keycloak-reporter/compare/v0.8.12...v) (2024-09-17)
+
+
+### Bug Fixes
+
+* **deps:** update dependency @continuoussecuritytooling/keycloak-auditor to v1.1.10 ([ac7118b](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/ac7118bbcdd08dc4df3e33aca1d207ff946abbe6))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.4 ([e79d129](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/e79d129308de45c661374303990aad06a3264a48))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.5 ([179de86](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/179de86d06f61eadf6975bee86784fab0fc510a2))
+* **deps:** update dependency @slack/webhook to v7.0.3 ([483dce5](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/483dce5975e0722e531f673035703ef78983afa0))
+* **deps:** update dependency ms-teams-webhook to v2.2.0 ([38e4184](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/38e41849a6a5eb41edafe813f8d9dcd7bfc37f7e))
+* **deps:** update dependency ms-teams-webhook to v2.2.1 ([eb91bcf](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/eb91bcff5142099cada7ed1cb9cceac71ebfd9bd))
+* **deps:** update dependency ms-teams-webhook to v2.2.2 ([1ccd777](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/1ccd7771918077cadbe74e88e78554e7307871b1))
+* **deps:** update dependency npm to v10.8.3 ([b14ebf4](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/b14ebf4f2fa6295aad533f610949425313cb92ce))
+* **deps:** update dependency openid-client to v5.7.0 ([8688200](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/8688200de26bd62077aeec9f01ce8f503e92e296))
+
+
+
+## [0.8.12](https://github.com/ContinuousSecurityTooling/keycloak-reporter/compare/v0.8.11...v0.8.12) (2024-07-29)
+
+
+### Bug Fixes
+
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.1 ([b267295](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/b267295b0f3b8a30834586ebb3f9554fad1393c0))
+* **deps:** update dependency @keycloak/keycloak-admin-client to v25.0.2 ([d14e96b](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/d14e96b4d0f97516dda20c34c210a97cf98798cb))
+* **deps:** update dependency ajv to v8.17.1 ([ac581df](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/ac581df5f60bd52463aa102bd7176cb230ae4f0a))
+* **deps:** update dependency npm to v10.8.2 ([1671de8](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/1671de8e1c7f9ff73fb75fb2d4c5396103337b32))
+* Dockerfile to reduce vulnerabilities ([96c4505](https://github.com/ContinuousSecurityTooling/keycloak-reporter/commit/96c450526d53d9efa5c8d74d6adeaaf9fef85470))
+
+
+
 ## [0.8.11](https://github.com/ContinuousSecurityTooling/keycloak-reporter/compare/v0.8.10...v0.8.11) (2024-06-16)
 
 

package/Dockerfile

@@ -1,4 +1,4 @@
-FROM node:20.16.0-slim
+FROM node:20.18.0-slim
 
 ARG BUILD_DATE
 ARG APP_VERSION

package/charts/keycloak-reporter/Chart.yaml

@@ -15,14 +15,14 @@ type: application
 # This is the chart version. This version number should be incremented each time you make changes
 # to the chart and its templates, including the app version.
 # Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 1.3.3
+version: 1.3.5
 
 # This is the version number of the application being deployed. This version number should be
 # incremented each time you make changes to the application. Versions are not expected to
 # follow Semantic Versioning. They should reflect the version the application is using.
 # It is recommended to use it with quotes.
 # renovate: datasource=docker depName=ContinuousSecurityTooling/keycloak-reporter
-appVersion: '0.8.10'
+appVersion: 1.0.0
 maintainers:
   # Martin Reinhardt
   - name: hypery2k

package/charts/keycloak-reporter/README.md

@@ -1,6 +1,6 @@
 # keycloak-reporter
 
-![Version: 1.3.3](https://img.shields.io/badge/Version-1.3.3-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 0.8.10](https://img.shields.io/badge/AppVersion-0.8.10-informational?style=flat-square)
+![Version: 1.3.5](https://img.shields.io/badge/Version-1.3.5-informational?style=flat-square) ![Type: application](https://img.shields.io/badge/Type-application-informational?style=flat-square) ![AppVersion: 1.0.0](https://img.shields.io/badge/AppVersion-1.0.0-informational?style=flat-square)
 
 Keycloak user and client reporting tool for automated regular access checks.
 
@@ -35,4 +35,4 @@ Keycloak user and client reporting tool for automated regular access checks.
 | tolerations | list | `[]` |  |
 
 ----------------------------------------------
-Autogenerated from chart metadata using [helm-docs v1.13.1](https://github.com/norwoodj/helm-docs/releases/v1.13.1)
+Autogenerated from chart metadata using [helm-docs v1.14.2](https://github.com/norwoodj/helm-docs/releases/v1.14.2)

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@continuoussecuritytooling/keycloak-reporter",
-  "version": "0.8.12",
+  "version": "1.0.0",
   "description": "Reporting Tools for Keycloak",
   "main": "dist/index.js",
   "bin": {
@@ -32,15 +32,15 @@
   },
   "homepage": "https://github.com/ContinuousSecurityTooling/keycloak-reporter#readme",
   "dependencies": {
-    "@continuoussecuritytooling/keycloak-auditor": "^1.1.5",
+    "@continuoussecuritytooling/keycloak-auditor": "^2.0.0",
     "@json2csv/node": "^7.0.0",
-    "@keycloak/keycloak-admin-client": "^25.0.0",
+    "@keycloak/keycloak-admin-client": "^26.0.0",
     "@slack/webhook": "^7.0.0",
     "ajv": "^8.12.0",
     "install": "^0.13.0",
     "ms-teams-webhook": "^2.0.2",
     "npm": "^10.0.0",
-    "openid-client": "^5.4.2",
+    "openid-client": "^6.0.0",
     "ramda": "^0.30.0",
     "yargs": "^17.7.2"
   },
@@ -49,8 +49,8 @@
     "@types/jest": "^29.5.1",
     "@types/node": "^20.1.5",
     "@types/yargs": "^17.0.24",
-    "@typescript-eslint/eslint-plugin": "^7.0.0",
-    "@typescript-eslint/parser": "^7.0.0",
+    "@typescript-eslint/eslint-plugin": "^8.0.0",
+    "@typescript-eslint/parser": "^8.0.0",
     "conventional-changelog-cli": "^5.0.0",
     "eslint": "^8.40.0",
     "eslint-config-prettier": "^9.0.0",