@salesforce/core 6.7.0 → 6.7.1

package/lib/org/authInfo.js

@@ -210,8 +210,10 @@ class AuthInfo extends kit_1.AsyncOptionalCreatable {
      * @param options The options to generate the URL.
      */
     static getAuthorizationUrl(options, oauth2) {
-        // Always use a verifier for enhanced security
-        options.useVerifier = true;
+        // Unless explicitly turned off, use a code verifier for enhanced security
+        if (options.useVerifier !== false) {
+            options.useVerifier = true;
+        }
         const oauth2Verifier = oauth2 ?? new jsforce_1.OAuth2(options);
         // The state parameter allows the redirectUri callback listener to ignore request
         // that don't contain the state value.

package/lib/util/lockRetryOptions.js

@@ -8,9 +8,9 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.lockRetryOptions = exports.lockOptions = void 0;
 // docs: https://github.com/moxystudio/node-proper-lockfile
-exports.lockOptions = { stale: 10000 };
+exports.lockOptions = { stale: 10_000 };
 exports.lockRetryOptions = {
     ...exports.lockOptions,
-    retries: { retries: 10, maxTimeout: 1000, factor: 2 },
+    retries: { retries: 10, maxTimeout: 1_000, factor: 2 },
 };
 //# sourceMappingURL=lockRetryOptions.js.map

package/lib/util/time.js

@@ -8,6 +8,6 @@ exports.nowBigInt = void 0;
  * For full license text, see LICENSE.txt file in the repo root or https://opensource.org/licenses/BSD-3-Clause
  */
 const node_perf_hooks_1 = require("node:perf_hooks");
-const nowBigInt = () => BigInt((node_perf_hooks_1.performance.now() + node_perf_hooks_1.performance.timeOrigin) * 1000000);
+const nowBigInt = () => BigInt((node_perf_hooks_1.performance.now() + node_perf_hooks_1.performance.timeOrigin) * 1_000_000);
 exports.nowBigInt = nowBigInt;
 //# sourceMappingURL=time.js.map

package/lib/webOAuthServer.js

@@ -155,6 +155,9 @@ class WebOAuthServer extends kit_1.AsyncCreatable {
             this.oauthConfig.loginUrl = authInfo_1.AuthInfo.getDefaultInstanceUrl();
         if (!this.oauthConfig.redirectUri)
             this.oauthConfig.redirectUri = `http://localhost:${port}/OauthRedirect`;
+        // Unless explicitly turned off, use a code verifier as a best practice
+        if (this.oauthConfig.useVerifier !== false)
+            this.oauthConfig.useVerifier = true;
         this.webServer = await WebServer.create({ port });
         this.oauth2 = new jsforce_1.OAuth2(this.oauthConfig);
         this.authUrl = authInfo_1.AuthInfo.getAuthorizationUrl(this.oauthConfig, this.oauth2);
@@ -250,6 +253,7 @@ class WebOAuthServer extends kit_1.AsyncCreatable {
             this.logger.debug(`oauthConfig.loginUrl: ${this.oauthConfig.loginUrl}`);
             this.logger.debug(`oauthConfig.clientId: ${this.oauthConfig.clientId}`);
             this.logger.debug(`oauthConfig.redirectUri: ${this.oauthConfig.redirectUri}`);
+            this.logger.debug(`oauthConfig.useVerifier: ${this.oauthConfig.useVerifier}`);
             return authCode;
         }
         return null;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@salesforce/core",
-  "version": "6.7.0",
+  "version": "6.7.1",
   "description": "Core libraries to interact with SFDX projects, orgs, and APIs.",
   "main": "lib/exported",
   "types": "lib/exported.d.ts",
@@ -62,13 +62,13 @@
     "@salesforce/ts-sinon": "^1.4.19",
     "@types/benchmark": "^2.1.5",
     "@types/chai-string": "^1.4.5",
-    "@types/jsonwebtoken": "9.0.5",
+    "@types/jsonwebtoken": "9.0.6",
     "@types/proper-lockfile": "^4.1.4",
     "benchmark": "^2.1.4",
     "chai-string": "^1.5.0",
     "ts-node": "^10.9.2",
     "ts-patch": "^3.1.1",
-    "typescript": "^5.3.3"
+    "typescript": "^5.4.2"
   },
   "repository": {
     "type": "git",