auth0-deploy-cli 8.24.0 → 8.26.0

package/lib/tools/auth0/handlers/prompts.d.ts

@@ -3,7 +3,7 @@ import DefaultHandler from './default';
 import { Assets, Language } from '../../../types';
 declare const promptTypes: readonly ["login", "login-id", "login-password", "login-passwordless", "login-email-verification", "signup", "signup-id", "signup-password", "phone-identifier-enrollment", "phone-identifier-challenge", "email-identifier-challenge", "reset-password", "custom-form", "consent", "customized-consent", "logout", "mfa-push", "mfa-otp", "mfa-voice", "mfa-phone", "mfa-webauthn", "mfa-sms", "mfa-email", "mfa-recovery-code", "mfa", "status", "device-flow", "email-verification", "email-otp-challenge", "organizations", "invitation", "common", "captcha", "passkeys", "brute-force-protection"];
 export type PromptTypes = (typeof promptTypes)[number];
-declare const screenTypes: readonly ["login", "login-id", "login-password", "login-email-verification", "signup", "signup-id", "signup-password", "reset-password-request", "reset-password-email", "reset-password", "reset-password-success", "reset-password-error", "consent", "status", "mfa-detect-browser-capabilities", "mfa-enroll-result", "mfa-login-options", "mfa-begin-enroll-options", "mfa-otp-enrollment-qr", "mfa-otp-enrollment-code", "mfa-otp-challenge", "mfa-voice-challenge", "mfa-sms-challenge", "mfa-recovery-code-enrollment", "mfa-recovery-code-challenge", "mfa-country-codes", "mfa-sms-enrollment", "mfa-voice-enrollment", "mfa-phone-challenge", "mfa-phone-enrollment", "mfa-webauthn-roaming-enrollment", "mfa-webauthn-platform-enrollment", "mfa-webauthn-platform-challenge", "mfa-webauthn-roaming-challenge", "mfa-webauthn-change-key-nickname", "mfa-webauthn-enrollment-success", "mfa-webauthn-error", "mfa-webauthn-not-available-error", "mfa-sms-list", "mfa-email-challenge", "mfa-email-list", "mfa-push-welcome", "mfa-push-list", "mfa-push-enrollment-qr", "mfa-push-enrollment-code", "mfa-push-success", "mfa-push-challenge-push", "device-code-activation", "device-code-activation-allowed", "device-code-activation-denied", "device-code-confirmation", "email-verification-result", "email-otp-challenge", "redeem-ticket", "organization-selection", "accept-invitation", "login-passwordless-email-code", "login-passwordless-email-link", "login-passwordless-sms-otp", "passkey-enrollment", "passkey-enrollment-local", "brute-force-protection-unblock", "brute-force-protection-unblock-success", "brute-force-protection-unblock-failure"];
+declare const screenTypes: readonly ["login", "login-id", "login-password", "login-email-verification", "signup", "signup-id", "signup-password", "reset-password-request", "reset-password-email", "reset-password", "reset-password-success", "reset-password-error", "consent", "status", "mfa-detect-browser-capabilities", "mfa-enroll-result", "mfa-login-options", "mfa-begin-enroll-options", "mfa-otp-enrollment-qr", "mfa-otp-enrollment-code", "mfa-otp-challenge", "mfa-voice-challenge", "mfa-sms-challenge", "mfa-recovery-code-enrollment", "mfa-recovery-code-challenge", "mfa-country-codes", "mfa-sms-enrollment", "mfa-voice-enrollment", "mfa-phone-challenge", "mfa-phone-enrollment", "mfa-webauthn-roaming-enrollment", "mfa-webauthn-platform-enrollment", "mfa-webauthn-platform-challenge", "mfa-webauthn-roaming-challenge", "mfa-webauthn-change-key-nickname", "mfa-webauthn-enrollment-success", "mfa-webauthn-error", "mfa-webauthn-not-available-error", "mfa-sms-list", "mfa-email-challenge", "mfa-email-list", "mfa-push-welcome", "mfa-push-list", "mfa-push-enrollment-qr", "mfa-push-enrollment-code", "mfa-push-success", "mfa-push-challenge-push", "device-code-activation", "device-code-activation-allowed", "device-code-activation-denied", "device-code-confirmation", "email-verification-result", "email-otp-challenge", "redeem-ticket", "organization-selection", "pre-login-organization-picker", "accept-invitation", "login-passwordless-email-code", "login-passwordless-email-link", "login-passwordless-sms-otp", "passkey-enrollment", "passkey-enrollment-local", "brute-force-protection-unblock", "brute-force-protection-unblock-success", "brute-force-protection-unblock-failure"];
 export type ScreenTypes = (typeof screenTypes)[number];
 declare const customPartialsPromptTypes: string[];
 export type CustomPartialsPromptTypes = (typeof customPartialsPromptTypes)[number];
@@ -75,7 +75,7 @@ export type PromptsCustomText = {
 export type AllPromptsByLanguage = Partial<{
     [key in Language]: Partial<PromptsCustomText>;
 }>;
-export type ScreenRenderer = Management.AculResponseContent;
+export type ScreenRenderer = Management.GetAculResponseContent;
 export type Prompts = Partial<PromptSettings & {
     customText: AllPromptsByLanguage;
     partials: CustomPromptPartials;

package/lib/tools/auth0/handlers/prompts.js

@@ -103,6 +103,7 @@ const screenTypes = [
     'email-otp-challenge',
     'redeem-ticket',
     'organization-selection',
+    'pre-login-organization-picker',
     'accept-invitation',
     'login-passwordless-email-code',
     'login-passwordless-email-link',

package/lib/tools/auth0/handlers/resourceServers.d.ts

@@ -95,7 +95,5 @@ export default class ResourceServersHandler extends DefaultHandler {
     calcChanges(assets: Assets): Promise<CalculatedChanges>;
     validate(assets: Assets): Promise<void>;
     processChanges(assets: Assets): Promise<void>;
-    updateResourceServer(args: {
-        id: string;
-    }, update: ResourceServer): Promise<Management.UpdateResourceServerResponseContent>;
+    updateResourceServer(id: string, update: ResourceServer): Promise<Management.UpdateResourceServerResponseContent>;
 }

package/lib/tools/auth0/handlers/resourceServers.js

@@ -88,7 +88,7 @@ class ResourceServersHandler extends default_1.default {
             stripCreateFields: ['client_id', 'is_system'],
             stripUpdateFields: ['identifier', 'client_id', 'is_system'],
             functions: {
-                update: (args, data) => this.updateResourceServer(args, data),
+                update: (id, data) => this.updateResourceServer(id, data),
             },
         });
     }
@@ -172,7 +172,7 @@ class ResourceServersHandler extends default_1.default {
             ...changes,
         });
     }
-    async updateResourceServer(args, update) {
+    async updateResourceServer(id, update) {
         // Exclude name from update as it cannot be modified for system resource servers like Auth0 My Account API
         if (update.is_system === true || update.name === 'Auth0 My Account API') {
             const updateFields = {
@@ -181,9 +181,9 @@ class ResourceServersHandler extends default_1.default {
                 skip_consent_for_verifiable_first_party_clients: update.skip_consent_for_verifiable_first_party_clients,
                 subject_type_authorization: update.subject_type_authorization,
             };
-            return this.client.resourceServers.update(args?.id, updateFields);
+            return this.client.resourceServers.update(id, updateFields);
         }
-        return this.client.resourceServers.update(args?.id, update);
+        return this.client.resourceServers.update(id, update);
     }
 }
 exports.default = ResourceServersHandler;

package/lib/tools/auth0/handlers/roles.js

@@ -194,10 +194,13 @@ class RolesHandler extends default_1.default {
                 */
                 const rolesId = roles[index].id;
                 let permissions = await this.client.roles.permissions.list(rolesId, { per_page: 100 });
-                do {
-                    allPermission.push(...permissions.data);
+                // Process first page
+                allPermission.push(...permissions.data);
+                // Fetch remaining pages
+                while (permissions.hasNextPage()) {
                     permissions = await permissions.getNextPage();
-                } while (permissions.hasNextPage());
+                    allPermission.push(...permissions.data);
+                }
                 const strippedPerms = await Promise.all(allPermission.map(async (permission) => {
                     delete permission.resource_server_name;
                     delete permission.description;

package/lib/tools/auth0/handlers/scimHandler.d.ts

@@ -1,9 +1,6 @@
 import { PromisePoolExecutor } from 'promise-pool-executor';
 import { Management } from 'auth0';
 import { Asset } from '../../../types';
-interface ScimRequestParams {
-    id: string;
-}
 interface ScimBodyParams {
     user_id_attribute: string;
     mapping: {
@@ -61,20 +58,20 @@ export default class ScimHandler {
     /**
      * Creates a new `SCIM` configuration.
      */
-    createScimConfiguration({ id }: ScimRequestParams, { user_id_attribute, mapping }: ScimBodyParams): Promise<Asset | null>;
+    createScimConfiguration(id: string, { user_id_attribute, mapping }: ScimBodyParams): Promise<Asset | null>;
     /**
      * Retrieves `SCIM` configuration of an enterprise connection.
      */
-    getScimConfiguration({ id, }: ScimRequestParams): Promise<Management.GetScimConfigurationResponseContent | null>;
+    getScimConfiguration(id: string): Promise<Management.GetScimConfigurationResponseContent | null>;
     /**
      * Updates an existing `SCIM` configuration.
      */
-    updateScimConfiguration({ id }: ScimRequestParams, { user_id_attribute, mapping }: ScimBodyParams): Promise<Asset | null>;
+    updateScimConfiguration(id: string, { user_id_attribute, mapping }: ScimBodyParams): Promise<Asset | null>;
     /**
      * Deletes an existing `SCIM` configuration.
      */
-    deleteScimConfiguration({ id }: ScimRequestParams): Promise<Asset | null>;
-    updateOverride(requestParams: ScimRequestParams, bodyParams: Asset): Promise<Management.UpdateConnectionResponseContent>;
+    deleteScimConfiguration(id: string): Promise<Asset | null>;
+    updateOverride(connectionId: string, bodyParams: Asset): Promise<Management.UpdateConnectionResponseContent>;
     createOverride(bodyParams: Asset): Promise<Management.CreateConnectionResponseContent>;
 }
 export {};

package/lib/tools/auth0/handlers/scimHandler.js

@@ -49,7 +49,7 @@ class ScimHandler {
                 if (!this.isScimStrategy(connection.strategy))
                     return Promise.resolve(null);
                 this.idMap.set(connection.id, { strategy: connection.strategy });
-                return this.getScimConfiguration({ id: connection.id })
+                return this.getScimConfiguration(connection.id)
                     .then((response) => {
                     const scimConfiguration = response;
                     if (scimConfiguration) {
@@ -156,7 +156,7 @@ class ScimHandler {
     /**
      * Creates a new `SCIM` configuration.
      */
-    async createScimConfiguration({ id }, 
+    async createScimConfiguration(id, 
     // eslint-disable-next-line camelcase
     { user_id_attribute, mapping }) {
         logger_1.default.debug(`Creating SCIM configuration on connection ${id}`);
@@ -165,14 +165,14 @@ class ScimHandler {
     /**
      * Retrieves `SCIM` configuration of an enterprise connection.
      */
-    async getScimConfiguration({ id, }) {
+    async getScimConfiguration(id) {
         logger_1.default.debug(`Getting SCIM configuration from connection ${id}`);
         return this.withErrorHandling(async () => this.connectionsManager.scimConfiguration.get(id), 'get', id);
     }
     /**
      * Updates an existing `SCIM` configuration.
      */
-    async updateScimConfiguration({ id }, 
+    async updateScimConfiguration(id, 
     // eslint-disable-next-line camelcase
     { user_id_attribute, mapping }) {
         logger_1.default.debug(`Updating SCIM configuration on connection ${id}`);
@@ -181,19 +181,19 @@ class ScimHandler {
     /**
      * Deletes an existing `SCIM` configuration.
      */
-    async deleteScimConfiguration({ id }) {
+    async deleteScimConfiguration(id) {
         logger_1.default.debug(`Deleting SCIM configuration on connection ${id}`);
         return this.withErrorHandling(async () => this.connectionsManager.scimConfiguration.delete(id), 'delete', id);
     }
-    async updateOverride(requestParams, bodyParams) {
+    async updateOverride(connectionId, bodyParams) {
         // Extract `scim_configuration` from `bodyParams`.
         // Remove `scim_configuration` from `bodyParams`, because `connections.update` doesn't accept it.
         const { scim_configuration: scimBodyParams } = bodyParams;
         delete bodyParams.scim_configuration;
         delete bodyParams.directory_provisioning_configuration;
         // First, update `connections`.
-        const updated = await this.connectionsManager.update(requestParams.id, bodyParams);
-        const idMapEntry = this.idMap.get(requestParams.id);
+        const updated = await this.connectionsManager.update(connectionId, bodyParams);
+        const idMapEntry = this.idMap.get(connectionId);
         // Now, update `scim_configuration` inside the updated connection.
         // If `scim_configuration` exists in both local and remote -> updateScimConfiguration(...)
         // If `scim_configuration` exists in remote but local -> deleteScimConfiguration(...)
@@ -201,20 +201,20 @@ class ScimHandler {
         if (idMapEntry?.scimConfiguration) {
             if (scimBodyParams) {
                 if (this.scimScopes.update) {
-                    await this.updateScimConfiguration(requestParams, scimBodyParams);
+                    await this.updateScimConfiguration(connectionId, scimBodyParams);
                 }
             }
             else if (this.config('AUTH0_ALLOW_DELETE')) {
                 if (this.scimScopes.delete) {
-                    await this.deleteScimConfiguration(requestParams);
+                    await this.deleteScimConfiguration(connectionId);
                 }
             }
             else {
-                logger_1.default.warn(`Skipping DELETE scim_configuration on \"${requestParams.id}\". Enable deletes by setting \"AUTH0_ALLOW_DELETE\" to true in your config.`);
+                logger_1.default.warn(`Skipping DELETE scim_configuration on \"${connectionId}\". Enable deletes by setting \"AUTH0_ALLOW_DELETE\" to true in your config.`);
             }
         }
         else if (scimBodyParams && this.scimScopes.create) {
-            await this.createScimConfiguration(requestParams, scimBodyParams);
+            await this.createScimConfiguration(connectionId, scimBodyParams);
         }
         // Return response from connections.update(...).
         return updated;
@@ -229,7 +229,7 @@ class ScimHandler {
         const data = await this.connectionsManager.create(bodyParams);
         if (data?.id && scimBodyParams && this.scimScopes.create) {
             // Now, create the `scim_configuration` for newly created `connection`.
-            await this.createScimConfiguration({ id: data.id }, scimBodyParams);
+            await this.createScimConfiguration(data.id, scimBodyParams);
         }
         // Return response from connections.create(...).
         return data;

package/lib/tools/auth0/handlers/tokenExchangeProfiles.d.ts

@@ -11,10 +11,6 @@ export declare const schema: {
                 type: string;
                 description: string;
             };
-            id: {
-                type: string;
-                description: string;
-            };
             subject_token_type: {
                 type: string;
                 description: string;
@@ -28,16 +24,6 @@ export declare const schema: {
                 enum: string[];
                 description: string;
             };
-            created_at: {
-                type: string;
-                format: string;
-                description: string;
-            };
-            updated_at: {
-                type: string;
-                format: string;
-                description: string;
-            };
         };
         required: string[];
     };

package/lib/tools/auth0/handlers/tokenExchangeProfiles.js

@@ -55,10 +55,6 @@ exports.schema = {
                 type: 'string',
                 description: 'The name of the token exchange profile',
             },
-            id: {
-                type: 'string',
-                description: 'The unique identifier of the token exchange profile',
-            },
             subject_token_type: {
                 type: 'string',
                 description: 'The URI representing the subject token type',
@@ -72,16 +68,6 @@ exports.schema = {
                 enum: ['custom_authentication'],
                 description: 'The type of token exchange profile',
             },
-            created_at: {
-                type: 'string',
-                format: 'date-time',
-                description: 'The timestamp when the profile was created',
-            },
-            updated_at: {
-                type: 'string',
-                format: 'date-time',
-                description: 'The timestamp when the profile was last updated',
-            },
         },
         required: ['name', 'subject_token_type', 'action', 'type'],
     },
@@ -92,10 +78,10 @@ class TokenExchangeProfilesHandler extends default_1.default {
             ...config,
             type: 'tokenExchangeProfiles',
             id: 'id',
-            identifiers: ['id', 'name'],
+            identifiers: ['id', 'subject_token_type'],
             // Only name and subject_token_type can be updated
-            stripUpdateFields: ['id', 'created_at', 'updated_at', 'action_id', 'type'],
-            stripCreateFields: ['id', 'created_at', 'updated_at'],
+            stripUpdateFields: ['created_at', 'updated_at', 'action_id', 'type'],
+            stripCreateFields: ['created_at', 'updated_at'],
         });
     }
     sanitizeForExport(profile, actions) {
@@ -145,9 +131,9 @@ class TokenExchangeProfilesHandler extends default_1.default {
                 paginate: true,
             });
             // Fetch all actions to map action_id to action name
-            const actions = await this.getActions();
+            this.actions = await this.getActions();
             // Map action_id to action name for each profile
-            this.existing = profiles.map((profile) => this.sanitizeForExport(profile, actions));
+            this.existing = profiles.map((profile) => this.sanitizeForExport(profile, this.actions ?? []));
             return this.existing;
         }
         catch (err) {
@@ -163,31 +149,34 @@ class TokenExchangeProfilesHandler extends default_1.default {
         // Do nothing if not set
         if (!tokenExchangeProfiles)
             return;
-        // Fetch actions to resolve action names to IDs
-        const actions = await this.getActions();
-        // Map action names to action_ids before processing
-        const sanitizedProfiles = tokenExchangeProfiles.map((profile) => this.sanitizeForAPI(profile, actions));
-        // Create modified assets with sanitized profiles
-        const modifiedAssets = {
-            ...assets,
-            tokenExchangeProfiles: sanitizedProfiles,
-        };
         // Calculate changes
-        const { del, update, create, conflicts } = await this.calcChanges(modifiedAssets);
+        const { del, update, create, conflicts } = await this.calcChanges(assets);
         logger_1.default.debug(`Start processChanges for tokenExchangeProfiles [delete:${del.length}] [update:${update.length}], [create:${create.length}], [conflicts:${conflicts.length}]`);
+        // Fetch actions to resolve action names to IDs
+        if (!this.actions || this.actions.length === 0) {
+            this.actions = await this.getActions();
+        }
         // Process changes in order: delete, create, update
         if (del.length > 0) {
-            await this.deleteTokenExchangeProfiles(del);
+            await this.deleteTokenExchangeProfiles(del.map((profile) => this.sanitizeForAPI(profile, this.actions ?? [])));
         }
         if (create.length > 0) {
-            await this.createTokenExchangeProfiles(create);
+            await this.createTokenExchangeProfiles(create.map((profile) => this.sanitizeForAPI(profile, this.actions ?? [])));
         }
         if (update.length > 0) {
-            await this.updateTokenExchangeProfiles(update);
+            await this.updateTokenExchangeProfiles(update.map((profile) => this.sanitizeForAPI(profile, this.actions ?? [])));
         }
     }
     async createTokenExchangeProfile(profile) {
-        const { id, created_at, updated_at, ...createParams } = profile;
+        if (!profile.name || !profile.subject_token_type || !profile.action_id || !profile.type) {
+            throw new Error(`Cannot create token exchange profile missing required fields`);
+        }
+        const createParams = {
+            name: profile.name,
+            subject_token_type: profile.subject_token_type,
+            action_id: profile.action_id,
+            type: profile.type,
+        };
         const created = await this.client.tokenExchangeProfiles.create(createParams);
         return created;
     }
@@ -207,10 +196,14 @@ class TokenExchangeProfilesHandler extends default_1.default {
             .promise();
     }
     async updateTokenExchangeProfile(profile) {
-        const { id, created_at, updated_at, action_id, type, ...updateParams } = profile;
+        const { id, name, subject_token_type } = profile;
         if (!id) {
             throw new Error(`Cannot update token exchange profile "${profile.name}" - missing id`);
         }
+        const updateParams = {
+            name,
+            subject_token_type,
+        };
         await this.client.tokenExchangeProfiles.update(id, updateParams);
     }
     async updateTokenExchangeProfiles(updates) {

package/lib/tools/auth0/handlers/userAttributeProfiles.js

@@ -256,9 +256,6 @@ class UserAttributeProfilesHandler extends default_1.default {
             id: 'id',
             identifiers: ['id', 'name'],
             stripUpdateFields: ['id'],
-            functions: {
-                update: async (params, payload) => this.client.userAttributeProfiles.update(params?.id, payload),
-            },
         });
     }
     async getType() {

package/lib/tools/auth0/schema.d.ts

@@ -9,6 +9,13 @@ declare const _default: {
             };
             default: {};
         };
+        include: {
+            type: string;
+            properties: {
+                [key: string]: Object;
+            };
+            default: {};
+        };
     };
     additionalProperties: boolean;
 };

package/lib/tools/auth0/schema.js

@@ -14,6 +14,12 @@ const excludeSchema = Object.entries(handlers_1.default).reduce((map, [name, obj
     }
     return map;
 }, {});
+const includeSchema = Object.entries(handlers_1.default).reduce((map, [name, obj]) => {
+    if (obj.includeSchema) {
+        map[name] = obj.includeSchema;
+    }
+    return map;
+}, {});
 exports.default = {
     type: 'object',
     $schema: 'http://json-schema.org/draft-07/schema#',
@@ -24,6 +30,11 @@ exports.default = {
             properties: { ...excludeSchema },
             default: {},
         },
+        include: {
+            type: 'object',
+            properties: { ...includeSchema },
+            default: {},
+        },
     },
     additionalProperties: false,
 };

package/lib/tools/utils.d.ts

@@ -19,6 +19,7 @@ export declare function stripFields(obj: Asset, fields: string[]): Asset;
 export declare function getEnabledClients(assets: Assets, connection: Asset, existing: Asset[], clients: Asset[]): string[] | undefined;
 export declare function duplicateItems(arr: Asset[], key: string): Asset[];
 export declare function filterExcluded(changes: CalculatedChanges, exclude: string[]): CalculatedChanges;
+export declare function filterIncluded(changes: CalculatedChanges, include: string[]): CalculatedChanges;
 export declare function areArraysEquals(x: any[], y: any[]): boolean;
 export declare const obfuscateSensitiveValues: (data: Asset | Asset[] | null, sensitiveFieldsToObfuscate: string[]) => Asset | Asset[] | null;
 export declare const stripObfuscatedFieldsFromPayload: (data: Asset | Asset[] | null, obfuscatedFields: string[]) => Asset | Asset[] | null;

package/lib/tools/utils.js

@@ -50,6 +50,7 @@ exports.stripFields = stripFields;
 exports.getEnabledClients = getEnabledClients;
 exports.duplicateItems = duplicateItems;
 exports.filterExcluded = filterExcluded;
+exports.filterIncluded = filterIncluded;
 exports.areArraysEquals = areArraysEquals;
 exports.sleep = sleep;
 exports.maskSecretAtPath = maskSecretAtPath;
@@ -213,6 +214,19 @@ function filterExcluded(changes, exclude) {
         conflicts: filter(conflicts),
     };
 }
+function filterIncluded(changes, include) {
+    const { del, update, create, conflicts } = changes;
+    if (!include || !include.length) {
+        return changes;
+    }
+    const filter = (list) => list.filter((item) => include.includes(item.name));
+    return {
+        del: filter(del),
+        update: filter(update),
+        create: filter(create),
+        conflicts: filter(conflicts),
+    };
+}
 function areArraysEquals(x, y) {
     return lodash_1.default.isEqual(x && x.sort(), y && y.sort());
 }

package/lib/types.d.ts

@@ -76,6 +76,7 @@ export type Config = {
     INCLUDED_PROPS?: {
         [key: string]: string[];
     };
+    AUTH0_INCLUDED_CONNECTIONS?: string[];
     AUTH0_IGNORE_UNAVAILABLE_MIGRATIONS?: boolean;
     AUTH0_EXCLUDED_RULES?: string[];
     AUTH0_EXCLUDED_CLIENTS?: string[];
@@ -131,6 +132,9 @@ export type Assets = Partial<{
     exclude?: {
         [key: string]: string[];
     };
+    include?: {
+        [key: string]: string[];
+    };
     clientsOrig: Asset[] | null;
     themes: Theme[] | null;
     forms: Form[] | null;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "auth0-deploy-cli",
-  "version": "8.24.0",
+  "version": "8.26.0",
   "description": "A command line tool for deploying updates to your Auth0 tenant",
   "main": "lib/index.js",
   "bin": {
@@ -33,27 +33,27 @@
   "homepage": "https://github.com/auth0/auth0-deploy-cli#readme",
   "dependencies": {
     "ajv": "^6.12.6",
-    "auth0": "^5.2.0",
+    "auth0": "^5.3.0",
     "dot-prop": "^5.3.0",
     "fs-extra": "^10.1.0",
     "js-yaml": "^4.1.1",
-    "lodash": "^4.17.21",
+    "lodash": "^4.17.23",
     "mkdirp": "^1.0.4",
     "nconf": "^0.13.0",
     "promise-pool-executor": "^1.1.1",
     "sanitize-filename": "^1.6.3",
-    "undici": "^7.16.0",
+    "undici": "^7.19.2",
     "winston": "^3.19.0",
     "yargs": "^15.4.1"
   },
   "devDependencies": {
     "@types/fs-extra": "^9.0.13",
-    "@types/lodash": "^4.17.21",
+    "@types/lodash": "^4.17.23",
     "@types/mocha": "^10.0.10",
     "@types/nconf": "^0.10.7",
     "@eslint/js": "^9.39.2",
-    "@typescript-eslint/eslint-plugin": "^8.50.0",
-    "@typescript-eslint/parser": "^8.50.0",
+    "@typescript-eslint/eslint-plugin": "^8.54.0",
+    "@typescript-eslint/parser": "^8.54.0",
     "chai": "^4.5.0",
     "chai-as-promised": "^7.1.2",
     "eslint": "^9.39.2",
@@ -72,7 +72,7 @@
     "rmdir-sync": "^1.0.1",
     "sinon": "^13.0.2",
     "sinon-chai": "^3.7.0",
-    "ts-mocha": "^10.1.0",
+    "ts-mocha": "^11.1.0",
     "typescript": "^5.9.3"
   },
   "engines": {