firebase-tools 14.26.0 → 14.27.0

package/lib/commands/functions-list.js

@@ -7,25 +7,35 @@ const requirePermissions_1 = require("../requirePermissions");
 const backend = require("../deploy/functions/backend");
 const logger_1 = require("../logger");
 const Table = require("cli-table3");
+const PLATFORM_TO_DISPLAY_NAME = {
+    gcfv1: "v1",
+    gcfv2: "v2",
+    run: "run",
+};
 exports.command = new command_1.Command("functions:list")
     .description("list all deployed functions in your Firebase project")
-    .before(requirePermissions_1.requirePermissions, ["cloudfunctions.functions.list"])
+    .before(requirePermissions_1.requirePermissions, ["cloudfunctions.functions.list", "run.services.list"])
     .action(async (options) => {
+    const projectId = (0, projectUtils_1.needProjectId)(options);
     const context = {
-        projectId: (0, projectUtils_1.needProjectId)(options),
+        projectId,
     };
     const existing = await backend.existingBackend(context);
-    const endpointsList = backend.allEndpoints(existing).sort(backend.compareFunctions);
+    const endpoints = backend.allEndpoints(existing).sort(backend.compareFunctions);
+    if (endpoints.length === 0) {
+        logger_1.logger.info(`No functions found in project ${projectId}.`);
+        return [];
+    }
     const table = new Table({
         head: ["Function", "Version", "Trigger", "Location", "Memory", "Runtime"],
         style: { head: ["yellow"] },
     });
-    for (const endpoint of endpointsList) {
+    for (const endpoint of endpoints) {
         const trigger = backend.endpointTriggerType(endpoint);
         const availableMemoryMb = endpoint.availableMemoryMb || "---";
         const entry = [
             endpoint.id,
-            endpoint.platform === "gcfv2" ? "v2" : "v1",
+            PLATFORM_TO_DISPLAY_NAME[endpoint.platform] || "v1",
             trigger,
             endpoint.region,
             availableMemoryMb,
@@ -34,5 +44,5 @@ exports.command = new command_1.Command("functions:list")
         table.push(entry);
     }
     logger_1.logger.info(table.toString());
-    return endpointsList;
+    return endpoints;
 });

package/lib/commands/remoteconfig-versions-list.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.command = void 0;
+exports.printVersionsTable = exports.command = void 0;
 const logger_1 = require("../logger");
 const rcVersion = require("../remoteconfig/versionslist");
 const command_1 = require("../command");
@@ -25,10 +25,14 @@ exports.command = new command_1.Command("remoteconfig:versions:list")
     .before(requirePermissions_1.requirePermissions, ["cloudconfig.configs.get"])
     .action(async (options) => {
     const versionsList = await rcVersion.getVersions((0, projectUtils_1.needProjectId)(options), options.limit);
+    printVersionsTable(versionsList);
+    return versionsList;
+});
+function printVersionsTable(versionsList) {
     const table = new Table({ head: tableHead, style: { head: ["green"] } });
-    for (let item = 0; item < versionsList.versions.length; item++) {
-        pushTableContents(table, versionsList.versions[item]);
+    for (const version of versionsList.versions || []) {
+        pushTableContents(table, version);
     }
     logger_1.logger.info(table.toString());
-    return versionsList;
-});
+}
+exports.printVersionsTable = printVersionsTable;

package/lib/deploy/functions/backend.js

@@ -1,11 +1,14 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.compareFunctions = exports.missingEndpoint = exports.hasEndpoint = exports.regionalEndpoints = exports.matchingBackend = exports.findEndpoint = exports.someEndpoint = exports.allEndpoints = exports.checkAvailability = exports.existingBackend = exports.scheduleIdForFunction = exports.functionName = exports.isEmptyBackend = exports.merge = exports.of = exports.empty = exports.isBlockingTriggered = exports.isTaskQueueTriggered = exports.isScheduleTriggered = exports.isEventTriggered = exports.isCallableTriggered = exports.isHttpsTriggered = exports.AllFunctionsPlatforms = exports.secretVersionName = exports.SCHEDULED_FUNCTION_LABEL = exports.MIN_CPU_FOR_CONCURRENCY = exports.DEFAULT_MEMORY = exports.DEFAULT_CONCURRENCY = exports.memoryToGen2Cpu = exports.memoryToGen1Cpu = exports.memoryOptionDisplayName = exports.isValidAttemptDeadline = exports.MAX_ATTEMPT_DEADLINE_SECONDS = exports.MIN_ATTEMPT_DEADLINE_SECONDS = exports.isValidEgressSetting = exports.isValidMemoryOption = exports.AllIngressSettings = exports.AllVpcEgressSettings = exports.endpointTriggerType = void 0;
+exports.compareFunctions = exports.missingEndpoint = exports.hasEndpoint = exports.regionalEndpoints = exports.matchingBackend = exports.findEndpoint = exports.someEndpoint = exports.allEndpoints = exports.checkAvailability = exports.existingBackend = exports.scheduleIdForFunction = exports.functionName = exports.isEmptyBackend = exports.merge = exports.of = exports.empty = exports.isBlockingTriggered = exports.isTaskQueueTriggered = exports.isScheduleTriggered = exports.isEventTriggered = exports.isCallableTriggered = exports.isHttpsTriggered = exports.AllFunctionsPlatforms = exports.secretVersionName = exports.SCHEDULED_FUNCTION_LABEL = exports.MIN_CPU_FOR_CONCURRENCY = exports.DEFAULT_MEMORY = exports.DEFAULT_CONCURRENCY = exports.memoryToGen2Cpu = exports.memoryToGen1Cpu = exports.memoryOptionDisplayName = exports.isValidEgressSetting = exports.isValidMemoryOption = exports.AllIngressSettings = exports.AllVpcEgressSettings = exports.endpointTriggerType = void 0;
 const gcf = require("../../gcp/cloudfunctions");
 const gcfV2 = require("../../gcp/cloudfunctionsv2");
+const run = require("../../gcp/runv2");
 const utils = require("../../utils");
 const error_1 = require("../../error");
 const functional_1 = require("../../functional");
+const logger_1 = require("../../logger");
+const experiments = require("../../experiments");
 function endpointTriggerType(endpoint) {
     if (isScheduleTriggered(endpoint)) {
         return "scheduled";
@@ -43,12 +46,6 @@ function isValidEgressSetting(egress) {
     return egress === "PRIVATE_RANGES_ONLY" || egress === "ALL_TRAFFIC";
 }
 exports.isValidEgressSetting = isValidEgressSetting;
-exports.MIN_ATTEMPT_DEADLINE_SECONDS = 15;
-exports.MAX_ATTEMPT_DEADLINE_SECONDS = 1800;
-function isValidAttemptDeadline(seconds) {
-    return seconds >= exports.MIN_ATTEMPT_DEADLINE_SECONDS && seconds <= exports.MAX_ATTEMPT_DEADLINE_SECONDS;
-}
-exports.isValidAttemptDeadline = isValidAttemptDeadline;
 function memoryOptionDisplayName(option) {
     return {
         128: "128MB",
@@ -184,7 +181,6 @@ function existingBackend(context, forceRefresh) {
 }
 exports.existingBackend = existingBackend;
 async function loadExistingBackend(ctx) {
-    var _a;
     const existingBackend = Object.assign({}, empty());
     const unreachableRegions = {
         gcfV1: [],
@@ -198,9 +194,23 @@ async function loadExistingBackend(ctx) {
         existingBackend.endpoints[endpoint.region][endpoint.id] = endpoint;
     }
     unreachableRegions.gcfV1 = gcfV1Results.unreachable;
-    let gcfV2Results;
-    try {
-        gcfV2Results = await gcfV2.listAllFunctions(ctx.projectId);
+    if (experiments.isEnabled("functionsrunapionly")) {
+        try {
+            const runServices = await run.listServices(ctx.projectId);
+            for (const service of runServices) {
+                const endpoint = run.endpointFromService(service);
+                existingBackend.endpoints[endpoint.region] =
+                    existingBackend.endpoints[endpoint.region] || {};
+                existingBackend.endpoints[endpoint.region][endpoint.id] = endpoint;
+            }
+        }
+        catch (err) {
+            logger_1.logger.debug(err.message);
+            unreachableRegions.run = ["unknown"];
+        }
+    }
+    else {
+        const gcfV2Results = await gcfV2.listAllFunctions(ctx.projectId);
         for (const apiFunction of gcfV2Results.functions) {
             const endpoint = gcfV2.endpointFromFunction(apiFunction);
             existingBackend.endpoints[endpoint.region] = existingBackend.endpoints[endpoint.region] || {};
@@ -208,13 +218,6 @@ async function loadExistingBackend(ctx) {
         }
         unreachableRegions.gcfV2 = gcfV2Results.unreachable;
     }
-    catch (err) {
-        if (err.status === 404 && ((_a = err.message) === null || _a === void 0 ? void 0 : _a.toLowerCase().includes("method not found"))) {
-        }
-        else {
-            throw err;
-        }
-    }
     ctx.existingBackend = existingBackend;
     ctx.unreachableRegions = unreachableRegions;
     return ctx.existingBackend;

package/lib/deploy/functions/build.js

@@ -285,14 +285,6 @@ function discoverTrigger(endpoint, region, r) {
         else if (endpoint.scheduleTrigger.retryConfig === null) {
             bkSchedule.retryConfig = null;
         }
-        if (typeof endpoint.scheduleTrigger.attemptDeadlineSeconds !== "undefined") {
-            const attemptDeadlineSeconds = r.resolveInt(endpoint.scheduleTrigger.attemptDeadlineSeconds);
-            if (attemptDeadlineSeconds !== null &&
-                !backend.isValidAttemptDeadline(attemptDeadlineSeconds)) {
-                throw new error_1.FirebaseError(`attemptDeadlineSeconds must be between ${backend.MIN_ATTEMPT_DEADLINE_SECONDS} and ${backend.MAX_ATTEMPT_DEADLINE_SECONDS} seconds (inclusive).`);
-            }
-            bkSchedule.attemptDeadlineSeconds = attemptDeadlineSeconds;
-        }
         return { scheduleTrigger: bkSchedule };
     }
     else if ("taskQueueTrigger" in endpoint) {

package/lib/deploy/functions/runtimes/discovery/v1alpha1.js

@@ -143,7 +143,6 @@ function assertBuildEndpoint(ep, id) {
             schedule: "Field<string>",
             timeZone: "Field<string>?",
             retryConfig: "object?",
-            attemptDeadlineSeconds: "Field<number>?",
         });
         if (ep.scheduleTrigger.retryConfig) {
             (0, parsing_1.assertKeyTypes)(prefix + ".scheduleTrigger.retryConfig", ep.scheduleTrigger.retryConfig, {
@@ -240,7 +239,6 @@ function parseEndpointForBuild(id, ep, project, defaultRegion, runtime) {
         else if (ep.scheduleTrigger.retryConfig === null) {
             st.retryConfig = null;
         }
-        (0, proto_1.copyIfPresent)(st, ep.scheduleTrigger, "attemptDeadlineSeconds");
         triggered = { scheduleTrigger: st };
     }
     else if (build.isTaskQueueTriggered(ep)) {

package/lib/deploy/functions/runtimes/supported/types.js

@@ -61,7 +61,7 @@ exports.RUNTIMES = runtimes({
     },
     nodejs24: {
         friendly: "Node.js 24",
-        status: "beta",
+        status: "GA",
         deprecationDate: "2028-04-30",
         decommissionDate: "2028-10-31",
     },

package/lib/deploy/functions/validate.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.secretsAreValid = exports.functionIdsAreValid = exports.functionsDirectoryExists = exports.endpointsAreUnique = exports.cpuConfigIsValid = exports.endpointsAreValid = void 0;
+exports.secretsAreValid = exports.functionIdsAreValid = exports.functionsDirectoryExists = exports.endpointsAreUnique = exports.cpuConfigIsValid = exports.endpointsAreValid = exports.MAX_V2_SCHEDULE_ATTEMPT_DEADLINE_SECONDS = exports.DEFAULT_V2_SCHEDULE_ATTEMPT_DEADLINE_SECONDS = void 0;
 const path = require("path");
 const clc = require("colorette");
 const error_1 = require("../../error");
@@ -11,6 +11,8 @@ const backend = require("./backend");
 const utils = require("../../utils");
 const secrets = require("../../functions/secrets");
 const services_1 = require("./services");
+exports.DEFAULT_V2_SCHEDULE_ATTEMPT_DEADLINE_SECONDS = 180;
+exports.MAX_V2_SCHEDULE_ATTEMPT_DEADLINE_SECONDS = 1800;
 function matchingIds(endpoints, filter) {
     return endpoints
         .filter(filter)
@@ -24,10 +26,21 @@ const cpu = (endpoint) => {
         ? backend.memoryToGen1Cpu(mem(endpoint))
         : (_a = endpoint.cpu) !== null && _a !== void 0 ? _a : backend.memoryToGen2Cpu(mem(endpoint));
 };
+function validateScheduledTimeout(ep) {
+    if (backend.isScheduleTriggered(ep) &&
+        ep.timeoutSeconds &&
+        ep.timeoutSeconds > exports.MAX_V2_SCHEDULE_ATTEMPT_DEADLINE_SECONDS) {
+        utils.logLabeledWarning("functions", `Scheduled function ${ep.id} has a timeout of ${ep.timeoutSeconds} seconds, ` +
+            `which exceeds the maximum attempt deadline of ${exports.MAX_V2_SCHEDULE_ATTEMPT_DEADLINE_SECONDS} seconds for Cloud Scheduler. ` +
+            "This is probably not what you want! Having a timeout longer than the attempt deadline may lead to unexpected retries and multiple function executions. " +
+            `The attempt deadline will be capped at ${exports.MAX_V2_SCHEDULE_ATTEMPT_DEADLINE_SECONDS} seconds.`);
+    }
+}
 function endpointsAreValid(wantBackend) {
     const endpoints = backend.allEndpoints(wantBackend);
     functionIdsAreValid(endpoints);
     for (const ep of endpoints) {
+        validateScheduledTimeout(ep);
         (0, services_1.serviceForEndpoint)(ep).validateTrigger(ep, wantBackend);
     }
     const gcfV1WithConcurrency = matchingIds(endpoints, (endpoint) => (endpoint.concurrency || 1) !== 1 && endpoint.platform === "gcfv1");

package/lib/deploy/index.js

@@ -23,7 +23,7 @@ const DataConnectTarget = require("./dataconnect");
 const AppHostingTarget = require("./apphosting");
 const frameworks_1 = require("../frameworks");
 const prepare_1 = require("./hosting/prepare");
-const github_1 = require("../init/features/hosting/github");
+const utils_2 = require("../utils");
 const deploy_1 = require("../commands/deploy");
 const requirePermissions_1 = require("../requirePermissions");
 const context_1 = require("./dataconnect/context");
@@ -86,7 +86,7 @@ const deploy = async function (targetNames, options, customContext = {}) {
                 await (0, requirePermissions_1.requirePermissions)(options, deploy_1.TARGET_PERMISSIONS["functions"]);
             }
             catch (e) {
-                if ((0, github_1.isRunningInGithubAction)()) {
+                if ((0, utils_2.isRunningInGithubAction)()) {
                     throw new error_1.FirebaseError("It looks like you are deploying a Hosting site along with Cloud Functions " +
                         "using a GitHub action version that did not include Cloud Functions " +
                         "permissions. Please reinstall the GitHub action with" +

package/lib/emulator/downloadableEmulatorInfo.json

@@ -54,36 +54,36 @@
     },
     "dataconnect": {
         "darwin": {
-            "version": "2.17.2",
-            "expectedSize": 30012256,
-            "expectedChecksum": "9e8d43abb6e93f4c969088078fdaf780",
-            "expectedChecksumSHA256": "6001b86795f727f90755b497cba7ebcd2f50d024b0e56d1d6e957fcb98ff463c",
-            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-macos-amd64-v2.17.2",
-            "downloadPathRelativeToCacheDir": "dataconnect-emulator-2.17.2"
+            "version": "2.17.3",
+            "expectedSize": 30053216,
+            "expectedChecksum": "b9bc9fefd65143b8ed3a5b0f0e1f26fa",
+            "expectedChecksumSHA256": "03766907fdbd513e333602f989ebaf486cd53a73d9cdefd221a02988f757a7cc",
+            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-macos-amd64-v2.17.3",
+            "downloadPathRelativeToCacheDir": "dataconnect-emulator-2.17.3"
         },
         "darwin_arm64": {
-            "version": "2.17.2",
-            "expectedSize": 29475730,
-            "expectedChecksum": "1a82213baded25c2a6c584a72a5600f2",
-            "expectedChecksumSHA256": "c51a6810e975e13ac5ea5f038addf259da8b0d17b0b739dab1267dca133e5a54",
-            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-macos-arm64-v2.17.2",
-            "downloadPathRelativeToCacheDir": "dataconnect-emulator-2.17.2"
+            "version": "2.17.3",
+            "expectedSize": 29510226,
+            "expectedChecksum": "a585f578ac6891366059a6c4814b10cc",
+            "expectedChecksumSHA256": "c1b6ad2976d6399435a11a9079a5e63e19b0af04c792cdb843a7464be793618c",
+            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-macos-arm64-v2.17.3",
+            "downloadPathRelativeToCacheDir": "dataconnect-emulator-2.17.3"
         },
         "win32": {
-            "version": "2.17.2",
-            "expectedSize": 30507008,
-            "expectedChecksum": "1a071a45267279463516f8264aaa5a97",
-            "expectedChecksumSHA256": "8f84b312a049f80e2f9466eb1f77d15e1dedec8ce0696c51fc221fbb3b436eee",
-            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-windows-amd64-v2.17.2",
-            "downloadPathRelativeToCacheDir": "dataconnect-emulator-2.17.2.exe"
+            "version": "2.17.3",
+            "expectedSize": 30547968,
+            "expectedChecksum": "5a9d3490a1de85978441afff8582e7c3",
+            "expectedChecksumSHA256": "8f2b8d38cbad8138cc33479456c91c5e4b046c689a4209a63fbb0c4dca9c6af8",
+            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-windows-amd64-v2.17.3",
+            "downloadPathRelativeToCacheDir": "dataconnect-emulator-2.17.3.exe"
         },
         "linux": {
-            "version": "2.17.2",
-            "expectedSize": 29937848,
-            "expectedChecksum": "70bc4fc8eecc1c1c6dd4f404ed7e2b89",
-            "expectedChecksumSHA256": "9b90874daf84f0cfb7ae72f3a8c4ccec523593ccd318cd967f5bef7d574efa77",
-            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-linux-amd64-v2.17.2",
-            "downloadPathRelativeToCacheDir": "dataconnect-emulator-2.17.2"
+            "version": "2.17.3",
+            "expectedSize": 29974712,
+            "expectedChecksum": "aacf4f08de500df0913ff8ec6261a0ad",
+            "expectedChecksumSHA256": "2d593500745c4ce0d522d6f5f75c89ed413ad4853891b8afafb5cbfbb45d4abd",
+            "remoteUrl": "https://storage.googleapis.com/firemat-preview-drop/emulator/dataconnect-emulator-linux-amd64-v2.17.3",
+            "downloadPathRelativeToCacheDir": "dataconnect-emulator-2.17.3"
         }
     }
 }

package/lib/experiments.js

@@ -6,7 +6,7 @@ const leven = require("leven");
 const path_1 = require("path");
 const configstore_1 = require("./configstore");
 const error_1 = require("./error");
-const github_1 = require("./init/features/hosting/github");
+const utils_1 = require("./utils");
 function experiments(exp) {
     return Object.freeze(exp);
 }
@@ -45,6 +45,10 @@ exports.ALL_EXPERIMENTS = experiments({
         shortDescription: "Functions created using the V2 API target Cloud Run Functions (not production ready)",
         public: false,
     },
+    functionsrunapionly: {
+        shortDescription: "Use Cloud Run API to list v2 functions",
+        public: false,
+    },
     emulatoruisnapshot: {
         shortDescription: "Load pre-release versions of the emulator UI",
     },
@@ -179,7 +183,7 @@ function assertEnabled(name, task) {
     var _a;
     if (!isEnabled(name)) {
         const prefix = `Cannot ${task} because the experiment ${(0, colorette_1.bold)(name)} is not enabled.`;
-        if ((0, github_1.isRunningInGithubAction)()) {
+        if ((0, utils_1.isRunningInGithubAction)()) {
             const path = (_a = process.env.GITHUB_WORKFLOW_REF) === null || _a === void 0 ? void 0 : _a.split("@")[0];
             const filename = path ? `.github/workflows/${(0, path_1.basename)(path)}` : "your action's yml";
             const newValue = [process.env.FIREBASE_CLI_EXPERIMENTS, name].filter((it) => !!it).join(",");

package/lib/frameworks/next/index.js

@@ -179,6 +179,30 @@ async function build(dir, target, context) {
         destination,
     }));
     const wantsBackend = reasonsForBackend.size > 0;
+    if (wantsBackend && (0, utils_2.isUsingAppDirectory)((0, path_1.join)(dir, distDir))) {
+        const nextVersion = (0, utils_2.getNextVersionRaw)(dir);
+        if (nextVersion && (0, utils_2.isNextJsVersionVulnerable)(nextVersion)) {
+            let message = `Next.js version ${nextVersion} is vulnerable to CVE-2025-66478.\n` +
+                `Please upgrade to a patched version: `;
+            const { major } = (0, semver_1.coerce)(nextVersion) || {};
+            if (major === 16) {
+                message += "16.0.7+.";
+            }
+            else if (major === 15) {
+                message += "15.0.5+, 15.1.9+, 15.2.6+, 15.3.6+, 15.4.8+, or 15.5.7+.";
+            }
+            else if (major === 14) {
+                message += "downgrade to a stable Next.js 14.x release.";
+            }
+            else {
+                message +=
+                    "15.0.5+, 15.1.9+, 15.2.6+, 15.3.6+, 15.4.8+, 15.5.7+, 16.0.7+ " +
+                        "or downgrade to a stable Next.js 14.x release if using canary.";
+            }
+            message += `\nSee https://nextjs.org/blog/CVE-2025-66478 for more details.`;
+            throw new error_1.FirebaseError(message);
+        }
+    }
     if (wantsBackend) {
         logger_1.logger.info("Building a Cloud Function to run this application. This is needed due to:");
         for (const reason of Array.from(reasonsForBackend).slice(0, DEFAULT_NUMBER_OF_REASONS_TO_LIST)) {

package/lib/frameworks/next/utils.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.installEsbuild = exports.getGlobalEsbuildVersion = exports.findEsbuildPath = exports.whichNextConfigFile = exports.getProductionDistDirFiles = exports.getRoutesWithServerAction = exports.hasStaticAppNotFoundComponent = exports.getNextVersion = exports.getBuildId = exports.getAppMetadataFromMetaFiles = exports.getNonStaticServerComponents = exports.getNonStaticRoutes = exports.getMiddlewareMatcherRegexes = exports.allDependencyNames = exports.isUsingAppDirectory = exports.isUsingNextImageInAppDirectory = exports.isUsingImageOptimization = exports.isUsingMiddleware = exports.hasUnoptimizedImage = exports.usesNextImage = exports.usesAppDirRouter = exports.getNextjsRewritesToUse = exports.isHeaderSupportedByHosting = exports.isRedirectSupportedByHosting = exports.isRewriteSupportedByHosting = exports.cleanI18n = exports.cleanCustomRouteI18n = exports.cleanEscapedChars = exports.I18N_SOURCE = void 0;
+exports.isNextJsVersionVulnerable = exports.installEsbuild = exports.getGlobalEsbuildVersion = exports.findEsbuildPath = exports.whichNextConfigFile = exports.getProductionDistDirFiles = exports.getRoutesWithServerAction = exports.hasStaticAppNotFoundComponent = exports.getNextVersionRaw = exports.getNextVersion = exports.getBuildId = exports.getAppMetadataFromMetaFiles = exports.getNonStaticServerComponents = exports.getNonStaticRoutes = exports.getMiddlewareMatcherRegexes = exports.allDependencyNames = exports.isUsingAppDirectory = exports.isUsingNextImageInAppDirectory = exports.isUsingImageOptimization = exports.isUsingMiddleware = exports.hasUnoptimizedImage = exports.usesNextImage = exports.usesAppDirRouter = exports.getNextjsRewritesToUse = exports.isHeaderSupportedByHosting = exports.isRedirectSupportedByHosting = exports.isRewriteSupportedByHosting = exports.cleanI18n = exports.cleanCustomRouteI18n = exports.cleanEscapedChars = exports.I18N_SOURCE = void 0;
 const fs_1 = require("fs");
 const fs_extra_1 = require("fs-extra");
 const path_1 = require("path");
@@ -206,6 +206,11 @@ function getNextVersion(cwd) {
     return nextVersionSemver.toString();
 }
 exports.getNextVersion = getNextVersion;
+function getNextVersionRaw(cwd) {
+    const dependency = (0, utils_1.findDependency)("next", { cwd, depth: 0, omitDev: false });
+    return dependency === null || dependency === void 0 ? void 0 : dependency.version;
+}
+exports.getNextVersionRaw = getNextVersionRaw;
 async function hasStaticAppNotFoundComponent(sourceDir, distDir) {
     return (0, fs_extra_1.pathExists)((0, path_1.join)(sourceDir, distDir, "server", "app", "_not-found.html"));
 }
@@ -296,3 +301,38 @@ function installEsbuild(version) {
     }
 }
 exports.installEsbuild = installEsbuild;
+function isNextJsVersionVulnerable(versionStr) {
+    const v = (0, semver_1.parse)(versionStr);
+    if (!v)
+        return false;
+    if (v.major === 15) {
+        if (v.minor === 0)
+            return (0, semver_1.lt)(versionStr, "15.0.5");
+        if (v.minor === 1)
+            return (0, semver_1.lt)(versionStr, "15.1.9");
+        if (v.minor === 2)
+            return (0, semver_1.lt)(versionStr, "15.2.6");
+        if (v.minor === 3)
+            return (0, semver_1.lt)(versionStr, "15.3.6");
+        if (v.minor === 4)
+            return (0, semver_1.lt)(versionStr, "15.4.8");
+        if (v.minor === 5)
+            return (0, semver_1.lt)(versionStr, "15.5.7");
+        return false;
+    }
+    if (v.major === 16) {
+        if (v.minor === 0)
+            return (0, semver_1.lt)(versionStr, "16.0.7");
+        return false;
+    }
+    if (v.major === 14) {
+        const pre = (0, semver_1.prerelease)(versionStr);
+        if (pre && pre.includes("canary")) {
+            if ((0, semver_1.gte)(versionStr, "14.3.0-canary.77")) {
+                return true;
+            }
+        }
+    }
+    return false;
+}
+exports.isNextJsVersionVulnerable = isNextJsVersionVulnerable;

package/lib/gcp/cloudscheduler.js

@@ -6,10 +6,11 @@ const error_1 = require("../error");
 const logger_1 = require("../logger");
 const api_1 = require("../api");
 const apiv2_1 = require("../apiv2");
+const functional_1 = require("../functional");
+const validate_1 = require("../deploy/functions/validate");
 const backend = require("../deploy/functions/backend");
 const proto = require("./proto");
 const gce = require("../gcp/computeEngine");
-const functional_1 = require("../functional");
 const VERSION = "v1";
 const DEFAULT_TIME_ZONE_V1 = "America/Los_Angeles";
 const DEFAULT_TIME_ZONE_V2 = "UTC";
@@ -145,7 +146,13 @@ async function jobFromEndpoint(endpoint, location, projectNumber) {
     }
     job.schedule = endpoint.scheduleTrigger.schedule;
     if (endpoint.platform === "gcfv2" || endpoint.platform === "run") {
-        proto.convertIfPresent(job, endpoint.scheduleTrigger, "attemptDeadline", "attemptDeadlineSeconds", (0, functional_1.nullsafeVisitor)(proto.durationFromSeconds));
+        proto.convertIfPresent(job, endpoint, "attemptDeadline", "timeoutSeconds", (timeout) => {
+            if (timeout === null) {
+                return null;
+            }
+            const attemptDeadlineSeconds = Math.max(Math.min(timeout, validate_1.MAX_V2_SCHEDULE_ATTEMPT_DEADLINE_SECONDS), validate_1.DEFAULT_V2_SCHEDULE_ATTEMPT_DEADLINE_SECONDS);
+            return proto.durationFromSeconds(attemptDeadlineSeconds);
+        });
     }
     if (endpoint.scheduleTrigger.retryConfig) {
         job.retryConfig = {};

package/lib/gcp/runv2.js

@@ -11,7 +11,7 @@ const backend = require("../deploy/functions/backend");
 const constants_1 = require("../functions/constants");
 const k8s_1 = require("./k8s");
 const supported_1 = require("../deploy/functions/runtimes/supported");
-const __1 = require("..");
+const logger_1 = require("../logger");
 const functional_1 = require("../functional");
 exports.API_VERSION = "v2";
 const client = new apiv2_1.Client({
@@ -99,7 +99,7 @@ function endpointFromService(service) {
         svcId;
     const memory = (0, k8s_1.mebibytes)(service.template.containers[0].resources.limits.memory);
     if (!backend.isValidMemoryOption(memory)) {
-        __1.logger.debug("Converting a service to an endpoint with an invalid memory option", memory);
+        logger_1.logger.debug("Converting a service to an endpoint with an invalid memory option", memory);
     }
     const cpu = Number(service.template.containers[0].resources.limits.cpu);
     const endpoint = Object.assign({ platform: ((_e = service.labels) === null || _e === void 0 ? void 0 : _e[exports.CLIENT_NAME_LABEL]) === "cloud-functions" ? "gcfv2" : "run", id,

package/lib/gcp/storage.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.getDownloadUrl = exports.getServiceAccount = exports.listBuckets = exports.upsertBucket = exports.randomString = exports.patchBucket = exports.createBucket = exports.getBucket = exports.deleteObject = exports.getObject = exports.uploadObject = exports.upload = exports.getDefaultBucket = void 0;
+exports.getDownloadUrl = exports.getServiceAccount = exports.listBuckets = exports.upsertBucket = exports.randomString = exports.patchBucket = exports.createBucket = exports.getBucket = exports.deleteObject = exports.getObject = exports.uploadObject = exports.upload = exports.getDefaultBucket = exports.ContentType = void 0;
 const path = require("path");
 const clc = require("colorette");
 const crypto_1 = require("crypto");
@@ -11,6 +11,11 @@ const logger_1 = require("../logger");
 const ensureApiEnabled_1 = require("../ensureApiEnabled");
 const utils = require("../utils");
 const proto_1 = require("./proto");
+var ContentType;
+(function (ContentType) {
+    ContentType["ZIP"] = "ZIP";
+    ContentType["TAR"] = "TAR";
+})(ContentType = exports.ContentType || (exports.ContentType = {}));
 async function getDefaultBucket(projectId) {
     var _a;
     await (0, ensureApiEnabled_1.ensure)(projectId, (0, api_1.firebaseStorageOrigin)(), "storage", false);
@@ -54,9 +59,17 @@ async function upload(source, uploadUrl, extraHeaders, ignoreQuotaProject) {
     };
 }
 exports.upload = upload;
-async function uploadObject(source, bucketName) {
-    if (path.extname(source.file) !== ".zip") {
-        throw new error_1.FirebaseError(`Expected a file name ending in .zip, got ${source.file}`);
+async function uploadObject(source, bucketName, contentType) {
+    switch (contentType) {
+        case ContentType.TAR:
+            if (!source.file.endsWith(".tar.gz")) {
+                throw new error_1.FirebaseError(`Expected a file name ending in .tar.gz, got ${source.file}`);
+            }
+            break;
+        default:
+            if (path.extname(source.file) !== ".zip") {
+                throw new error_1.FirebaseError(`Expected a file name ending in .zip, got ${source.file}`);
+            }
     }
     const localAPIClient = new apiv2_1.Client({ urlPrefix: (0, api_1.storageOrigin)() });
     const location = `/${bucketName}/${path.basename(source.file)}`;
@@ -64,7 +77,7 @@ async function uploadObject(source, bucketName) {
         method: "PUT",
         path: location,
         headers: {
-            "Content-Type": "application/zip",
+            "Content-Type": contentType === ContentType.TAR ? "application/octet-stream" : "application/zip",
             "x-goog-content-length-range": "0,123289600",
         },
         body: source.stream,

package/lib/init/features/dataconnect/index.js

@@ -463,10 +463,6 @@ async function promptForCloudSQL(setup, info) {
     }
     if (freeTrialUsed) {
         (0, utils_1.logLabeledWarning)("dataconnect", "CloudSQL no cost trial has already been used on this project.");
-        if (!billingEnabled) {
-            setup.instructions.push((0, freeTrial_1.upgradeInstructions)(setup.projectId || "your-firebase-project", true));
-            return;
-        }
     }
     else if (instrumentlessTrialEnabled || billingEnabled) {
         (0, utils_1.logLabeledSuccess)("dataconnect", "CloudSQL no cost trial available!");
@@ -487,7 +483,11 @@ async function promptForCloudSQL(setup, info) {
                 choices.push({ name: "Create a new free trial instance", value: "", location: "" });
             }
             else {
-                choices.push({ name: "Create a new CloudSQL instance", value: "", location: "" });
+                choices.push({
+                    name: `Create a new CloudSQL instance${billingEnabled ? "" : " (requires billing account)"}`,
+                    value: "",
+                    location: "",
+                });
             }
             info.cloudSqlInstanceId = await (0, prompt_1.select)({
                 message: `Which CloudSQL instance would you like to use?`,
@@ -499,6 +499,10 @@ async function promptForCloudSQL(setup, info) {
             }
             else {
                 info.flow += "_pick_new_csql";
+                if (!billingEnabled && freeTrialUsed) {
+                    setup.instructions.push((0, freeTrial_1.upgradeInstructions)(setup.projectId || "your-firebase-project", true));
+                    return;
+                }
                 info.cloudSqlInstanceId = await (0, prompt_1.input)({
                     message: `What ID would you like to use for your new CloudSQL instance?`,
                     default: (0, utils_1.newUniqueId)(`${defaultServiceId().toLowerCase()}-fdc`, instances.map((i) => i.name)),

package/lib/init/features/hosting/github.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.isRunningInGithubAction = exports.initGitHub = void 0;
+exports.initGitHub = void 0;
 const colorette_1 = require("colorette");
 const fs = require("fs");
 const yaml = require("yaml");
@@ -389,7 +389,3 @@ async function encryptServiceAccountJSON(serviceAccountJSON, key) {
     const encryptedBytes = libsodium.crypto_box_seal(messageBytes, keyBytes);
     return Buffer.from(encryptedBytes).toString("base64");
 }
-function isRunningInGithubAction() {
-    return process.env.GITHUB_ACTION_REPOSITORY === HOSTING_GITHUB_ACTION_NAME.split("@")[0];
-}
-exports.isRunningInGithubAction = isRunningInGithubAction;

package/lib/mcp/tools/core/get_environment.js

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.get_environment = void 0;
+exports.get_environment = exports.hydrateTemplate = void 0;
 const zod_1 = require("zod");
 const tool_1 = require("../../tool");
 const util_1 = require("../../util");
@@ -9,6 +9,48 @@ const js_yaml_1 = require("js-yaml");
 const auth_1 = require("../../../auth");
 const configstore_1 = require("../../../configstore");
 const appUtils_1 = require("../../../appUtils");
+function hydrateTemplate(config) {
+    const activeProject = config.projectId
+        ? `${config.projectId}${config.projectAliases.length ? ` (alias: ${config.projectAliases.join(",")})` : ""}`
+        : "<NONE>";
+    const projectConfigPath = config.projectConfigPath || "<NO CONFIG PRESENT>";
+    const geminiTosAccepted = config.geminiTosAccepted ? "Accepted" : "<NOT ACCEPTED>";
+    const authenticatedUser = config.authenticatedUser || "<NONE>";
+    const detectedApps = Object.entries(config.detectedAppIds).length > 0
+        ? `\n\n${(0, js_yaml_1.dump)(config.detectedAppIds).trim()}\n`
+        : "<NONE>";
+    const availableProjects = Object.entries(config.projectAliasMap).length > 0
+        ? `\n\n${(0, js_yaml_1.dump)(config.projectAliasMap)}`
+        : "<NONE>";
+    const hasOtherAccounts = config.allAccounts.filter((email) => email !== config.authenticatedUser).length > 0;
+    const availableAccounts = hasOtherAccounts ? `${(0, js_yaml_1.dump)(config.allAccounts).trim()}` : "";
+    return `# Environment Information
+
+Project Directory: ${config.projectDir}
+Project Config Path: ${projectConfigPath}
+Active Project ID: ${activeProject}
+Gemini in Firebase Terms of Service: ${geminiTosAccepted}
+Authenticated User: ${authenticatedUser}
+Detected App IDs: ${detectedApps}
+Available Project Aliases (format: '[alias]: [projectId]'): ${availableProjects}${hasOtherAccounts ? `\nAvailable Accounts: \n\n${availableAccounts}` : ""}
+${config.projectFileContents
+        ? `\nfirebase.json contents:
+
+\`\`\`json
+${config.projectFileContents}
+\`\`\``
+        : `\nNo firebase.json file was found.
+
+If this project does not use Firebase services that require a firebase.json file, no action is necessary.
+
+If this project uses Firebase services that require a firebase.json file, the user will most likely want to:
+
+a) Change the project directory using the 'firebase_update_environment' tool to select a directory with a 'firebase.json' file in it, or
+b) Initialize a new Firebase project directory using the 'firebase_init' tool.
+
+Confirm with the user before taking action.`}`;
+}
+exports.hydrateTemplate = hydrateTemplate;
 exports.get_environment = (0, tool_1.tool)("core", {
     name: "get_environment",
     description: "Use this to retrieve the current Firebase **environment** configuration for the Firebase CLI and Firebase MCP server, including current authenticated user, project directory, active Firebase Project, and more.",
@@ -27,45 +69,26 @@ exports.get_environment = (0, tool_1.tool)("core", {
     const projectFileExists = config.projectFileExists("firebase.json");
     const detectedApps = await (0, appUtils_1.detectApps)(process.cwd());
     const allAccounts = (0, auth_1.getAllAccounts)().map((account) => account.user.email);
-    const hasOtherAccounts = allAccounts.filter((email) => email !== accountEmail).length > 0;
-    const projectConfigPathString = projectFileExists
-        ? config.path("firebase.json")
-        : "<NO CONFIG PRESENT>";
-    const detectedAppsMap = detectedApps
+    const detectedAppsMap = {};
+    detectedApps
         .filter((app) => !!app.appId)
         .reduce((map, app) => {
         if (app.appId) {
-            map.set(app.appId, app.bundleId ? app.bundleId : "<UNKNOWN BUNDLE ID>");
+            map[app.appId] = app.bundleId ? app.bundleId : "<UNKNOWN BUNDLE ID>";
         }
         return map;
-    }, new Map());
-    const activeProjectString = projectId
-        ? `${projectId}${aliases.length ? ` (alias: ${aliases.join(",")})` : ""}`
-        : "<NONE>";
-    const acceptedGeminiTosString = geminiTosAccepted ? "Accepted" : "<NOT ACCEPTED>";
-    return (0, util_1.toContent)(`# Environment Information
-
-Project Directory: ${host.cachedProjectDir}
-Project Config Path: ${projectConfigPathString}
-Active Project ID: ${activeProjectString}
-Gemini in Firebase Terms of Service: ${acceptedGeminiTosString}
-Authenticated User: ${accountEmail || "<NONE>"}
-Detected App IDs: ${detectedAppsMap.size > 0 ? `\n\n${(0, js_yaml_1.dump)(Object.fromEntries(detectedAppsMap)).trim()}\n` : "<NONE>"}
-Available Project Aliases (format: '[alias]: [projectId]'): ${Object.entries(rc.projects).length > 0 ? `\n\n${(0, js_yaml_1.dump)(rc.projects).trim()}\n` : "<NONE>"}${hasOtherAccounts ? `\nAvailable Accounts: \n\n${(0, js_yaml_1.dump)(allAccounts).trim()}` : ""}
-${projectFileExists
-        ? `\nfirebase.json contents:
-
-\`\`\`json
-${config.readProjectFile("firebase.json")}
-\`\`\``
-        : `\nNo firebase.json file was found.
-      
-If this project does not use Firebase services that require a firebase.json file, no action is necessary.
-
-If this project uses Firebase services that require a firebase.json file, the user will most likely want to:
-
-a) Change the project directory using the 'firebase_update_environment' tool to select a directory with a 'firebase.json' file in it, or
-b) Initialize a new Firebase project directory using the 'firebase_init' tool.
-
-Confirm with the user before taking action.`}`);
+    }, detectedAppsMap);
+    const environmentTemplateConfig = {
+        projectId,
+        projectAliases: aliases,
+        projectDir: host.cachedProjectDir,
+        projectConfigPath: projectFileExists ? config.path("firebase.json") : undefined,
+        geminiTosAccepted,
+        authenticatedUser: accountEmail || undefined,
+        projectAliasMap: rc.projects,
+        allAccounts,
+        detectedAppIds: detectedAppsMap,
+        projectFileContents: projectFileExists ? config.readProjectFile("firebase.json") : undefined,
+    };
+    return (0, util_1.toContent)(hydrateTemplate(environmentTemplateConfig));
 });

package/lib/mcp/util/crashlytics/availability.js

@@ -46,22 +46,10 @@ async function androidAppUsesCrashlytics(appPath) {
     return false;
 }
 async function iosAppUsesCrashlytics(appPath) {
-    const podfiles = await (0, appUtils_1.detectFiles)(appPath, "Podfile");
-    for (const file of podfiles) {
-        const content = await fs.readFile(path.join(appPath, file), "utf8");
-        if (content.includes("Crashlytics")) {
-            return true;
-        }
-    }
-    const swiftPackageFiles = await (0, appUtils_1.detectFiles)(appPath, "Package.swift");
-    for (const file of swiftPackageFiles) {
-        const content = await fs.readFile(path.join(appPath, file), "utf8");
-        if (content.includes("Crashlytics")) {
-            return true;
-        }
-    }
-    const cartFiles = await (0, appUtils_1.detectFiles)(appPath, "Cartfile*");
-    for (const file of cartFiles) {
+    const filePatternsToDetect = ["Podfile", "Package.swift", "Cartfile*", "project.pbxproj"];
+    const fileArrays = await Promise.all(filePatternsToDetect.map((term) => (0, appUtils_1.detectFiles)(appPath, term)));
+    const files = fileArrays.flat();
+    for (const file of files) {
         const content = await fs.readFile(path.join(appPath, file), "utf8");
         if (content.includes("Crashlytics")) {
             return true;

package/lib/utils.js

@@ -1,7 +1,7 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-exports.openInBrowserPopup = exports.openInBrowser = exports.connectableHostname = exports.randomInt = exports.debounce = exports.last = exports.cloneDeep = exports.groupBy = exports.assertIsStringOrUndefined = exports.assertIsNumber = exports.assertIsString = exports.thirtyDaysFromNow = exports.isRunningInWSL = exports.isCloudEnvironment = exports.datetimeString = exports.createDestroyer = exports.sleep = exports.promiseWithSpinner = exports.tryParse = exports.promiseProps = exports.withTimeout = exports.promiseWhile = exports.promiseAllSettled = exports.getFunctionsEventProvider = exports.endpoint = exports.makeActiveProject = exports.streamToString = exports.stringToStream = exports.explainStdin = exports.allSettled = exports.reject = exports.logLabeledError = exports.logLabeledWarning = exports.logWarningToStderr = exports.logWarning = exports.logLabeledBullet = exports.logBullet = exports.logLabeledSuccess = exports.logSuccess = exports.addSubdomain = exports.addDatabaseNamespace = exports.getDatabaseViewDataUrl = exports.getDatabaseUrl = exports.envOverride = exports.setVSCodeEnvVars = exports.getInheritedOption = exports.consoleUrl = exports.vscodeEnvVars = exports.envOverrides = exports.IS_WINDOWS = void 0;
-exports.resolveWithin = exports.commandExistsSync = exports.newUniqueId = exports.deepEqual = exports.promptForDirectory = exports.updateOrCreateGitignore = exports.readSecretValue = exports.generatePassword = exports.generateId = exports.wrappedSafeLoad = exports.readFileFromDirectory = exports.getHostnameFromUrl = void 0;
+exports.openInBrowser = exports.connectableHostname = exports.randomInt = exports.debounce = exports.last = exports.cloneDeep = exports.groupBy = exports.assertIsStringOrUndefined = exports.assertIsNumber = exports.assertIsString = exports.thirtyDaysFromNow = exports.isRunningInGithubAction = exports.isRunningInWSL = exports.isCloudEnvironment = exports.datetimeString = exports.createDestroyer = exports.sleep = exports.promiseWithSpinner = exports.tryParse = exports.promiseProps = exports.withTimeout = exports.promiseWhile = exports.promiseAllSettled = exports.getFunctionsEventProvider = exports.endpoint = exports.makeActiveProject = exports.streamToString = exports.stringToStream = exports.explainStdin = exports.allSettled = exports.reject = exports.logLabeledError = exports.logLabeledWarning = exports.logWarningToStderr = exports.logWarning = exports.logLabeledBullet = exports.logBullet = exports.logLabeledSuccess = exports.logSuccess = exports.addSubdomain = exports.addDatabaseNamespace = exports.getDatabaseViewDataUrl = exports.getDatabaseUrl = exports.envOverride = exports.setVSCodeEnvVars = exports.getInheritedOption = exports.consoleUrl = exports.vscodeEnvVars = exports.envOverrides = exports.IS_WINDOWS = void 0;
+exports.resolveWithin = exports.commandExistsSync = exports.newUniqueId = exports.deepEqual = exports.promptForDirectory = exports.updateOrCreateGitignore = exports.readSecretValue = exports.generatePassword = exports.generateId = exports.wrappedSafeLoad = exports.readFileFromDirectory = exports.getHostnameFromUrl = exports.openInBrowserPopup = void 0;
 const fs = require("fs-extra");
 const tty = require("tty");
 const path = require("node:path");
@@ -367,6 +367,10 @@ function isRunningInWSL() {
     return !!process.env.WSL_DISTRO_NAME;
 }
 exports.isRunningInWSL = isRunningInWSL;
+function isRunningInGithubAction() {
+    return process.env.GITHUB_ACTION_REPOSITORY === "FirebaseExtended/action-hosting-deploy";
+}
+exports.isRunningInGithubAction = isRunningInGithubAction;
 function thirtyDaysFromNow() {
     return new Date(Date.now() + THIRTY_DAYS_IN_MILLISECONDS);
 }

package/package.json

@@ -1,8 +1,9 @@
 {
   "name": "firebase-tools",
-  "version": "14.26.0",
+  "version": "14.27.0",
   "description": "Command-Line Interface for Firebase",
   "main": "./lib/index.js",
+  "mcpName": "io.github.firebase/firebase-mcp",
   "bin": {
     "firebase": "./lib/bin/firebase.js"
   },