[Snyk] Security upgrade @kubernetes/client-node from 0.15.1 to 1.0.0

[Omrisnyk]

Snyk has created this PR to fix 4 vulnerabilities in the npm dependencies of this project.

Snyk changed the following file(s):

• package.json
• package-lock.json

Vulnerabilities that will be fixed with an upgrade:

	Issue	Score
	Prototype Poisoning SNYK-JS-QS-3153490	162
	Prototype Pollution SNYK-JS-JSONSCHEMA-1920922	150
	Prototype Pollution SNYK-JS-TOUGHCOOKIE-5672873	112
	Server-side Request Forgery (SSRF) SNYK-JS-REQUEST-3361831	111

Release notes

Package name: @kubernetes/client-node

• 1.0.0 - 2024-12-18
• 1.0.0-rc7 - 2024-10-15
• 1.0.0-rc6 - 2024-06-10
• 1.0.0-rc5 - 2024-06-08
  

  rev version for next release

• 1.0.0-rc4 - 2023-12-23
• 1.0.0-rc3 - 2023-08-21
  

  Update push script for pre-release

• 1.0.0-rc2 - 2023-05-02
• 1.0.0-rc1 - 2023-03-26
• 0.22.3 - 2024-11-24
• 0.22.2 - 2024-10-31
  

  Merge pull request #1997 from kubernetes-client/dependabot/npm_and_ya…

• 0.22.1 - 2024-10-15
  

  What's Changed

  • Fix cp promise returns by converting the exec callbacks into promises by @ joeferner in #1880
  • test: replace use of deprecated Buffer constructor by @ cjihrig in #1891
  • ci: test against node 22 by @ cjihrig in #1890
  • chore: update ws by @ mstruebing in #1888
  • ci: use node LTS in workflows by @ mstruebing in #1918

  New Contributors

  • @ joeferner made their first contribution in #1880

  Full Changelog: 0.22.0...0.22.1

• 0.22.0 - 2024-09-13
  

  What's Changed

  • Support for Kubernetes 1.30
  • Automated Generate from openapi release-1.30 by @ github-actions in #1672
  • Fix typos in FETCH_MIGRATION.md by @ lordrip in #1687
  • make namespace in Object header optional by @ schrodit in #1694
  • Properly parse metadata of custom Kubernetes objects by @ schrodit in #1695
  • add examples to generic api (inside object.ts) by @ zfrhv in #1705
  • add generic and typed watch to KubernetesObjectApi by @ schrodit in #1831
    client/javascript/pull/1876

  New Contributors

  • @ lordrip made their first contribution in #1687

  Full Changelog: 0.21.0...0.22.0

• 0.21.0 - 2024-05-03
  

  What's Changed

  • Support for Kubernetes 1.29.x
  • fix: Fix TypeError of topNodes by @ koooge in #1445
  • fix: do not overwrite current context by @ carlossg in #1487
  • feat: custom path for service account token (supporting TokenVolume projection) by @ omerlh in #1549
  • fix: use correct types for websocket by @ mstruebing in #1665
  • Lots of dependency verison updates

  Full Changelog: 0.20.0...0.21.0

• 0.20.0 - 2023-11-02
  

  What's Changed

  • Add node 20 to our test matrix, remove node 14, fix test for node 20. by @ brendandburns in #1269
  • Automated Generate from openapi release-1.28 by @ github-actions in #1278
  • Add an additional test for version synchronization by @ brendandburns in #1268
  • Update to version 0.20.0 and k8s 1.28 support by @ brendandburns in #1281
  • ci: pin node version to 20.7.0 to make unit tests pass by @ mstruebing in #1313
  • chore: Some cleanup by @ Ananya2001-an in #1320
  • Fix spelling in README.md by @ masonbrothers in #1345
  • Fixed typo in topPods command by @ kamadek-sys in #1369
  • feat(metrics): add single node metrics and query options by @ 0fatal in #1368
  • Update Kubernetes Version in README.md by @ masonbrothers in #1378
  • A lot of dependency updates

  New Contributors

  • @ masonbrothers made their first contribution in #1345
  • @ kamadek-sys made their first contribution in #1369
  • @ 0fatal made their first contribution in #1368

  Full Changelog: 0.19.0...0.20.0

• 0.19.0 - 2023-09-17
  

  Release 0.19.0

  • Support for Kubernetes 1.27 APIs
  • Small bug fixes
  • Many dependencies updated
• 0.18.1 - 2023-01-21
  

  Updates to Kubernetes 1.25

• 0.18.0 - 2022-12-15
  

  Bumps mocha and @ types/mocha. These dependencies needed to be updated together.

  Updates mocha from 10.1.0 to 10.2.0

  • Release notes
  • Changelog
  • Commits

  Updates @ types/mocha from 5.2.7 to 10.0.1

  • Release notes
  • Commits

  ---

  updated-dependencies:

  • dependency-name: mocha
    dependency-type: direct:development
    update-type: version-update:semver-minor
  • dependency-name: "@ types/mocha"
    dependency-type: direct:development
    update-type: version-update:semver-major
    ...

  Signed-off-by: dependabot[bot] [email protected]

  Signed-off-by: dependabot[bot] [email protected]
  Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@ users.noreply.github.com>

• 0.17.1 - 2022-09-11
• 0.17.0 - 2022-06-27
• 0.16.3 - 2022-02-09
• 0.16.2 - 2022-01-19
• 0.16.1 - 2021-11-19
• 0.16.0 - 2021-11-12
• 0.15.1 - 2021-08-17

from @kubernetes/client-node GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• Max score is 1000. Note that the real score may have changed since the PR was raised.
• This PR was automatically created by Snyk using the credentials of a real user.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report
📜 Customise PR templates
🛠 Adjust project settings
📚 Read about Snyk's upgrade logic

---

Learn how to fix vulnerabilities with free interactive lessons:

🦉 Prototype Pollution
🦉 Server-side Request Forgery (SSRF)

[Omrisnyk]

🎉 Snyk checks have passed. No issues have been found so far.

✅ security/snyk check is complete. No issues have been found. (View Details)

✅ license/snyk check is complete. No issues have been found. (View Details)

✅ code/snyk check is complete. No issues have been found. (View Details)