Skip to content

fix: upgrade googleapis 105 → 124 (security)#21817

Open
owlas wants to merge 1 commit intomainfrom
snyk/google-major-upgrades
Open

fix: upgrade googleapis 105 → 124 (security)#21817
owlas wants to merge 1 commit intomainfrom
snyk/google-major-upgrades

Conversation

@owlas
Copy link
Copy Markdown
Collaborator

@owlas owlas commented Apr 7, 2026

Summary

  • Upgrades googleapis from 105.0.0 to 124.0.0 in packages/backend
  • Fixes node-forge vulnerabilities: infinite loop, improper certificate validation, improper signature verification
  • Also resolves the google-auth-library 8→9 Snyk PR ([Snyk] Security upgrade google-auth-library from 8.9.0 to 9.0.0 #21471) since googleapis 124 pulls in google-auth-library v9 transitively, and the CLI package already has google-auth-library@9.15.1

Breaking change analysis

  • No code changes required — Lightdash only uses Sheets v4 and auth APIs, which are unchanged across v105–v124
  • Breaking changes in this range only affect unrelated Google APIs (compute, bigquery, aiplatform, contentwarehouse)
  • Node.js minimum bumped to 14 (Lightdash uses Node 20+)
  • Only file using googleapis: packages/backend/src/clients/Google/GoogleDriveClient.ts

Closes

Test plan

  • CI passes (lint, typecheck, tests)
  • Google Sheets integration still works (create/read/update spreadsheets)

🤖 Generated with Claude Code

@owlas @claude
fix: upgrade googleapis 105 → 124 (security)
d805c78 
Fixes node-forge vulnerabilities (infinite loop, improper certificate
validation, improper signature verification) and handlebars prototype
pollution via transitive dependency updates.

No code changes required — only Sheets v4 and auth APIs are used,
which are unchanged across this version range.

Closes #21473
Closes #21471

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 7, 2026

Your preview environment pr-21817 has been deployed.

Preview environment endpoints are available at:

@github-actions
Copy link
Copy Markdown

github-actions Bot commented Apr 7, 2026

Preview Environment

🌐 URL: https://lightdash-preview-pr-21817.lightdash.okteto.dev

📋 Logs: View in GCP Console

🔧 SSH: ./scripts/okteto-ssh.sh 21817

@owlas owlas mentioned this pull request Apr 7, 2026
Open
6 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

@owlas owlas

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@owlas @lightdash-bot