build(deps): bump jwks-rsa from 3.2.0 to 4.0.1 by dependabot[bot] · Pull Request #3089

build(deps): bump jwks-rsa from 3.2.0 to 4.0.1 by dependabot[bot] · Pull Request #3089 · firebase/firebase-admin-node

Bumps jwks-rsa from 3.2.0 to 4.0.1.

Release notes

v4.0.1

Changed

chore: update lru-memoizer to v3 #476 (isidrok)

v4.0.0

⚠️ BREAKING CHANGES

feat: upgrade jose dependency to v6 #486 (cschetan77)

chore: upgrade minimum Node.js runtime to 20.19.0 #485 (cschetan77)

v3.2.2

Fixed

fix: jwksUri should be optional when custom fetcher is provided #477 (cschetan77)

v3.2.1

Added

docs: Add Ask DeepWiki badge to README #445 (arpit-jn)

Fixed

fix: Migrate to WHATWG URL API from node's core url #465 (cschetan77)

fix: Moving @types/express to dev and re generating package lock #464 (cschetan77)

Changelog

Sourced from jwks-rsa's changelog.

v4.0.1 (2026-03-02)

Full Changelog

Changed

chore: update lru-memoizer to v3 #476 (isidrok)

v4.0.0 (2026-02-27)

Full Changelog

⚠️ BREAKING CHANGES

Drops support for Node 14, 16, and 18. The minimum supported Node versions are now 20.19.0, 22.12.0, and 23.0.0.

Drops support for the ES256K algorithm (secp256k1 curve). Keys using ES256K will be ignored. Users must transition to a supported curve (e.g., ES256/P-256) or handle legacy keys externally.

feat: upgrade jose dependency to v6 #486 (cschetan77)

chore: upgrade minimum Node.js runtime to 20.19.0 #485 (cschetan77)

v3.2.2 (2026-01-23)

Full Changelog

Fixed

fix: jwksUri should be optional when custom fetcher is provided #477 (cschetan77)

v3.2.1 (2026-01-15)

Full Changelog

Added

docs: Add Ask DeepWiki badge to README #445 (arpit-jn)

Fixed

fix: Migrate to WHATWG URL API from node's core url #465 (cschetan77)

fix: Moving @types/express to dev and re generating package lock #464 (cschetan77)

Commits

d319e7d Release v4.0.1 (#492)
088d7ff Release v4.0.1
fee6f01 chore: update lru-memoizer to v3 (#476)
e11b943 update lru memoizer and add cache maxage test
ed91a13 Release v4.0.0 (#490)
7d00243 Revise CHANGELOG for v4.0.0 release
f3e185a Release v4.0.0
8c9bcc4 feat: upgrade jose dependency to v6 (#486)
084941b sync master
70983b2 chore: upgrade minimum Node.js runtime to 20.19.0 (#485)
Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for jwks-rsa since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)