chore(deps): bump tar and firebase-tools

[dependabot]

Bumps tar to 6.2.1 and updates ancestor dependency firebase-tools. These dependencies need to be updated together.

Updates tar from 4.4.19 to 6.2.1

Release notes

Sourced from tar's releases.

v6.1.13

6.1.13 (2022-12-07)

Dependencies

• cc4e0dd #343 bump minipass from 3.3.6 to 4.0.0

v6.1.12

6.1.12 (2022-10-31)

Bug Fixes

• 57493ee #332 ensuring close event is emited after stream has ended (@​webark)
• b003c64 #314 replace deprecated String.prototype.substr() (#314) (@​CommanderRoot, @​lukekarrys)

Documentation

• f129929 #313 remove dead link to benchmarks (#313) (@​yetzt)
• c1faa9f add examples/explanation of using tar.t (@​isaacs)

Changelog

Sourced from tar's changelog.

Changelog

7.4

• Deprecate onentry in favor of onReadEntry for clarity.

7.3

• Add onWriteEntry option

7.2

• DRY the command definitions into a single makeCommand method, and update the type signatures to more appropriately infer the return type from the options and arguments provided.

7.1

• Update minipass to v7.1.0
• Update the type definitions of write() and end() methods on Unpack and Parser classes to be compatible with the NodeJS.WritableStream type in the latest versions of @types/node.

7.0

• Rewrite in TypeScript, provide ESM and CommonJS hybrid interface
• Add tree-shake friendly exports, like import('tar/create') and import('tar/read-entry') to get individual functions or classes.
• Add chmod option that defaults to false, and deprecate noChmod. That is, reverse the default option regarding explicitly setting file system modes to match tar entry settings.
• Add processUmask option to avoid having to call process.umask() when chmod: true (or noChmod: false) is set.

6.2

• Add support for brotli compression
• Add maxDepth option to prevent extraction into excessively deep folders.

6.1

• remove dead link to benchmarks (#313) (@​yetzt)
• add examples/explanation of using tar.t (@​isaacs)
• ensure close event is emited after stream has ended (@​webark)

... (truncated)

Commits

• bef7b1e 6.2.1
• fe8cd57 prevent extraction in excessively deep subfolders
• fe7ebfd remove security.md
• 5bc9d40 6.2.0
• fe1ef5e changelog 6.2
• e483220 get rid of npm lint stuff
• 689928a ci that works outside of npm org
• db6f539 file inference improvements for .tbr and .tgz
• 336fa8f refactor: dry and other pr comments
• eeba222 chore: lint fixes
• Additional commits viewable in compare view

Updates firebase-tools from 9.23.3 to 13.14.1

Release notes

Sourced from firebase-tools's releases.

v13.14.1

• Bump Firebase Data Connect local toolkit to v1.3.1, which contains fixes for Swift SDK code generation (#7491)

v13.14.0

• Cleans up App Hosting's GitHub integration UX. "Add an account" flow now goes directly to GitHub instead of using Developer Connect. (#7405)
• Fix an issue where refresh_tokens would be used before checking whether they were expired. (#7442)
• firebase init dataconnect now can pull down deployed GQL files.
• Improved detection of 'dataconnect.yaml' when not in project root.
• GitHub Action fixes for web frameworks (#6883)
• Fixes issue where PubSub message publishTime is set to 1970-01-01T00:00:00 (#7441)
• Display meaningful error message when cannot determine target. (#6594)
• Adds support for firealerts events in Eventarc emulator. (#7355)
• Released version firebase-tools-ui@1.13.0, which adds Emulator UI support for firealerts events.
• Improved errors when an incorrect service ID is passed to firebase deploy --only dataconnect:serviceId.
• Fixed display of errors in Firestore commands when using JSON or noninteractive modes. (#7482)
• Fixed an issue where Firestore backup schedule commands had invalid short option names. (#7481)
• Bumps the Firebase Data Connect local toolkit to v1.3.0, which adds Swift SDK, @​index, @​unique, and batch insert support. (#7486)

v13.13.3

• Fix an issue where refresh_tokens would be used before checking whether they were expired. (#7442)

v13.13.2

• Fixes an issue where old access_token would be used after expiry. (#7429)

v13.13.1

• Pass down functions.ignore values in firebase.json to functions emulator so that supposedly ignored directories/files will not trigger reload. (#7414)
• Fixes bug where secret values provided in env files were parsed as list (#7422)
• Update the Firebase Data Connect emulator to v1.2.4, which includes a fix for web SDK generation on Windows and a change for the local Vertex AI client to pick up application default credentials automatically (#7424)

v13.13.0

• Fixes framework support for Nuxt ^3.12 by correctly calling loadNuxtConfig() (#7375)
• Add a default for firebase init dataconnect:sdk (#7406)
• Bump Firebase Data Connect emulator to v1.2.3, which adds support for @index on tables, @auth(level: USER_ANON/USER_EMAIL_VERIFIED), and key: {uid_expr: "auth.uid"}, and fixes some issues related to SDK generation (#7409)

v13.12.0

• Moved dataconnect.location key in firebase.json to dataconnect.yaml.
• Fixes issue where files were not properly being discovered and deployed to Firebase Hosting (#7363, #7378)
• Added new command init dataconnect:sdk, which interactively configures a generated SDK for a Data Connect connector.

v13.11.4

• Data Connect emulator now reuses existing instances if they are emulating the same service.
• Fixes issue where deploy --only dataconnect would error out with cannot read property undefined.
• Fixes compatibility issue when uploading native symbols to Crashlytics on Intel-based Macs.

v13.11.3

• Fixes issue where storage emulator throws an error due to non-standard whitespaces in filenames (#6834).
• Fixes issue where some emulators would fail to start when their path contained a whitespace (#7313)
• Adds prompt for Postgres connection string to setup:emulators:dataconnect.
• Updates Data Connect emulator to v1.2.2, which includes support for generating Swift SDKs and a number of bug fixes.

... (truncated)

Commits

• 2355787 13.14.1
• 9893255 Bump FDC emulator to v1.3.1 (#7491)
• c64dcee Add privacy policy to end up firebase help output (#7489)
• e6e9f4b don't start auth emulator (#7487)
• 4231d76 [firebase-release] Removed change log and reset repo after 13.14.0 release
• b792ba8 13.14.0
• 31cc6fc Bump FDC emulator to v1.3.0 (#7486)
• f6345d7 Save options back to signal.value in VSCode (#7484)
• e00df1e Fix invalid option names in Firestore backup schedule commands (#7481)
• 8a4aa7a Fix errors showing as success in Firestore commands (#7482)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.

[dependabot]

Superseded by #156.