[Snyk] Upgrade google-auth-library from 5.2.2 to 5.10.1

[linuxclick]

Snyk has created this PR to upgrade google-auth-library from 5.2.2 to 5.10.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 14 versions ahead of your current version.

• The recommended version was released 6 years ago.

Issues fixed by the recommended upgrade:

	Issue	Score	Exploit Maturity
	Prototype Pollution SNYK-JS-NODEFORGE-598677	626	Proof of Concept
	Man-in-the-Middle (MitM) SNYK-JS-HTTPSPROXYAGENT-469131	626	Proof of Concept
	Information Exposure SNYK-JS-NODEFETCH-2342118	626	No Known Exploit
	Denial of Service (DoS) SNYK-JS-NODEFETCH-674311	626	No Known Exploit

Release notes

Package name: google-auth-library

• 5.10.1 - 2020-02-25
  

  Bug Fixes

  • if GCF environment detected, increase library timeout (#899) (2577ff2)
• 5.10.0 - 2020-02-20
  

  Features

  • support for verifying ES256 and retrieving IAP public keys (#887) (a98e386)

  Bug Fixes

  • docs: correct links in README (f6a3194), closes #891
• 5.9.2 - 2020-01-28
  

  Bug Fixes

  • populate credentials.refresh_token if provided (#881) (63c4637)
• 5.9.1 - 2020-01-16
  

  Bug Fixes

  • ensures GCE metadata sets email field for ID tokens (#874) (e45b73d)
• 5.9.0 - 2020-01-15
  

  Features

  • add methods for fetching and using id tokens (#867) (8036f1a)
  • export LoginTicket and TokenPayload (#870) (539ea5e)
• 5.8.0 - 2020-01-06
  

  Features

  • cache results of getEnv() (#857) (d4545a9)

  Bug Fixes

  • deps: update dependency jws to v4 (#851) (71366d4)
• 5.7.0 - 2019-12-10
  

  Features

  • make x-goog-user-project work for additional auth clients (#848) (46af865)
• 5.6.1 - 2019-12-05
  

  Bug Fixes

  • deps: pin TypeScript below 3.7.0 (#845) (a9c6e92)
  • docs: improve types and docs for generateCodeVerifierAsync (#840) (04dae9c)
• 5.6.0 - 2019-12-04
  

  Features

  • populate x-goog-user-project for requestAsync (#837) (5a068fb)
  • set x-goog-user-project header, with quota_project from default credentials (#829) (3240d16)

  Bug Fixes

  • deps: update dependency puppeteer to v2 (#821) (2c04117)
  • docs: add jsdoc-region-tag plugin (#826) (558677f)
  • expand on x-goog-user-project to handle auth.getClient() (#831) (3646b7f)
  • use quota_project_id field instead of quota_project (#832) (8933966)
• 5.5.1 - 2019-10-22
  

  Bug Fixes

  • deps: update gaxios dependency (#817) (6730698)
  • don't append x-goog-api-client multiple times (#820) (a46b271)
• 5.5.0 - 2019-10-14
• 5.4.1 - 2019-10-10
• 5.4.0 - 2019-10-08
• 5.3.0 - 2019-09-27
• 5.2.2 - 2019-09-17

from google-auth-library GitHub release notes

---

Important

• Check the changes in this PR to ensure they won't cause issues with your project.
• This PR was automatically created by Snyk using the credentials of a real user.
• Max score is 1000. Note that the real score may have changed since the PR was raised.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

• 🧐 View latest project report
• 📜 Customise PR templates
• 🛠 Adjust upgrade PR settings
• 🔕 Ignore this dependency or unsubscribe from future upgrade PRs