[Snyk] Security upgrade firebase-tools from 4.0.1 to 7.13.1

[snyk-bot]

Snyk has created this PR to fix one or more vulnerable packages in the `npm` dependencies of this project.

Changes included in this PR

• Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
  • package.json
  • package-lock.json

Vulnerabilities that will be fixed

With an upgrade:

Severity	Priority Score (*)	Issue	Breaking Change	Exploit Maturity
	686/1000 Why? Proof of Concept exploit, Has a fix available, CVSS 7.3	Prototype Pollution SNYK-JS-NODEFORGE-598677	Yes	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Commit messages

Package name: firebase-tools

The new version differs by 250 commits.

• 2379d03 7.13.1
• 7cc7a8a Update google-auto-auth (#1973)
• 9a93906 [firebase-release] Removed change log and reset repo after 7.13.0 release
• 901cf84 7.13.0
• 75f30d9 Better error message when trying to set config vars beginning with "firebase" (#1953)
• 5797ce0 Fix port checking with external host (#1954)
• 8a97a3e Release Firestore emulator 1.10.4 (#1959)
• bf2acc8 improves uninstall experience (#1944)
• 2d36abc Update download path of Firestore emulator (#1958)
• cf4eb07 Release Firestore Emulator v1.10.3 (#1955)
• a2384c2 Fix deploys failing if exporting null in any exported object from functions directory (#1951)
• 55c132d Improves 'no project active' error message (#1939)
• 67fc57a Mocks configstore set so that test data isnt saved (#1936)
• 265cfde Don't block emulator Rules deploy on warnings (#1942)
• dee2971 Fix error with executing non-existent functions (#1938)
• 64d461b Adds clarifying prompt if you try to install a another instance of an extension (#1933)
• 61f5c02 Update badges in README for GitHub actions (#1934)
• a8a882c Bump TypeScript version to allow for optional chaining. (#1930)
• ce5ee52 Add shell debugging and fix timeout issue (#1932)
• b4291d1 Don't force reauth when previews are enabled (#1923)
• 18ba9c6 Fixes "clean" script on Windows (#1900)
• bdf95e6 [firebase-release] Removed change log and reset repo after 7.12.1 release
• 28257a1 7.12.1
• 430b006 specify a dependency of google-gax@~1.12.0 to keep node 8 working (#1917)

See the full diff

Check the changes in this PR to ensure they won't cause issues with your project.

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information:
🧐 View latest project report

🛠 Adjust project settings

📚 Read more about Snyk's upgrade and patch logic