Bump tmp and rewire (#81)

dependabot[bot] · ShimonaR-MC · web-flow · commit 97ed8462f8a7 · 2025-09-08T20:50:03.000+05:30
* Bump tmp and rewire Removes [tmp](https://github.com/raszi/node-tmp). It's no longer used after updating ancestor dependency [rewire](https://github.com/jhnns/rewire). These dependencies need to be updated together. Removes `tmp` Updates `rewire` from 5.0.0 to 9.0.0 - [Release notes](https://github.com/jhnns/rewire/releases) - [Changelog](https://github.com/jhnns/rewire/blob/master/CHANGELOG.md) - [Commits](jhnns/rewire@v5.0.0...v9.0.0) --- updated-dependencies: - dependency-name: tmp dependency-version: dependency-type: indirect - dependency-name: rewire dependency-version: 9.0.0 dependency-type: direct:development ... Signed-off-by: dependabot[bot] <support@github.com> * Updating to node v 17 * Updating to node v 17 Rewrite 9.0.0 is not compatible with node 16 * Updating to node v 17 * Terminating support for node 16 Need to upgrade Rewire to 9.0.0 to fix vulnerabilities. This is incompatible with node 16. --------- Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: ShimonaR-MC <118438569+ShimonaR-MC@users.noreply.github.com>
diff --git a/.github/workflows/npm-publish.yml b/.github/workflows/npm-publish.yml
@@ -11,7 +11,7 @@ jobs:
       - uses: actions/checkout@v4
       - uses: actions/setup-node@v4
         with:
-          node-version: 16
+          node-version: 17
       - run: npm ci
       - run: npm test
 
@@ -22,7 +22,7 @@ jobs:
       - uses: actions/checkout@v4
       - uses: actions/setup-node@v4
         with:
-          node-version: 16
+          node-version: 17
           registry-url: https://registry.npmjs.org
       - run: npm ci
       - run: npm publish
diff --git a/.github/workflows/sonar-scanner.yml b/.github/workflows/sonar-scanner.yml
@@ -20,10 +20,10 @@ jobs:
           github.event.pull_request.head.repo.full_name == github.repository ||
           github.event_name != 'pull_request_target') }}
         run: echo "Unsecure PR, must be labelled with the 'safe' label, then run the workflow again" && exit 1
-      - name: Use Node.js 16
+      - name: Use Node.js 17
         uses: actions/setup-node@v1
         with:
-          node-version: 16
+          node-version: 17
       - name: Build with npm
         run: |
           npm ci
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
@@ -15,7 +15,6 @@ jobs:
     strategy:
       matrix:
         node-version:
-          - 16.x
           - 17.x
           - 18.x
           - 19.x
diff --git a/README.md b/README.md
@@ -28,7 +28,7 @@
 NodeJS library for Mastercard API compliant payload encryption/decryption.
 
 ### Compatibility <a name="compatibility"></a>
-- NodeJS 16+
+- NodeJS 17+
 
 There shouldn't be any Node compatibility issues with this package, but it's a good idea to keep your Node versions up-to-date. It is recommended that you use one of the LTS Node.js releases, or one of the more general recent releases. A Node version manager such as `nvm` (_Mac_ and _Linux_) or `nvm-windows` is a good way to stay on top of this.
 
diff --git a/package-lock.json b/package-lock.json
diff --git a/package.json b/package.json
