chore(deps): bump tar and firebase-tools in /demo_backend/functions

[dependabot]

Bumps tar to 7.5.10 and updates ancestor dependency firebase-tools. These dependencies need to be updated together.

Updates tar from 7.5.7 to 7.5.10

Commits

• 2b72abc 7.5.10
• 7bc755d parse root off paths before sanitizing .. parts
• c8cb846 update deps
• 1f0c2c9 7.5.9
• fbb0851 build minified version as default export
• 6b8eba0 7.5.8
• 2cb1120 fix(unpack): improve UnpackSync symlink error "into" path accuracy
• d18e4e1 fix: do not write linkpaths through symlinks
• See full diff in compare view

Maintainer changes

This version was pushed to npm by isaacs, a new releaser for tar since your current version.

Install script changes

This version adds prepare script that runs during installation. Review the package contents before updating.

Updates firebase-tools from 13.35.1 to 15.8.0

Release notes

Sourced from firebase-tools's releases.

v15.8.0

• Corrects issue with updateService in runv2.ts (#9918)
• Updated suite of MCP tools for Firestore to include many new tools. Firestore tools no longer support emulator mode.
• Updated the Firebase Data Connect local toolkit to v3.2.0, which includes the following changes: (#9975)
  • Support for uuidV7()
  • Support for custom PostgreSQL schema names.

v15.7.0

• Updated Python Functions template to use firebase_functions v0.5.x
• Update the Firebase Data Connect local toolkit to v3.1.4, which includes the following changes: (#9944)
  • Add support for @searchable on varchar fields.
  • Fix a runtime error when using aggregations with nested reference fields.
  • Update the Golang dependency version from v1.24.12 to v1.24.13.
• Added Developer Knowledge MCP tools which can search Google doumentation to help agents answer questions.

v15.6.0

• Added support for enabling Firebase Authentication providers via firebase deploy. You can configure providers in firebase.json like so:

{
  "auth": {
    "providers": {
      "anonymous": true,
      "emailPassword": true,
      "googleSignIn": {
        "oAuthBrandDisplayName": "My App",
        "supportEmail": "support@myapp.com"
      }
    }
  }
}

• Added initial zip deploy support in functions deploy for HTTP functions (#9707)
• Fixes an issue where Python was missing from the firebase-tools Docker image (#9855).
• Fixes billing information check to use user's project quota (#9879).
• Updated the Firebase Data Connect local toolkit to v3.1.2, which contains the following changes: (#9882)
  • Improved insecure operation warning messages and reduced the severity of existing insecure operation warnings to LOG_ONLY.
  • Updated the Golang dependency version from 1.24.4 to 1.24.12.
• Fixes issue where auth emulator multi-tenant mode exports/imports only users tied to the default tenant (#5623)
• Updated Pub/Sub emulator to version 0.8.27.
• Updated the Data Connect emulator to v3.1.3, which enables the native SQL feature.

v15.5.1

• Fixes issues with calls to serviceusage (#9844)

v15.5.0

• Added firebase dataconnect:compile command.
• Loads experiments earlier in CLI startup so they can be used earlier. (#9797)
• Fixed issue where AuthBlockingEvent had invalid format for metadata.creationTime and metadata.lastSignInTime. (#8109)

... (truncated)

Commits

• ec50959 15.8.0
• 0dd56f7 Update FDC local toolkit to v3.2.0 (#9975)
• e4937af Add a firebase studio export command under an experiment flag. (#9964)
• aad903c Modifies updateService related to functions deployment (#9918)
• d459404 vscode 2.1.2 (#9959)
• 9dd6032 Firestore OneMCP proxy (#9957)
• a77e2f6 [firebase-release] Removed change log and reset repo after 15.7.0 release
• e3b7a90 15.7.0
• 3acda5e update the firebase_functions version (#9940)
• c526697 Developer Knowledge OneMCP proxy (#9921)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  You can disable automated security fix PRs for this repo from the Security Alerts page.