diff --git a/package-lock.json b/package-lock.json
index d4dc273831..b898339035 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -29,7 +29,7 @@
         "@types/chai": "^4.0.0",
         "@types/chai-as-promised": "^7.1.0",
         "@types/firebase-token-generator": "^2.0.28",
-        "@types/jsonwebtoken": "8.5.1",
+        "@types/jsonwebtoken": "8.5.9",
         "@types/lodash": "^4.14.104",
         "@types/minimist": "^1.2.2",
         "@types/mocha": "^10.0.0",
@@ -2042,9 +2042,9 @@
       "license": "MIT"
     },
     "node_modules/@types/jsonwebtoken": {
-      "version": "8.5.1",
-      "resolved": "https://registry.npmjs.org/@types/jsonwebtoken/-/jsonwebtoken-8.5.1.tgz",
-      "integrity": "sha512-rNAPdomlIUX0i0cg2+I+Q1wOUr531zHBQ+cV/28PJ39bSPKjahatZZ2LMuhiguETkCgLVzfruw/ZvNMNkKoSzw==",
+      "version": "8.5.9",
+      "resolved": "https://registry.npmjs.org/@types/jsonwebtoken/-/jsonwebtoken-8.5.9.tgz",
+      "integrity": "sha512-272FMnFGzAVMGtu9tkr29hRL6bZj4Zs1KZNeHLnKqAvp06tAIcarTMwOh8/8bz4FmKRcMxZhZNeUAQsNLoiPhg==",
       "dev": true,
       "license": "MIT",
       "dependencies": {
diff --git a/package.json b/package.json
index fe8b2a17a5..705ca5dd95 100644
--- a/package.json
+++ b/package.json
@@ -230,7 +230,7 @@
     "@types/chai": "^4.0.0",
     "@types/chai-as-promised": "^7.1.0",
     "@types/firebase-token-generator": "^2.0.28",
-    "@types/jsonwebtoken": "8.5.1",
+    "@types/jsonwebtoken": "8.5.9",
     "@types/lodash": "^4.14.104",
     "@types/minimist": "^1.2.2",
     "@types/mocha": "^10.0.0",
diff --git a/test/resources/mocks.ts b/test/resources/mocks.ts
index 25967c44d1..6e983fdb22 100644
--- a/test/resources/mocks.ts
+++ b/test/resources/mocks.ts
@@ -227,7 +227,7 @@ export function generateIdToken(overrides?: object, claims?: object, secret?: st
     algorithm: ALGORITHM,
     header: {
       kid: certificateObject.private_key_id,
-    },
+    } as jwt.JwtHeader,
   }, overrides);
 
   const payload = {
@@ -255,7 +255,7 @@ export function generateAuthBlockingToken(overrides?: object, claims?: object, s
     algorithm: ALGORITHM,
     header: {
       kid: certificateObject.private_key_id,
-    },
+    } as jwt.JwtHeader,
   }, overrides);
 
   const payload = {
@@ -282,7 +282,7 @@ export function generateSessionCookie(overrides?: object, expiresIn?: number): s
     algorithm: ALGORITHM,
     header: {
       kid: certificateObject.private_key_id,
-    },
+    } as jwt.JwtHeader,
   }, overrides);
 
   return jwt.sign(developerClaims, certificateObject.private_key, options);
@@ -303,7 +303,7 @@ export function generateAppCheckToken(overrides?: object): string {
     algorithm: ALGORITHM,
     header: {
       kid: jwksResponse.keys[0].kid,
-    },
+    } as jwt.JwtHeader,
   }, overrides);
 
   return jwt.sign(developerClaims, jwksKeyPair.private, options);