[Snyk] Upgrade node-opcua from 2.81.0 to 2.116.0

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade node-opcua from 2.81.0 to 2.116.0.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

- The recommended version is **41 versions** ahead of your current version. - The recommended version was released **a month ago**, on 2023-11-03. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:-------------------------

| Regular Expression Denial of Service (ReDoS)
[SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | **482/1000**
**Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: node-opcua

2.116.0 - 2023-11-03
🐛 Bug Fixes
- [66c0baf] - Server: don't display endpoint warning if URL contains localhost
- [a66305a] - Fix then/catch sequence
- [58e9758] - Fix: dockertest/Dockerfile to reduce vulnerabilities
- [f7b07a6] - Fix writing into variable with a custom basic dataType
🛠 Maintenance
- [2840c7c] - Refactor getIpAddresses
- [eac74c3] - Minor refactoring
- [95439f3] - Refactor readUAAnalogItem
- [0c855fb] - Refactor ISession interfaces
✨ Enhancements
- [475ab8d] - Server: add skipOwnNamespace option
- [d953163] - Address-space: detect nodeset loading ordering
- [d20eadd] - Add missing modules
- [9e5a34a] - Improve tests coverage for validate_data_type_correctness
- [c20155b] - Add test for UABaseNode#setDescription
🔒 Security
- [58e9758] - Fix: dockertest/Dockerfile to reduce vulnerabilities
🧪 Tests
- [60864a0] - Add pseudo session test for write
- [9e5a34a] - Improve tests coverage for validate_data_type_correctness
- [c20155b] - Add test for UABaseNode#setDescription
2.115.0 - 2023-10-04
🐛 bug fixing
- 9cc09bc [nodeset2xml loading] use -1 as default EnumValue when not specified in XML
- 9f65a03 improve getBasicDataType
- 709cafc make sure to explore Variant value for building namespace dependencies durring nodeset export
🚀 enhancement
- f6bf8a6 add DeviceHealthAlarm helpers
- e5cf35d use es2020
- 12ef301 add sample test code for helping issue #1262
🪱 chore
- e37cfeb disable eslint no-unsafe-declaration-merging
- d3f410c add missing fixture
- 760e3a1 update lock file
- 9aa91a4 promote sponsors in readme.md
- 156a4e4 fix dependencies in package.json
- 7a6ed49 update ids
💡 Sponsorship Call! 💡

NodeOPCUA thrives because of supporters like YOU! 🌟

As we passionately improve and broaden the scope of node-opcua, we're reaching out for your generous support. Join us in making a difference through our membership program at Sterfive or directly on OpenCollective. 🤝

Your contribution paves the way for innovation and nurtures a community built on collaboration and shared insights. 🚀

🌐 Let's shape the future of node-opcua together! 🌐

Thank you for being a pivotal part of our journey! 💖🙌
```
 </li>
 <li>
 2.114.0 - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.114.0">2023-10-02</a>v2.114.0
 </li>
 <li>
 2.113.0 - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.113.0">2023-09-07</a>🚀 enhancement
```
- 53858ae improve general logging
- f845376 prevent warning and errorLog overflow
🐛 bug fixes
- #1296 , now use node-opcua-crypto@4.5.0 that fixes selfSelfCertificate's missing AuthorityKeyIdentifier property of the Extension
🚧 maintenance
- 0ebd879 update to node-opcua-crypto@4.5.0
- eca126a chore: clean-up console.logs
👬🏽 contributors
- special thanks to @ Graos for spotting #1286
```
 </li>
 <li>
 2.112.0 - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.112.0">2023-09-06</a>🚧 maintenance
```
- efd08bc ignore leading slash in endpoint during endpoint validation
🐛 bug fixes:
- e46e32f fix standard Object definition
- 3972099 7b07f43 fix appveyor.yml
- f0778bd fix flacky tests
- 48734b4 use pure javascript bcrypt version to avoid using binary modules
```
 </li>
 <li>
 2.111.0 - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.111.0">2023-09-03</a>🚧 enhancement
```
- 0c48fb5 ea41612 use bcrypt in sample to encrypt userManager password
- update packages "node-opcua-crypto": "4.3.1"
🐛 bug fixing
- a33cb75 fix error handling in setMonitoringMode
- c118a68 fix dockerFile reported vulnerabilities
```
 </li>
 <li>
 2.110.0 - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.110.0">2023-08-17</a>🐛 bug fix
```
- this release fixes #1289, whereby the new X509 certificate generation method based used by node-opcua-crypto could randomly crash.
- this version relies on node-opcua-crypto@4.2.0.
👬🏽 contributors:
- @ sseiber
```
 </li>
 <li>
 2.109.0 - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.109.0">2023-08-15</a>🚀 enhancement
```
- [c789a36] addressSpace: BaseNode now expose a setDescription and setDisplayName to enable dynamic change. ( resolves #1284 )
🚧 maintenance
- [c15331d] remove eumabois
- [6367995] fix NodeJS.Timeout issue caused by latest @ types/node ts definition.
🐛 bug fixes
- [e0d5581] [address-space-base] don't use chalk module - fix issue#1285
- [6eefed7] add regression test and investigation code for #1289
👬🏽 contributors
- @ ptorrent , @ sseiber
🧨 known issues:
- this version introduces a new way of creating privateKeys and Certificate that do not relies on openssl any more but on the newly introduce WebCrypto API in nodeJS , when it's availbalbe or fall back to a polyfill @ pecular/X509 when the suble api is not available.
 ( see #1289 )
 we recommand you use node-opcua@2.110.0 instead
```
 </li>
 <li>
 2.108.0 - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.108.0">2023-07-18</a><a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.108.0"> Read more </a>
 </li>
 <li>
 2.107.0 - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.107.0">2023-07-11</a>This version brings significant improvements on the server side with a better handling of StateMachine object;
```
StateMachine internals are now fully handled by node-opcua ;
- the AvailableStates and AvailableTransitions variables are automatically populated if they exist on the model.
- TransitionTime, EffectiveDisplayName are now automatically update if present in the model , when the state changes.
 On StateMachine with SubState, the EffectiveTransitionTime variable of the parent state is automatically updated when the stat of the substate machine changes.
🚀 enhancements
- server: implement automatic support for EffectiveTransitionTime on FiniteStateMachine d5493c1
- server : StateMachine setState and lastUpdateDate implemened fba2813
🐛 bug fixes
- server: handle with a warning instead of throwing in a error for case where a Variable refers to a TypeDefinition being a ObjectType instead of a VariableType f6831cc
- server: fix potential crashes in deactivateAlarm bade5e2
```
 </li>
 <li>
 2.106.0 - 2023-06-30
 </li>
 <li>
 2.105.1 - 2023-06-16
 </li>
 <li>
 2.105.0 - 2023-06-10
 </li>
 <li>
 2.104.0 - 2023-06-05
 </li>
 <li>
 2.103.0 - 2023-05-05
 </li>
 <li>
 2.102.0 - 2023-05-02
 </li>
 <li>
 2.101.0 - 2023-05-01
 </li>
 <li>
 2.100.0 - 2023-04-14
 </li>
 <li>
 2.99.0 - 2023-04-11
 </li>
 <li>
 2.98.2 - 2023-04-10
 </li>
 <li>
 2.98.1 - 2023-04-10
 </li>
 <li>
 2.98.0 - 2023-04-09
 </li>
 <li>
 2.97.0 - 2023-04-05
 </li>
 <li>
 2.96.0 - 2023-03-24
 </li>
 <li>
 2.95.0 - 2023-03-18
 </li>
 <li>
 2.94.0 - 2023-03-14
 </li>
 <li>
 2.93.0 - 2023-03-13
 </li>
 <li>
 2.92.0 - 2023-03-12
 </li>
 <li>
 2.91.1 - 2023-02-24
 </li>
 <li>
 2.91.0 - 2023-02-17
 </li>
 <li>
 2.90.1 - 2023-02-15
 </li>
 <li>
 2.90.0 - 2023-01-29
 </li>
 <li>
 2.89.0 - 2023-01-22
 </li>
 <li>
 2.88.0 - 2023-01-03
 </li>
 <li>
 2.87.0 - 2022-12-18
 </li>
 <li>
 2.86.1 - 2022-12-16
 </li>
 <li>
 2.86.0 - 2022-12-15
 </li>
 <li>
 2.85.0 - 2022-11-25
 </li>
 <li>
 2.84.0 - 2022-11-18
 </li>
 <li>
 2.83.0 - 2022-11-14
 </li>
 <li>
 2.82.0 - 2022-10-27
 </li>
 <li>
 2.81.0 - 2022-10-11
 </li>
</ul>
from <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases">node-opcua GitHub release notes</a>
```

Commit messages

Package name: node-opcua

713ad38 v2.116.0
66c0baf server: don't display endpoint warninf if url contains localhost
475ab8d server: add skipOwnNamespace option
d953163 address-space: detect nodeset loading ordering
2840c7c refactor getIpAdresses
d20eadd add missing modules
a66305a fix then/catch sequence
eac74c3 minor refactoring
95439f3 refactor readUAAnalogItem
60864a0 add pseudo session test for write
0c855fb refactor ISession interfaces
58e9758 fix: dockertest/Dockerfile to reduce vulnerabilities
9e5a34a improve tests coverage for validate_data_type_correctness
c20155b add test for UABaseNode#setDescription
f7b07a6 fix writing into variable with a custom basic dataType
2a65943 v2.115.0
1cb06ac improve dependency detection
358d284 v2.114.0
cb01c1a update packages
9cc09bc use -1 as default EnumValue when not specified in XML
9f65a03 improve getBasicDataType
d3f410c add missing fixture
760e3a1 update lock file
709cafc make sure to explore Variant value for building namespace dependencies durring nodeset export

Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

BiancoRoyal / node-red-contrib-iiot-opcua

[Snyk] Upgrade node-opcua from 2.81.0 to 2.116.0 #262

Snyk has created this PR to upgrade node-opcua from 2.81.0 to 2.116.0.

🐛 Bug Fixes

🛠 Maintenance

✨ Enhancements

🔒 Security

🧪 Tests