[Snyk] Upgrade node-opcua from 2.81.0 to 2.119.2

[biancode]

This PR was automatically created by Snyk using the credentials of a real user.

Snyk has created this PR to upgrade node-opcua from 2.81.0 to 2.119.2.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

- The recommended version is **48 versions** ahead of your current version. - The recommended version was released **a month ago**, on 2023-12-25. The recommended version fixes: Severity | Issue | PriorityScore (*) | Exploit Maturity | :-------------------------:|:-------------------------|-------------------------|:------------------------- | Regular Expression Denial of Service (ReDoS)
[SNYK-JS-SEMVER-3247795](https://snyk.io/vuln/SNYK-JS-SEMVER-3247795) | **482/1000**
**Why?** Proof of Concept exploit, CVSS 7.5 | Proof of Concept (*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: node-opcua

• 2.119.2 - 2023-12-25
  

  v2.119.2

    </li>
    <li>
      <b>2.119.1</b> - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.119.1">2023-12-25</a></br><p>v2.119.1</p>
    </li>
    <li>
      <b>2.119.0</b> - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.119.0">2023-12-23</a></br><h1>Release Notes for 2.119.0</h1>

  🐛 Bug Fixes

  • [c70438e] Fix ConditionVariableType behavior with SourceTimestamp property
  • [77f1bf6] Fix MultiStateValueDiscrete behavior #1323
  • [3c7c80b] Fix: packages/node-opcua-local-discovery-server/Dockerfile to reduce vulnerabilities
  • [9eeb81a] Use AcknowledgeableConditionType_Acknowledge/Confirm when ConditionId is not an instance

  ✨ Enhancements

  • [84b55ee] Allow effectiveTransitionTime to be passed when setting a TwoStateVariable for instance UACondition#setEnableState(true, { effectiveTransitionTime: somedate})
  • [200e233] Allow time and receiveTime to be optionally passed on raiseNewCondition
  • [734c0d9] Issue #1303 refactor: Add 'host' parameter to OPCUAServer for specific interface binding
  • [8166185] Add findMethodId utility function to find a MethodId in a object or in its super type
  • [ee7b7e3] Factor out node-opcua-alarm-condition module

  🛠 Maintenance

  • [0270f16] Update packages
  • [1cba6e9] Chore: refactor client example
  • [7843dec] Add some more edge tests

  👬🏽 contributors

  • @ muddasir-barnes , @ tetanw
  • special thanks for @ iliareshetov for fixing #1303

  🌟 Join the NodeOPCUA Support Network! 🌟

  NodeOPCUA continues to grow and evolve, thanks to the invaluable support from community members like YOU! 🚀

  We're dedicated to enhancing and expanding the capabilities of node-opcua, and we invite you to be a part of this exciting journey. Consider contributing through our membership program at Sterfive or by donating on OpenCollective. Your support is crucial! 🤝

  Your contributions foster innovation and strengthen a community founded on cooperation and the exchange of knowledge. 🌱

  🌍 Together, we can drive the future of node-opcua forward! 🌍

  We're profoundly grateful for your continued support and commitment to our mission! 💕👐

    </li>
    <li>
      <b>2.118.0</b> - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.118.0">2023-11-20</a></br><h1>Release Notes for 2.118.0</h1>

  In this version, OPCUA Server now automatically populate the following standard UA variables with the appropriate value from the OPCUAServer constructor options:

  ServerConfiguration property	value
  ServerCapabilities	same as options.capabilitiesForMDNS like ["DA", "HA"]
  ApplicationType	same as options.serverInfo.applicationType
  ApplicationUri	as computed by the server
  ProductUri	same as options.serverInfo.productUri
  MulticastDnsEnabled	true if Server uses the MDNS ie options.registerServerMethod === RegisterServerMethod.MDNS
  SupportedPrivateKeyFormats	defaulted to ["PEM"]

  ✨ Enhancements

  • [3410d69] - Server: deprecate alternateEndpoints
  • [8a6eaf7] - Server: expose Server.ServerConfiguration properties
  • [4d32977] - Server: add a mechanism to simulate user identity password being encrypted inside an encrypted channel to simulate Siemens PLCs behavior.
  • [4192e06] - Add traceLog

  🛠 Maintenance

  • [147a330] - Update lock file
  • [874a9c8] - Chore: clean-up imports
  • [9d7eeb3] - Chore: use IBasicSessionAsync whenever possible
  • [3e2be22] - Update packages node-opcua-crypto@4.6.2 node-opcua-pki@4.8.1
  • [1d39983] - Chore: reorder import

  💡 Sponsorship Call! 💡

  NodeOPCUA thrives because of supporters like YOU! 🌟

  As we passionately improve and broaden the scope of node-opcua, we're reaching out for your generous support. Join us in making a difference through our membership program at Sterfive or directly on OpenCollective. 🤝

  Your contribution paves the way for innovation and nurtures a community built on collaboration and shared insights. 🚀

  🌐 Let's shape the future of node-opcua together! 🌐

  Thank you for being a pivotal part of our journey! 💖🙌

    </li>
    <li>
      <b>2.117.0</b> - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.117.0">2023-11-13</a></br><h2>🐛 Bug Fixes</h2>

  • [4767145] - Fix subscription repair when the server doesn't support TransferSubscription nor Republish #1059
  • [0243c5a] - Fix minor typos

  🛠 Maintenance

  • [131fa12] - No need for OpenSSL anymore in docker file
  • [c1ef91a] - Add missing fixture file
  • [45d754d] - Chore: replace xlsx component
  • [3cd6926] - Chore: update .gitignore
  • [ff70927] - Update packages

  ✨ Enhancements

  Those two enhancements have been introduced to improve the performance of @ sterfive/modeler and @ sterfive/toolbox

  • [91cd139] - Improve nodeset export
    • better detect in which nodeset the references that are joining two nodes from different namespaces should belong to.
  • [19b8863] - Improve loadnodeset
    • nodeset2.xml doesn't have to be loaded in priority order; the loader will prescan them and figure out the correct loading order

  🧪 Tests

  • [55a5dce] - Add test case to reproduce issue #1059

  👬🏽 Contributors:

  • thanks mg90707 and robertsLando for reporting #1059 and our open-collective donators for sponsoring its resolution.

    </li>
    <li>
      <b>2.116.0</b> - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.116.0">2023-11-03</a></br><h2>🐛 Bug Fixes</h2>

  • [66c0baf] - Server: don't display endpoint warning if URL contains localhost
  • [a66305a] - Fix then/catch sequence
  • [58e9758] - Fix: dockertest/Dockerfile to reduce vulnerabilities
  • [f7b07a6] - Fix writing into variable with a custom basic dataType

  🛠 Maintenance

  • [2840c7c] - Refactor getIpAddresses
  • [eac74c3] - Minor refactoring
  • [95439f3] - Refactor readUAAnalogItem
  • [0c855fb] - Refactor ISession interfaces

  ✨ Enhancements

  • [475ab8d] - Server: add skipOwnNamespace option
  • [d953163] - Address-space: detect nodeset loading ordering
  • [d20eadd] - Add missing modules
  • [9e5a34a] - Improve tests coverage for validate_data_type_correctness
  • [c20155b] - Add test for UABaseNode#setDescription

  🔒 Security

  • [58e9758] - Fix: dockertest/Dockerfile to reduce vulnerabilities

  🧪 Tests

  • [60864a0] - Add pseudo session test for write
  • [9e5a34a] - Improve tests coverage for validate_data_type_correctness
  • [c20155b] - Add test for UABaseNode#setDescription

    </li>
    <li>
      <b>2.115.0</b> - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.115.0">2023-10-04</a></br><a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.115.0"> Read more </a>
    </li>
    <li>
      <b>2.114.0</b> - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.114.0">2023-10-02</a></br><p>v2.114.0</p>
    </li>
    <li>
      <b>2.113.2</b> - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.113.2">2023-12-23</a></br><p>v2.113.2</p>
    </li>
    <li>
      <b>2.113.1</b> - <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases/tag/v2.113.1">2023-12-22</a></br><p>v2.113.1</p>
    </li>
    <li>
      <b>2.113.0</b> - 2023-09-07
    </li>
    <li>
      <b>2.112.0</b> - 2023-09-06
    </li>
    <li>
      <b>2.111.0</b> - 2023-09-03
    </li>
    <li>
      <b>2.110.0</b> - 2023-08-17
    </li>
    <li>
      <b>2.109.0</b> - 2023-08-15
    </li>
    <li>
      <b>2.108.0</b> - 2023-07-18
    </li>
    <li>
      <b>2.107.0</b> - 2023-07-11
    </li>
    <li>
      <b>2.106.0</b> - 2023-06-30
    </li>
    <li>
      <b>2.105.1</b> - 2023-06-16
    </li>
    <li>
      <b>2.105.0</b> - 2023-06-10
    </li>
    <li>
      <b>2.104.0</b> - 2023-06-05
    </li>
    <li>
      <b>2.103.0</b> - 2023-05-05
    </li>
    <li>
      <b>2.102.0</b> - 2023-05-02
    </li>
    <li>
      <b>2.101.0</b> - 2023-05-01
    </li>
    <li>
      <b>2.100.0</b> - 2023-04-14
    </li>
    <li>
      <b>2.99.0</b> - 2023-04-11
    </li>
    <li>
      <b>2.98.2</b> - 2023-04-10
    </li>
    <li>
      <b>2.98.1</b> - 2023-04-10
    </li>
    <li>
      <b>2.98.0</b> - 2023-04-09
    </li>
    <li>
      <b>2.97.0</b> - 2023-04-05
    </li>
    <li>
      <b>2.96.0</b> - 2023-03-24
    </li>
    <li>
      <b>2.95.0</b> - 2023-03-18
    </li>
    <li>
      <b>2.94.0</b> - 2023-03-14
    </li>
    <li>
      <b>2.93.0</b> - 2023-03-13
    </li>
    <li>
      <b>2.92.0</b> - 2023-03-12
    </li>
    <li>
      <b>2.91.1</b> - 2023-02-24
    </li>
    <li>
      <b>2.91.0</b> - 2023-02-17
    </li>
    <li>
      <b>2.90.1</b> - 2023-02-15
    </li>
    <li>
      <b>2.90.0</b> - 2023-01-29
    </li>
    <li>
      <b>2.89.0</b> - 2023-01-22
    </li>
    <li>
      <b>2.88.0</b> - 2023-01-03
    </li>
    <li>
      <b>2.87.0</b> - 2022-12-18
    </li>
    <li>
      <b>2.86.1</b> - 2022-12-16
    </li>
    <li>
      <b>2.86.0</b> - 2022-12-15
    </li>
    <li>
      <b>2.85.0</b> - 2022-11-25
    </li>
    <li>
      <b>2.84.0</b> - 2022-11-18
    </li>
    <li>
      <b>2.83.0</b> - 2022-11-14
    </li>
    <li>
      <b>2.82.0</b> - 2022-10-27
    </li>
    <li>
      <b>2.81.0</b> - 2022-10-11
    </li>
  </ul>
  from <a href="https://snyk.io/redirect/github/node-opcua/node-opcua/releases">node-opcua GitHub release notes</a>

Commit messages

Package name: node-opcua

• cb434af v2.119.2
• a2d882f chore: unset debug flag
• 1f75a25 node-opcua-nodeset: refactor index_web
• 78fba90 v2.119.1
• 4b809b9 chore: add missing data folder in package
• f985d1a v2.119.0
• 0270f16 update packages
• c70438e fix ConditionVariableType behavior with SourceTimestamp property
• 84b55ee allow effectiveTransitionTime to be passed when setting a TwoStateVarialbe for instance UACondition#setEnableState(true, { effectiveTransitionTime: somedate})
• 200e233 allow time and receiveTime to be optionally passed on raiseNewCondition
• 734c0d9 isssue #1303 refactor: Add 'host' parameter to OPCUAServer for specific interface binding
• 77f1bf6 fix MultiStateValueDiscrete behavior #1323
• 3c7c80b fix: packages/node-opcua-local-discovery-server/Dockerfile to reduce vulnerabilities
• 8166185 add findMethodId
• 9eeb81a use AcknowledgeableConditionType_Acknowledge/Confirm when ConditionId is not an instance
• ee7b7e3 factor out node-opcua-alarm-condition module
• 1cba6e9 chore: refactore client example
• 7843dec add some more edge tests
• 6210aaa v2.118.0
• 147a330 update lock file
• 874a9c8 chore: clean-up imports
• 4192e06 add traceLog
• 9d7eeb3 chore: use IBasicSessionAsync whenever possible
• 3e2be22 update packages node-opcua-crypto@4.6.2 node-opcua-pki@4.8.1

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs

[github-actions[bot]]

Greet Contributors Bot
Thank you for taking your time and effort for your contribution, we truly value it. :tada:

The amazing contributor in this pull request is @snyk-bot