search

SeleniumHQ / selenium

A browser automation framework and ecosystem.
https://selenium.dev
Apache License 2.0
29.73k stars 8.02k forks source link

Deps: bumps ws version which patches a security vulnerability #14186

Open pranshuchittora opened 4 days ago

pranshuchittora commented 4 days ago

User description

Thanks for contributing to Selenium! A PR well described will help maintainers to quickly review and merge it

Before submitting your PR, please check our contributing guidelines. Avoid large PRs, help reviewers by making them as simple and short as possible.

Description

Related to https://github.com/facebook/react-native/pull/45147 [INTERNAL] [SECURITY] - Fixes CVE-2024-37890 https://github.com/websockets/ws/releases/tag/8.17.1

Motivation and Context

Types of changes

Checklist

PR Type

dependencies

Description

Changes walkthrough πŸ“

Relevant files
Dependencies
package.json
Bump `ws` dependency version to address security vulnerability
javascript/node/selenium-webdriver/package.json - Updated the `ws` dependency version from `>=8.16.0` to `>=8.17.1`.
+1/-1     
package-lock.json
Update `ws` version in lock file to match package.json     
package-lock.json - Updated the `ws` dependency version from `>=8.16.0` to `>=8.17.1`.
+1/-1     

πŸ’‘ PR-Agent usage: Comment /help on the PR to get a list of all available PR-Agent tools and their descriptions

CLAassistant commented 4 days ago

CLA assistant check
All committers have signed the CLA.

codiumai-pr-agent-pro[bot] commented 4 days ago

PR Reviewer Guide πŸ”

⏱️ Estimated effort to review [1-5] 1
πŸ§ͺ Relevant tests No
πŸ”’ Security concerns No
⚑ Key issues to review None
codiumai-pr-agent-pro[bot] commented 4 days ago

PR Code Suggestions ✨

No code suggestions found for PR.