search

V0l-D / Discord-Netflix

A updated and improved version from the original Discord-Netflix from Nirewen.
https://discord.gg/kbf8EjpxbU
GNU General Public License v3.0
55 stars 10 forks source link

[Snyk] Upgrade socket.io-client from 4.5.3 to 4.5.4 #55

Closed V0l-D closed 1 year ago

V0l-D commented 1 year ago

This PR was automatically created by Snyk using the credentials of a real user.


Snyk has created this PR to upgrade socket.io-client from 4.5.3 to 4.5.4.

:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
- The recommended version is **1 version** ahead of your current version. - The recommended version was released **22 days ago**, on 2022-11-22.
Release notes
Package name: socket.io-client
  • 4.5.4 - 2022-11-22

    This release contains a bump of the socket.io-parser dependency, in order to fix CVE-2022-2421.

    Links:

    • Diff: 4.5.3...4.5.4
    • Server release: 4.5.4
    • engine.io-client version: ~6.2.3
    • ws version: ~8.2.3

    Size of the bundles:

    min min+gzip
    socket.io.min.js 42.6 KB (-) 13.6 KB (-)
    socket.io.msgpack.min.js 47.7 KB (-) 14.6 KB (-)
    socket.io.esm.min.js 34.5 KB (-) 11.5 KB (-) 
      </li>
  <li>
    <b>4.5.3</b> - <a href="https://snyk.io/redirect/github/socketio/socket.io-client/releases/tag/4.5.3">2022-10-15</a></br><h3>Bug Fixes</h3>
    • do not swallow user exceptions (2403b88)

    Links:

    • Diff: 4.5.2...4.5.3
    • Server release: 4.5.3
    • engine.io-client version: ~6.2.1
    • ws version: ~8.2.3

    Size of the bundles:

    min min+gzip
    socket.io.min.js 42.6 KB (-) 13.6 KB (-)
    socket.io.msgpack.min.js 47.7 KB (-) 14.6 KB (-)
    socket.io.esm.min.js 34.5 KB (-) 11.5 KB (-) 
      </li>
</ul>
from <a href="https://snyk.io/redirect/github/socketio/socket.io-client/releases">socket.io-client GitHub release notes</a>

Commit messages
Package name: socket.io-client
  • 91ef839 chore(release): 4.5.4
  • d882822 ci: migrate from zuul to webdriver.io
  • e891289 ci: update actions in GitHub Actions workflows (#1564)
  • cedd311 chore: bump socket.io-parser to version 4.2.1 (#1559)
  • 9ec85f7 docs: add missing versions in the changelog (2)
  • f9b773f docs: add missing versions in the changelog
Compare

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs