This PR upgrades the ws dependency from version 8.12.0 to 8.17.1 to address the security vulnerability described in CVE-2024-37890.
Changes Made:
package.json
Updated ws version to 8.17.1.
jest.config.js
Added moduleNameMapper to resolve module resolution issues during testing. These stemmed from ws introducing a browser.js export in their package.json in 18.12.1.
Reason for Change:
The current version 8.12.0 of ws has a known vulnerability (GHSA-3h5v-q93c-6h6q).
This PR upgrades the
wsdependency from version8.12.0to8.17.1to address the security vulnerability described in CVE-2024-37890.Changes Made:
wsversion to8.17.1.moduleNameMapperto resolve module resolution issues during testing. These stemmed from ws introducing a browser.js export in their package.json in18.12.1.Reason for Change:
8.12.0ofwshas a known vulnerability (GHSA-3h5v-q93c-6h6q).^8.17.1resolves this issue.Testing Done:
References:
Please review and let me know if any further changes are needed.