Snyk has created this PR to upgrade ws from 8.2.2 to 8.11.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
The recommended version is 13 versions ahead of your current version.
The recommended version was released 22 days ago, on 2022-11-06.
WebSocket.prototype.addEventListener() now supports an event listener
specified as an object with a handleEvent() method. (9ab743a).
Bug fixes
WebSocket.prototype.addEventListener() now adds an event listener only if it
is not already in the list of the event listeners for the specified event type
(1cec17d).
The Authorization and Cookie headers are no longer sent if the original
request for the opening handshake is sent to an IPC server and the client is
redirected to another IPC server (bc8bd34).
Added the ability to inspect the invalid handshake requests and respond to
them with a custom HTTP response. (6e5a5ce).
Bug fixes
The handshake is now aborted if the Upgrade header field value in the HTTP
response is not a case-insensitive match for the value "websocket" (0fdcc0a).
The Authorization and Cookie headers are no longer sent when following an
insecure redirect (wss: to ws:) to the same host (d68ba9e).
Snyk has created this PR to upgrade ws from 8.2.2 to 8.11.0.
:information_source: Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.
Release notes
Package name: ws
Features
WebSocket.prototype.addEventListener()
now supports an event listenerspecified as an object with a
handleEvent()
method. (9ab743a).Bug fixes
WebSocket.prototype.addEventListener()
now adds an event listener only if itis not already in the list of the event listeners for the specified event type
(1cec17d).
Features
Features
Bug fixes
Authorization
andCookie
headers are no longer sent if the originalrequest for the opening handshake is sent to an IPC server and the client is
redirected to another IPC server (bc8bd34).
Features
WS_NO_BUFFER_UTIL
andWS_NO_UTF_8_VALIDATE
environmentvariables (becf237).
Features
them with a custom HTTP response. (6e5a5ce).
Bug fixes
Upgrade
header field value in the HTTPresponse is not a case-insensitive match for the value "websocket" (0fdcc0a).
Authorization
andCookie
headers are no longer sent when following aninsecure redirect (wss: to ws:) to the same host (d68ba9e).
Features
Features
WebSocket
class on the server (#2007).Bug fixes
Authorization
andCookie
headers are nolonger sent if the redirect host is different from the original host (#2013).
Commit messages
Package name: ws
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.
For more information:
🧐 View latest project report
🛠 Adjust upgrade PR settings
🔕 Ignore this dependency or unsubscribe from future upgrade PRs