Bump ms, socket.io-client and react-scripts in /client-ui

[dependabot[bot]]

Bumps ms to 2.1.2 and updates ancestor dependencies ms, socket.io-client and react-scripts. These dependencies need to be updated together.

Updates ms from 0.7.1 to 2.1.2

Release notes

Sourced from ms's releases.

2.1.2

Patches

• Fixed negative decimals less than -10 don't work: #111
• Support error in case of Infinity: #116
• Update regexp for 10-.5 is invalid input: #117
• Update chat badge: #119

Credits

Huge thanks to @​yuler and @​7ma7X for helping!

2.1.1

Patches

• Add full support for negative numbers: #104

Credits

Huge thanks to @​thevtm for helping!

2.1.0

Minor Changes

• Add "week" / "w" support: a2caead13ac7f9931338a1a51ab4e36ddb505e00
• Fixed match regex to support negative numbers: #96

Patches

• Applied a few text improvements: 15dc8c5b5a9e8372555400485a749ec04cc02444
• Fixed spelling of “millisecond” in description: #95
• Lockfile added: 2425ebdefcdd1c2b726c06f6a65c4f2dea58dee7

Credits

Huge thanks to @​yoavmmn and @​binki for helping!

2.0.0

Major Changes

• Limit str to 100 to avoid ReDoS of 0.3s: #89

Patches

• Ignored logs coming from npm: b1eaab752203e978492a4d540a7ae1d26e6306b1
• Bumped dependencies to the latest version: bcf57157678fd5afc691383145a35e116f9704d0
• Invalidated cache for slack badge: 94b995c1d6d5d13ec976a0c6849a3cca9b277e6b

Credits

... (truncated)

Commits

• 7920885 2.1.2
• 199ff78 Update chat badge (#119)
• d1add60 Update regexp for 10-.5 is invalid input (#117)
• d95e17f Support error in case of Infinity (#116)
• 2669f23 Fixed negative decimals less than -10 don't work (#111)
• fe0bae3 2.1.1
• 7437f92 Add full support for negative numbers (#104)
• 845c302 2.1.0
• 17d719f Bumped dev depdenencies to the latest version
• 2425ebd Lockfile added
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by styfle, a new releaser for ms since your current version.

Updates socket.io-client from 1.7.3 to 4.5.4

Release notes

Sourced from socket.io-client's releases.

4.5.4

This release contains a bump of the socket.io-parser dependency, in order to fix CVE-2022-2421.

Links:

• Diff: https://github.com/socketio/socket.io-client/compare/4.5.3...4.5.4
• Server release: 4.5.4
• engine.io-client version: ~6.2.3
• ws version: ~8.2.3

Size of the bundles:

	min	min+gzip
socket.io.min.js	42.6 KB (-)	13.6 KB (-)
socket.io.msgpack.min.js	47.7 KB (-)	14.6 KB (-)
socket.io.esm.min.js	34.5 KB (-)	11.5 KB (-)

4.5.3

Bug Fixes

• do not swallow user exceptions (2403b88)

Links:

• Diff: https://github.com/socketio/socket.io-client/compare/4.5.2...4.5.3
• Server release: 4.5.3
• engine.io-client version: ~6.2.1
• ws version: ~8.2.3

Size of the bundles:

	min	min+gzip
socket.io.min.js	42.6 KB (-)	13.6 KB (-)
socket.io.msgpack.min.js	47.7 KB (-)	14.6 KB (-)
socket.io.esm.min.js	34.5 KB (-)	11.5 KB (-)

4.5.2

Bug Fixes

• handle ill-formatted packet from server (c597023)

Links:

• Diff: https://github.com/socketio/socket.io-client/compare/4.5.1...4.5.2
• Server release: 4.5.2
• engine.io-client version: ~6.2.1 (diff)
• ws version: ~8.2.3

... (truncated)

Changelog

Sourced from socket.io-client's changelog.

4.5.4 (2022-11-22)

This release contains a bump of the socket.io-parser dependency, in order to fix CVE-2022-2421.

Dependencies

• engine.io-client@~6.2.3
• ws@~8.2.3

4.5.3 (2022-10-15)

Bug Fixes

• do not swallow user exceptions (2403b88)

4.5.2 (2022-09-02)

Bug Fixes

• handle ill-formatted packet from server (c597023)

2.5.0 (2022-06-26)

Bug Fixes

• ensure buffered events are sent in order (991eb0b)

4.5.1 (2022-05-17)

There were some minor bug fixes on the server side, which mandate a client bump.

4.5.0 (2022-04-23)

Features

• add details to the disconnect event (b862924)

... (truncated)

Commits

• 91ef839 chore(release): 4.5.4
• d882822 ci: migrate from zuul to webdriver.io
• e891289 ci: update actions in GitHub Actions workflows (#1564)
• cedd311 chore: bump socket.io-parser to version 4.2.1 (#1559)
• 9ec85f7 docs: add missing versions in the changelog (2)
• f9b773f docs: add missing versions in the changelog
• 2eca8da chore(release): 4.5.3
• 7c05688 docs: add jsdoc for each public method
• 2403b88 fix: do not swallow user exceptions
• 1098618 ci: temporarily remove iOS 16 from the test matrix
• Additional commits viewable in compare view

Updates react-scripts from 0.9.3 to 5.0.1

Release notes

Sourced from react-scripts's releases.

v1.0.14

1.0.14 (September 26, 2017)

:bug: Bug Fix

• react-dev-utils

  • #3098 Always reload the page on next compile after a runtime error. (@​Timer)

• react-error-overlay

  • #3079 Fix code context on Windows. (@​Timer)

:nail_care: Enhancement

• react-dev-utils

  • #3077 Auto-detect running editor on Linux for error overlay. (@​gulderov)

  • #3131 Display process pid in already running message. (@​Pajn)

:memo: Documentation

• Other

  • #3163 Add link to active CSS modules discussion. (@​NeekSandhu)

• react-scripts

  • #2908 Note that class fields have progressed to stage 3. (@​rickbeerendonk)

  • #3160 Update unclear wording in webpack configuration (file loader section). (@​kristiehoward)

• eslint-config-react-app

  • #3072 Update eslint versions for install instructions. (@​jdcrensh)

:house: Internal

• react-scripts

  • #3157 Update webpack-dev-server to 2.8.2. (@​nikolas)

  • #2989 Update install template to match accessibility guidelines. (@​davidleger95)

• react-error-overlay

  • #3065 Updated react-error-overlay to latest Flow (0.54.0). (@​duvet86)

  • #3102 Clean target directory before compiling overlay. (@​Timer)

... (truncated)

Changelog

Sourced from react-scripts's changelog.

1.0.0 and Newer Versions

Please refer to CHANGELOG-1.x.md for the 1.x range, and https://github.com/facebook/create-react-app/blob/main/CHANGELOG.md for the newer versions.

0.9.5 (March 9, 2017)

:bug: Bug Fix

• react-scripts

  • #1783 Work around Node 7.7.2 bug that crashes npm start. (@​ryanwalters)

:nail_care: Enhancement

• eslint-config-react-app

  • #1773 Remove guard-for-in lint rule. (@​spicyj)

• react-scripts

  • #1760 Suggest serve for running in production. (@​leo)
  • #1747 Display yarn instead of yarnpkg when creating a new app. (@​lpalmes)

:memo: Documentation

• react-scripts

  • #1756 Add Yarn steps for adding Flow. (@​zertosh)

:house: Internal

• babel-preset-react-app

  • #1742 Switch to babel-preset-env to remove the deprecation warning. (@​Timer)

Committers: 6

• Andres Suarez (zertosh)
• Ben Alpert (spicyj)
• Joe Haddad (Timer)
• Leo Lamprecht (leo)
• Lorenzo Palmes (lpalmes)
• Ryan Walters (ryanwalters)

Migrating from 0.9.4 to 0.9.5

Inside any created project that has not been ejected, run:

npm install --save-dev --save-exact react-scripts@0.9.5

... (truncated)

Commits

• 19fa58d Publish
• 9802941 fix: webpack noise printed only if error or warning (#12245)
• 2eef1d0 Update templates to use React 18 createRoot (#12220)
• 221e511 Publish
• 5614c87 Add support for Tailwind (#11717)
• 20edab4 fix(webpackDevServer): disable overlay for warnings (#11413)
• 3afbbc0 Update all dependencies (#11624)
• f5467d5 feat(eslint-config-react-app): support ESLint 8.x (#11375)
• c7627ce Update webpack and dev server (#11646)
• 544befe Update package.json (#11597)
• Additional commits viewable in compare view

Maintainer changes

This version was pushed to npm by iansu, a new releaser for react-scripts since your current version.

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/jsilveira/warro-dance-party/network/alerts).