Closed dependabot[bot] closed 2 months ago
@dependabot rebase
This pull request was built based on a group rule. Closing it will not ignore any of these versions in future pull requests.
To ignore these dependencies, configure ignore rules in dependabot.yml
@dependabot recreate
Looks like this PR is closed. If you re-open it I'll rebase it as long as no-one else has edited it (you can use @dependabot reopen
if the branch has been deleted).
@dependabot rebase
Looks like this PR is closed. If you re-open it, I'll rebase it, as long as no-one else has edited it.
@dependabot reopen
Bumps the npm_and_yarn group with 4 updates: braces, ws, engine.io and socket.io-adapter.
Updates
braces
from 3.0.2 to 3.0.3Commits
74b2db2
3.0.388f1429
update eslint. lint, fix unit tests.415d660
Snyk js braces 6838727 (#40)190510f
fix tests, skip 1 test in test/braces.expand716eb9f
readme bumpa5851e5
Merge pull request #37 from coderaiser/fix/vulnerability2092bd1
feature: braces: add maxSymbols (https://github.com/micromatch/braces/issues/...9f5b4cf
fix: vulnerability (https://security.snyk.io/vuln/SNYK-JS-BRACES-6838727)98414f9
remove funding file665ab5d
update keepEscaping doc (#27)Updates
ws
from 8.16.0 to 8.17.1Release notes
Sourced from ws's releases.
... (truncated)
Commits
3c56601
[dist] 8.17.1e55e510
[security] Fix crash when the Upgrade header cannot be read (#2231)6a00029
[test] Increase code coverageddfe4a8
[perf] Reduce the amount ofcrypto.randomFillSync()
callsb73b118
[dist] 8.17.029694a5
[test] Use thehighWaterMark
variable934c9d6
[ci] Test on node 221817bac
[ci] Do not test on node 2196c9b3d
[major] Flip the default value ofallowSynchronousEvents
(#2221)e5f32c7
[fix] Emit at most one event per event loop iteration (#2218)Updates
engine.io
from 6.5.3 to 6.5.5Release notes
Sourced from engine.io's releases.
Changelog
Sourced from engine.io's changelog.
Commits
0cb977a
chore(release): 6.5.5adaa207
chore(deps): bump ws from 8.11.0 to 8.17.1 (#702)0efa04b
fix(types): make socket.request writable (#697)ff0fbfb
chore(release): 6.5.409acb17
ci: add Node.js 20 in the test matrix39937f8
refactor: minor cleanups43c1c1c
refactor: simplify code3b5e79e
refactor: remove useless referencesf27a6c3
refactor: remove useless referenceUpdates
socket.io-adapter
from 2.5.2 to 2.5.5Release notes
Sourced from socket.io-adapter's releases.
... (truncated)
Changelog
Sourced from socket.io-adapter's changelog.
... (truncated)
Commits
05a190a
chore(release): 6.5.593fe190
chore(deps): bump ws from 8.11.0 to 8.17.1 (#93)5eae5a0
chore(release): 2.5.4005d546
ci: test with older TypeScript versiona13f35f
fix: ensure the order of the commands207c0db
refactor: break circular dependency (2)abc93a9
refactor: break circular dependency (1)9d4c4a7
refactor(cluster): export ClusterAdapterOptions and MessageType typesca397f3
fix(types): ensure compatibility with TypeScript < 4.5549156c
chore(release): 2.5.3Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show