Open dependabot[bot] opened 2 months ago
Latest commit: b70a4045730c3db642e690469e3018f3b545cfc9
Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.
Click here to learn what changesets are, and how to add one.
Click here if you're a maintainer who wants to add a changeset to this PR
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
🚮 Removed packages: npm/boolbase@1.0.0, npm/call-bind@1.0.7, npm/css-color-names@0.0.4, npm/define-data-property@1.1.4, npm/define-properties@1.2.1, npm/es-abstract@1.23.2, npm/es-errors@1.3.0, npm/escalade@3.1.2, npm/get-caller-file@2.0.5, npm/get-intrinsic@1.2.4, npm/has-property-descriptors@1.0.2, npm/has-proto@1.0.3, npm/has-symbols@1.0.3, npm/has-tostringtag@1.0.2, npm/internal-slot@1.0.7, npm/is-callable@1.2.7, npm/is-docker@2.2.1, npm/is-shared-array-buffer@1.0.3, npm/is-string@1.0.7, npm/is-symbol@1.0.4, npm/lodash.memoize@4.1.2, npm/minimist@1.2.7, npm/object-inspect@1.13.1
Bumps ws from 8.11.0 to 8.17.1.
Release notes
Sourced from ws's releases.
... (truncated)
Commits
3c56601
[dist] 8.17.1e55e510
[security] Fix crash when the Upgrade header cannot be read (#2231)6a00029
[test] Increase code coverageddfe4a8
[perf] Reduce the amount ofcrypto.randomFillSync()
callsb73b118
[dist] 8.17.029694a5
[test] Use thehighWaterMark
variable934c9d6
[ci] Test on node 221817bac
[ci] Do not test on node 2196c9b3d
[major] Flip the default value ofallowSynchronousEvents
(#2221)e5f32c7
[fix] Emit at most one event per event loop iteration (#2218)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show