[Snyk] Upgrade ws from 8.2.3 to 8.12.0

[snyk-bot]

Snyk has created this PR to upgrade ws from 8.2.3 to 8.12.0.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 13 versions ahead of your current version.
• The recommended version was released 21 days ago, on 2023-01-07.

Release notes

Package name: ws

• 8.12.0 - 2023-01-07
  

  Features

  • Added support for utf-8-validate@6 (ff63bba).

  Other notable changes

  • buffer.isUtf8() is now used instead of utf-8-validate if available
    (42d79f6).
• 8.11.0 - 2022-11-06
  

  Features

  • WebSocket.prototype.addEventListener() now supports an event listener
    specified as an object with a handleEvent() method. (9ab743a).

  Bug fixes

  • WebSocket.prototype.addEventListener() now adds an event listener only if it
    is not already in the list of the event listeners for the specified event type
    (1cec17d).
• 8.10.0 - 2022-10-24
  

  Features

  • Added an export for package.json (211d5d3).
• 8.9.0 - 2022-09-22
  

  Features

  • Added the ability to connect to Windows named pipes (#2079).
• 8.8.1 - 2022-07-15
  

  Bug fixes

  • The Authorization and Cookie headers are no longer sent if the original
    request for the opening handshake is sent to an IPC server and the client is
    redirected to another IPC server (bc8bd34).
• 8.8.0 - 2022-06-09
  

  Features

  • Added the WS_NO_BUFFER_UTIL and WS_NO_UTF_8_VALIDATE environment
    variables (becf237).
• 8.7.0 - 2022-05-26
  

  Features

  • Added the ability to inspect the invalid handshake requests and respond to
    them with a custom HTTP response. (6e5a5ce).

  Bug fixes

  • The handshake is now aborted if the Upgrade header field value in the HTTP
    response is not a case-insensitive match for the value "websocket" (0fdcc0a).
  • The Authorization and Cookie headers are no longer sent when following an
    insecure redirect (wss: to ws:) to the same host (d68ba9e).
• 8.6.0 - 2022-05-01
  

  Features

  • Added the ability to remove confidential headers on a per-redirect basis (#2030).
• 8.5.0 - 2022-02-07
• 8.4.2 - 2022-01-14
• 8.4.1 - 2022-01-13
• 8.4.0 - 2021-12-20
• 8.3.0 - 2021-11-23
• 8.2.3 - 2021-10-02

from ws GitHub release notes

Commit messages

Package name: ws

• a3214d3 [dist] 8.12.0
• 42d79f6 [minor] Use `buffer.isUtf8()` if possible
• ff63bba [pkg] Update utf-8-validate to version 6.0.0
• d412358 [minor] Fix nits
• 2dc2812 [minor] Make `sendAfterClose()` call the callback in the next tick
• fb1dfd2 [doc] Fix badge URL
• 83c72cf [perf] Make `toBuffer()` use `FastBuffer`
• 1b057f9 [minor] Fix nit
• e6a32f8 [perf] Use `FastBuffer` instead of `Buffer#subarray()`
• 9e0fd77 [minor] Use `Buffer#subarray()` instead of `Buffer#slice()`
• a6fa37a [license] Update copyright notice
• 8a8fc88 [minor] Validate the payload length of the close frame sooner
• ea76193 [doc] Improve doc for the `callback` argument of `WebSocketServer`
• afd8c62 [dist] 8.11.0
• 1cec17d [fix] Add the same event listener only once
• 9ab743a [feature] Add support for objets with a `handleEvent()` method
• 38f7879 [ci] Test on node 19
• cdca711 [dist] 8.10.0
• 211d5d3 [pkg] Add package.json export
• c4d6eb3 [ci] Do not use the set-output command
• 966f9d4 [dist] 8.9.0
• e628f2b [feature] Support Windows named pipes (#2079)
• 7ff26d9 [doc] Fix nits
• 4ed2c87 [doc] Remove "note that"

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs