Skip to content
This repository was archived by the owner on Sep 23, 2025. It is now read-only.

Comments

Bump the npm_and_yarn group across 1 directory with 30 updates#77

Open
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/npm_and_yarn-20d7ebf28c
Open

Bump the npm_and_yarn group across 1 directory with 30 updates#77
dependabot[bot] wants to merge 1 commit intomasterfrom
dependabot/npm_and_yarn/npm_and_yarn-20d7ebf28c

Conversation

@dependabot
Copy link

@dependabot dependabot bot commented on behalf of github Jun 19, 2024

Bumps the npm_and_yarn group with 20 updates in the / directory:

Package From To
socket.io 2.3.0 2.5.0
electron 8.2.4 22.3.25
ajv 6.12.0 6.12.6
app-builder-lib 22.4.0 24.13.3
electron-builder 22.4.0 24.13.3
debug 4.1.1 4.3.5
debug 3.2.6 4.3.5
socket.io 2.5.0 4.7.5
es5-ext 0.10.53 0.10.64
hosted-git-info 2.8.8 2.8.9
http-cache-semantics 4.1.0 4.1.1
ini 1.3.5 1.3.8
json-schema 0.2.3 0.4.0
jsprim 1.4.1 1.4.2
minimatch 3.0.4 3.1.2
minimist 1.2.0 1.2.8
mkdirp 0.5.1 0.5.6
moment 2.27.0 2.30.1
path-parse 1.0.6 1.0.7
qs 6.5.2 6.5.3
semver 5.7.1 5.7.2
word-wrap 1.2.3 1.2.5

Updates socket.io from 2.3.0 to 2.5.0

Release notes

Sourced from socket.io's releases.

2.5.0

⚠️ WARNING ⚠️

The default value of the maxHttpBufferSize option has been decreased from 100 MB to 1 MB, in order to prevent attacks by denial of service.

Security advisory: GHSA-j4f2-536g-r55m

Bug Fixes

  • fix race condition in dynamic namespaces (05e1278)
  • ignore packet received after disconnection (22d4bdf)
  • only set 'connected' to true after middleware execution (226cc16)
  • prevent the socket from joining a room after disconnection (f223178)

Links:

2.4.1

This release reverts the breaking change introduced in 2.4.0 (socketio/socket.io@f78a575).

If you are using Socket.IO v2, you should explicitly allow/disallow cross-origin requests:

  • without CORS (server and client are served from the same domain):
const io = require("socket.io")(httpServer, {
  allowRequest: (req, callback) => {
    callback(null, req.headers.origin === undefined); // cross-origin requests will not be allowed
  }
});
  • with CORS (server and client are served from distinct domains):
io.origins(["http://localhost:3000"]); // for local development
io.origins(["https://example.com"]);

In any case, please consider upgrading to Socket.IO v3, where this security issue is now fixed (CORS is disabled by default).

Reverts

  • fix(security): do not allow all origins by default (a169050)

Links:

... (truncated)

Changelog

Sourced from socket.io's changelog.

2.5.0 (2022-06-26)

⚠️ WARNING ⚠️

The default value of the maxHttpBufferSize option has been decreased from 100 MB to 1 MB, in order to prevent attacks by denial of service.

Security advisory: GHSA-j4f2-536g-r55m

Bug Fixes

  • fix race condition in dynamic namespaces (05e1278)
  • ignore packet received after disconnection (22d4bdf)
  • only set 'connected' to true after middleware execution (226cc16)
  • prevent the socket from joining a room after disconnection (f223178)

Dependencies

4.5.1 (2022-05-17)

Bug Fixes

  • forward the local flag to the adapter when using fetchSockets() (30430f0)
  • typings: add HTTPS server to accepted types (#4351) (9b43c91)

Dependencies

4.5.0 (2022-04-23)

Bug Fixes

  • typings: ensure compatibility with TypeScript 3.x (#4259) (02c87a8)

Features

Catch-all listeners for outgoing packets

... (truncated)

Commits
  • baa6804 chore(release): 2.5.0
  • f223178 fix: prevent the socket from joining a room after disconnection
  • 226cc16 fix: only set 'connected' to true after middleware execution
  • 05e1278 fix: fix race condition in dynamic namespaces
  • 22d4bdf fix: ignore packet received after disconnection
  • dfded53 chore: update engine.io version to 3.6.0
  • e6b8697 chore(release): 2.4.1
  • a169050 revert: fix(security): do not allow all origins by default
  • 873fdc5 chore(release): 2.4.0
  • f78a575 fix(security): do not allow all origins by default
  • Additional commits viewable in compare view

Updates electron from 8.2.4 to 22.3.25

Changelog

Sourced from electron's changelog.

Breaking Changes

Breaking changes will be documented here, and deprecation warnings added to JS code where possible, at least one major version before the change is made.

Types of Breaking Changes

This document uses the following convention to categorize breaking changes:

  • API Changed: An API was changed in such a way that code that has not been updated is guaranteed to throw an exception.
  • Behavior Changed: The behavior of Electron has changed, but not in such a way that an exception will necessarily be thrown.
  • Default Changed: Code depending on the old default may break, not necessarily throwing an exception. The old behavior can be restored by explicitly specifying the value.
  • Deprecated: An API was marked as deprecated. The API will continue to function, but will emit a deprecation warning, and will be removed in a future release.
  • Removed: An API or feature was removed, and is no longer supported by Electron.

Planned Breaking API Changes (32.0)

Removed: File.path

The nonstandard path property of the Web File object was added in an early version of Electron as a convenience method for working with native files when doing everything in the renderer was more common. However, it represents a deviation from the standard and poses a minor security risk as well, so beginning in Electron 32.0 it has been removed in favor of the webUtils.getPathForFile method.

// Before (renderer)
const file = document.querySelector('input[type=file]')
alert(Uploaded file path was: ${file.path})

// After (renderer)
const file = document.querySelector('input[type=file]')
electron.showFilePath(file)
// (preload)
const { contextBridge, webUtils } = require('electron')
contextBridge.exposeInMainWorld('electron', {
showFilePath (file) {
// It's best not to expose the full file path to the web content if
// possible.
const path = webUtils.getPathForFile(file)
alert(Uploaded file path was: ${path})
}
})

Deprecated: clearHistory, canGoBack, goBack, canGoForward, goForward, canGoToOffset, goToOffset on WebContents

The navigation-related APIs are now deprecated.

... (truncated)

Commits

Updates ajv from 6.12.0 to 6.12.6

Release notes

Sourced from ajv's releases.

v6.12.6

Fix performance issue of "url" format.

v6.12.5

Fix uri scheme validation (@​ChALkeR). Fix boolean schemas with strictKeywords option (#1270)

v6.12.4

Fix: coercion of one-item arrays to scalar that should fail validation (failing example).

v6.12.3

Pass schema object to processCode function Option for strictNumbers (@​issacgerges, #1128) Fixed vulnerability related to untrusted schemas (CVE-2020-15366)

v6.12.2

Removed post-install script

v6.12.1

Docs and dependency updates

Commits
  • fe59143 6.12.6
  • d580d3e Merge pull request #1298 from ajv-validator/fix-url
  • fd36389 fix: regular expression for "url" format
  • 490e34c docs: link to v7-beta branch
  • 9cd93a1 docs: note about v7 in readme
  • 877d286 Merge pull request #1262 from b4h0-c4t/refactor-opt-object-type
  • f1c8e45 6.12.5
  • 764035e Merge branch 'ChALkeR-chalker/fix-comma'
  • 3798160 Merge branch 'chalker/fix-comma' of git://github.com/ChALkeR/ajv into ChALkeR...
  • a3c7eba Merge branch 'refactor-opt-object-type' of github.com:b4h0-c4t/ajv into refac...
  • Additional commits viewable in compare view

Updates app-builder-lib from 22.4.0 to 24.13.3

Release notes

Sourced from app-builder-lib's releases.

v24.13.3

What's Changed

New Contributors

Full Changelog: electron-userland/electron-builder@v24.13.2...v24.13.3

v24.13.2

What's Changed

Full Changelog: electron-userland/electron-builder@v24.13.1...v24.13.2

v24.13.1

What's Changed

Full Changelog: electron-userland/electron-builder@v24.13.0...v24.13.1

v24.13.0

What's Changed

... (truncated)

Changelog

Sourced from app-builder-lib's changelog.

24.13.3

Patch Changes

  • #8086 e6f1bebd Thanks @​Allan-Kerr! - fix(msi): build emulated arm64 MSI installers as stopgap until electron-builder-binaries wix version is updated

  • #8090 2c147add Thanks @​mmaietta! - fix(mac): sign NSIS on mac

  • #8067 18340eef Thanks @​mmaietta! - fix(deb): soft symlink instead of hardlink to handle when /opt is on a separate partition

  • Updated dependencies []:

    • dmg-builder@24.13.3
    • electron-builder-squirrel-windows@24.13.3

24.13.2

Patch Changes

  • #8059 8f4acff3 Thanks @​mmaietta! - fix: execute %SYSTEMROOT% cmd.exe directly during NSIS installer

  • #8071 eb296c9b Thanks @​mmaietta! - fix(pkg): provide BundlePreInstallScriptPath and/or BundlePostInstallScriptPath when a pre/postinstall script is provided to pkg installer

  • #8069 538dd86b Thanks @​lutzroeder! - fix: use pathToFileUrl for hooks for Windows ES module support

  • #8065 5681777a Thanks @​mmaietta! - fix(mac): only skip notarization step when notarize is explicitly false

  • Updated dependencies []:

    • dmg-builder@24.13.2
    • electron-builder-squirrel-windows@24.13.2

24.13.1

Patch Changes

  • #8052 6a4f605f Thanks @​taozhou-glean! - fix: add dmg-builder and squirrel-windows to peer dependency for pnpm

  • #8057 ccbb80de Thanks @​mmaietta! - chore: upgrading connected dependencies (typescript requires higher eslint version)

  • Updated dependencies [ccbb80de]:

    • builder-util@24.13.1
    • builder-util-runtime@9.2.4
    • dmg-builder@24.13.1
    • electron-builder-squirrel-windows@24.13.1
    • electron-publish@24.13.1

24.13.0

Minor Changes

  • #8043 bb4a8c09 Thanks @​mmaietta! - feat: allow onNodeModuleFile to return a boolean to force include the package to be copied

... (truncated)

Commits
  • cb335ec chore(deploy): Release v24.13.3 (electron-updater@6.2.0) (#8084)
  • 2c147ad fix(mac): signing NSIS on mac (#8090)
  • 18340ee fix(deb): only execute update-desktop-database and update-mime-database w...
  • e6f1beb feat(msi): build emulated arm64 MSI installers (#8086)
  • 5f0804f chore(deploy): Release 24.13.2 (#8060)
  • eb296c9 fix(pkg): provide BundlePreInstallScriptPath and/or `BundlePostInstallScrip...
  • 538dd86 fix: use pathToFileUrl for hooks for Windows ES module support (#8069)
  • 5681777 fix(mac): only skip notarization step when notarize is explicitly false (#8...
  • 8f4acff fix: execute %SYSTEMROOT% cmd.exe directly during NSIS installer (#8059)
  • 8965608 chore(deploy): Release v24.13.1 (electron-updater@6.1.9) (#8056)
  • Additional commits viewable in compare view
Maintainer changes

This version was pushed to npm by onegoldfishh, a new releaser for app-builder-lib since your current version.


Updates electron-builder from 22.4.0 to 24.13.3

Release notes

Sourced from electron-builder's releases.

v24.13.3

What's Changed

New Contributors

Full Changelog: electron-userland/electron-builder@v24.13.2...v24.13.3

v24.13.2

What's Changed

Full Changelog: electron-userland/electron-builder@v24.13.1...v24.13.2

v24.13.1

What's Changed

Full Changelog: electron-userland/electron-builder@v24.13.0...v24.13.1

v24.13.0

What's Changed

... (truncated)

Changelog

Sourced from electron-builder's changelog.

24.13.3

Patch Changes

24.13.2

Patch Changes

24.13.1

Patch Changes

  • Updated dependencies [6a4f605f, ccbb80de]:
    • app-builder-lib@24.13.1
    • builder-util@24.13.1
    • builder-util-runtime@9.2.4
    • dmg-builder@24.13.1

24.13.0

Patch Changes

24.12.0

Minor Changes

Patch Changes

24.11.0

Patch Changes

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by onegoldfishh, a new releaser for electron-builder since your current version.


Updates debug from 4.1.1 to 4.3.5

Release notes

Sourced from debug's releases.

4.3.5

Patch

  • cac39b1c5b018b0fe93a53a05f084eee543d17f5 Fix/debug depth (#926)

Thank you @​calvintwr for the fix.

4.3.4

What's Changed

New Contributors

Full Changelog: debug-js/debug@4.3.3...4.3.4

4.3.3

Patch Release 4.3.3

This is a documentation-only release. Further, the repository was transferred. Please see notes below.

Thank you to @​taylor1791 and @​kristofkalocsai for their contributions.

Repository Migration Information

I've formatted this as a FAQ, please feel free to open an issue for any additional question and I'll add the response here.

Q: What impact will this have on me?

In most cases, you shouldn't notice any change.

The only exception I can think of is if you pull code directly from https://github.com/visionmedia/debug, e.g. via a "debug": "visionmedia/debug"-type version entry in your package.json - in which case, you should still be fine due to the automatic redirection Github sets up, but you should also update any references as soon as possible.

Q: What are the security implications of this change?

If you pull code directly from the old URL, you should update the URL to https://github.com/debug-js/debug as soon as possible. The old organization has many approved owners and thus a new repository could (in theory) be created at the old URL, circumventing Github's automatic redirect that is in place now and serving malicious code. I (@​qix-) also wouldn't have access to that repository, so while I don't think it would happen, it's still something to consider.

Even in such a case, however, the officially released package on npm (debug) would not be affected. That package is still very much under control (even more than it used to be).

Q: What should I do if I encounter an issue related to the migration?

Search the issues first to see if someone has already reported it, and then open a new issue if someone has not.

... (truncated)

Commits
Maintainer changes

This version was pushed to npm by qix, a new releaser for debug since your current version.


Updates debug from 3.2.6 to 4.3.5

Release notes

Sourced from debug's releases.

4.3.5

Patch

  • cac39b1c5b018b0fe93a53a05f084eee543d17f5 Fix/debug depth (#926)

Thank you @​calvintwr for the fix.

4.3.4

What's Changed

New Contributors

Full Changelog: debug-js/debug@4.3.3...4.3.4

4.3.3

Patch Release 4.3.3

This is a documentation-only release. Further, the repository was transferred. Please see notes below.

Thank you to @​taylor1791 and @​kristofkalocsai for their contributions.

Repository Migration Information

I've formatted this as a FAQ, please feel free to open an issue for any additional question and I'll add the response here.

Q: What impact will this have on me?

In most cases, you shouldn't notice any change.

The only exception I can think of is if you pull code directly from https://github.com/visionmedia/debug, e.g. via a "debug": "visionmedia/debug"-type version entry in your package.json - in which case, you should still be fine due to the automatic redirection Github sets up, but you should also update any references as soon as possible.

Q: What are the security implications of this change?

If you pull code directly from the old URL, you should update the URL to https://github.com/debug-js/debug as soon as possible. The old organization has many approved owners and thus a new repository could (in theory) be created at the old URL, circumventing Github's automatic redirect that is in place now and serving malicious code. I (@​qix-) also wouldn't have access to that repository, so while I don't think it would happen, it's still something to consider.

Even in such a case, however, the officially released package on npm (debug) would not be affected. That package is still very much under control (even more than it used to be).

Q: What should I do if I encounter an issue related to the migration?

Search the issues first to see if someone has already reported it, and then open a new issue if someone has not.

... (truncated)

Commits

@dependabot
Bump the npm_and_yarn group across 1 directory with 30 updates
0201026 
Bumps the npm_and_yarn group with 20 updates in the / directory:

| Package | From | To |
| --- | --- | --- |
| [socket.io](https://github.com/socketio/socket.io) | `2.3.0` | `2.5.0` |
| [electron](https://github.com/electron/electron) | `8.2.4` | `22.3.25` |
| [ajv](https://github.com/ajv-validator/ajv) | `6.12.0` | `6.12.6` |
| [app-builder-lib](https://github.com/electron-userland/electron-builder/tree/HEAD/packages/app-builder-lib) | `22.4.0` | `24.13.3` |
| [electron-builder](https://github.com/electron-userland/electron-builder/tree/HEAD/packages/electron-builder) | `22.4.0` | `24.13.3` |
| [debug](https://github.com/debug-js/debug) | `4.1.1` | `4.3.5` |
| [debug](https://github.com/debug-js/debug) | `3.2.6` | `4.3.5` |
| [socket.io](https://github.com/socketio/socket.io) | `2.5.0` | `4.7.5` |
| [es5-ext](https://github.com/medikoo/es5-ext) | `0.10.53` | `0.10.64` |
| [hosted-git-info](https://github.com/npm/hosted-git-info) | `2.8.8` | `2.8.9` |
| [http-cache-semantics](https://github.com/kornelski/http-cache-semantics) | `4.1.0` | `4.1.1` |
| [ini](https://github.com/npm/ini) | `1.3.5` | `1.3.8` |
| [json-schema](https://github.com/kriszyp/json-schema) | `0.2.3` | `0.4.0` |
| [jsprim](https://github.com/joyent/node-jsprim) | `1.4.1` | `1.4.2` |
| [minimatch](https://github.com/isaacs/minimatch) | `3.0.4` | `3.1.2` |
| [minimist](https://github.com/minimistjs/minimist) | `1.2.0` | `1.2.8` |
| [mkdirp](https://github.com/isaacs/node-mkdirp) | `0.5.1` | `0.5.6` |
| [moment](https://github.com/moment/moment) | `2.27.0` | `2.30.1` |
| [path-parse](https://github.com/jbgutierrez/path-parse) | `1.0.6` | `1.0.7` |
| [qs](https://github.com/ljharb/qs) | `6.5.2` | `6.5.3` |
| [semver](https://github.com/npm/node-semver) | `5.7.1` | `5.7.2` |
| [word-wrap](https://github.com/jonschlinkert/word-wrap) | `1.2.3` | `1.2.5` |



Updates `socket.io` from 2.3.0 to 2.5.0
- [Release notes](https://github.com/socketio/socket.io/releases)
- [Changelog](https://github.com/socketio/socket.io/blob/main/CHANGELOG.md)
- [Commits](socketio/socket.io@2.3.0...2.5.0)

Updates `electron` from 8.2.4 to 22.3.25
- [Release notes](https://github.com/electron/electron/releases)
- [Changelog](https://github.com/electron/electron/blob/main/docs/breaking-changes.md)
- [Commits](electron/electron@v8.2.4...v22.3.25)

Updates `ajv` from 6.12.0 to 6.12.6
- [Release notes](https://github.com/ajv-validator/ajv/releases)
- [Commits](ajv-validator/ajv@v6.12.0...v6.12.6)

Updates `app-builder-lib` from 22.4.0 to 24.13.3
- [Release notes](https://github.com/electron-userland/electron-builder/releases)
- [Changelog](https://github.com/electron-userland/electron-builder/blob/master/packages/app-builder-lib/CHANGELOG.md)
- [Commits](https://github.com/electron-userland/electron-builder/commits/v24.13.3/packages/app-builder-lib)

Updates `electron-builder` from 22.4.0 to 24.13.3
- [Release notes](https://github.com/electron-userland/electron-builder/releases)
- [Changelog](https://github.com/electron-userland/electron-builder/blob/master/packages/electron-builder/CHANGELOG.md)
- [Commits](https://github.com/electron-userland/electron-builder/commits/v24.13.3/packages/electron-builder)

Updates `debug` from 4.1.1 to 4.3.5
- [Release notes](https://github.com/debug-js/debug/releases)
- [Commits](debug-js/debug@4.1.1...4.3.5)

Updates `debug` from 3.2.6 to 4.3.5
- [Release notes](https://github.com/debug-js/debug/releases)
- [Commits](debug-js/debug@4.1.1...4.3.5)

Updates `socket.io` from 2.5.0 to 4.7.5
- [Release notes](https://github.com/socketio/socket.io/releases)
- [Changelog](https://github.com/socketio/socket.io/blob/main/CHANGELOG.md)
- [Commits](socketio/socket.io@2.3.0...2.5.0)

Updates `ejs` from 3.0.1 to 3.1.10
- [Release notes](https://github.com/mde/ejs/releases)
- [Commits](mde/ejs@v3.0.1...v3.1.10)

Updates `engine.io` from 3.4.0 to 6.5.5
- [Release notes](https://github.com/socketio/engine.io/releases)
- [Changelog](https://github.com/socketio/engine.io/blob/main/CHANGELOG.md)
- [Commits](socketio/engine.io@3.4.0...6.5.5)

Updates `es5-ext` from 0.10.53 to 0.10.64
- [Release notes](https://github.com/medikoo/es5-ext/releases)
- [Changelog](https://github.com/medikoo/es5-ext/blob/main/CHANGELOG.md)
- [Commits](medikoo/es5-ext@v0.10.53...v0.10.64)

Updates `got` from 9.6.0 to 11.8.6
- [Release notes](https://github.com/sindresorhus/got/releases)
- [Commits](sindresorhus/got@v9.6.0...v11.8.6)

Updates `hosted-git-info` from 2.8.8 to 2.8.9
- [Release notes](https://github.com/npm/hosted-git-info/releases)
- [Changelog](https://github.com/npm/hosted-git-info/blob/v2.8.9/CHANGELOG.md)
- [Commits](npm/hosted-git-info@v2.8.8...v2.8.9)

Updates `http-cache-semantics` from 4.1.0 to 4.1.1
- [Commits](kornelski/http-cache-semantics@v4.1.0...v4.1.1)

Updates `ini` from 1.3.5 to 1.3.8
- [Release notes](https://github.com/npm/ini/releases)
- [Changelog](https://github.com/npm/ini/blob/main/CHANGELOG.md)
- [Commits](npm/ini@v1.3.5...v1.3.8)

Updates `json-schema` from 0.2.3 to 0.4.0
- [Commits](kriszyp/json-schema@v0.2.3...v0.4.0)

Updates `jsprim` from 1.4.1 to 1.4.2
- [Changelog](https://github.com/TritonDataCenter/node-jsprim/blob/v1.4.2/CHANGES.md)
- [Commits](TritonDataCenter/node-jsprim@v1.4.1...v1.4.2)

Updates `json5` from 2.1.1 to 2.2.3
- [Release notes](https://github.com/json5/json5/releases)
- [Changelog](https://github.com/json5/json5/blob/main/CHANGELOG.md)
- [Commits](json5/json5@v2.1.1...v2.2.3)

Updates `lodash` from 4.17.19 to 4.17.21
- [Release notes](https://github.com/lodash/lodash/releases)
- [Commits](lodash/lodash@4.17.19...4.17.21)

Updates `minimatch` from 3.0.4 to 3.1.2
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](isaacs/minimatch@v3.0.4...v3.1.2)

Updates `minimist` from 1.2.0 to 1.2.8
- [Changelog](https://github.com/minimistjs/minimist/blob/main/CHANGELOG.md)
- [Commits](minimistjs/minimist@v1.2.0...v1.2.8)

Updates `mkdirp` from 0.5.1 to 0.5.6
- [Changelog](https://github.com/isaacs/node-mkdirp/blob/main/CHANGELOG.md)
- [Commits](isaacs/node-mkdirp@0.5.1...v0.5.6)

Updates `moment` from 2.27.0 to 2.30.1
- [Changelog](https://github.com/moment/moment/blob/develop/CHANGELOG.md)
- [Commits](moment/moment@2.27.0...2.30.1)

Updates `normalize-url` from 4.5.0 to 6.1.0
- [Release notes](https://github.com/sindresorhus/normalize-url/releases)
- [Commits](sindresorhus/normalize-url@v4.5.0...v6.1.0)

Updates `path-parse` from 1.0.6 to 1.0.7
- [Commits](https://github.com/jbgutierrez/path-parse/commits/v1.0.7)

Updates `qs` from 6.5.2 to 6.5.3
- [Changelog](https://github.com/ljharb/qs/blob/main/CHANGELOG.md)
- [Commits](ljharb/qs@v6.5.2...v6.5.3)

Updates `semver` from 5.7.1 to 5.7.2
- [Release notes](https://github.com/npm/node-semver/releases)
- [Changelog](https://github.com/npm/node-semver/blob/v5.7.2/CHANGELOG.md)
- [Commits](npm/node-semver@v5.7.1...v5.7.2)

Updates `socket.io-parser` from 3.3.0 to 4.2.4
- [Release notes](https://github.com/socketio/socket.io-parser/releases)
- [Changelog](https://github.com/socketio/socket.io-parser/blob/main/CHANGELOG.md)
- [Commits](socketio/socket.io-parser@3.3.0...4.2.4)

Updates `word-wrap` from 1.2.3 to 1.2.5
- [Release notes](https://github.com/jonschlinkert/word-wrap/releases)
- [Commits](jonschlinkert/word-wrap@1.2.3...1.2.5)

Updates `ws` from 6.1.4 to 8.17.1
- [Release notes](https://github.com/websockets/ws/releases)
- [Commits](websockets/ws@6.1.4...8.17.1)

Updates `y18n` from 4.0.0 to 5.0.8
- [Release notes](https://github.com/yargs/y18n/releases)
- [Changelog](https://github.com/yargs/y18n/blob/master/CHANGELOG.md)
- [Commits](yargs/y18n@v4.0.0...v5.0.8)

Updates `yargs-parser` from 16.1.0 to 21.1.1
- [Release notes](https://github.com/yargs/yargs-parser/releases)
- [Changelog](https://github.com/yargs/yargs-parser/blob/main/CHANGELOG.md)
- [Commits](yargs/yargs-parser@v16.1.0...yargs-parser-v21.1.1)

---
updated-dependencies:
- dependency-name: socket.io
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: electron
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: ajv
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: app-builder-lib
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: electron-builder
  dependency-type: direct:development
  dependency-group: npm_and_yarn
- dependency-name: debug
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: debug
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: socket.io
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: ejs
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: engine.io
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: es5-ext
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: got
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: hosted-git-info
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: http-cache-semantics
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ini
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: json-schema
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: jsprim
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: json5
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: lodash
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimatch
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: minimist
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: mkdirp
  dependency-type: direct:production
  dependency-group: npm_and_yarn
- dependency-name: moment
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: normalize-url
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: path-parse
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: qs
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: semver
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: socket.io-parser
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: word-wrap
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: ws
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: y18n
  dependency-type: indirect
  dependency-group: npm_and_yarn
- dependency-name: yargs-parser
  dependency-type: indirect
  dependency-group: npm_and_yarn
...

Signed-off-by: dependabot[bot] <support@github.com>
@dependabot dependabot bot added the dependencies Pull requests that update a dependency file label Jun 19, 2024
@dependabot dependabot bot mentioned this pull request Jun 19, 2024
Closed
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

0 participants