socket.io-client icon indicating copy to clipboard operation
socket.io-client copied to clipboard
verified publisher icon socketio

chore: bump engine.io-client from 6.5.2 to 6.5.4

Open NicoPennec opened this issue 1 year ago • 2 comments

This release of engine.io-client includes the bump of ws to 8.17.1 that fixes a security vulnerability. See https://github.com/advisories/GHSA-3h5v-q93c-6h6q

The kind of change this PR does introduce

  • [x] a bug fix
  • [ ] a new feature
  • [ ] an update to the documentation
  • [ ] a code change that improves performance
  • [ ] other

NicoPennec avatar Jun 18 '24 12:06 NicoPennec

:+1: https://github.com/socketio/engine.io-client/releases/tag/6.5.4

gustawdaniel-statscore avatar Jun 18 '24 20:06 gustawdaniel-statscore

Are there any plans on merging this PR? It would be nice to get rid of the vulnerability. cc @darrachequesne

Draginfable avatar Jul 08 '24 11:07 Draginfable