chore(deps): bump socket.io-parser from 3.4.2 to 3.4.3 #186

dependabot · 2023-05-23T21:37:09Z

Bumps socket.io-parser from 3.4.2 to 3.4.3.

Release notes

Sourced from socket.io-parser's releases.

3.4.3

⚠️ This release contains an important security fix ⚠️

A malicious client could send a specially crafted HTTP request, triggering an uncaught exception and killing the Node.js process:
TypeError: Cannot convert object to primitive value
       at Socket.emit (node:events:507:25)
       at .../node_modules/socket.io/lib/socket.js:531:14
Please upgrade as soon as possible.

Bug Fixes

check the format of the event name (2dc3c92)

Links

Diff: socketio/socket.io-parser@3.4.2...3.4.3

Changelog

Sourced from socket.io-parser's changelog.

3.4.3 (2023-05-22)

Bug Fixes

check the format of the event name (2dc3c92)

4.2.3 (2023-05-22)

Bug Fixes

check the format of the event name (3b78117)

4.2.2 (2023-01-19)

Bug Fixes

calling destroy() should clear all internal state (22c42e3)

do not modify the input packet upon encoding (ae8dd88)

3.3.3 (2022-11-09)

Bug Fixes

check the format of the index of each attachment (fb21e42)

Commits

060339a chore(release): 3.4.3
2dc3c92 fix: check the format of the event name
See full diff in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

@dependabot rebase will rebase this PR
@dependabot recreate will recreate this PR, overwriting any edits that have been made to it
@dependabot merge will merge this PR after your CI passes on it
@dependabot squash and merge will squash and merge this PR after your CI passes on it
@dependabot cancel merge will cancel a previously requested merge and block automerging
@dependabot reopen will reopen this PR if it is closed
@dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
@dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
@dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.

…nd files highlight in search. (#63) Reduction database space over 50%. Change database version to v7. BREAKING CHANGE: databases v6 and v7 are incompatible and need a lot of time for updating (may be even some days/a lot of hours on very big databases)

# [1.0.0](v0.30.1...v1.0.0) (2018-12-02) ### Bug Fixes * **feed:** rating also accumulate for times over ([b72d365](b72d365)) ### Performance Improvements * **architecture:** Big performance improvements over big databases and files highlight in search. ([#63](#63)) ([92d0d13](92d0d13)) ### BREAKING CHANGES * **architecture:** databases v6 and v7 are incompatible and need a lot of time for updating (may be even some days/a lot of hours on very big databases)

# [1.1.0](v1.0.0...v1.1.0) (2019-01-26) ### Bug Fixes * **1337x:** proper poster in some cases ([515d30c](515d30c)) * **arm:** ignore relay on arm [#66](#66) ([e8cb4d8](e8cb4d8)) * **build:** fix production build after upgrade to new engine ([09ef602](09ef602)) * **p2p:** fix files in db count on new architecture ([073eefe](073eefe)) * **p2p:** potencial problem with some p2p decoding messages ([db48f44](db48f44)) * **tests:** fix check of starting download ([0dee20d](0dee20d)) * **tests:** more timeout time for some strategies ([471efc1](471efc1)) ### Features * **arm:** added testing arm support ([8b9f9f6](8b9f9f6)) * **core:** updated to new browser engine ([2370847](2370847)) * **strategies:** 1337 strategie ([3f75cce](3f75cce)) * **strategies:** autoload trackers strategies ([4367da9](4367da9)) * **ui:** settings tabs ([5cb119f](5cb119f)) ### Performance Improvements * **start:** simplify some init statistic calls ([c788569](c788569))

# [1.10.0](v1.9.0...v1.10.0) (2023-02-26) ### Bug Fixes * **db:** fix replace values func with new manticore ([7279ade](7279ade)) * **docker:** fix build ([4340763](4340763)) * **docker:** fixes ([1feab1c](1feab1c)) * **docker:** more fixes ([bd40cb5](bd40cb5)) * **docker:** update install command ([61ae1b8](61ae1b8)) ### Features * **core:** update libs ([581aed4](581aed4)) * **core:** update libs ([0d70850](0d70850)) * **db:** changed config for manticore 5 support [#176](#176) ([2b3676d](2b3676d)) * **db:** update to manticore 6.0.2 ([c24ac47](c24ac47)) * **linux:** manticore5 ([4a2bcc7](4a2bcc7)) * **macos:** manticore5 for macos ([46fa48a](46fa48a)) * **macos:** support of arm64 manticore ([50d05ec](50d05ec)) * **win:** switch to manticore 5.0.2 ([c7ba49a](c7ba49a))

… field) thanks to: #184

# [1.11.0](v1.10.0...v1.11.0) (2023-05-21) ### Bug Fixes * **ci:** fix linux build ([2c58fa6](2c58fa6)) * **torrent:** fix adding torrent for new manticore version (duplicate field) ([34dca0d](34dca0d)), closes [#184](#184) ### Features * **core:** update deps ([96779af](96779af)) * **log:** improve logging format ([45959df](45959df))

Bumps [socket.io-parser](https://github.com/socketio/socket.io-parser) from 3.4.2 to 3.4.3. - [Release notes](https://github.com/socketio/socket.io-parser/releases) - [Changelog](https://github.com/socketio/socket.io-parser/blob/main/CHANGELOG.md) - [Commits](socketio/socket.io-parser@3.4.2...3.4.3) --- updated-dependencies: - dependency-name: socket.io-parser dependency-type: indirect ... Signed-off-by: dependabot[bot] <support@github.com>

dependabot · 2023-06-03T23:56:30Z

OK, I won't notify you again about this release, but will get in touch when a new version is available. If you'd rather skip all updates until the next major or minor version, let me know by commenting @dependabot ignore this major version or @dependabot ignore this minor version.

If you change your mind, just re-open this PR and I'll resolve any conflicts on it.

DEgITx and others added 30 commits November 11, 2018 23:44

eslint

ceae586

release

a4b2210

babel update

1a39850

Merge branch 'master' of github.com:DEgITx/rats-search

84da032

mocha update

602e85e

test(downloading): add downloading test

c2e02ea

test(downloading): add downloading tab & some buttons tests

25f5e19

fix(p2p): fix files in db count on new architecture

073eefe

webpack update

a033344

feat(strategies): autoload trackers strategies

4367da9

feat(core): updated to new browser engine

2370847

fix(build): fix production build after upgrade to new engine

09ef602

fix(tests): fix check of starting download

0dee20d

Fix server version strategies check

670f9c1

feat(strategies): 1337 strategie

3f75cce

Merge branch 'master' of github.com:DEgITx/rats-search

a74a03c

doc(trackers): documentation about how write own strategy

e938245

update updater

e4db846

perf(start): simplify some init statistic calls

c788569

feat(arm): added testing arm support

8b9f9f6

fix(arm): ignore relay on arm #66

e8cb4d8

feat(ui): settings tabs

5cb119f

fix(tests): more timeout time for some strategies

471efc1

fix(p2p): potencial problem with some p2p decoding messages

db48f44

update builder dep

8a505bb

fix(1337x): proper poster in some cases

515d30c

release

03566b6

DEgITx and others added 24 commits December 24, 2022 03:35

upgrade to new libs

4d1610f

update deps

e4d8963

update deps

232dd55

upgrade

56eebfd

upgrade packages

9542bc9

update deps

d35c0bf

feat(db): update to manticore 6.0.2

c24ac47

feat(macos): support of arm64 manticore

50d05ec

fix permissions

add9227

arm64 update manticore search

cda2cdd

minor change

f7deb3d

release

f1982db

new link

90067fc

Merge branch 'master' of github.com:DEgITx/rats-search

57ad8a0

feat(core): update deps

96779af

feat(log): improve logging format

45959df

fix number for ms

0db4655

update deps

058a9a9

fix(ci): fix linux build

2c58fa6

fix(torrent): fix adding torrent for new manticore version (duplicate…

34dca0d

… field) thanks to: #184

release

d00bc28

dependabot bot added the dependencies Pull requests that update a dependency file label May 23, 2023

DEgITx force-pushed the master branch 2 times, most recently from 32e607f to 3cff91d Compare June 1, 2023 23:23

DEgITx closed this Jun 3, 2023

DEgITx deleted the dependabot/npm_and_yarn/socket.io-parser-3.4.3 branch June 3, 2023 23:56

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

chore(deps): bump socket.io-parser from 3.4.2 to 3.4.3 #186

chore(deps): bump socket.io-parser from 3.4.2 to 3.4.3 #186

dependabot bot commented on behalf of github May 23, 2023

dependabot bot commented on behalf of github Jun 3, 2023

chore(deps): bump socket.io-parser from 3.4.2 to 3.4.3 #186

chore(deps): bump socket.io-parser from 3.4.2 to 3.4.3 #186

Conversation

dependabot bot commented on behalf of github May 23, 2023

3.4.3

Bug Fixes

Links

3.4.3 (2023-05-22)

Bug Fixes

4.2.3 (2023-05-22)

Bug Fixes

4.2.2 (2023-01-19)

Bug Fixes

3.3.3 (2022-11-09)

Bug Fixes

dependabot bot commented on behalf of github Jun 3, 2023