fix(deps): update dependency socket.io to v4 #12
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
~1.3.7
->~4.7.0
Release Notes
socketio/socket.io (socket.io)
v4.7.4
Compare Source
Bug Fixes
Dependencies
engine.io@~6.5.2
(no change)ws@~8.11.0
(no change)v4.7.3
Compare Source
Bug Fixes
Dependencies
engine.io@~6.5.2
(no change)ws@~8.11.0
(no change)v4.7.2
Compare Source
Bug Fixes
Dependencies
engine.io@~6.5.2
(diff)ws@~8.11.0
(no change)v4.7.1
Compare Source
The client bundle contains a few fixes regarding the WebTransport support.
Dependencies
engine.io@~6.5.0
(no change)ws@~8.11.0
(no change)v4.7.0
Compare Source
Bug Fixes
Features
Support for WebTransport
The Socket.IO server can now use WebTransport as the underlying transport.
WebTransport is a web API that uses the HTTP/3 protocol as a bidirectional transport. It's intended for two-way communications between a web client and an HTTP/3 server.
References:
Until WebTransport support lands in Node.js, you can use the
@fails-components/webtransport
package:Added in 123b68c.
Client bundles with CORS headers
The bundles will now have the right
Access-Control-Allow-xxx
headers.Added in 63f181c.
Dependencies
engine.io@~6.5.0
(diff)ws@~8.11.0
(no change)v4.6.2
Compare Source
Bug Fixes
types
condition to the top (#4698) (3d44aae)Dependencies
engine.io@~6.4.2
(diff)ws@~8.11.0
(no change)v4.6.1
Compare Source
Bug Fixes
Dependencies
engine.io@~6.4.1
(diff)ws@~8.11.0
(no change)v4.6.0
Compare Source
Bug Fixes
Features
Promise-based acknowledgements
This commit adds some syntactic sugar around acknowledgements:
emitWithAck()
serverSideEmitWithAck()
Added in 184f3cf.
Connection state recovery
This feature allows a client to reconnect after a temporary disconnection and restore its state:
Usage:
Here's how it works:
id
attribute, which is public and can be freely shared)The in-memory adapter already supports this feature, and we will soon update the Postgres and MongoDB adapters. We will also create a new adapter based on Redis Streams, which will support this feature.
Added in 54d5ee0.
Compatibility (for real) with Express middlewares
This feature implements middlewares at the Engine.IO level, because Socket.IO middlewares are meant for namespace authorization and are not executed during a classic HTTP request/response cycle.
Syntax:
A workaround was possible by using the allowRequest option and the "headers" event, but this feels way cleaner and works with upgrade requests too.
Added in 24786e7.
Error details in the disconnecting and disconnect events
The
disconnect
event will now contain additional details about the disconnection reason.Added in 8aa9499.
Automatic removal of empty child namespaces
This commit adds a new option, "cleanupEmptyChildNamespaces". With this option enabled (disabled by default), when a socket disconnects from a dynamic namespace and if there are no other sockets connected to it then the namespace will be cleaned up and its adapter will be closed.
Added in 5d9220b.
A new "addTrailingSlash" option
The trailing slash which was added by default can now be disabled:
In the example above, the clients can omit the trailing slash and use
/socket.io
instead of/socket.io/
.Added in d0fd474.
Performance Improvements
Dependencies
engine.io@~6.4.0
(socketio/engine.io@6.2.1...6.4.0)ws@~8.11.0
(websockets/ws@8.2.3...8.11.0)v4.5.4
Compare Source
This release contains a bump of:
engine.io
in order to fix CVE-2022-41940socket.io-parser
in order to fix CVE-2022-2421.Dependencies
engine.io@~6.2.1
(diff)ws@~8.2.3
(no change)v4.5.3
Compare Source
Bug Fixes
Dependencies
engine.io@~6.2.0
(no change)ws@~8.2.3
(no change)v4.5.2
Compare Source
Bug Fixes
Dependencies
engine.io@~6.2.0
(no change)ws@~8.2.3
(no change)v4.5.1
Compare Source
Bug Fixes
Dependencies
engine.io@~6.2.0
(no change)ws@~8.2.3
(no change)v4.5.0
Compare Source
Bug Fixes
Features
Catch-all listeners for outgoing packets
This is similar to
onAny()
, but for outgoing packets.Syntax:
Added in 531104d.
Broadcast and expect multiple acknowledgements
Syntax:
Added in 8b20457.
maxHttpBufferSize
value negotiationA "maxPayload" field is now included in the Engine.IO handshake, so that clients in HTTP long-polling can decide how many packets they have to send to stay under the
maxHttpBufferSize
value.This is a backward compatible change which should not mandate a new major revision of the protocol (we stay in v4), as we only add a field in the JSON-encoded handshake data:
Added in 088dcb4.
Dependencies
engine.io@~6.2.0
(socketio/engine.io@6.1.0...6.2.0)ws@~8.2.3
(no change)4.4.1 (2022-01-06)
Bug Fixes
RemoteSocket.data
type safe (#4234) (770ee59)SocketData
type to custom namespaces (#4233) (f2b8de7)v4.4.1
Compare Source
Bug Fixes
RemoteSocket.data
type safe (#4234) (770ee59)SocketData
type to custom namespaces (#4233) (f2b8de7)v4.4.0
Compare Source
Bug Fixes
Features
socket.data
(#4159) (fe8730c)4.3.2 (2021-11-08)
Bug Fixes
4.3.1 (2021-10-16)
Bug Fixes
v4.3.2
Compare Source
Bug Fixes
v4.3.1
Compare Source
Bug Fixes
v4.3.0
Compare Source
Bug Fixes
Features
v4.2.0
Compare Source
Bug Fixes
Features
4.1.3 (2021-07-10)
Bug Fixes
4.1.2 (2021-05-17)
Bug Fixes
4.1.1 (2021-05-11)
Bug Fixes
v4.1.3
Compare Source
Bug Fixes
v4.1.2
Compare Source
Bug Fixes
v4.1.1
Compare Source
Bug Fixes
v4.1.0
Compare Source
Features
engine.io
)engine.io
)Performance Improvements
4.0.2 (2021-05-06)
Bug Fixes
4.0.1 (2021-03-31)
Bug Fixes
v4.0.2
Compare Source
Bug Fixes
v4.0.1
Compare Source
Bug Fixes
v4.0.0
Compare Source
Bug Fixes
Features
3.1.2 (2021-02-26)
Bug Fixes
3.1.1 (2021-02-03)
Bug Fixes
v3.1.2
Compare Source
Bug Fixes
v3.1.1
Compare Source
Bug Fixes
v3.1.0
Compare Source
Features
Bug Fixes
2.4.1 (2021-01-07)
Reverts
3.0.5 (2021-01-05)
Bug Fixes
Reverts
v3.0.5
Compare Source
Bug Fixes
Reverts
v3.0.4
Compare Source
v3.0.3
Compare Source
v3.0.2
Compare Source
Bug Fixes
v3.0.1
Compare Source
Bug Fixes
v3.0.0
Compare Source
Bug Fixes
Features
BREAKING CHANGES
the Socket#use() method is removed (see 5c73733)
Socket#join() and Socket#leave() do not accept a callback argument anymore.
Before:
After:
Before:
The 'origins' option was used in the allowRequest method, in order to
determine whether the request should pass or not. And the Engine.IO
server would implicitly add the necessary Access-Control-Allow-xxx
headers.
After:
The already existing 'allowRequest' option can be used for validation:
Socket#rooms is now a Set instead of an object
Namespace#connected is now a Map instead of an object
there is no more implicit connection to the default namespace:
This method was kept for backward-compatibility with pre-1.0 versions.
v2.5.0
Compare Source
The default value of the
maxHttpBufferSize
option has been decreased from 100 MB to 1 MB, in order to prevent attacks by denial of service.Security advisory: GHSA-j4f2-536g-r55m
Bug Fixes
Dependencies
engine.io@~3.6.0
(socketio/engine.io@3.5.0...3.6.0)ws@~7.4.2
(no change)4.5.1 (2022-05-17)
Bug Fixes
Dependencies
engine.io@~6.2.0
(no change)ws@~8.2.3
(no change)v2.4.1
Compare Source
Reverts
v2.4.0
Compare Source
Bug Fixes
3.0.4 (2020-12-07)
3.0.3 (2020-11-19)
3.0.2 (2020-11-17)
Bug Fixes
3.0.1 (2020-11-09)
Bug Fixes
v2.3.0
Compare Source
This release mainly contains a bump of the
engine.io
andws
packages, but no additional features.v2.2.0
Compare Source
Features
Bug fixes
v2.1.1
Compare Source
Features
v2.1.0
Compare Source
Features
Bug fixes
Important note⚠️ from Engine.IO 3.2.0 release
There are two non-breaking changes that are somehow quite important:
ws
was reverted as the default wsEngine (https://github.com/socketio/engine.io/pull/550), as there was several blocking issues withuws
. You can still useuws
by runningnpm install uws --save
in your project and using thewsEngine
option:pingTimeout
now defaults to 5 seconds (instead of 60 seconds): https://github.com/socketio/engine.io/pull/551v2.0.4
Compare Source
Bug fixes
Links:
engine.io
: -ws
: -v2.0.3
Compare Source
Bug fixes
Links:
engine.io
: -ws
: -v2.0.2
Compare Source
Bug fixes
Links:
engine.io
: -ws
: -v2.0.1
Compare Source
Bug fixes
- update path of client file (#2934)
Links:
engine.io
: -ws
: -v2.0.0
Compare Source
This major release brings several performance improvements:
uws is now the default Websocket engine. It should bring significant improvement in performance (particularly in terms of memory consumption) (https://github.com/socketio/engine.io/releases/tag/2.0.0)
the Engine.IO and Socket.IO handshake packets were merged, reducing the number of roundtrips necessary to establish a connection. (#2833)
it is now possible to provide a custom parser according to the needs of your application (#2829). Please take a look at the example for more information.
Please note that this release is not backward-compatible, due to:
Please also note that if you are using a self-signed certificate,
rejectUnauthorized
now defaults totrue
(https://github.com/socketio/engine.io-client/pull/558).Finally, the API documentation is now in the repository (here), and the content of the website here. Do not hesitate if you see something wrong or missing!
The full list of changes:
local
flag (#2816)clients
method in the API documentation (#2812)Besides, we are proud to announce that Socket.IO is now a part of open collective: https://opencollective.com/socketio. More on that later.
v1.7.4
Compare Source
v1.7.3
Compare Source
v1.7.2
Compare Source
Configuration
📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).
🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
🔕 Ignore: Close this PR and you won't be reminded about this update again.
This PR has been generated by Mend Renovate. View repository job log here.