From 93660d6be36323311d31254158099cba34443a75 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Mon, 6 Sep 2021 06:49:15 -0700 Subject: [PATCH] Bump ws from 7.5.3 to 8.2.1 in /desktop (#2756) Summary: Bumps [ws](https://github.com/websockets/ws) from 7.5.3 to 8.2.1.
Release notes

Sourced from ws's releases.

8.2.1

Bug fixes

8.2.0

Features

8.1.0

Features

Bug fixes

8.0.0

Breaking changes

... (truncated)

Commits

[![Dependabot compatibility score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=ws&package-manager=npm_and_yarn&previous-version=7.5.3&new-version=8.2.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`. [//]: # (dependabot-automerge-start) [//]: # (dependabot-automerge-end) ---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `dependabot rebase` will rebase this PR - `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `dependabot merge` will merge this PR after your CI passes on it - `dependabot squash and merge` will squash and merge this PR after your CI passes on it - `dependabot cancel merge` will cancel a previously requested merge and block automerging - `dependabot reopen` will reopen this PR if it is closed - `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Pull Request resolved: https://github.com/facebook/flipper/pull/2756 Reviewed By: lblasa Differential Revision: D30727123 Pulled By: passy fbshipit-source-id: b06ab55427b7798d004d2f3371f76bda6af69947 --- desktop/app/package.json | 2 +- desktop/static/package.json | 2 +- desktop/yarn.lock | 2 +- 3 files changed, 3 insertions(+), 3 deletions(-) diff --git a/desktop/app/package.json b/desktop/app/package.json index 3dabc365b..9617bd90f 100644 --- a/desktop/app/package.json +++ b/desktop/app/package.json @@ -75,7 +75,7 @@ "tmp": "^0.2.1", "uuid": "^8.3.2", "which": "^2.0.1", - "ws": "^7.5.2", + "ws": "^8.2.1", "xdg-basedir": "^4.0.0" }, "optionalDependencies": { diff --git a/desktop/static/package.json b/desktop/static/package.json index 676934ace..eb2d62f58 100644 --- a/desktop/static/package.json +++ b/desktop/static/package.json @@ -10,7 +10,7 @@ "mac-ca": "^1.0.6", "mkdirp": "^1.0.4", "node-fetch": "^2.6.1", - "ws": "^7.5.2", + "ws": "^8.2.1", "xdg-basedir": "^4.0.0", "yargs": "^16.2.0" } diff --git a/desktop/yarn.lock b/desktop/yarn.lock index d46ce7899..e619d2d48 100644 --- a/desktop/yarn.lock +++ b/desktop/yarn.lock @@ -13523,7 +13523,7 @@ ws@1.1.5, ws@^1.1.5: options ">=0.0.5" ultron "1.0.x" -ws@^7.4.5, ws@^7.4.6, ws@^7.5.2, ws@~7.4.2: +ws@^7.4.5, ws@^7.4.6, ws@^8.2.1, ws@~7.4.2: version "7.5.4" resolved "https://registry.yarnpkg.com/ws/-/ws-7.5.4.tgz#56bfa20b167427e138a7795de68d134fe92e21f9" integrity sha512-zP9z6GXm6zC27YtspwH99T3qTG7bBFv2VIkeHstMLrLlDJuzA7tQ5ls3OJ1hOGGCzTQPniNJoHXIAOS0Jljohg==