From 9583da37e7b26d5e0c73e23af4df3e26f3328573 Mon Sep 17 00:00:00 2001
From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com>
Date: Tue, 6 Apr 2021 06:28:36 -0700
Subject: [PATCH] Bump socket.io from 4.0.0 to 4.0.1 in /desktop (#2161)
Summary:
Bumps [socket.io](https://github.com/socketio/socket.io) from 4.0.0 to 4.0.1.
Release notes
Sourced from socket.io's releases.
4.0.1
Bug Fixes
- typings: add fallback to untyped event listener (#3834) (a11152f)
- typings: update return type from emit (#3843) (1a72ae4)
Links:
Changelog
Sourced from socket.io's changelog.
4.0.1 (2021-03-31)
Bug Fixes
- typings: add fallback to untyped event listener (#3834) (a11152f)
- typings: update return type from emit (#3843) (1a72ae4)
Commits
[](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting `dependabot rebase`.
[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)
---
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `dependabot rebase` will rebase this PR
- `dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `dependabot merge` will merge this PR after your CI passes on it
- `dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `dependabot cancel merge` will cancel a previously requested merge and block automerging
- `dependabot reopen` will reopen this PR if it is closed
- `dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Pull Request resolved: https://github.com/facebook/flipper/pull/2161
Reviewed By: nikoant
Differential Revision: D27589260
Pulled By: mweststrate
fbshipit-source-id: 381b38b0ad790737bc56d2cbc5dbd7b93a134acc
---
desktop/package.json | 2 +-
desktop/yarn.lock | 8 ++++----
2 files changed, 5 insertions(+), 5 deletions(-)
diff --git a/desktop/package.json b/desktop/package.json
index 1e6c42dc9..37c2cb683 100644
--- a/desktop/package.json
+++ b/desktop/package.json
@@ -176,7 +176,7 @@
"recursive-readdir": "^2.2.2",
"redux": "^4.0.0",
"rimraf": "^3.0.2",
- "socket.io": "^4.0.0",
+ "socket.io": "^4.0.1",
"tmp": "^0.2.1",
"ts-jest": "^26.0.0",
"ts-node": "^8.8.1",
diff --git a/desktop/yarn.lock b/desktop/yarn.lock
index 5b2427ba9..b29418881 100644
--- a/desktop/yarn.lock
+++ b/desktop/yarn.lock
@@ -12479,10 +12479,10 @@ socket.io-parser@~4.0.3:
component-emitter "~1.3.0"
debug "~4.3.1"
-socket.io@^4.0.0:
- version "4.0.0"
- resolved "https://registry.yarnpkg.com/socket.io/-/socket.io-4.0.0.tgz#ee484a95dc6a38698491aaf63b6ec1f3ceeac0a8"
- integrity sha512-/c1riZMV/4yz7KEpaMhDQbwhJDIoO55whXaRKgyEBQrLU9zUHXo9rzeTMvTOqwL9mbKfHKdrXcMoCeQ/1YtMsg==
+socket.io@^4.0.1:
+ version "4.0.1"
+ resolved "https://registry.yarnpkg.com/socket.io/-/socket.io-4.0.1.tgz#d2e01cf3780d810b66182b3fbef08a04a4ccf924"
+ integrity sha512-g8eZB9lV0f4X4gndG0k7YZAywOg1VxYgCUspS4V+sDqsgI/duqd0AW84pKkbGj/wQwxrqrEq+VZrspRfTbHTAQ==
dependencies:
"@types/cookie" "^0.4.0"
"@types/cors" "^2.8.8"