dependencies: update socket.io 1.7.3 -> 2.1.1

libre-service.eu/pad.libre-service.eu-etherpad

mirror of https://github.com/ether/etherpad-lite.git synced 2025-01-31 19:02:59 +01:00

Version 2.x is not backwards compatible with 1.x.
However, according to [0], [1] and [2], it seems that the biggest concern is
when mixing different server and client versions, and this is not Etherpad's
case.

Smoke tested (successfully) on Firefox 61, Chromium 68.

npm audit before this change:
  found 12 vulnerabilities (9 low, 3 high) in 8205 scanned packages
    11 vulnerabilities require semver-major dependency updates.
    1 vulnerability requires manual review. See the full report for details.

npm audit after this change:
  found 1 low severity vulnerability in 8196 scanned packages
    1 vulnerability requires manual review. See the full report for details.

Fixes #3462

[0] https://socket.io/blog/socket-io-2-0-0/
[1] https://github.com/socketio/socket.io/issues/3007#issuecomment-336791836
[2] a0d7a794de

This commit is contained in:

muxator

2018-08-18 19:42:42 +02:00

parent 5f9de6948c

commit 93641a165d

1 changed files with 1 additions and 1 deletions

									
										2

src/package.json
									
										View file
										
				@ -51,7 +51,7 @@

				    "security": "1.0.0",

				    "semver": "5.1.0",

				    "slide": "1.1.6",

				    "socket.io": "1.7.3",

				    "socket.io": "2.1.1",

				    "swagger-node-express": "2.1.3",

				    "tinycon": "0.0.1",

				    "ueberdb2": "0.4.0",

dependencies: update socket.io 1.7.3 -> 2.1.1

2 src/package.json Unescape Escape View file

2

src/package.json

View file