GitHub

engine.io@6.6.8

release notes

Published 1 week ago

Safe upgrade

Release notes

The ws dependency was bumped to ~8.20.1 following CVE-2026-45736.

Note from the ws maintainers:

Although the calculated CVSS severity is medium, the actual severity is believed to be low, as the flaw is only exploitable through misuse that is unlikely in practice.

Bug Fixes

clean up resources upon WebTransport handshake failure (f86b95f)

Dependencies

ws@~8.20.1 (diff)

Diff stats+132-363916 filesMain areaspackages/socket.io-cluster-adapterdocspackages/engine.ioexamplespackages/engine.io-clienttests

engine.io@6.6.8

release notes

Published 1 week ago

Safe upgrade

Release notes

The ws dependency was bumped to ~8.20.1 following CVE-2026-45736.

Note from the ws maintainers:

Although the calculated CVSS severity is medium, the actual severity is believed to be low, as the flaw is only exploitable through misuse that is unlikely in practice.

Bug Fixes

clean up resources upon WebTransport handshake failure (f86b95f)

Dependencies

ws@~8.20.1 (diff)

Diff stats+132-363916 filesMain areaspackages/socket.io-cluster-adapterdocspackages/engine.ioexamplespackages/engine.io-clienttests

engine.io@6.6.8

release notes

Published 1 week ago

Safe upgrade

Release notes

The ws dependency was bumped to ~8.20.1 following CVE-2026-45736.

Note from the ws maintainers:

Although the calculated CVSS severity is medium, the actual severity is believed to be low, as the flaw is only exploitable through misuse that is unlikely in practice.

Bug Fixes

clean up resources upon WebTransport handshake failure (f86b95f)

Dependencies

ws@~8.20.1 (diff)

Diff stats+132-363916 filesMain areaspackages/socket.io-cluster-adapterdocspackages/engine.ioexamplespackages/engine.io-clienttests

engine.io@6.6.8

Bug Fixes

Dependencies

socketio/socket.io

engine.io@6.6.8

Bug Fixes

Dependencies

engine.io@6.6.8

Bug Fixes

Dependencies

socketio/socket.io