[dist] Update dependency socket.io to 2.4.0 [SECURITY]

Created by: renovate[bot]

This PR contains the following updates:

Package	Change
socket.io	`2.2.0` -> `2.4.0`

The package socket.io before 2.4.0 are vulnerable to Insecure Defaults due to CORS Misconfiguration. All domains are whitelisted by default.

Schedule: Branch creation - "" (UTC), Automerge - At any time (no schedule defined).

Automerge: Disabled by config. Please merge this manually once you are satisfied.

Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

Ignore: Close this PR and you won't be reminded about this update again.

This PR has been generated by Mend Renovate. View repository job log here.

Activity

Please register or sign in to reply

To run a merge request pipeline, the jobs in the CI/CD configuration file must be configured to run in merge request pipelines.

0 Assignees

None

Assign to

0 Reviewers

None

Request review from

Labels

None

Assign labels

Manage project labels

Milestone

No milestone

None

Time tracking

No estimate or time spent

Lock merge request

Unlocked

1 participant

Reference: http-party/node-http-proxy!1501

Source branch: renovate/npm-socket.io-vulnerability