fix(deps): bump socket.io from 2.3.0 to 4.0.0

[dependabot]

Bumps socket.io from 2.3.0 to 4.0.0.

Release notes

Sourced from socket.io's releases.

4.0.0

Blog post: https://socket.io/blog/socket-io-4-release/ Migration guide: https://socket.io/docs/v3/migrating-from-3-x-to-4-0/

Bug Fixes

• make io.to(...) immutable (ac9e8ca)

Features

• add some utility methods (b25495c)
• add support for typed events (#3822) (0107510)
• allow to exclude specific rooms when broadcasting (#3789) (7de2e87)
• allow to pass an array to io.to(...) (085d1de)

BREAKING CHANGES

• io.to(...) now returns an immutable operator

Previously, broadcasting to a given room (by calling io.to()) would mutate the io instance, which could lead to surprising behaviors, like:

io.to("room1");
io.to("room2").emit(/* ... */); // also sent to room1
// or with async/await
io.to("room3").emit("details", await fetchDetails()); // random behavior: maybe in room3, maybe to all clients

Calling io.to() (or any other broadcast modifier) will now return an immutable instance.

Links:

• Diff: socketio/socket.io@3.1.2...4.0.0
• Client release: 4.0.0
• engine.io version: ~5.0.0
• ws version: ~7.4.2

3.1.2

Bug Fixes

• ignore packets received after disconnection (494c64e)

Links:

• Diff: socketio/socket.io@3.1.1...3.1.2
• Client release: 3.1.2
• engine.io version: ~4.1.0
• ws version: ~7.4.2

... (truncated)

Changelog

Sourced from socket.io's changelog.

4.0.0 (2021-03-10)

Bug Fixes

• make io.to(...) immutable (ac9e8ca)

Features

• add some utility methods (b25495c)
• add support for typed events (#3822) (0107510)
• allow to exclude specific rooms when broadcasting (#3789) (7de2e87)
• allow to pass an array to io.to(...) (085d1de)

3.1.2 (2021-02-26)

Bug Fixes

• ignore packets received after disconnection (494c64e)

3.1.1 (2021-02-03)

Bug Fixes

• properly parse the CONNECT packet in v2 compatibility mode (6f4bd7f)
• typings: add return types and general-case overload signatures (#3776) (9e8f288)
• typings: update the types of "query", "auth" and "headers" (4f2e9a7)

3.1.0 (2021-01-15)

Features

• confirm a weak but matching ETag (#3485) (161091d)
• esm: export the Namespace and Socket class (#3699) (233650c)
• add support for Socket.IO v2 clients (9925746)
• add room events (155fa63)

Bug Fixes

• allow integers as event names (1c220dd)

... (truncated)

Commits

• 5eaeffc chore(release): 4.0.0
• 1b6d6de chore: include Engine.IO v5
• 0107510 feat: add support for typed events (#3822)
• b25495c feat: add some utility methods
• 085d1de feat: allow to pass an array to io.to(...)
• ac9e8ca fix: make io.to(...) immutable
• 7de2e87 feat: allow to exclude specific rooms when broadcasting (#3789)
• 225ade0 chore(release): 3.1.2
• 494c64e fix: ignore packet received after disconnection
• 67a61e3 chore: loosen the version requirement of @types/node
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)

[dependabot]

The following labels could not be found: dependencies.

[dependabot]

Superseded by #65.